ISO 27001 Annex A.7.2.2 training records — audit-ready awareness evidence

Awareness training with audit-ready records for ISO 27001, revFADP, GDPR and SOC 2. No more Excel sheets.

Calculate your price Watch a demo course

Your challenges

Annex A.7.2.2 demands more than a PDF

"Information security awareness, education and training" must be documented, regularly updated and demonstrably effective.

Audit prep takes weeks

Pulling Excel lists from 5 sources, explaining gaps, scheduling re-training — same drill before every audit.

revFADP raises the stakes

Since Sept. 2023: fines against natural persons. Training evidence is part of the "appropriate measures" under Art. 8.

How NCSCERT solves it

Audit-ready records

Per person, module, date, test score — as PDF and CSV. Directly usable as Annex A.7.2.2 evidence.

Standards mapping

Modules mapped to ISO 27001 Annex A, revFADP Art. 8 and GDPR Art. 32.

Continuous awareness

Annual refresher automated. On standard updates (e.g. ISO 27001:2022) modules are revised — no more gaps.

Used by ISMS owners in certified organisations.

What does it cost for your team?

One voucher per employee — volume discount applied automatically.

Number of vouchers
11050100200+
per voucher
Total
Order now
In-depth whitepaper

Dive deeper — free as PDF

Format: PDF · Language: German · Length: 6 pages · free

Cyber Security Compliance Checklist for SMBs 2026

20 concrete points on revDPA, GDPR and ISO 27001 — plus 5 quick wins that lower the biggest risk first. Practical, no marketing fluff.

Download PDF →
Format: PDF · Language: German · Length: 6 pages · free

Training Obligations Data Protection & Cyber Security 2026

What, who, how often — and what fines you risk for non-compliance. Practical guide for Switzerland, Germany and Austria. Includes a 5-step plan.

Download PDF →

Frequently asked questions

Yes, provided you also have a documented training concept in your ISMS (mandatory modules per role, frequency, owner). NCSCERT delivers content + records — the ISMS stays yours.

Each module includes a knowledge test (pass/fail with score). Failed attempts must be repeated. Test result is part of the record.

Yes. Data protection modules cover revFADP (Switzerland) and GDPR (EU). Security modules align with ISO 27001 Annex A and NIST CSF.

Ready for the next audit

Watch a demo course — and tick off Annex A.7.2.2.

Watch a demo course Calculate your price