Google Cloud Professional Cloud Security Engineer — Question 42

Which international compliance standard provides guidelines for information security controls applicable to the provision and use of cloud services?

Answer options

• A. ISO 27001
• B. ISO 27002
• C. ISO 27017
• D. ISO 27018

Correct answer: C

Explanation

ISO 27017 specifically addresses guidelines for information security controls in cloud services, making it the correct answer. ISO 27001 is a broader information security management standard, while ISO 27002 focuses on information security controls in general, and ISO 27018 pertains to the protection of personal data in the cloud.