Information SecurityInternational
ISO 27017
Code of practice for information security controls based on ISO 27002 for cloud services.
Domains
Physical (cloud-extended)
Compliance (cloud-extended)
Incident (cloud-extended)
Supplier (cloud-extended)
Acquisition (cloud-extended)
Compare ISO 27017
ISO 27017 by Industry
ISO 27017 by Role
Frequently Asked Questions
What is ISO 27017?
Code of practice for information security controls based on ISO 27002 for cloud services.
How many controls does ISO 27017 have?
ISO 27017 contains 37 controls organized across 17 domains.
Where does ISO 27017 apply?
ISO 27017 is applicable in International. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does ISO 27017 map to?
ISO 27017 has control-to-control mappings with 261 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with ISO 27017 compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for ISO 27017?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.