CLOUD SECURITY SERVICES

ISO/IEC 27018:2019

Information Technology — Security Techniques

Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors

Published by the International Organization for Standardization (ISO), ISO/IEC 27018 was the first international standard about the privacy in cloud computing services which was promoted by the industry. It was created in 2014 as an addendum to ISO/IEC 27001, the first international code of practice for cloud privacy. It helps to cloud service providers to process personally identifiable information (PII) assessing risk and implementing controls for protecting PII. The goal was to create a common set of security categories and controls to provide a higher lever of security to customer data and information. Our experts will help you understand - and implement these cloud security requirements to keep you competitive and compliant. 

ISO/IEC 27017:2015

Information Technology — Security Techniques

Code of practice for information security controls based on

ISO/IEC 27002 for cloud services

ISO/IEC 27017 is a security standard developed for cloud service providers and users to make a safer cloud-based environment and reduce the risk of a security problem. It was published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) and It is part of the family of standards which provides best practice recommendations on information security management.  Our team of experienced experts can help your firm with the implementation of information security controls.