KPI cards
Six KPI cards at the top of the page give you an at-a-glance summary of your program health:Cumplimiento Global
ISO 27001 Cl. 4–10 overall compliance percentage. Reflects how many requirements across all clauses are in an implemented or in-progress state.
Madurez Anexo A
Annex A control maturity percentage. Shows how many of the applicable Annex A controls have been implemented out of the total applicable controls.
Efectividad Controles
Control effectiveness percentage. Ratio of implemented controls to applicable controls across the entire control set.
Tasa de Cierre
Findings closure rate percentage. Ratio of closed findings to the total number of registered findings.
Hallazgos Vencidos
Overdue open findings count. Number of findings with a past due date that are still in Abierto status.
Base Documental
Total document count. Number of records in the Evidence & Document Library.
Charts and visualizations
Below the KPI cards, five charts provide deeper insight into different dimensions of your ISO 27001 program.Domain progress — bar chart
Shows the percentage of controls implemented across the four Annex A control domains:| Domain | Description |
|---|---|
| Organizacionales | Organizational controls (policies, roles, processes) |
| Personas | People controls (training, awareness, HR security) |
| Físicos | Physical controls (access, environmental protection) |
| Tecnológicos | Technological controls (encryption, access management, monitoring) |
Clause compliance — radar chart
Displays compliance levels for each ISO 27001 main clause (Cl. 4 through Cl. 10) on a radar chart. This allows you to quickly identify which clauses have gaps and where to focus improvement efforts.Clause 4
Context of the organization
Clause 5
Leadership
Clause 6
Planning
Clause 7
Support
Clause 8
Operation
Clause 9
Performance evaluation
Clause 10
Improvement
Controls by status — pie chart
Breaks down all controls by their current implementation status:| Status | Meaning |
|---|---|
| Implementado | Control is fully implemented and operating |
| En Progreso | Implementation is underway |
| No Evaluado | Control has not yet been assessed |
| No Aplica | Control has been formally excluded as not applicable |
Findings by type — pie chart
Shows the distribution of all registered findings by type:- NC Mayor (Major Non-Conformity)
- NC Menor (Minor Non-Conformity)
- Observación (Observation)
- OFI (Opportunity for Improvement)
Requirements status — progress bars
Displays the overall completion across three states for all ISO 27001 requirements:| State | Description |
|---|---|
| Implemented | Requirements that are fully met |
| In Progress | Requirements actively being worked on |
| Pending | Requirements not yet started |
How metrics are calculated
Cumplimiento Global
Cumplimiento Global
The overall compliance percentage counts requirements across ISO 27001 Clauses 4 through 10 that are marked Implementado or No aplica as compliant. Formula:
(Implementado + No aplica) / total requirements × 100. Requirements En progreso do not contribute to this score.Madurez Anexo A
Madurez Anexo A
Calculated as the number of Annex A controls marked Implementado divided by the total number of controls that are not marked No Aplica (not applicable).
Efectividad Controles
Efectividad Controles
Calculated as the number of Implementado controls divided by the total number of applicable controls (excluding No Aplica controls).
Tasa de Cierre
Tasa de Cierre
Calculated as the number of findings with status Cerrado divided by the total number of findings registered in the Findings module.
Hallazgos Vencidos
Hallazgos Vencidos
A finding is overdue when its Due date has passed and its status is still Abierto. This count updates automatically as dates pass or findings are closed.
Base Documental
Base Documental
A direct count of all records currently stored in the Evidence & Document Library.
Using metrics to drive improvement
Review KPIs weekly
Check the six KPI cards at least weekly. Pay particular attention to Hallazgos Vencidos — any overdue finding needs immediate attention.
Identify gaps with the radar chart
Use the Clause compliance radar chart to spot which ISO 27001 clauses have the lowest compliance scores. Prioritize work in those areas.
Assess domain coverage
Review the Domain progress bar chart to see whether any control domain (Organizacionales, Personas, Físicos, Tecnológicos) is lagging behind the others.
Address overdue findings
Navigate to the Findings module and filter for overdue open findings. Update responsible owners and due dates, or escalate as needed.
Grow the document library
A low Base Documental count suggests documentary evidence is missing. Add policies, procedures, and records to the Evidence library to support your conformity claims.
Related modules
Findings & Corrective Actions
Manage the corrective action plans that drive your closure rate and reduce overdue findings.
Evidence & Document Library
Add documentation to increase the Base Documental count and link evidence to specific clauses.
Annex A Controls
Update control statuses to improve Madurez Anexo A and Efectividad Controles metrics.
ISO 27001 Clauses
Update clause requirement statuses to improve Cumplimiento Global and radar chart scores.