Which international compliance standard provides cloud services information security controls?

ISO 27017 is the correct choice because it specifically provides guidelines for information security controls applicable to the provision and use of cloud services. This standard outlines best practices for both cloud service providers and cloud service customers, focusing on the unique security considerations that arise in a cloud computing environment.

While ISO 27001 serves as a foundational standard for an information security management system, and ISO 27018 focuses on the protection of personal data in the cloud, it is ISO 27017 that directly addresses the security controls relevant to cloud service environments. ISO 27003, on the other hand, provides guidance on establishing an information security management system based on ISO 27001 but does not specifically cater to cloud services. Thus, ISO 27017 stands out as the most relevant standard for cloud services information security controls among the options provided.