Welcome to the Cloud Security Alliance

The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.

Latest News from CSA

Cloud Controls Matrix v4 Released
Version 4 of the CCM has been updated to ensure coverage of requirements deriving from new cloud technologies, new controls and security responsibility matrix, improved auditability of the controls, and enhanced interoperability and compatibility with other standards.
Download Now
CCAK Study Guide Now Available
The Certificate of Cloud Auditing Knowledge (CCAK) Study Guide is now available for purchase. The study guide is a valuable resource for IT, business professionals looking to qualify for the CCAK exam. 
Find out more
Which topics for a new CPE class most interests you?
CSA is looking for input from the cybersecurity community on what topics you all would like to see in our new CPE course series. What subject areas would you be most interested in learning more about? Let us know by taking our two-question survey.
Take two-question survey

Explore resources for cloud security and learn more about CSA.

Research

Emerging cloud technologies

Cloud has become the foundation for launching new technologies. Explore emerging technologies that impact the enterprise and adopt industry best practices for implementing and preparing for the future.

Security Controls for IoT
Preparing for Quantum Computers
Blockchain for Security

Leverage frameworks and architectures specific to cloud

Adopt core tools used by government and regulated industries for the use and management of cloud services. Build a foundation for secure cloud environments with proven models for mitigations, countermeasures, and capabilities specific to cloud computing. The following tools have been used by enterprises to implement frameworks, architectures, and approaches:

Cloud Controls and Remediations
Cloud Reference Architecture
Octagon Model for Risk

Increase transparency

Go beyond security and start building trust. Programs like CSA STAR help improve transparency between cloud customers and providers and bridge the communication gap. From streamlining risk assessments to improving your organization's position to offering an option for continuous self-assessments, it allows our industry to unite effectively to secure the cloud.

Become STAR Certified

Become certified in cloud security.

Gain the necessary knowledge to support a smooth cloud transition and beyond with focused training from CSA. Start by mastering the best practices of cloud security with the Certificate of Cloud Security Knowledge (CCSK). Earning the CCSK will lay the necessary foundation to prepare you to earn the new cloud auditing credential in development by CSA and ISACA.

Certificate of Cloud Auditing Knowledge (CCAK)

The Certificate of Cloud Auditing Knowledge (CCAK) is the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing cloud computing systems. The CCAK credential and training program will fill the gap in the market for technical education for cloud IT auditing.

Learn more about the CCAK

Certificates & Training

Membership

Expand your network to the cloud security community

Build relationships with members of the industry and take a leadership role in shaping the future by becoming a member of the Cloud Security Alliance. Our community encompases industry practitioners, associations, governments, along with our corporate and individual members. The extensive network benefits the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provides a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem.

Membership for Enterprises
Membership for Cloud Solution Providers

Ask the Experts

CSA Corporate Members have direct access to research analysts to get briefed on research initiatives first-hand. CSA is a resource of subject matter experts, and we're here to support your roadmap and strategy. As a member, start a conversation around what you're doing, and CSA can help connect you with the right people to talk through that strategy.

Schedule a Consultation

Tools & Platforms

CSA Corporate Members receive complimentary seats for the cyber threat intelligence exchange. Security operations teams can leverage this platform to quickly and anonymously collaborate with other members on attack mitigation and solutions. It can be used to communicate threats either internally or externally. Companies hesitant about sharing data outside of their organization can still leverage it to communicate threats between departments.

Schedule a Consultation

Join the Alliance

CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products.

29

active working
groups and initiatives

298

research downloads

16,000+

visitors view CSA Best
Practices each month

100,000+

Industry professionals
are a part of CSA

1000+

providers listed in
the STAR Registry

Latest News

Cloud Security Alliance Announces 2021 CSA Research Fellows

February 04, 2021

 

Cloud Security Alliance’s New Internet of Things (IoT) Security Controls Framework Allows for Easier Evaluation, Implementation of Security Controls within IoT Architectures

January 28, 2021

 

Cloud Security Alliance’s New Cloud Controls Matrix v4 Adds New Log and Monitoring Domain and More Than 60 New Cloud Security Controls

January 21, 2021

 

Cloud Security Alliance Releases Cloud-Based, Intelligent Ecosystems - Redefining Intelligence & Driving to Autonomous Security Operations

December 10, 2020

 

See more

Industry Insights

​Study Guide for the Certificate of Cloud Auditing Knowledge (CCAK) Now Available

February 23, 2021

 

Remote working strategy: desktop virtualization or remote access?

February 22, 2021

 

Cloud Security for SaaS Startups Part 1: Requirements for Early Stages of a Startup

February 19, 2021

 

How to Secure Your CDE and Achieve PCI DSS Compliance

February 18, 2021

 

See more

Upcoming CSA Events

Journey to the Cloud with Confidence

March 10, 2021 | Virtual

Learn more

CCSK Training and Certification Guidelines & Introduction to...

March 11, 2021 | Virtual

Learn more

CSA APAC Virtual Summit 2021

March 31, 2021 | Virtual

Learn more

EMEA Summit 2021

April 13, 2021 - April 14, 2021 | Virtual

Learn more