SPRING DISCOUNT
Get 30% off on toolkits, course exams, and books.
Limited-time offer – ends May 26, 2022
Use promo code:
SPRING30

Expert Advice Community

Guest

SOA Table ISO 27018 specific controls for processing Personally Identifiable Information (PII)

  Quote
Guest
Guest user Created:   Apr 20, 2022 Last commented:   Apr 20, 2022

SOA Table ISO 27018 specific controls for processing Personally Identifiable Information (PII)

The ISO 27018 table in the Cloud Toolkit SOA are completely wrong in terms of clause ids.  when mapped to the standard.  This is a mess.  Are the references in the toolset documents for the 27018 clauses wrong too ? Can you please fix asap. I need a table of which of your documents that map to the renumbered clauses in ISO Standard.
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Apr 20, 2022

From your question, I’m assuming by renumbered clauses you mean the clauses related to the reviewed controls in ISO 27002 standard, released in February 2022.

Considering that, please note that the ISO 27001, 27017 & 27018 toolkit is based on ISO 27001 standard, and a new version of this standard is expected to be released only in May 2022.

ISO 27002 is only a supporting standard to implement ISO 27001, and it is not mandatory to implement ISO 27001.

The new toolkit, with the templates updated according to the new standard, will be released as soon as the new standard is published, and customers that bought the toolkit in the last 12 months before the standard’s release date will receive the updated documents free of charge.

After publication, organizations will have a transition time (defined by the time of the release of the new standard) to change their controls and documentation to the new standard, so you will have plenty of time to make your changes. The transition period is probably going to be 24 months.

To see how the new controls numbering of ISO 27002:2022 are related to the controls numbering from ISO 27002:2019, please see this free to download the whitepaper:
- Overview of new security controls in ISO 27002:2022 https://info.advisera.com/27001academy/free-download/overview-of-new-security-controls-in-iso-27002/

Quote
1 0

Comment as guest or Sign in

HTML tags are not allowed

Apr 19, 2022

Apr 19, 2022