Skip to content
Cybsis

Standard

ISO/IEC 27017 (Cloud security) + ISO/IEC 27018 (Cloud PII processor)

The two cloud-specific extensions to ISO 27001 — security controls for cloud services and PII protection in public-cloud processors.

International€600/year as an additional standards packMapped on request — typically about two weeks

The cloud-extension pair to ISO 27001. ISO 27017 adds cloud-specific security control guidance; ISO 27018 adds personal-data-in-the-cloud obligations for processors. Both are extensions, so they're sold alongside ISO 27001 rather than standalone.