Hey Bjorn, pls start with reading OpenStack Security Guide. Cloud Security Alliance Cloud Control Matrix may also be useful for you. Apologies for misspelling your name, I'm sending from mobile. Adam On 30 Nov 2016 10:05, "Björn Stübe" <info at bjoern-stuebe.de> wrote: Hey Community, I'm implementing an OpenStack environment for study purposes. My goal is to make an security audit on the environment for the ISO/IEC 27001 certificate. Do you have hints as I could started? Do you have tipps which I should pay attention to? Best regards, Björn _______________________________________________ Openstack-security mailing list Openstack-security at lists.openstack.org http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-security -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20161130/666e2e8c/attachment.html>