Information Security

Lead Cloud Security Manager

This training prepares experienced security professionals to design, operate, and govern a cloud security program aligned with ISO/IEC 27017 and ISO/IEC 27018. It addresses the realities of hybrid and multi cloud environments where accountability, data protection, and shared responsibility models.

4 daysExam includedPhysical classroomOnline classroomSelf-study
2,500+ professionals trained100 % pass rate120+ countries600+ organisations
PECB
10 Aug – 13 Aug
Language
EN
LocationLausanne / Morges - Switzerland
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
PECB
2 Nov – 5 Nov
Language
EN
LocationLausanne / Morges - Switzerland
Format
Physical classroomOnline classroom
Physical classroom
  • Instructor-led classroom training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
Online classroom
  • Instructor-led online live interactive training course
  • Lifetime access to official PECB training course material (PDF)
  • Official PECB online certification exam
  • Certificate of attendance
  • Official PECB certification
  • One free retake exam
No date works for you?
Request a private or flexible session

Key takeaways

Structure a cloud security program aligned with organizational reality
Define cloud specific controls that are auditable and defensible
Manage cloud security risks beyond technical configuration
Clarify security responsibilities between customer and provider
Operate cloud security within a continuous improvement cycle

Your trainer for this course

Alexis HIRSCHHORN
Alexis HIRSCHHORN

ISO 22301 Lead Implementer · ISO 27001 Lead Implementer · CISSP® Exam Bootcamp · CISM® Exam Bootcamp · ISO 27701 Lead Auditor

Expert in Information and Cyber Security, Cloud Security, Risk Management and Governance Consulting for large multinational corporations, government entities and international organizations Management Systems Certified Lead Auditor

25 years of hands-on experience in information security, cloud cybersecurity, and AI governance. Advisory work with major multinationals, government bodies, and international organizations across multiple countries. Certified ISO 42001 Lead Implementer, CAIP, CISSP®, CISM®, CISA®, and PECB Certifying Auditor. PECB Certified Trainer.
100+ISO 27001 implementations
200+Organisations audited
25+Years of experience
12Certifications
Meet all our trainers →
PECB
Lead Cloud Security Manager · Titanium Partnerhighest PECB accreditation levelTitanium Partner

Page contents

Course Description

Cloud adoption has shifted security accountability rather than removed it. In the 2024–2025 landscape, regulators, auditors, and executive management expect organizations to demonstrate control over cloud hosted information, even when infrastructure is outsourced. The challenge is no longer whether cloud services are secure, but whether security responsibilities are clearly defined, governed, and measurable.

This training places participants in the role of a Lead Cloud Security Manager responsible for structuring and operating a cloud security program based on ISO/IEC 27017 and ISO/IEC 27018. Participants work through realistic cloud architectures, governance models, and risk scenarios to understand how cloud specific controls are selected, implemented, and monitored in practice.

Abilene Academy’s approach goes beyond clause interpretation. Participants analyse shared responsibility models, translate cloud risks into management level decisions, and design policies that are enforceable across providers and internal teams. Cloud incident scenarios and testing activities are used to evaluate whether controls operate as intended, not just whether they exist on paper.

The training is delivered by active practitioners who regularly support organizations during cloud audits, regulatory reviews, and security incidents. Discussions focus on common failure points, audit expectations, and pragmatic trade offs faced by cloud security leaders. By the end of the course, participants can operate a cloud security program that is credible for management, usable for technical teams, and defensible in front of auditors and regulators.

    • Design a cloud security program aligned with ISO/IEC 27017 and ISO/IEC 27018
    • Assess cloud specific security risks and dependencies
    • Define and justify cloud security controls
    • Organize cloud security incident management processes
    • Implement monitoring and testing mechanisms for cloud environments
    • Prepare effectively for the Lead Cloud Security Manager certification

Professional Testimonials

Thank you for an excellent contextualized delivery of the training. The trainer's experience and knowledge is impressive.
NC

Natalia Coscodan

Course participant

SAP

Frequently Asked Questions

What is the PECB Certified Lead Cloud Security Manager certification and what does it validate?

The PECB Certified Lead Cloud Security Manager certification validates the ability to design, implement, manage, and improve a cloud security program based on ISO/IEC 27017 and ISO/IEC 27018. It confirms competence in cloud risk management, shared responsibility models, cloud-specific controls, and incident handling.

“In cloud security, the real work starts once you accept that outsourcing infrastructure does not outsource accountability. This certification is about managing that reality.”

