UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

CEI - UNI EN ISO/IEC 27017

Information technology - Security techniques Code of practice for information security controls based on ISO/IEC 27002 for cloud services

active, Most Current
Organization: CEI
Publication Date: 1 June 2021
Status: active
Page Count: 48
ICS Code (Management systems): 03.100.70
ICS Code (IT Security): 35.030
scope:

This Recommendation | International Standard gives guidelines for information security controls applicable to the provision and use of cloud services by providing:

- additional implementation guidance for relevant controls specified in ISO/IEC 27002;

- additional controls with implementation guidance that specifically relate to cloud services.

This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.

Document History

UNI EN ISO/IEC 27017
June 1, 2021
Information technology - Security techniques Code of practice for information security controls based on ISO/IEC 27002 for cloud services
This Recommendation | International Standard gives guidelines for information security controls applicable to the provision and use of cloud services by providing: – additional implementation...

References

This document references:
ISO 19440 - Enterprise modelling and architecture — Constructs for enterprise modelling
Published by ISO on May 1, 2020
This document identifies and specifies constructs necessary for users that model enterprises in conformance with ISO 19439. This document focuses on, but is not restricted to, engineering and the...
This document references:
ISO 31000 - Risk management - Guidelines
Published by ISO on February 1, 2018
This document provides guidelines on managing risk faced by organizations. The application of these guidelines can be customized to any organization and its context. This document provides a common...
This document references:
ISO/IEC 17203 - Information technology - Open Virtualization Format (OVF) specification
Published by ISO on September 1, 2017
The Open Virtualization Format (OVF) Specification describes an open, secure, efficient and extensible format for the packaging and distribution of software to be run in virtual systems. The OVF...
This document references:
ISO/IEC 17788 - Information technology - Cloud computing - Overview and vocabulary
Published by ISO on October 15, 2014
This Recommendation | International Standard provides an overview of cloud computing along with a set of terms and definitions. It is a terminology foundation for cloud computing standards. This...
This document references:
ISO/IEC 17789 - Information technology - Cloud computing - Reference architecture
Published by ISO on October 15, 2014
This Recommendation | International Standard specifies the cloud computing reference architecture (CCRA). The reference architecture includes the cloud computing roles, cloud computing activities,...
View Less
View All
Advertisement