Free ebook: NIS2 ready using ISO 27001 best practices
Download ebook

Processes for reporting information security events related to offered cloud services

Critical
High
Normal
Low

When offering cloud services, the organisation needs to have planned processes or procedures for:

  • how the cloud service customer reports an information security event to the organisation
  • how the organisation reports information security events to cloud service customers
  • how the cloud service customer can track the status of a previously reported information security event
Connected other frameworks and requirements:
16: Information security incident management
ISO 27017
16.1: Information security incident and improvement management
ISO 27017
16.1.2: Reporting information security events
ISO 27017
ID.RA-3: Threat identification
NIST CSF
DE.DP-4: Event detection
NIST CSF
No items found.