About the certification


The Certified Cloud Security Professional is a certification designed for professionals seeking to validate their comprehensive knowledge of cloud security governance, risk management, and security controls, based on ISO/IEC 27017, ISO/IEC 27018, and the NIST Cloud Computing framework.

This exam covers key topics from ISO/IEC 27017, ISO/IEC 27018, and the NIST Cloud Computing framework, including cloud security governance, cloud security controls, privacy protection, risk management, shared responsibility models, and cloud security best practices. It validates your comprehensive knowledge of how to secure, govern, and manage cloud environments in accordance with the most widely used and globally recognized standards and frameworks in the field of cloud computing and information security.

The Certified Cloud Security Professional certification exam is an online, closed-book, and remotely-proctored exam. This exam consists of 60 multiple-choice questions. The passing score is 70%. Candidates will have 60 minutes to complete the exam. Validate your Cloud Security knowledge and advance your career. Buy your exam voucher now!




What’s Included When You Purchase an Exam Voucher


  • Self-Paced Study Guide – A comprehensive resource designed to help you prepare at your own pace.

  • Practice Test – Includes questions similar in style and difficulty to the actual exam, so you know exactly what to expect.

  • Two Free Retakes – If you don’t pass on your first attempt, you’ll have two additional opportunities at no extra cost.

Exam details


Exam code

ITC-218

Launch date

July 11, 2026

Exam description

The Certified Cloud Security Professional exam validates the candidate's knowledge of Cloud Security

Current version

v1 (July 11, 2026)

Exam format

Multiple choice; computer-based; closed book (online proctored exam)

Number of questions

60 questions

Passing score

70% (42 out of 60)

Exam duration

60 minutes

Level

Advanced

Languages

English and Portuguese

Exam description

This exam covers key topics from ISO/IEC 27017, ISO/IEC 27018, and the NIST Cloud Computing framework, including cloud security governance, cloud security controls, privacy protection, risk management, shared responsibility models, and cloud security best practices. It validates your comprehensive knowledge of how to secure, govern, and manage cloud environments in accordance with the most widely used and globally recognized standards and frameworks in the field of cloud computing and information security.

RECOMMENDED HOURS OF STUDY

32 hours

BLOOM'S TAXONOMY

Level 2 (Understanding), Level 3 (Applying), Level 4 (Analyzing), and Level 5 (Evaluating)

Recommended reading

• ISO/IEC 27017:2015 Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services
• ISO/IEC 27018:2025 Information security, cybersecurity and privacy protection — Guidelines for protection of personally identifiable information (PII) in public clouds acting as PII processors
• NIST SP 800-145 The NIST Definition of Cloud Computing

Prerequisites

There are no prerequisites for this certification program.

Recommended experience

Six months of work experience in Cloud Security

Validity period

Lifetime

Exam Content Outline


   Domains Weight

1. ISO/IEC 27017

35%

2. ISO/IEC 27018

35%

3. NIST SP 800-145 The NIST Definition of Cloud Computing

30%

   Total

100%

How to get certified


1

Browse our certification programs and choose your certification.

2

Discover the exam objectives and prepare for your exam.

3

Register for your online proctored exam.

4

Take your online proctored exam in the comfort of your home or office.

5

Congratulations! You are certified!

Frequently Asked Questions


  • After purchasing an exam voucher, how much time do I have to take the exam?

    After purchasing an exam voucher, candidates will have 180 days to take the exam.

  • Does the exam voucher include a retake?

    The exam voucher includes 2 retakes in case the candidate fails the first attempt.

  • Are there any prerequisites to take the exams?

    There are no prerequisites to take the exams. ITCERTS recommends that candidates have at least six months of work experience in the area that the certification exam covers.

  • What is the exam retake policy?

    If a candidate does not achieve a passing score on the first attempt, there is no waiting period between the first and the second attempt. If a candidate does not achieve a passing score on the second attempt, the candidate must wait at least 7 days before retaking the exam for a third time. A candidate may not take a given exam any more than three times per year (12 months).

  • How do I register for an Online Proctored Exam?

    Visit the Online Proctored Exam registration page to find complete instructions.

  • Are there any mandatory training to take an exam?

    Training is recommended as part of your certification preparation, but it is not mandatory.

  • Which languages are the exams available in?

    Our exams are currently available in English and Portuguese.

  • Where can I take the exams?

    Exams are delivered online (Online Proctored Exams) and can be taken from anywhere in the world.

  • Do the ITCERTS certifications expire?

    ITCERTS certifications are considered good-for-life and do not expire.

  • How can a potential employer verify my certifications?

    Your employer can verify your certification on our certification verification page. Your certification number will be needed in order to process the verification.

Subscribe

Subscribe


Subscribe to our newsletter