If you're running ISO 27001 audits or preparing for certification, this gives you structured workflows for the entire audit lifecycle. It covers risk-based audit scheduling, control testing procedures for all 93 Annex A controls, evidence collection methods, and finding classification templates. The working papers and sample outputs are detailed enough to use directly, which is helpful if you're building an audit program from scratch or need to standardize how your team documents control tests. It's built for internal auditors and security teams managing ISMS compliance, though external auditors could use the checklists too. The control testing workflows are thorough but assume you already understand ISO 27001 fundamentals.
npx skills add https://github.com/borghei/claude-skills --skill isms-audit-expert