ISO 27017 provides guidance on the information security aspects of cloud computing, recommending the implementation of cloud-specific information security controls that supplement the guidance of the ISO 27002 and ISO 27001 standards. This code of practice provides additional information security controls implementation guidance specific to cloud service providers.
Applicable services and documents
Documents are currently available for download at https://scdp.salesforce.com
ISO 27017 Certificate
ISO Statement of Applicability