Membership
Become a Member
Enterprises
Solution Providers
Startups
Current Members
Solution Providers
Affiliates
Assurance
STAR Program
STAR Levels
View Registry
Submit to Registry
Provide Feedback
GDPR Code of Conduct for STAR
STAR Resources
CAIQ
Cloud Controls Matrix
GDPR Code of Conduct
CAIQ-Lite
CSA-OneTrust VRM Tool
GDPR
Download the Code of Conduct
Submit Code of Conduct to the Registry
Resource Center
Global Consultancy
Become a Consulting Partner
Find a Consulting Service
Certificates & Training
Certificates
CCSK
CCAK
Trainings
CCAK (Coming Soon)
CCSK Lectures
CCSK Lectures + Labs
Advanced Cloud Security Practitioner
Register for Training
For Individuals
For Enterprises
Instructors
Become an Instructor
Training Partners
Become a Training Partner
Webinars
Cloudbytes
Research
GDPR
Events
Americas
APAC
EMEA
Research
What We Do
Research Working Groups
CSA Research Lifecycle
Research Publications
Security Guidance v4
Cloud Controls Matrix (CCM)
IoT Framework
Contribute
Open Peer Reviews
Surveys
Volunteer FAQ
Ron Knode Award
Working Groups
Internet of Things
DevSecOps
Software Defined Perimeter
Blockchain
Cloud Controls Matrix
EMEA Projects
APAC Projects
Community
About Circle
Create an Account
Login to Circle
How To Get Started
Blog
Events
Americas
APAC
EMEA
Chapters
Global Chapters
Form a Chapter
About
About CSA
Board
History
CSA Staff
CSA EMEA
Press Releases
News Coverage

Welcome to the Cloud Security Alliance

The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.
Earn your certificate in cloud
security
Read the latest cloud security
research
Improve your compliance
posture
Volunteer for a research working
group
Have a question about cloud security? Ask our
community

Latest News from CSA

Cloud Controls Matrix v4 Released
Version 4 of the CCM has been updated to ensure coverage of requirements deriving from new cloud technologies, new controls and security responsibility matrix, improved auditability of the controls, and enhanced interoperability and compatibility with other standards.
Download Now
Certificate of Cloud Auditing Knowledge being developed by CSA and ISACA
The CCAK is the only credential for industry professionals that demonstrates expertise in the essential principles of auditing cloud computing systems.
Find out more
From the SOC to the Boardroom
Explore security threats, innovations, best practices, and the global cyber governance approaches needed to thrive in the new frontiers of cloud security from the industry’s top security experts.
Register your interest

Explore resources for cloud security and learn more about CSA.

Research

Emerging cloud technologies

Cloud has become the foundation for launching new technologies. Explore emerging technologies that impact the enterprise and adopt industry best practices for implementing and preparing for the future.

Security Controls for IoT
Preparing for Quantum Computers
Blockchain for Security

Leverage frameworks and architectures specific to cloud

Adopt core tools used by government and regulated industries for the use and management of cloud services. Build a foundation for secure cloud environments with proven models for mitigations, countermeasures, and capabilities specific to cloud computing. The following tools have been used by enterprises to implement frameworks, architectures, and approaches:

Cloud Controls and Remediations
Cloud Reference Architecture
Octagon Model for Risk

Increase transparency

Go beyond security and start building trust. Programs like CSA STAR help improve transparency between cloud customers and providers and bridge the communication gap. From streamlining risk assessments to improving your organization's position to offering an option for continuous self-assessments, it allows our industry to unite effectively to secure the cloud.

Become STAR Certified

Become certified in cloud security.

Gain the necessary knowledge to support a smooth cloud transition and beyond with focused training from CSA. Start by mastering the best practices of cloud security with the Certificate of Cloud Security Knowledge (CCSK). Earning the CCSK will lay the necessary foundation to prepare you to earn the new cloud auditing credential in development by CSA and ISACA.

Certificate of Cloud Auditing Knowledge (CCAK)

The Certificate of Cloud Auditing Knowledge (CCAK) is the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing cloud computing systems. The CCAK credential and training program will fill the gap in the market for technical education for cloud IT auditing.

Learn more about the CCAK

Certificates & Training

Membership

Expand your network to the cloud security community

Build relationships with members of the industry and take a leadership role in shaping the future by becoming a member of the Cloud Security Alliance. Our community encompases industry practitioners, associations, governments, along with our corporate and individual members. The extensive network benefits the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provides a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem.

Membership for Enterprises
Membership for Cloud Solution Providers

Ask the Experts

CSA Corporate Members have direct access to research analysts to get briefed on research initiatives first-hand. CSA is a resource of subject matter experts, and we're here to support your roadmap and strategy. As a member, start a conversation around what you're doing, and CSA can help connect you with the right people to talk through that strategy.

Schedule a Consultation

Tools & Platforms

CSA Corporate Members receive complimentary seats for the cyber threat intelligence exchange. Security operations teams can leverage this platform to quickly and anonymously collaborate with other members on attack mitigation and solutions. It can be used to communicate threats either internally or externally. Companies hesitant about sharing data outside of their organization can still leverage it to communicate threats between departments.

Schedule a Consultation

Join the Alliance

CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products.

29

active working
groups and initiatives

293

research downloads

16,000+

visitors view CSA Best
Practices each month

100,000+

Industry professionals
are a part of CSA

1000+

providers listed in
the STAR Registry

Become a Corporate Member
Join Circle Community

Latest News

Cloud Security Alliance’s New Cloud Controls Matrix v4 Adds New Log and Monitoring Domain and More Than 60 New Cloud Security Controls

January 21, 2021

 

Cloud Security Alliance Releases Cloud-Based, Intelligent Ecosystems - Redefining Intelligence & Driving to Autonomous Security Operations

December 10, 2020

 

Cloud Security Alliance Opens Registration for CloudBytes Connect: From the SOC to the Boardroom

November 19, 2020

 

Cloud Security Alliance, Tiro Security Partner to Offer Complimentary Cloud Certification Exam to Cybersecurity Women, Minorities in nextCISO Program

November 17, 2020

 

See more

Industry Insights

The CSA Cloud Controls Matrix (CCM) V4: Raising the cloud security bar to the next level

January 21, 2021

 

NACHA Updates | Supplementing Data Security Requirements

January 19, 2021

 

CCSK Success Stories: CSA Japan Chapter Executive Director

January 13, 2021

 

SolarWinds, GitHub Leaks and Securing the Software Supply Chain

January 11, 2021

 

See more

Upcoming CSA Events

Level Up Your Detection and Response in SaaS Apps

January 27, 2021 | Virtual

Learn more

Data Rights and the Cloud

January 28, 2021 | Virtual

Learn more

From the SOC to the Boardroom

February 2, 2021 - February 4, 2021 | Virtual

Learn more