Related Courses
Take your career to the next level with higher education that works for you
Course Overview
Look in depth at what it takes to manage information security in Cloud services based on the ISO 27017:2015 standard, build on your understanding of how to implement and audit an ISMS, and dive into the details of implementing and auditing security controls for systems in the Cloud based on ISO 27017.
This online course will provide delegates with a robust and thorough understanding to implement and audit controls for any Cloud-based components of your ISMS. Delegates will know about creating an ISMS from the ISO 27017 perspective, you’ve refined that for cyber security with ISO 27002, and now you can take this one step further with Cloud security controls.
This course is delivered virtually through the GTA, tutor led in real time.
Course Content
The ISO 27017 builds upon ISO 27001, specifically addressing cloud computing security.
This online training will cover the following topics:
- The roles and relationships between Cloud service customers and cloud service providers
- The scope of ISO/IEC 27017 and its compliance aspects
- Extending ISO 27002 to cover policies for Cloud service providers
- Extending ISO 27002 Clause 6 to cover relationships between parties including authorities
- The requirements of Clause 7.2.2 to include training on and awareness of Cloud security issues
- Identifying security risks and the relevant mitigating controls.
- The security boundaries of SaaS, PaaS and IaaS
- Extending controls 8–12 of ISO 27002 to include relevant parties in Cloud services
Benefits
By attending this online course, delegates will deepen their understanding to use Cloud security terminology confidently, analysing environments, contracts, and processes with authority.
Prerequisites
Delegates will need an advanced understanding of ISO/IEC 27002:2013 and a practical understanding of how to implement and audit an ISMS. Ideally, having trained as an ISO 27001 Lead Auditor or Lead Implementer.
We recommend purchasing and reading the following standard before attending the course:
ISO 27001/ISO 27002 - A guide to information security management systems
Assessment
Certified ISO 27017 CIS CCS Cloud Controls Specialist (CIS CCS) exam
Candidates take the CIS CCS exam set by IBITGQ (International Board for IT Governance Qualifications) at the end of the course.
Delivery method: Online
Duration: 60 minutes
Questions: 40
Format: Multiple choice
There is no extra charge for this exam.
Course Tutor
IT Governance - A GRC Solutions Company
IT Governance - A GRC Solutions Company is a professional services company, founded in 2002, with a wealth of consultancy skills that originally focused on information security/cybersecurity standards, notably ISO27001. Their consultants have extensive practical experience of designing and implementing management systems and help to develop the skills needed to deliver best practice and compliance in an organisation. The company has an impressive track record having helped well over 130 clients over the years to successfully gain the coveted ISO27001 certificate, proving their compliance with one of the most demanding management system standards. They have since developed their offerings into various other management disciplines and now provide a comprehensive single source of information, advice, books, tools, consultancy and training for IT governance, risk management, compliance and IT security objectives.
Sign In Required
Please sign in to book this course
Select which organisation you would like to book for
Select Attendees to Book
Booking Summary
Free Course Summary
Register Interest Summary
- Course
- Course Title
- Notification
- You will be notified when this course becomes available for booking