Download the Program

27K: The Security Summit for the Americas will bring experts in the ISO/IEC 27001 standard together with those who are on the front lines of international IT security to promote the standard in the US and the Western Hemisphere. ISO/IEC 27001 is an industry-agnostic standard for information security within the context of an organization’s management and processes. This standard is now accepted in most countries as a de facto main framework for information security implementation. The 27K Summit will help you come up to speed on ISO/IEC 27018:2014, an updated set of requirements for companies that operate in a public cloud computing environment. You’ll also learn how these standards fit within the recent National Cybersecurity Framework—important for American companies that safeguard critical infrastructures. Organizations doing domestic or international business will soon face new IT security certification requirements. The 27K Summit will help you understand these evolving requirements.

Crucial Content for ISMS Professionals at a Time of Growing Pressure

In the face of multiplying security threats, organizations are increasingly required to demonstrate management control of cyber security. ISO/IEC 27001, as the international information security management standard, provides the vehicle to do this. It’s the only standard that takes an integrated approach to information security by addressing people, processes and technology. ISO/IEC 27001 certification is the way to prove to clients, partners, shareholders, government agencies, and others that mission-critical information is kept secure. The 27K Summit will help you increase the confidence of your colleagues and stakeholders.

Special Focus on 27018: The International Cloud Privacy Standard

Regulators, enterprises, and consumers are demanding stronger standards for the protection of privacy and personal data stored in the cloud. The 27K Summit will help you come up to speed on the new protection offered by ISO/IEC 27018:2014. This standard offers an international, uniform set of commonly accepted control objectives, controls and guidelines for implementing measures to protect Personally Identifiable Information (PII) in accordance with the privacy principles in ISO/IEC 29100 for the public cloud computing environment.

A Standard Cited in the New NIST National Cybersecurity Framework

NIST’s Framework for Improving Critical Infrastructure Cybersecurity (NCsF) relies on the existing standards, guidance, and best practices required for ISO/IEC 27001 certification. By mapping NCsF security controls to ISO/IEC 27001, NIST has provided US organizations with a clear pathway to comprehensive information security. For organizations in industry sectors identified as foundational to national security, compliance is doubly important. In most cases, ISO/IEC 27001 certifiable organizations will also be NCsF compliant. The 27K Summit is the place to learn about best practices for the establishment of an ISO/IEC 27001 certification initiative.

New This Year: Added Training/Exam Registration Option

Available post-conference training and exam courses enable you to achieve a valuable professional certification within a short time frame. Two training courses are available: ISO 27005 Risk Manager Course and Advanced Auditing for CSA Star Certification. Make a commitment to five days of in-depth professional development–register for the 27K Summit plus a 2-day training course. You’ll finish the week with new professional certification and Continuing Professional Development credits.