Microsoft Azure obtains ISO 27017 cloud security certification

Mark Coppock

Microsoft continues to pay attention to cloud security, implementing a number of initiatives to improve how Azure and other cloud services manage customer data and keep it safe from prying eyes. Today, Microsoft announced another step on its path to seeing Azure recognized as an industry leader in security, this time via ISO certification.

As the Azure blog puts it:

We are happy to announce Microsoft Azure obtained the ISO/IEC 27017:2015 certification, an international standard that aligns with and complements the ISO/IEC 27002:2013 with an emphasis on cloud-specific threats and risks.

This certification provides guidance on 37 controls in ISO/IEC 27002 and features seven new controls not addressed in ISO/IEC 27002. Both cloud service providers and cloud service customers can leverage this guidance to effectively design and implement cloud computing information security controls. Customers can download the ISO/IEC 27017 certificate which demonstrates Microsoft’s continuous commitment to providing a secure and compliant cloud environment for our customers.

In case you’re unfamiliar with the ISO, it’s an international organization that establishes standards in a variety of areas, from manufacturing to engineering to food safety. At last count, the ISO managed over 21,000 standards, and if your organization is looking to establish its credibility, then achieving compliance with ISO standards is an important step.

You can find out more about Azure security at the Microsoft Azure Trust Center. If you’re in charge of selecting a secure and dynamic cloud services solution, then you’ll want to check Azure out.