Course Code: iso27017
Duration: 14 hours
Prerequisites:
  • Basic understanding of cloud computing
  • Knowledge of general information security principles
  • Familiarity with ISO 27001 or other cybersecurity frameworks

Audience

  • Cloud security professionals
  • IT security managers
  • Compliance officers
  • Cloud service providers
Overview:

ISO/IEC 27017 is an international standard that provides guidelines for information security controls specific to cloud services. It builds upon ISO/IEC 27002 and enhances security measures tailored for cloud computing environments.

This instructor-led, live training (online or onsite) is aimed at intermediate-level IT and security professionals who wish to implement ISO 27017 controls to enhance cloud security and compliance.

By the end of this training, participants will be able to:

  • Understand the principles and objectives of ISO 27017.
  • Identify key security controls specific to cloud environments.
  • Implement ISO 27017 controls within cloud service providers and cloud customers.
  • Align cloud security strategies with ISO 27001 requirements.
  • Ensure compliance with international cloud security best practices.

Format of the Course

  • Interactive lecture and discussion.
  • Lots of exercises and practice.
  • Hands-on implementation in a live-lab environment.

Course Customization Options

  • To request a customized training for this course, please contact us to arrange.
Course Outline:

Introduction to ISO 27017

  • Overview of ISO/IEC 27017
  • Relation to ISO 27001 and ISO 27002
  • Importance of cloud security governance

Cloud Security Risks and Threats

  • Common security risks in cloud environments
  • Cloud-based attack vectors
  • Risk assessment methodologies for cloud services

Key Information Security Controls in ISO 27017

  • Additional cloud-specific controls
  • Shared security responsibilities between CSPs and customers
  • Data protection and encryption in the cloud

Implementing Cloud Security Policies

  • Defining security policies for cloud adoption
  • Access control and identity management
  • Security incident management in the cloud

Compliance and Regulatory Considerations

  • Legal and regulatory implications of cloud security
  • Mapping ISO 27017 to GDPR, HIPAA, and other regulations
  • Cloud compliance audits and certification processes

Best Practices for Cloud Security

  • Security monitoring and threat detection
  • Implementing continuous improvement in cloud security
  • Ensuring resilience and disaster recovery

Hands-On Implementation and Case Studies

  • Applying ISO 27017 controls in real-world scenarios
  • Reviewing cloud security case studies
  • Interactive exercises on cloud security strategy

Summary and Next Steps

Sites Published:

United Arab Emirates - ISO 27017: Information Security Controls for Cloud Services

