Cloud SecurityGermany
BSI C5 — Cloud Computing Compliance Criteria Catalogue
The Cloud Computing Compliance Criteria Catalogue (C5) is the German Federal Office for Information Security (BSI) standard for assessing the security of cloud services. C5:2020 defines minimum security requirements that cloud providers must meet, organized into 17 topic areas with 121 criteria.
Domains
Cloud-Specific and Physical Security
Organization and Governance
Compare BSI C5 — Cloud Computing Compliance Criteria Catalogue
BSI C5 — Cloud Computing Compliance Criteria Catalogue vs ISO 27001:2022View comparison →BSI C5 — Cloud Computing Compliance Criteria Catalogue vs SOC 2View comparison →BSI C5 — Cloud Computing Compliance Criteria Catalogue vs NIST CSF 2.0View comparison →BSI C5 — Cloud Computing Compliance Criteria Catalogue vs GDPRView comparison →BSI C5 — Cloud Computing Compliance Criteria Catalogue vs HIPAAView comparison →BSI C5 — Cloud Computing Compliance Criteria Catalogue vs PCI DSS 4.0View comparison →
BSI C5 — Cloud Computing Compliance Criteria Catalogue by Industry
BSI C5 — Cloud Computing Compliance Criteria Catalogue for Healthcare→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Financial Services→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Technology→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Government→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Manufacturing→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Energy→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Retail→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Education→
BSI C5 — Cloud Computing Compliance Criteria Catalogue by Role
BSI C5 — Cloud Computing Compliance Criteria Catalogue for CISOs→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Compliance Officers→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Risk Managers→BSI C5 — Cloud Computing Compliance Criteria Catalogue for IT Directors→BSI C5 — Cloud Computing Compliance Criteria Catalogue for DPOs→BSI C5 — Cloud Computing Compliance Criteria Catalogue for Auditors→
Frequently Asked Questions
What is BSI C5?
The Cloud Computing Compliance Criteria Catalogue (C5) is the German Federal Office for Information Security (BSI) standard for assessing the security of cloud services. C5:2020 defines minimum security requirements that cloud providers must meet, organized into 17 topic areas with 121 criteria.
How many controls does BSI C5 have?
BSI C5 contains 8 controls organized across 2 domains.
Where does BSI C5 apply?
BSI C5 is applicable in Germany. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does BSI C5 map to?
BSI C5 has control-to-control mappings with 465 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with BSI C5 compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for BSI C5 — Cloud Computing Compliance Criteria Catalogue?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.