Information security requirement is necessary to maintain and discuss, which allow those requirements to reach availability, efficiency, integrity. Working groups in International Standard Organization ISO/IEC JTC 1/SC 27 will have meeting in 51different countries every 6 month. This these utilize ISO/IEC JTC 1/SC27 N9001 and ISO/IEC JTC 1/SC 27 N117 to discuss Information security governance, and use ISO/IEC JTC 1/SC27 N8808 and ISO/IEC JTC 1/SC27 N9226 to discuss Personal information security. Moreover, the information system is getting changed everyday, company or organizations has to be accept cloud computing is inevitably when face information security issues. ISO/IEC JTC 1/SC 27 has issued ISO/IEC JTC 1/SC27 N9314 to allow members to discuss SME perspective on cloud computing. Also has recommended the benefit, risk, and information assurance architechture of cloud computing in information security.Also ISO 27001 by the PCI DSS standards for the supplement of cloud providers andoutsourcing companies to provide recommendations for control measures.This these base on ISO / IEC JTC 1/SC27 WG1 and WG5 documents to discuss cloud computing on personal information protection and information security governance, and its associated security controls to make appropriatere commendations.
