Draft
International StandardISO/IEC DIS 27017
Information security, cybersecurity and privacy protection — Information security controls based on ISO/IEC 27002 for cloud services
Reference number
ISO/IEC DIS 27017
ISO/IEC DIS 27017
Edition 2
© ISO 2025
Draft International Standard
ISO/IEC DIS 27017
82878
This Draft International Standard is in the enquiry phase with ISO members.
Will replace ISO/IEC 27017:2015
Abstract
ISO/IEC 27017:2015 gives guidelines for information security controls applicable to the provision and use of cloud services by providing:
- additional implementation guidance for relevant controls specified in ISO/IEC 27002;
- additional controls with implementation guidance that specifically relate to cloud services.
This Recommendation | International Standard provides controls and implementation guidance for both cloud service providers and cloud service customers.
General information
-
Status: Under development
You can help develop this draft international standard by contacting your national member
Stage: DIS ballot initiated: 12 weeks [40.20] -
Edition: 2Number of pages: 36
-
Technical Committee :ISO/IEC JTC 1/SC 27ICS :35.030
- RSS updates
Life cycle
-
Previously
PublishedISO/IEC 27017:2015
-
Now