Which Of The Following Are Unique Controls Introduced In The

Summary:

The ISO 27017:2015 code of practice is a security standard specifically designed for cloud service providers and customers to reduce security risks in the cloud environment. It provides guidelines for information security controls and introduces seven new controls for cloud environments. This standard differs from ISO 27018, which focuses on protecting personal information in public clouds. ISO 27017 complements the ISO 27001 series of standards and extends necessary safety precautions and risk-based analysis for online safety in the cloud. Its controls are additional to ISO 27002 and directly aimed at services deployed in the cloud, emphasizing the importance of cloud security.

The unique controls introduced in the ISO/IEC 27017 standard for cloud environments are:

  1. Shared roles and responsibilities within a cloud computing environment
  2. Removal and return of cloud service customer assets upon contract termination
  3. Ensuring data availability

Allocation of duties is not specifically listed as a unique control introduced in the ISO/IEC 27017 standard.

Sources

ISO/IEC 27017:2015 Code of Practice for Information Security Controls - Microsoft LearnSecurity controls for cloud services ISO/IEC 27017 | BSI AmericaISO/IEC 27017 Standard for Cloud Security Controls and Cloud Services - ISMS.onlineISO/IEC 27017 cloud securityISO/IEC 27017:2015 - Azure Compliance - Microsoft LearnThe ultimate guide ISO 27017 | Vanta
Understanding ISO/IEC 27017 Information Security Controls for ...ISO 27017 – Security Controls for Cloud Services | Sysprove Consulting

Related Questions

Work fast from anywhere

Stay up to date and move work forward with BrutusAI on macOS/iOS/web & android. Download the app today.

MacOS/iPhone/iPad
App Store
Android Download
Play Store