BS ISO/IEC 27036-4:2016 - Information technology. Security techniques. Information security for supplier relationships. Guidelines for security of cloud services

BS ISO/IEC 27036-4:2016

Information technology. Security techniques. Information security for supplier relationships. Guidelines for security of cloud services

Status : Current   Published : October 2016

Format
PDF

Format
HARDCOPY



This document provides cloud service customers and cloud service providers with guidance on

  1. gaining visibility into the information security risks associated with the use of cloud services and managing those risks effectively, and

  2. responding to risks specific to the acquisition or provision of cloud services that can have an information security impact on organizations using these services.

This document does not include business continuity management/resiliency issues involved with the cloud service. ISO/IEC 27031 addresses business continuity.

This document does not provide guidance on how a cloud service provider should implement, manage and operate information security. Guidance on those can be found in ISO/IEC 27002 and ISO/IEC 27017.

The scope of this document is to define guidelines supporting the implementation of information security management for the use of cloud services.




Standard NumberBS ISO/IEC 27036-4:2016
TitleInformation technology. Security techniques. Information security for supplier relationships. Guidelines for security of cloud services
StatusCurrent
Publication Date31 October 2016
Normative References(Required to achieve compliance to this standard)ISO/IEC 17788, ITU-T Rec. Y.3500, ISO/IEC 27017, ITU-T Rec. X.1631, ISO/IEC 27036-1, ISO/IEC 27036-2, ISO/IEC 27036-3
Informative References(Provided for Information)ISO/IEC 17789, ITU-T Rec. Y.3502, ISO/IEC 19086-1, ISO/IEC 27018, ISO/IEC 29003, ISO/IEC 29115
International RelationshipsISO/IEC 27036-4:2016
Draft Superseded By16/30275200 DC
DescriptorsData processing, Security, Information, Computers, Management, Data security, Data storage protection, Anti-burglar measures, Computer technology, Computer networks, Information exchange
ICS35.030
Title in FrenchTechnologies de l’information. Techniques de sécurité. Sécurité d’information pour la relation avec le fournisseur. Lignes directrices pour la sécurité des services du nuage
CommitteeIST/33/4
ISBN978 0 580 81383 2
PublisherBSI
FormatA4
DeliveryYes
Pages32
File Size2.362 MB
Price£182.00


 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


Develop a PAS

Develop a fast-track standardization document in 9-12 months


Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version


Worldwide Standards
We can source any standard from anywhere in the world


Customers who bought this product also bought

  • BS ISO/IEC 27036-1:2014
    Information technology. Security techniques. Information security for supplier relationships Overview and concepts
  • BS ISO/IEC 27036-2:2014
    Information technology. Security techniques. Information security for supplier relationships Requirements
  • BS ISO/IEC 27036-3:2013
    Information technology. Security techniques. Information security for supplier relationships Guidelines for information and communication technology supply chain security
  • BS EN ISO/IEC 27040:2016
    Information technology. Security techniques. Storage security