Webinar: Using ISO/IEC 27018 as the Key to Data Privacy in the Cloud

Protect your Cloud Data with ISO/IEC 27018

In today’s cloud-driven world, data privacy is more critical than ever as organisations increasingly move to the cloud for scalable and secure solutions. However, this shift brings significant security challenges, including data breaches and compliance issues.

According to the 2024 IBM Cost of a Data Breach Report, the global average cost of a data breach has reached an all-time high of USD 4.88 million, with breaches in public cloud environments incurring the highest average costs at USD 5.17 million. The recent CrowdStrike outage has heightened awareness of the need for robust third-party security measures.

ISO/IEC 27018 is a crucial standard designed to protect personal data in Cloud environments, extending the well-known ISO/IEC 27001 standard. ISO/IEC 27018 focuses on implementing security controls specifically for Cloud services, ensuring that personal data is handled in a manner that complies with international best practices.

This webinar aims to provide data privacy officers, GDPR professionals and information security managers with a comprehensive understanding of ISO/IEC 27018 and its critical role in ensuring data privacy in the Cloud.

Webinar Agenda

Overview of ISO/IEC 27018 and its relevance in the Cloud era.
Alignment of ISO/IEC 27018 with ISO/IEC 27001 and a PIMS (privacy information management system).
How ISO/IEC 27018 certification enhances data privacy compliance and security.
Practical steps to integrate ISO/IEC 27001 principles in conjunction with ISO/IEC 27018 and other standards.
Real-world examples of ISO/IEC 27018 in action and how it adds value.
Exclusive details about our two-day ISO/IEC 27018 training course and certification as a Cloud Control Specialist.

Delivered by

Alice Turley

Alice Turley
Senior GRC & Privacy Consultant and PCI DSS QSA, IT Governance Europe

Alice is an expert consultant and certified Europrivacy Lead Implementer and Lead Auditor. She serves as a knowledgeable consultant and trainer in data protection, information security, the PCI DSS and compliance, and has shared her insights on data protection and the GDPR through various conferences and seminars. Alice joined IT Governance Europe in 2018 after a 20-year career in the financial services industry, with the last 10 years focused on data protection, consumer protection, corporate governance and compliance.

Andrew Johnston

Andrew Johnston
Head of Training, IT Governance

Andrew leads the design and development of exceptional training programmes focused on privacy and cyber security.

His career as a sales and operations leader in training and educational organisations has included delivering high-quality training to more than 15,000 people annually. He won Interserve Group’s Team of the Year award in the process.

Andrew has demonstrated excellence in performance turnaround, mobilising large and complex projects, building new solutions, and leading teams to exceed service and stakeholder expectations.  

He is passionate about enabling or equipping organisations and people with the skills and knowledge needed to thrive in an ever-evolving digital landscape, helping them enhance their growth, development and success.

“By leveraging our training programmes, organisations can fortify their understanding and capabilities in privacy and cyber security, empowering their workforce to effectively safeguard sensitive information and proactively defend against cyber threats.

“Our goal is to be the best at teaching as well as the global experts in our topic areas. We are constantly innovating and developing our programmes to ensure we bring the learning to life and provide training solutions to meet exacting learner needs.“