ISO/IEC CD 27017.2
Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services
Reference number
ISO/IEC CD 27017.2
Edition 2
Committee Draft
ISO/IEC CD 27017.2
82878
A draft is being reviewed by the committee.
Will replace ISO/IEC 27017:2015

Abstract

ISO/IEC 27017:2015 gives guidelines for information security controls applicable to the provision and use of cloud services by providing:

- additional implementation guidance for relevant controls specified in ISO/IEC 27002;

- additional controls with implementation guidance that specifically relate to cloud services.

This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.

General information

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)