This standard was last reviewed and confirmed in 2021. Therefore this version remains current.
ISO/IEC 27017:2015 gives guidelines for information security controls applicable to the provision and use of cloud services by providing:
- additional implementation guidance for relevant controls specified in ISO/IEC 27002;
- additional controls with implementation guidance that specifically relate to cloud services.
This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.
Status: PublishedPublication date: 2015-12
Edition: 1Number of pages: 30
Technical Committee: ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection
- ICS :
- 35.030 IT Security
Buy this standard
|std 1 145|
|std 2 145||Paper|
A standard is reviewed every 5 years
Stage: 90.92 (To be revised)
Will be replaced byUnder development
ISO/IEC WD 27017
Got a question?
Check out our FAQs
+41 22 749 08 88
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)
Keep up to date with ISO
Sign up to our newsletter for the latest news, views and product information.