ISO/IEC 27017

ISO/IEC 27017 gives guidelines and recommendations for information security controls applicable to the provision and use of cloud services by providing:

  • additional implementation guidance for relevant controls specified in ISO/IEC 27002;
  • additional controls with implementation guidance that specifically relate to cloud services.

This recommendation in ISO/IEC 27017 provides controls and implementation guidance for cloud service providers and cloud service customers.

Foundation Level

Awareness ISO/IEC 27017

Awareness training is a one-day program which covers cloud service concepts, typical information security risks in cloud services and introduction to ISO/IEC 27017

Professional Level

Implementation ISO/IEC 27017

Implementation training is a two-day program that will help you learn to assess the effectiveness of ISO/IEC 27017:2015 implementation in your organization.

Certified Internal Auditor ISO/IEC 27017

Certified Internal Auditor training is a two-day program that provides the necessary input to master the skill needed by an ISO/IEC 27017 Auditor. The training empowers candidates to identify any gaps in their organization in accordance with ISO/IEC 27017 standard.