What is the ISO 27001 (ISO/IEC 27001 Information Security Management) certification?

The ISO 27001 (ISO/IEC 27001 Information Security Management) is a cybersecurity certification offered by ISO. It validates your knowledge and skills in the field. A passing score of 70% is required.

How many practice questions does CyberCertPrep have for ISO 27001?

CyberCertPrep offers thousands of exam-style practice questions for the ISO 27001 certification, covering all exam domains and topics. Questions are regularly updated to match the latest exam objectives.

What is the ISO 27001 exam format?

The ISO 27001 exam consists of 80 questions to be completed in 120 minutes. The passing score is 70%.

Is CyberCertPrep free for ISO 27001 practice?

CyberCertPrep offers a free tier with limited daily questions. Premium plans unlock unlimited access to all practice questions, exam simulations, analytics, and flashcards.

ISO

Annex A Controls

ISO/IEC 27001 Information Security Management (ISO 27001) Exam Domain

25% of exam#2 by weight in ISO 2700170% passing score

Exam Weight Breakdown

ISMS Planning & Context

20%

Leadership & Support

15%

Risk Assessment & Treatment

25%

Annex A Controls

25%

Performance Evaluation & Improvement

15%

Practice Annex A Controls Questions

Focus your study on this domain with targeted practice questions. This domain accounts for 25% of your ISO 27001 exam score.

Practice Now Flashcards

Study Guide: Annex A Controls

The Annex A Controls domain is one of 5 exam domains on the ISO/IEC 27001 Information Security Management (ISO 27001) certification exam by ISO. At 25% of the total exam, this is one of the most heavily weighted domains — mastering it is critical for passing.

The ISO 27001 exam consists of 80 questions with a time limit of 2 hours and a passing score of 70%. That means approximately 20 questions on your exam will come from the Annex A Controls domain.

Study Strategy

Start with practice questions filtered to this topic to identify weak areas
Use flashcards for key terms and concepts within Annex A Controls
Review the glossary terms below for foundational vocabulary
Take a full exam simulation periodically to practice time management across all domains
Don't neglect other domains — ISMS Planning & Context (20%) and Leadership & Support (15%) are also heavily tested

Key Terms for Annex A Controls

Least Privilege

The principle of giving users, processes, and systems only the minimum levels of access needed to perform their job func...

Firewall

A network security system that monitors and controls incoming and outgoing network traffic based on predetermined securi...

Compliance

The act of conforming to established guidelines, specifications, regulations, or legislation related to information secu...

NIST Framework

A set of guidelines and best practices published by the National Institute of Standards and Technology to manage cyberse...

ISO 27001

An international standard for information security management systems (ISMS) that specifies requirements for establishin...

Cloud Security

The set of policies, technologies, controls, and services deployed to protect data, applications, and infrastructure in ...

CIA Triad

The three core principles of information security: Confidentiality (ensuring data is accessible only to authorized parti...

Defense in Depth

A layered security strategy that uses multiple independent security controls at different levels to protect information ...

View full cybersecurity glossary (87 terms) →

All ISO 27001 Exam Domains

ISMS Planning & Context20%Leadership & Support15%Risk Assessment & Treatment25%Annex A Controls25%Performance Evaluation & Improvement15%

Certifications with Similar Topics

These certifications also cover topics related to Annex A Controls:

CCby ISC2

Access Controls Concepts — 22% of exam

SSCPby ISC2

Access Controls — 15% of exam

CGRCby ISC²

Selection & Approval of Controls — 15% of exam

AAISMby ISACA

AI Security Controls — 25% of exam

All ISO 27001 Topics Practice Annex A Controls

Study Guide: Annex A Controls

The ISO 27001 exam consists of 80 questions with a time limit of 2 hours and a passing score of 70%. That means approximately 20 questions on your exam will come from the Annex A Controls domain.

Study Strategy

Start with practice questions filtered to this topic to identify weak areas
Use flashcards for key terms and concepts within Annex A Controls
Review the glossary terms below for foundational vocabulary
Take a full exam simulation periodically to practice time management across all domains
Don't neglect other domains — ISMS Planning & Context (20%) and Leadership & Support (15%) are also heavily tested

80 Practice Exam Questions — ISO/IEC 27001 Information Security Management

Annex A Controls

Exam Weight Breakdown

Practice Annex A Controls Questions

Study Guide: Annex A Controls

Study Strategy

Key Terms for Annex A Controls

All ISO 27001 Exam Domains

Certifications with Similar Topics

80 Practice Exam Questions — ISO/IEC 27001 Information Security Management

Annex A Controls

Exam Weight Breakdown

Practice Annex A Controls Questions

Study Guide: Annex A Controls

Study Strategy

Key Terms for Annex A Controls

All ISO 27001 Exam Domains

Certifications with Similar Topics