Skip to Menu Skip to Search Contact Us Hong-Kong Websites & Languages Skip to Content

About

In this seminar, the speaker would like to provide the audience an overview of the purposes of the two standards, their uses, and how adoption of these two standards would reduce the risks involved in cloud implementation.

Starts

25 Jul 2017, 18:30

Ends

25 Jul 2017, 20:00

Location

Hong Kong, China

ISO 21017 and 21018 Seminar

Introduction

Although cloud adoption has been a must-study item in every IT manager’s to-do list, most of the attention in cloud security has still been around availability, and most of the security considerations are not much different from the traditional on-premises servers architecture.

The speaker has encountered the SLA of a SaaS service had nothing more than the data center’s availability KPI. Personal data privacy is another important issue seldom addressed in SLAs. In order to ensure the cloud adoption practitioners have an aligned understanding of the controls required for cloud implementations, and to facilitate those organization who would like to integrate their cloud security controls to their ISO 27001 information security management system, the International Organization for Standardization has published the ISO 27017, Code of practice for information security controls based on ISO/IEC 27002 for cloud services, and ISO 27018, Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors.

In this seminar, the speaker would like to provide the audience an overview of the purposes of the two standards, their uses, and how adoption of these two standards would reduce the risks involved in cloud implementation.

Presenter

Mr. Chris Yau
Sr. Manager, Products and Services Development, Certification and Business Enhancement
SGS Hong Kong Limited

Mr. Yau is the head of the development team at SGS Hong Kong Limited, responsible for adopting and transforming new standards into auditable certification services in the Asia Pacific region. He is a qualified lead auditor in quality, environmental, information security, IT service management, supply chain security, and hazardous substance process management. He has over 18 years of audit experiences covering 400+ organizations.

General Information

Date: Tuesday, 25 July 2017
Time: 6:30pm to 8:00pm
Venue: UT, Admiralty Learning Centre, SCOPE,
City University of Hong Kong, 8/F, United Centre,
95 Queensway Admiralty, Hong Kong
Language:  English
CPE Hour: One Hour
Fees: ISACA China HK Chapter Members : HK $0
Other ISACA Chapters Member : HK $120
HKCS/ HKICPA/CPA Canada/ IIA HK/ ITAA Member : HK $150
Non Member : HK $200
Registration:

ISACA China HK Chapter Members: Online Registration

For other ISACA Chapters/ HKICPA/HKCS/CGA/ITAA Members and Non members:
Please complete the reservation reply and return to events@isaca.org.hk

Enquiry: Please contact ISACA at (+852) 8101 2801 or email to events@isaca.org.hk