What is ISO 27018?
ISO 27018 is a framework developed to protect personal data and ensure good privacy level in public cloud computing environments. It expands ISO 27001 providing additional guidance for relevant public cloud or personal data themed controls and new controls about e.g. consent, data minimization, accountability and security.
Here's how Cyberday simplifies your ISO 27018 compliance:
Automated report visualizes your ISO 27018 compliance
Framework requirements are implemented in Cyberday through tasks. Once you activate tasks and define their implementation status, the report will automatically start turning greener. See details by clicking each cell in the report and understand how to improve!
Understand what needs improving and how to do it
Pending tasks in your account will help you get compliant and also go further then the minimum compliance level. First you understand how to get compliant and later you understand how to harden your security even more on each aspect.
Create an asset inventory in clear parts
Cyberday has own sections for data systems, data sets, other assets (e.g. equipment) and physical premises. With the help of these you understand the assets your cyber security aims to protect.
Identify, evaluate and treat information security risks
When you're documenting e.g. results of risk management or a continuity plan, the documentation card will mostly function similarly, but there's a clear order to use.
Automated employee guidance and awareness training
A big part of information security is ensuring the safe operations of organization's staff. Many tasks will require you to define guidelines for people to follow. These will be accepted through Guidebook, which can also be expanded with training material. Policy templates are also available, if you want to create a shareable document from your content.