Conformio and ISMS
Assign topic to the user
First is important to note that unless you have specific requirements demanding the implementation of ISO 27017 and ISO 27018 (e.g., laws, regulations, or contracts), ISO 27001 is fully capable to provide required information security for cloud environments.
Considering that, to implement an ISMS compliant with ISO 27001, ISO 27017, and ISO 27018, the best approach would be to use the ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit, and do not use Conformio. Currently, Conformio does not cover ISO 27017 and ISO 27018 requirements.
In case you decide to use the toolkit you’d need to buy it, and since you are our existing customer, we can offer you a discount.
These articles will provide you a further explanation about ISO 27017 and ISO 27018:
- ISO 27001 vs. ISO 27017 – Information security controls for cloud services https://advisera.com/27001academy/blog/2015/11/30/iso-27001-vs-iso-27017-information-security-controls-for-cloud-services/
- ISO 27001 vs. ISO 27018 – Standard for protecting privacy in the cloud https://advisera.com/27001academy/blog/2015/11/16/iso-27001-vs-iso-27018-standard-for-protecting-privacy-in-the-cloud/
Comment as guest or Sign in
Apr 24, 2021