Membership
Join as a Business
Cloud Customers
Cloud Solution Providers
SaaS Solution Providers
CxO Initiative
Contact Us
Current Business Members
Cloud Customers
Cloud Solution Providers
Join as an Individual
Regional Chapters
Circle Community Forum
Research Working Groups
STAR Program
STAR Registry
STAR Home
Submit to Registry
Provide Feedback
What is the STAR Registry?
Learn how to stay compliant in the cloud.
CCAK Training
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
GDPR Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
CSA Approved STAR Assessment Firms
Certificates & Training
Events & Webinars
Learn and network while you earn CPE credits.
Events
CloudBytes Webinars
Certificates & Training
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Train my entire team
Training Instructors
Become an Instructor
Training Partners
Become a Training Partner
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
CxO Initiative
CloudBytes Webinars
Awards & Recognition
Ron Knode Awards
Research Fellows
Industry Specific Research
Financial Services
Healthcare
Getting Started with CSA Research
Best practices for cloud security
Assess your compliance to cloud standards
Security questionnaire for vendors
The top threats to cloud computing
View more
Architectures and Components
Enterprise Architecture
Hybrid Cloud Security
Emerging Technologies
Blockchain/Distributed Ledger
Internet of Things (IoT)
Quantum-safe Security
Securing DevOps
Application Containers and Microservices
DevSecOps
Serverless
Security Services
Enterprise Resource Planning
Cloud Key Management
Security as a Service
Zero Trust
Threat Intelligence
Incident Response
Top Threats
View all working groups

Welcome to the Cloud Security Alliance

The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.
Earn your certificate in cloud
security
Read the latest cloud security
research
Improve your compliance
with STAR
Volunteer for a research working
group
Have a question about cloud security? Ask our
community

Latest News from CSA

Cloudzilla is here! Save 20% off CCSK training & exam
Cloudzilla is here! Save 20% off CCSK training & exam
Spending on cloud services grew exponentially during the pandemic and will keep on rising, creating a new era of Cloudzilla, an insatiable need for cloud-based services. In parallel, a lack of skilled and knowledgeable cloud security professionals currently plagues most organizations. To help fill some of the skills gap in cloud security, we are offering 20% off your purchase of CCSK online training. 
Save Now
CxO Trust Initiative
CxO Trust Initiative
Today announced the CSA CxO Trust, a first-of-a-kind initiative that will bring together a community of C-suite executives to evolve cloud and cybersecurity understanding, knowledge, and needed solutions in response to enterprise challenges.
Learn more about this initiative
Join us in-person at SECtember 2021
Join us in-person at SECtember 2021
Registration for SECtember, CSA’s premier event for the cloud and cybersecurity communities, is now open! Join us in-person in Bellevue, Washington on September 13-17, 2021 for educational and networking opportunities that will help you develop secure, cloud-based solutions that address the rapid cloud adoption and skills gap accelerated by the pandemic. 
Learn more

Explore resources for cloud security and learn more about CSA.

Research

Emerging cloud technologies

Cloud has become the foundation for launching new technologies. Explore emerging technologies that impact the enterprise and adopt industry best practices for implementing and preparing for the future.

Security Controls for IoT
Preparing for Quantum Computers
Blockchain for Security

Leverage frameworks and architectures specific to cloud

Adopt core tools used by government and regulated industries for the use and management of cloud services. Build a foundation for secure cloud environments with proven models for mitigations, countermeasures, and capabilities specific to cloud computing. The following tools have been used by enterprises to implement frameworks, architectures, and approaches:

Cloud Controls and Remediations
Cloud Reference Architecture
Octagon Model for Risk

Increase transparency

Go beyond security and start building trust. Programs like CSA STAR help improve transparency between cloud customers and providers and bridge the communication gap. From streamlining risk assessments to improving your organization's position to offering an option for continuous self-assessments, it allows our industry to unite effectively to secure the cloud.

Become STAR Certified

Certificate of Cloud Auditing Knowledge (CCAK)

The Certificate of Cloud Auditing Knowledge (CCAK) is the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing cloud computing systems. The CCAK credential and training program fills the gap in the market for technical education for cloud IT auditing.

