Get a FREE ISO 27001 Internal Auditor exam worth $649
with your ISO 27001 toolkit purchase
Limited-time offer – ends September 26, 2024

Expert Advice Community

Guest

Do we need separate Cloud Security Policy?

  Quote
Guest
Guest user Created:   Jul 20, 2022 Last commented:   Jul 20, 2022

Do we need separate Cloud Security Policy?

If our business is Saas and it's all in CLoud for example. Currently, we need to have Information Security Policy as the required document. But do we need a separate Cloud Security Policy ?
0 0

Assign topic to the user

ISO 27001 LEAD IMPLEMENTER COURSE

Become certified as an ISO 27001 consultant.

ISO 27001 LEAD IMPLEMENTER COURSE

Become certified as an ISO 27001 consultant.

Expert
Rhand Leal Jul 20, 2022

Unless you have a legal requirement (e.g., law, regulation, or contract) demanding a Cloud Security Policy, you do not have to implement one. The Information Security Policy is enough to provide guidelines for the protection of information in cloud environments

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 20, 2022

Jul 20, 2022