Guest user Created: Jun 08, 2022 Last commented: Jun 08, 2022

Advisera ISO toolkit ISO27017 ISO27018

Within each document, how do we know which sections or paragraphs or sentences that are designated for 27017/18? Are they marked specifically or customers/readers have to manually find them?

0 1

Assign topic to the user

Select user

Expert

Rhand Leal Jun 08, 2022

Reference to controls defined by ISO 27017 and ISO 27018 in each document can be found in section 2 Reference documents, and in comments related to ISO 27017 and ISO 27018 texts that can be customized by the customers (e.g., which are the responsibilities for PII controllers).

Included in the toolkit there is a List of documents file that shows which clauses from these standards are covered by each template.

Please note that, for certification purposes, such a degree of granularity in identifying information related to these standards is not required (this is not required even for ISO 27001).

For further information, see:
- ISO 27001 vs. ISO 27017 – Information security controls for cloud services https://advisera.com/27001academy/blog/2015/11/30/iso-27001-vs-iso-27017-information-security-controls-for-cloud-services/
- ISO 27018 – Standard for protecting privacy in the cloud https://advisera.com/27001academy/blog/2015/11/16/iso-27001-vs-iso-27018-standard-for-protecting-privacy-in-the-cloud/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jun 08, 2022

Expert Advice Community