ISO & Compliance Readiness gets organisations audit-ready for ISO 27001, ISO 42001 and NIS2 — without the documentation theatre, and in a way that reflects how the business actually operates.
The problem
Compliance has become unavoidable: customers demand ISO 27001, AI governance is moving towards ISO 42001, and NIS2 raises the bar on digital resilience for a widening group of organisations. Yet most certification efforts turn into bloated documentation projects that stall the business, exhaust the team, and produce binders that no one uses. The result is checkbox compliance that satisfies an auditor but does little for real security or resilience.
Who this is for
- MKB+ and enterprise organisations facing ISO 27001 certification or recertification.
- Organisations adopting AI that need to move towards ISO 42001 and EU AI Act-aligned governance.
- Entities now in scope for NIS2 that must demonstrate digital resilience and accountability.
- Leaders who want certification that strengthens the organisation — not just paperwork.
What Peter does
Peter guides organisations to readiness practically: mapping requirements to how the organisation already works, closing the real gaps, and producing evidence that is genuine and audit-ready. This is delivered through ISO-Ready — his own platform that structures evidence collection, gap analysis and audit documentation — supported by the knowledge base at isocertificering.org.
Scope of standards
- ISO 27001 — information security management, the foundation most customers and tenders now require.
- ISO 42001 — AI management systems, for organisations putting AI into production responsibly.
- NIS2 — digital resilience, risk management and reporting obligations for in-scope organisations.
Typical outputs
- A gap analysis against the relevant standard, prioritised by risk and effort.
- A pragmatic readiness roadmap with clear ownership and milestones.
- An evidence base and management-system documentation structured for audit.
- A governance and review cadence that keeps certification alive after the audit.
How the engagement works
Engagements begin with a readiness assessment, then move through structured gap closure using ISO-Ready to keep evidence organised and the workload contained. Peter works with your team so the management system is owned internally — the aim is sustainable certification, not dependence on a consultant. Scope can target a single standard or an integrated programme across ISO 27001, ISO 42001 and NIS2.
Business result
The organisation reaches certification readiness faster and with far less disruption — and ends up with security and governance that genuinely work. Compliance becomes a commercial asset that unlocks tenders and customer trust, rather than an annual scramble.
Relevant proof points
- Founder of ISO-Ready — an own-built platform for structured ISO readiness and evidence.
- Author and curator behind isocertificering.org, a knowledge hub for ISO, security and auditability.
- 20+ years bridging governance, risk and digital delivery in compliance-heavy environments.
- Experience connecting ISO and NIS2 obligations to real business processes, not generic templates.
Example — in practice
Peter turned his hands-on ISO 27001 readiness method into ISO-Ready — structuring control mapping, evidence workflows and audit documentation so organisations reach readiness with far less disruption. See more in Cases & Experience →
Book a 30-minute discovery call
Tell us which standard you are facing and where you are today — we’ll map the shortest credible path to readiness.