Implementing ISO /IEC 27017: 2015 & ISO/IEC 27018:2019

This course is now available online

ISO Organization formally announced the ISO 27017 standard in December 2015, the cloud service customer (CSC) and cloud service provider (CSP) can refer to the job specifications, optimize security in cloud services based on ISO 27001. The purpose of this course is to assist students with adequate knowledge and skills, encourage enterprises to achieve the purpose of cloud services on personal data protection and information security management.
In particular, ISO/IEC 27018 specifies guidelines based on ISO/IEC 27002, taking into consideration the regulatory requirements for the protection of PII which might be applicable within the context of the information security risk environment(s) of a provider of public cloud services.

A significant increase users of cloud services in recent years, but for the protection of this part of the cloud data is relatively insufficient. According to "British Telecom (BT) in 2014 global survey, believe that the cloud service users are most concerned about and the most important key is data protection issues.
ISO/IEC 27018 establishes commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with the privacy principles in ISO/IEC 29100 for the public cloud computing environment.
In particular, ISO/IEC 27018 specifies guidelines based on ISO/IEC 27002, taking into consideration the regulatory requirements for the protection of PII which might be applicable within the context of the information security risk environment(s) of a provider of public cloud services.

Remarks: There are no formal pre-requisites to attending this course. However, the candidate should have experience in Information Security.