Sale!

ISO 27018 : 2019 Information Technology — Security Techniques

Name: ISO 27018 : 2019 Information Technology - Security Techniques - Deming Certification Services Pvt Ltd
Price: 12000.00 INR
Availability: InStock

Original price was: ₹15,000.00.Current price is: ₹12,000.00.

ISO/IEC 27018 is a standard for protecting personally identifiable information (PII) in the cloud. It was developed to establish a common set of guidelines for cloud service providers (CSPs) to ensure the protection of PII and other sensitive data stored in the cloud. Here are some key points about ISO/IEC 27018:

1. **Scope**: The standard specifically focuses on the protection of PII in cloud computing environments. It outlines the roles and responsibilities of both cloud service providers (CSPs) and cloud customers (organizations using cloud services).

2. **Principles**: ISO/IEC 27018 incorporates principles from the broader ISO/IEC 27001 standard, which is an international standard for information security management systems (ISMS). However, ISO/IEC 27018 is tailored to address the unique risks associated with cloud computing.

3. **Control Objectives**: The standard provides a set of control objectives and guidelines that CSPs should implement to protect PII. These controls cover areas such as data access, data minimization, transparency, data breach notification, and third-party audits.

4. **Transparency**: One of the key aspects of ISO/IEC 27018 is transparency. CSPs are required to be transparent about their data processing practices, including how they handle PII, where data is stored, and who has access to it.

5. **Auditing and Certification**: Organizations can seek certification against ISO/IEC 27018 to demonstrate their compliance with the standard. Independent third-party audits are often conducted to assess and certify compliance.

6. **Compliance with Laws and Regulations**: ISO/IEC 27018 helps CSPs and cloud customers comply with various privacy laws and regulations worldwide, such as the General Data Protection Regulation (GDPR) in Europe and the California Consumer Privacy Act (CCPA) in the United States.

In summary, ISO/IEC 27018 is an important standard for ensuring the protection of PII in cloud computing environments. It provides guidelines and controls that help CSPs and cloud customers manage and mitigate the risks associated with storing and processing sensitive data in the cloud.

Category: ISO 2019 Certificate Tag: ISO 27018 : 2019 Information Technology -- Security Techniques

Description
Reviews (0)

ISO 27018 : 2019 Information Technology — Security Techniques

The ISO/IEC 27000-series (also known as the ‘ISMS Family of Standards’ or ‘ISO27K’ for short) comprises information security standards published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).[1]

The series provides best practice recommendations on information security management—the management of information risks through information security controls—within the context of an overall Information security management system (ISMS), similar in design to management systems for quality assurance (the ISO 9000 series), environmental protection (the ISO 14000 series) and other management systems.