I am working with a client who wants to be ISO 27017 compliant.
They've asked if there's anyway they can be certified, considering they're already ISO 27001 certified. I've been researching the topic for a while and i've only seen this type of compliance statement being given to Cloud service providers.
I wanted to ask if you have seen this attestation being requested and given to any company that is only a cloud consumer.
Thank you in advance for your attention!