Standardization in Outsourcing: The New ISO Standards and More

Loading Map....

February 11, 2015
12:00 pm - 2:00 pm

Osler, Hoskin & Harcourt LLP
1 First Canadian Place, Suite 6300
Toronto, Ontario

Add to calendar


Learn from outsourcing, technology and security experts on new and upcoming ISO/IEC standards and practical lessons on how the new standards will impact outsourcing and other forms of certification, including:

  • The new ISO/IEC Standard (37500: 2014): Guidance on Outsourcing;
  • Overview of ISO 27000 family of Information Security Management Systems (ISMS) Standards;
  • The upcoming ISO/IEC Standard (27017): Information technology, Security techniques, Code of practice for information security controls based on ISO/IEC (27002) for cloud services; and
  • ISO/IEC Standard (27018:2014): Information technology, Security techniques, Code of practice for protection of Personally Identifiable Information (PII) in public clouds acting as PII processors.

The program will follow a presentation format with facilitated questions.

Lunch will be served at noon and the presentation will begin at 12:30 pm.

Below are the materials from the presentation:

Information Security ISO Standards, Glen Bruce

ISO 37500 – A Perspective on Standards for Global Outsourcing (Business and IT), Ron Babin


Glen Bruce, Managing Specialist, Deloitte. Glen is focused on Security Strategies, Architectures and Policies supporting business and governments in their approach to managing information security risk. He has over 39 years of in-depth experience in information security consulting, systems management and technical positions. He has led many information security engagements, where he has helped clients establish effective strategies, governance, architectures, policies and infrastructure implementations in support of both business and technical requirements. He is also the co-author of the book, “Security in Distributed Computing: Did You Lock the Door” published by Prentice-Hall. His experience and knowledge has taken him around the world to assist organizations with information security issues. Glen is a Certified Information Systems Security Professional (CISSP), a Certified Information Security Manager (CISM), certified in Risk and Information Systems Control (CRISC), a trained ISO 27001 Lead Auditor, a certified ITIL practitioner and is a SABSA Certified Practitioner in Risk Management and Governance (SCPR) and Architecture Design (SCPA).

Dr. Ron Babin, MBA, DBA, CMC is Director, Corporate and Executive Education, Associate, Professor, Ted Rogers School of IT Management, Ryerson University, Toronto, Canada. Ron acted as the chair of the Canadian Mirror Committee that provided comments to the ISO Technical Committee responsible for developing the ISO 37500 standard. Ron is a senior management consultant and professor who specializes in outsourcing and IT management (ITM) issues. Ron has extensive experience as a senior management consultant at two global consulting firms. As a partner at Accenture, and prior to that at KPMG, he was responsible for IT management and strategy practices in Toronto. While at KPMG, he was a member of the Nolan Norton consulting group. His consulting activities focus on helping client executives improve the business value delivered by IT within their organizations. In his more than 20 years as a management consultant, Ron has worked with dozens of clients in most industry sectors, mainly in North America and Europe. Currently, Ron’s research is focused on outsourcing, with particular attention to the vendor/client relationship and social responsibility. He has written several papers and a book on these topics. Ron teaches IT management courses to executives at York University’s Schulich Executive Education Centre and to full-time students at Ryerson University. He teaches clients globally on outsourcing for the Centre for Outsourcing Research and Education (CORE). Currently, Ron is a board member and faculty member for the Centre for Outsourcing Research and Education. He is a member of the International Association of Outsourcing Professionals (IAOP).

Richard Austin (Facilitator) is a partner in the law firm Deeth Williams Wall LLP. Richard is a member of the Canadian Mirror Committee supporting the implementation of the ISO 37500 standard in Canada. Richard’s areas of practice include outsourcing transactions, applications development and systems implementation projects, technology mergers and acquisitions, access to information, privacy, security and international data flows. Before joining Deeth Williams Wall, Richard was General Counsel of EDS Canada, one of Canada’s largest information technology service providers, for 18 years.


Cost for lunch is ten dollars ($10) for TCLG members and students, twenty dollars ($20) for non-members, payable at the meeting. Receipts will be available. Cheques should be made payable to the “Toronto Computer Lawyers’ Group”.


The cost of membership for lawyers is fifty-five dollars ($55). The membership fee for students is waived; articling students and law school students may join the TCLG free of charge by indicating that they are “students” on the membership application form. Please see the online membership page for further details:


Please register before 10:00 am on February 9, 2015. Registrations will not be confirmed unless the lunch is fully booked. Substitutions are permitted anytime. Registrants who do not attend and do not cancel or send a substitute may be invoiced for lunch. Please e-mail registrations or cancellations to:

When registering, please advise if you have any dietary restrictions.


It would be appreciated if you could please circulate this notice to business associates, clients, colleagues or others who may be interested in attending a meeting or joining the TCLG.