The ISO/IEC 27018 establishes commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in line with the privacy principles in ISO/IEC 29100 for the public cloud computing environment. The ISO/IEC 27018 specifies guidelines based on ISO/IEC 27002, taking into consideration the regulatory requirements for the protection of PII which can be applicable within the context of the information security risk environment(s) of a provider of public cloud services. The Cloud Privacy (ISO/IEC 27018) Foundation is certification intended for professionals seeking to validate their knowledge of the ISO/IEC 27018. This certification exam is based on the ISO/IEC 27018 International Standard.
The exam includes topics such as Scope of the ISO/IEC 27018, Normative References, Terms and Definitions, Information security policies, Organization of information security, Human resource security, Asset management, Access control, Cryptography, Physical and environmental security, Operations security, Communications security, System acquisition, development and maintenance, Supplier relationships, Information security incident management, Information security aspects of business continuity management, and Compliance, and Annex A.
The Cloud Privacy (ISO/IEC 27018) Foundation certification exam is an online, closed-book, and remotely-proctored exam. It includes 20 questions and the passing score is 70%. Candidates will have 30 minutes to complete the exam.
Validate your knowledge of the ISO/IEC 27018 and advance your career in Cloud Computing.
Register for your online proctored exam now!
Exam code |
ITC-083 |
Launch date |
January 23, 2023 |
Exam description |
The Cloud Privacy (ISO/IEC 27018) Foundation exam tests the candidate knowledge of the ISO/IEC 27018 Standard. |
Current version |
1.0 |
Exam format |
Multiple choice; Computer-based; Closed Book; Online Proctored Exam. |
Number of questions |
20 questions |
Passing score |
70% (14 out of 20) |
Exam duration |
30 minutes |
Level |
Foundation |
Languages |
English and Portuguese |
Exam description |
The exam covers topics such as Scope of the ISO/IEC 27018, Normative References, Terms and Definitions, Information security policies, Organization of information security, Human resource security, Asset management, Access control, Cryptography, Physical and environmental security, Operations security, Communications security, System acquisition, development and maintenance, Supplier relationships, Information security incident management, Information security aspects of business continuity management, and Compliance, and Annex A - Public cloud PII processor extended control set for PII protection. |
RECOMMENDED HOURS OF STUDY |
16 hours |
Bloom's Taxonomy |
Level 1 (Remembering), Level 2 (Understanding) and Level 3 (Applying) |
Recommended reading |
• ISO/IEC 27018:2019 Information technology - Security techniques - Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors |
Prerequisites |
There are no prerequisites for this certification |
Recommended experience |
Six months of work experience in Risk Management |
Validity period |
Lifetime |
Domains | Weight |
---|---|
1. Scope of the ISO/IEC 27018 |
5% |
2. Terms and definitions |
20% |
3. Control categories |
60% |
4. Annex A Public cloud PII processor extended control set for PII protection |
15% |
Total | 100% |
Browse our certification programs and choose your certification.
Discover the exam objectives and prepare for your exam.
Register for your online proctored exam.
Take your online proctored exam in the comfort of your home or office.
Congratulations! You are certified!
After purchasing an exam voucher, candidates will have 180 days to take the exam.
The exam voucher includes 2 retakes in case the candidate fails the first attempt.
There are no prerequisites to take the exams. ITCERTS recommends that candidates have at least six months of work experience in the area that the certification exam covers.
If a candidate does not achieve a passing score on the first attempt, there is no waiting period between the first and the second attempt. If a candidate does not achieve a passing score on the second attempt, the candidate must wait at least 7 days before retaking the exam for a third time. A candidate may not take a given exam any more than three times per year (12 months).
Visit the Online Proctored Exam registration page to find complete instructions.
Training is recommended as part of your certification preparation, but it is not mandatory.
Our exams are currently available in English and Portuguese.
Exams are delivered online (Online Proctored Exams) and can be taken from anywhere in the world.
ITCERTS certifications are considered good-for-life and do not expire.
Your employer can verify your certification on our certification verification page. Your certification number will be needed in order to process the verification.
Subscribe to our newsletter