The International Organization for Standardization (ISO) is an independent, non-governmental organization with an international membership of 163 national standards bodies.
ISO/IEC 27017:2015 gives guidelines for information security controls applicable to the provision and use of cloud services by providing:
This standard provides controls and implementation guidance for both cloud service providers like Google and our cloud service customers.
ISO/IEC 27017 provides cloud-based guidance on 37 ISO/IEC 27002 controls, along with seven new cloud controls that address:
Google Cloud Platform, Google Workspace, and Apigee are certified as ISO/IEC 27017:2015 compliant.
Google Cloud Platform, Google Workspace, and Apigee ISO 27017 certificates may be requested using the Compliance Reports Manager. Potential customers can reach out to sales for more information.
Chronicle SIEM and Google Cloud Threat Intelligence for Chronicle are covered by the SecOps Services Agreement.
* Indicates that the scope of this certification applies to this offering where Google acts as a processor of Service Data (in addition to Google acting as a processor of Customer Data). Google’s processing of Service Data as a processor is subject to agreement with relevant enterprise customers of this offering.
Start building on Google Cloud with $300 in free credits and 20+ always free products.