What is ISO/IEC 27017?

securityISO/IEC 27017 is aimed at cloud service providers and organizations with cloud infrastructure (their own or via a cloud service provider). The standard suggests additional security controls for the cloud that ISO 27002 and Annex A of ISO 27001 do not adequately cover.

Used with ISO/IEC 27001 series  of standards, ISO/IEC 27017 provides enhanced controls for cloud service providers and cloud service customers. Unlike many other technology-related standards ISO/IEC 27017 clarifies both party’s roles and responsibilities to help make cloud services as safe and secure as the rest of the data included in a certified information management system.





Why choose us?

BSI (British Standards Institution) is the business standards company that equips businesses with the necessary solutions to turn standards of best practice into habits of excellence. Formed in 1901, BSI was the world’s first National Standards Body and a founding member of the International Organization for Standardization (ISO). Over a century later it continues to facilitate business improvement across the globe by helping its clients drive performance, manage risk and grow sustainably through the adoption of international management systems standards, many of which BSI originated. Renowned for its marks of excellence including the consumer recognized BSI Kitemark, BSI’s influence spans multiple sectors including aerospace, automotive, built environment, food, healthcare and ICT. With over 80,000 clients in 172 countries, BSI is an organization whose standards inspire excellence across the globe.

Our clients choose us:

  • For our unique client management structure
  • For our expertise
  • For our integrity
  • Because we are performance minded
  • For our expert assessors