
Explanation:
ISO 27017 is specifically designed as an international standard that provides guidelines for information security controls applicable to cloud services. It extends the ISO/IEC 27002 standard by adding cloud-specific implementation guidance for both cloud service providers and cloud service customers. The community discussion shows unanimous consensus (100% for option C) with multiple references to official Google Cloud documentation and ISO standards confirming that ISO 27017 is the correct answer. ISO 27001 is a general information security management system standard, ISO 27002 provides general security controls guidance, and ISO 27018 focuses specifically on privacy protection in cloud services - none of these are specifically tailored for cloud service provisioning and use like ISO 27017.
Ultimate access to all questions.
No comments yet.
Which international compliance standard provides guidance on information security controls for the provisioning and use of cloud services?
A
ISO 27001
B
ISO 27002
C
ISO 27017
D
ISO 27018