ISO 27017 is a security standard developed especially for cloud service providers and users to create a safer cloud-based environment and reduce the risk of security incidents.
- Technical tasks related to cloud environment and shared responsibilities.
- Advanced tasks e.g. about virtualization and monitoring cloud services
ISO 27017 gives cloud-specific additions to ISO 27001, so these two frameworks should be used together.