Security                                                   7


            Introduction

            The  guidelines  contained  within  this  Recommendation  |  International  Standard  are  in  addition  to  and
            complement the guidelines given in ISO/IEC 27002.
            Specifically,  this  Recommendation  |  International  Standard  provides  guidelines  supporting  the
            implementation of information security controls for cloud service customers and cloud service providers.
            Some guidelines are for cloud service customers who implement the controls, and others are for cloud service
            providers to support the implementation of those controls. The selection of appropriate information security
            controls and the application of the implementation guidance provided, will depend on a risk assessment and
            any legal, contractual, regulatory or other cloud-sector specific information security requirements.











































































                                                                                                        1045