Qatar - ISO 27017: Information Security Controls for Cloud Services

Egypt - ISO 27017: Information Security Controls for Cloud Services

Saudi Arabia - ISO 27017: Information Security Controls for Cloud Services

South Africa - ISO 27017: Information Security Controls for Cloud Services

Brasil - ISO 27017: Information Security Controls for Cloud Services

Canada - ISO 27017: Information Security Controls for Cloud Services

中国 - ISO 27017: Information Security Controls for Cloud Services

香港 - ISO 27017: Information Security Controls for Cloud Services

澳門 - ISO 27017: Information Security Controls for Cloud Services

台灣 - ISO 27017: Information Security Controls for Cloud Services

USA - ISO 27017: Information Security Controls for Cloud Services

Österreich - ISO 27017: Information Security Controls for Cloud Services

Schweiz - ISO 27017: Information Security Controls for Cloud Services

Deutschland - ISO 27017: Information Security Controls for Cloud Services

Czech Republic - ISO 27017: Information Security Controls for Cloud Services

Denmark - ISO 27017: Information Security Controls for Cloud Services

Estonia - ISO 27017: Information Security Controls for Cloud Services

Finland - ISO 27017: Information Security Controls for Cloud Services

Greece - ISO 27017: Information Security Controls for Cloud Services

Magyarország - ISO 27017: Information Security Controls for Cloud Services

Ireland - ISO 27017: Information Security Controls for Cloud Services

Luxembourg - ISO 27017: Information Security Controls for Cloud Services

Latvia - ISO 27017: Information Security Controls for Cloud Services

España - ISO 27017: Information Security Controls for Cloud Services

Italia - ISO 27017: Information Security Controls for Cloud Services

Lithuania - ISO 27017: Information Security Controls for Cloud Services

Nederland - ISO 27017: Information Security Controls for Cloud Services

Norway - ISO 27017: Information Security Controls for Cloud Services

Portugal - ISO 27017: Information Security Controls for Cloud Services

România - ISO 27017: Information Security Controls for Cloud Services

Sverige - ISO 27017: Information Security Controls for Cloud Services

Türkiye - ISO 27017: Information Security Controls for Cloud Services

Malta - ISO 27017: Information Security Controls for Cloud Services

Belgique - ISO 27017: Information Security Controls for Cloud Services

France - ISO 27017: Information Security Controls for Cloud Services

日本 - ISO 27017: Information Security Controls for Cloud Services

Australia - ISO 27017: Information Security Controls for Cloud Services

Malaysia - ISO 27017: Information Security Controls for Cloud Services

New Zealand - ISO 27017: Information Security Controls for Cloud Services

Philippines - ISO 27017: Information Security Controls for Cloud Services

Singapore - ISO 27017: Information Security Controls for Cloud Services

Thailand - ISO 27017: Information Security Controls for Cloud Services

Vietnam - ISO 27017: Information Security Controls for Cloud Services

India - ISO 27017: Information Security Controls for Cloud Services

Argentina - ISO 27017: Information Security Controls for Cloud Services

Chile - ISO 27017: Information Security Controls for Cloud Services

Costa Rica - ISO 27017: Information Security Controls for Cloud Services

Ecuador - ISO 27017: Information Security Controls for Cloud Services

Guatemala - ISO 27017: Information Security Controls for Cloud Services

Colombia - ISO 27017: Information Security Controls for Cloud Services

México - ISO 27017: Information Security Controls for Cloud Services

Panama - ISO 27017: Information Security Controls for Cloud Services

Peru - ISO 27017: Information Security Controls for Cloud Services

Uruguay - ISO 27017: Information Security Controls for Cloud Services

Venezuela - ISO 27017: Information Security Controls for Cloud Services

Polska - ISO 27017: Information Security Controls for Cloud Services

United Kingdom - ISO 27017: Information Security Controls for Cloud Services

South Korea - ISO 27017: Information Security Controls for Cloud Services

Pakistan - ISO 27017: Information Security Controls for Cloud Services

Sri Lanka - ISO 27017: Information Security Controls for Cloud Services

Bulgaria - ISO 27017: Information Security Controls for Cloud Services

Bolivia - ISO 27017: Information Security Controls for Cloud Services

Indonesia - ISO 27017: Information Security Controls for Cloud Services

Kazakhstan - ISO 27017: Information Security Controls for Cloud Services

Moldova - ISO 27017: Information Security Controls for Cloud Services

Morocco - ISO 27017: Information Security Controls for Cloud Services

Tunisia - ISO 27017: Information Security Controls for Cloud Services

Kuwait - ISO 27017: Information Security Controls for Cloud Services

Oman - ISO 27017: Information Security Controls for Cloud Services

Slovakia - ISO 27017: Information Security Controls for Cloud Services

Kenya - ISO 27017: Information Security Controls for Cloud Services

Nigeria - ISO 27017: Information Security Controls for Cloud Services

Botswana - ISO 27017: Information Security Controls for Cloud Services

Slovenia - ISO 27017: Information Security Controls for Cloud Services

Croatia - ISO 27017: Information Security Controls for Cloud Services

Serbia - ISO 27017: Information Security Controls for Cloud Services

Bhutan - ISO 27017: Information Security Controls for Cloud Services

Nepal - ISO 27017: Information Security Controls for Cloud Services

Uzbekistan - ISO 27017: Information Security Controls for Cloud Services