Sale!

ISO 27017:2015 Cloud Security

Original price was: ₹40,000.00.Current price is: ₹20,000.00.

Category: Iso Certificaiton Tags: Cloud Security, ISO 27017:2015, ISO 27017:2015 Cloud Security

Description
Reviews (0)

ISO/IEC 27017:2015 is a standard developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) that provides guidelines for information security controls applicable to the provision and use of cloud services. It complements the existing ISO/IEC 27001 standard, which is a widely recognized specification for an information security management system (ISMS).

Here are some key points about ISO/IEC 27017:

1. **Focus on Cloud Services**: ISO/IEC 27017 specifically addresses the unique aspects of information security for cloud computing environments. It acknowledges the shared responsibility model between cloud service providers and their customers and provides guidance on how to manage security risks effectively in this context.

2. **Supplement to ISO/IEC 27001**: While ISO/IEC 27001 provides a framework for establishing, implementing, maintaining, and continually improving an ISMS, ISO/IEC 27017 offers additional guidance and controls tailored to cloud services. It helps organizations adapt their information security management practices to the cloud environment.

3. **Security Controls**: The standard offers a set of security controls and guidelines for cloud service providers (CSPs) and cloud customers. These controls cover various aspects such as data protection, identity and access management, compliance, incident management, and continuity of service.

4. **Alignment with ISO/IEC 27002**: ISO/IEC 27017 aligns with ISO/IEC 27002, which provides a code of practice for information security controls. This alignment ensures consistency with established best practices in information security management.

5. **International Recognition**: Being an ISO standard, ISO/IEC 27017 is internationally recognized, making it valuable for organizations operating in multiple jurisdictions or seeking to demonstrate compliance with global regulatory requirements.

6. **Continuous Improvement**: Like other ISO standards, ISO/IEC 27017 emphasizes the importance of continual improvement in information security management. Organizations are encouraged to regularly review and update their security controls to address evolving threats and business requirements.

In summary, ISO/IEC 27017 provides a comprehensive framework for enhancing the security of cloud services, enabling organizations to effectively manage risks associated with cloud computing and demonstrate their commitment to protecting sensitive information in the cloud.

Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services

ISO/IEC 27017:2015 gives guidelines for information security controls applicable to the provision and use of cloud services by providing:

– additional implementation guidance for relevant controls specified in ISO/IEC 27002;

– additional controls with implementation guidance that specifically relate to cloud services.

This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.

MORE Details >> ISO 27017_2015 Cloud Security

Six Sigma ISO 27017_2015 Cloud Security

ssqi.in ISO 27017_2015 Cloud Security

Indiamart ISO 27017_2015 Cloud Security