Learn more about the CCAK

Become certified in cloud security.

Gain the necessary knowledge to support a smooth cloud transition and beyond with focused training from CSA. Start by mastering the best practices of cloud security with the Certificate of Cloud Security Knowledge (CCSK). Earning the CCSK will lay the necessary foundation to prepare you to earn the new cloud auditing credential in development by CSA and ISACA.

Certificates & Training

Come together, face to face, in September

Reunite with peers and make new connections at SECtember, CSA’s premier event for the cloud and cybersecurity communities. Held in Seattle September 13 - 17, 2021, this in-person event will provide educational and networking opportunities to help attendees develop secure, cloud-based solutions that address the rapid cloud adoption and skills gap accelerated by the pandemic.

Register Today

Membership for Businesses

Become a CSA Corporate Member

Regardless if you already have a well established cloud security program or are starting your cloud migration for the first time, CSA can help you enhance your security strategy. As a corporate member, your team will be able to receive consultations on your current cloud projects and initiatives.

For organizations providing cloud or security services, joining CSA allows you to educate potential users and showcase your own expertise and good practices to a global marketplace.

Membership for Enterprises
Membership for Cloud Solution Providers
Membership for SaaS Companies

SaaS Membership

SaaS companies represent the heart of business solutions and are growing rapidly. SaaS companies are very diverse in their size and security maturity. CSA’s SaaS membership provides specific benefits geared towards SaaS provider needs and pain points. Our goal is to help SaaS companies achieve excellent security and communicate a sense of trust to their customers and the greater market.

Contact us to learn more

Cloud Security Executive Briefings

On-site and virtual private executive briefings give your team access to subject matter experts to discuss cloud-specific platforms, industry trends, and technology implementations. Attendees receive valuable insights presented exclusively to this group by some of the top industry experts leading CSA’s research activities. As a member you can start a conversation around what you're doing, and CSA can help connect you with the right people to talk through that strategy.

Contact us to learn more

Join the Alliance

CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products.

30

active working
groups and initiatives

344

research downloads

16,000+

visitors view CSA Best
Practices each month

100,000+

Industry professionals
are a part of CSA

1000+

providers listed in
the STAR Registry

Become a Corporate Member
Join Circle Community

Latest News

Cloud Security Alliance Releases Guide to Facilitate Cloud Threat Modeling

July 29, 2021

 

​Cloud Security Alliance Establishes New Greater China Region Headquarters in Shanghai

July 16, 2021

 

Chris Krebs, Former Director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) to Headline Cloud Security Alliance’s SECtember

July 07, 2021

 

New Cloud Security Alliance Research Evaluates Hyperledger Fabric 2.0 Security, Provides Guidance Mapped to NIST Cybersecurity Framework

June 28, 2021

 

See more

Industry Insights

Bad guys are watching for new openings in your cloud, are you?

Bad guys are watching for new openings in your cloud, are you?

July 30, 2021

 
3 Key DevSecOps Trends for 2021

3 Key DevSecOps Trends for 2021

July 29, 2021

 
Can Web Browsers be “Secure” as Required by Federal Cybersecurity Guidelines?

Can Web Browsers be “Secure” as Required by Federal Cybersecurity Guidelines?

July 28, 2021

 
Prepare for Passing the CCAK Exam

Prepare for Passing the CCAK Exam

July 27, 2021

 

See more

Upcoming CSA Events

Call for Participation
Call for Participation

March 15, 2021 - December 21, 2021 | Virtual

Learn more

Investigating Business Email Compromise Attacks
Investigating Business Email Compromise Attacks

August 10, 2021 | Virtual

Learn more

Live Simulation of Cloud Misconfiguration Exploits
Live Simulation of Cloud Misconfiguration Exploits

August 12, 2021 | Virtual

Learn more

CCSK Training and Certification Guidelines
CCSK Training and Certification Guidelines

August 12, 2021 | Virtual

Learn more