Finding ISO 27017/18 content
We have purchased the toolkit 27001 incl. 27017 and 27018 from you.
We now have a question about this.
We cannot find any sample documents or templates in your tool kit for any of the following points:
ISO 27017
[Clauses on Service Agreements with cloud providers] in CLD.6.3.1
ISO 27018
[User Data Privacy Protection Agreement Guidelines] in A.1.1
[Security Requirements Specification] in A.4.1
Can you kindly tell us which of your documents contain these points or where we can find references to them?
Assign topic to the user
The documents you are looking for which cover the mentioned clauses can be found in the following folders:
- Clauses on Service Agreements with cloud providers is covered by the Appendix – Security Clauses for Clients, Suppliers and Partners, located on folder 08 Annex A >> A.15 Supplier relationships
- User Data Privacy Protection Agreement Guidelines is covered by the Appendix – Security Clauses for Clients, Suppliers and Partners, located on folder 08 Annex A >> A.15 Supplier relationships and Policy for Data Privacy in the Cloud, located on folder 04 Information Security Policy
- Security Requirements Specification is covered by the Appendix – Security Requirements Specification, located on folder 08 Annex A >> A.14 System acquisition development and maintenance
By the way, included in your toolkit there is a List of Documents file which points out which document covers which clauses and controls from these standards.
Comment as guest or Sign in
Nov 13, 2020