+IAM-02.02B

1. Overview

IAM-02.02B

The aforementioned procedures include, but are not limited to:

1. Processes and technical controls to restrict access to the cloud service provider's data and system functions to authorised personnel; and
2. Processes and technical controls to manage and verify access permissions within the cloud service provider's systems.

Summary	Standard

1.1 References

1.2 Identified Requirements

1.2 Related Regulation

2. Identified Requirements

Requirements
Source	Requirement

3. Related Regulations

Regulations
Source	Regulation

Cloud Computing Compliance Criteria Catalogue (C5:2026) -
Copyright by Bundesamt für Sicherheit in der Informationstechnik (https://www.bsi.bund.de/)

https://www.bsi.bund.de/DE/Themen/Unternehmen-und-Organisationen/Informationen-und-Empfehlungen/Empfehlungen-nach-Angriffszielen/Cloud-Computing/Kriterienkatalog-C5/C5_2025/C5_2025_node.html