1 Scope

This Recommendation | International Standard gives guidelines for information security controls applicable to the provision and use of cloud services by providing:

– additional implementation guidance for relevant controls specified in ISO/IEC 27002;
– additional controls with implementation guidance that specifically relate to cloud services.

This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.

Product Details

Descriptors

Information exchange

Data security

Management

Computer hardware

Access

Computer networks

Data processing

Computer software

Data transmission

Data storage protection

Computers

ICS Codes

03.100.70 Management systems

35.030 IT Security

Committee

IST/33

International relationships

Identical to:

EN ISO/IEC 27017:2021

ISO /IEC 27017

ISO/IEC 27017:2015

ISBN

978 0 539 14436 9

Publisher

BSI

BS EN ISO/IEC 27017:2021

Information technology. Security techniques. Code of practice for information security controls based on ISO/IEC 27002 for cloud services

Current

Published:

28 Feb 2021

1 Scope