Your Compliance Roadmap

Don't know where to start? Activitee translates every security control into plain English with step-by-step action items, evidence checklists, and a 90-day plan — personalised to your industry, jurisdiction, and tech stack. Powered by the same AI Copilot that reads your live identity systems.

Delivered as PDF Activitee AI-Generated Instant Delivery

Based on your free security assessment results. No subscription required.

PRICES IN AUD
Essential
A$89 one-time
1 Framework Roadmap
Perfect for startups needing their first compliance certification. Get a complete plain-English roadmap for one framework.
  • All controls explained in plain English
  • "What You Need To Do" action items per control
  • Evidence checklist for every control
  • Priority matrix (quick wins highlighted)
  • 90-day implementation plan
  • Choose: ISO 27001, SOC 2, Essential Eight, NIST CSF, or GDPR
Start Assessment → Get Roadmap
Professional
A$149 one-time
2–3 Framework Roadmap
For organisations with multiple compliance obligations. Cross-framework mapping shows where one control satisfies multiple frameworks.
  • Everything in Essential, plus:
  • 2–3 frameworks in one roadmap
  • Cross-framework control mapping
  • Policy template checklist
  • Vendor assessment questionnaire template
  • Industry-specific guidance (FinTech, HealthTech, EdTech)
Start Assessment → Get Roadmap
Enterprise
A$299 one-time
4+ Frameworks + IRAP
For government contractors, defence industry, and organisations requiring IRAP assessment readiness with ISM control mapping.
  • Everything in Professional, plus:
  • 4+ frameworks including IRAP
  • ISM control filtering by classification level
  • Essential Eight maturity level mapping
  • PSPF alignment guide
  • IRAP assessment preparation checklist
  • AI Governance framework coverage (ISO 42001, EU AI Act)
Start Assessment → Get Roadmap
PREVIEW

What's Inside Your Roadmap

Every control translated to plain English. Here are 3 examples from ISO 27001:

ISO 27001:2022 — Sample Controls
A.5.1Information Security Policy
"Do you have a written information security policy approved by management?"
What You Need To Do: Write a 2-3 page policy covering data classification, access control, incident response, and acceptable use. Have your CEO or board sign it. Review annually. This is the foundation document that every other control references.
Evidence needed: Signed policy document (PDF), board minutes showing approval, annual review record
A.8.5Secure Authentication
"Do all your users need a second factor to log in?"
What You Need To Do: Enable Multi-Factor Authentication (MFA) for ALL users. If you use Microsoft 365, go to Entra ID → Security → Conditional Access and create a policy requiring MFA. If Google Workspace, enable 2-Step Verification.
Evidence needed: MFA policy screenshots, conditional access policy export, MFA enrollment report
A.5.24Incident Response Planning
"Do you have a documented plan for when a security incident happens?"
What You Need To Do: Write an Incident Response Plan covering: (1) Who to call, (2) How to contain the breach, (3) When to notify regulators (OAIC requires 72 hours), (4) Post-incident review process.
Evidence needed: IRP document, contact list, tabletop exercise records
+ 9 more controls in the full ISO 27001 roadmap
Including: Vulnerability Management, Supplier Security, Personnel Screening, Training, Configuration Management, and more
Priority Matrix
Controls ranked by risk impact × effort. Quick wins highlighted.
90-Day Action Plan
Week-by-week implementation timeline for highest-priority controls.
Evidence Checklist
Exact documents, screenshots, and exports needed per control.

Roadmap vs Consultant

Same deliverable. Fraction of the cost. Instant delivery.

Traditional Consultant

Cost: A$10,000 – A$50,000
Timeline: 4–8 weeks
Output: PDF report (same content)
Follow-up: Hourly billing for questions
Updates: None (point-in-time)

Activitee Roadmap

Cost: A$89 – A$299
Timeline: Instant (Activitee AI-generated)
Output: PDF + AI Copilot access
Differentiator: Native IRAP, ISM, E8, CPS 234 — not available from US competitors
Follow-up: Upgrade to track implementation

How It Works

1
Take Free Assessment
30 questions about your business
2
Get Your Score & Recommendations
See which frameworks you need & why
3
Purchase & Download Roadmap
Full plain-English controls & 90-day plan
Start Free Assessment

No signup required. Takes 3 minutes. Roadmap purchase available after results.

1
A
Ace
Activitee Security Assistant
Hey there! 👋 I'm Ace, your Activitee security assistant. I can help with IAM, compliance frameworks, data privacy, and platform questions. What can I help you with?
Just now
Share info Powered by Activitee