ISO/IEC 27017

E100886

ISO/IEC 27017 is an international standard that provides guidelines and controls for information security specifically tailored to cloud services, complementing general information security management standards.

All labels observed (1)

Label Occurrences
ISO/IEC 27017 canonical 3

How this entity was disambiguated

Statements (47)

Predicate Object
instanceOf cloud security guideline
information security standard
international standard
addresses cloud administrative operations and procedures
cloud customer and provider roles
cloud customer asset separation
cloud data lifecycle security
cloud monitoring and logging
cloud service agreements
cloud-specific risk management
information protection in cloud environments
shared responsibility in cloud security
virtualization security
aimsTo enhance trust in cloud services
reduce information security risks in cloud computing
support implementation of cloud security controls
appliesTo community cloud services
hybrid cloud services
private cloud services
public cloud services
basedOn ISO/IEC 27002 control structure
complements ISO 27001
surface form: ISO/IEC 27001

ISO/IEC 27002
covers implementation of cloud security controls
management of cloud security controls
selection of cloud security controls
domain cloud computing
information technology
extends ISO/IEC 27002 with cloud-specific controls
focusesOn cloud-specific information security controls
information security for cloud services
intendedForUseBy cloud service customers
cloud service providers
organizations using cloud services
language English
partOfSeries ISO/IEC 27000 family
provides guidelines for cloud service customers
guidelines for cloud service providers
implementation guidance for cloud security controls
publishedBy International Electrotechnical Commission
International Organization for Standardization
relatedTo ISO/IEC 27001 certification schemes
ISO/IEC 27018
targetAudience cloud service managers
compliance and risk officers
information security professionals
usedAs guidance for cloud security certification programs

How these facts were elicited

Referenced by (3)

Full triples — surface form annotated when it differs from this entity's canonical label.

ISO 27001 relatedStandard ISO/IEC 27017
ISO/IEC 27000 family includesStandard ISO/IEC 27017
ISO/IEC developsStandard ISO/IEC 27017