The costs of certification mainly depends on the number of people (FTE) working “under the organization’s control”. This includes both internal and external (subcontracted) employees.

Accredited certification bodies will base their calculation on the audit time chart as defined in ISO 27006:2015. With an average cost of € 1500 per day (in Europe), below table will give you a nice indication.

People (FTE)Audit days (min-max)Cost of certification (€)
1-103.5-55250-7500
11-154-66000-9000
16-255.5-77500-10500
26-456-8.59000-12750
46-657-1010500-15000
66-858-1112000-16500
86-1258.5-1212750-18000

The lower end on the estimation can be achieved if the certification body has reasons to believe the ISMS is not too complex or has demonstrated previous performance, both of which are the case when you are using Instant 27001!

How do I find a certification body?

Start your ISO 27001 journey today!

Order now   Book a demo