Alexis HIRSCHHORN

ISO 22301 Lead Implementer • ISO 27001 Lead Implementer

Lead Cloud Security ManagerISO 27017ISO 27018Cloud Security

What is the difference between ISO/IEC 27001 and ISO/IEC 27017 and 27018 for cloud security?

ISO/IEC 27001 defines a general information security management system, while ISO/IEC 27017 and ISO/IEC 27018 provide cloud-specific guidance. They address shared responsibility, cloud control implementation, and personal data protection in cloud environments.

“ISO 27001 tells you what must be controlled. ISO 27017 and 27018 explain how that control actually works once the infrastructure is no longer yours.”

Alexis HIRSCHHORN

ISO 22301 Lead Implementer • ISO 27001 Lead Implementer

ISO 27001ISO 27017ISO 27018Cloud Security

Who should take the Lead Cloud Security Manager training?

The Lead Cloud Security Manager training is designed for security managers, consultants, and professionals responsible for governing cloud security programs. It is suited to those accountable for cloud risk, compliance, and incident management rather than purely technical configuration.

“If your role involves explaining cloud risk to executives or auditors, this course speaks your language.”

Alexis HIRSCHHORN

ISO 22301 Lead Implementer • ISO 27001 Lead Implementer

Lead Cloud Security ManagerCloud GovernanceSecurity Management

What does the Lead Cloud Security Manager exam test?

The exam tests applied knowledge of cloud security governance, risk management, control implementation, incident handling, and monitoring based on ISO/IEC 27017 and ISO/IEC 27018. It focuses on decision-making rather than memorization.

“If you prepare by memorizing clauses, you will struggle. If you prepare by thinking like a security manager, you will be comfortable.”

Alexis HIRSCHHORN

ISO 22301 Lead Implementer • ISO 27001 Lead Implementer

Lead Cloud Security Manager ExamPECB CertificationCloud Security

Last updated:

Train with practitioners. Pass with confidence.

Abilene Academy is the only PECB Titanium Partner in Switzerland — the highest accreditation tier in the industry — delivering certified training in information security, data protection, AI governance, and GRC compliance. 99% exam pass rate. 2,500+ professionals trained across 120+ countries and trusted by 600+ organizations. Multilingual programmes available.

99%
Exam pass rate
2,500+
Professionals trained
120+
Countries reached
Titanium
The only PECB Titanium Partner in Switzerland
Certification included
Multilingual
EN · FR · ES · DE · IT and more

Trusted by 600+ organisations in 120 countries

  • Airbus logoAirbus
  • Altis logoAltis
  • BCEAO logoBCEAO
  • BCV logoBCV
  • Cargolux logoCargolux
  • Cartier logoCartier
  • Cofco Intl logoCofco Intl
  • Confédération SuisseConfédération Suisse
  • Council of Europe logoCouncil of Europe
  • Dell logoDell
  • Deloitte logoDeloitte
  • Devillard logoDevillard
  • Ebay logoEbay
  • Engie logoEngie
  • Etat de Fribourg logoEtat de Fribourg
  • Etihad Airways logoEtihad Airways
  • Eumetsat logoEumetsat
  • EY logoEY
  • Framatome logoFramatome
  • G42 logoG42
  • Gavi logoGavi
  • Republique et canton de Genève logoRepublique et canton de Genève
  • Groupe Mutuel logoGroupe Mutuel
  • HSBC logoHSBC
  • International atomic energy agency logoIAEA
  • IATA logoIATA
  • IBM logoIBM
  • international Labour organization logoILO
  • IMD logoIMD
  • KPMG logoKPMG
  • Kudelski Security logoKudelski Security
  • Loterie Romande logoLoterie Romande
  • MSC logoMSC
  • Nagra logoNagra
  • nespresso logoNespresso
  • Nestlé logoNestlé
  • Novartis logoNovartis
  • Payot SA logoPayot SA
  • Philips logoPhilips
  • PSA PanamaPSA Panama
  • PWC logoPWC
  • Richemont logoRichemont
  • Roche logoRoche
  • RTS Radio Télévision SuisseRTS
  • Santander logoSantander
  • SAP logoSAP
  • https://www.skyguide.ch/Skyguide
  • Société Générale logoSociete Generale
  • Swisscom logoSwisscom
  • SyzSyz
  • The Global fund logoThe Global fund
  • UNGSC logoUNGSC
  • International computing center logoUNICC

We use cookies to improve your experience

Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.