Tap into the collective knowledge of the security community, with best practices and research from industry thought leaders.

Get Started

Transitioning to the Cloud

Consensus driven guidance…

Start your journey by consulting the roadmap to cloud adoption, the CSA Security Guidance v4 and our Guidelines for Managing Security Service in the Cloud.

Combating governance complexity…

Simplify and clarify governance in an industry thick with complexity. Assess the overall security risk of a cloud provider with a single framework that consolidates industry-accepted security standards, regulations, and controls frameworks.

Cloud Controls Matrix

Confidence through education

Build confidence to support a cloud transition and beyond with focused training and skills certification.

Certificate of Cloud Security Knowledge (CCSK)

Cloud Governance & Compliance

Leveraging Industry Expertise

Enterprises can seek private, vendor-neutral advice from subject matter experts on everything from best practices for developing a cloud strategy to tactical issues such as selecting, evaluating, on-boarding and monitoring cloud service providers.

Increasing Trust & Transparency….

Improve your management, selection and procurement of cloud service providers with increased visibility into the controls being used to keep your data safe.

STAR Program

Streamlining Vendor IT Security & Risk Assessments

Formulating a Cloud Strategy

Tackling the hard questions…

When you join CSA we tackle current and future problems, looking ahead to what could be and
focusing on unresolved solutions to what the industry currently faces. Heading off potential security
issues, while investing in the development of tools and resources for current issues.

What are the base-level
security controls required for
an IoT system?
What are the top threats to
cloud computing?
How will we protect networks
and data in the era of quantum
computing?

Entering the CSA Network

Invest your expertise into the global community…

Part of security is giving back, and companies that join the CSA community realize the value in ensuring that everyone is secure from suppliers to third-party services, to business partners. For mature organizations, joining as a member allows you to be recognized as a leader and share your expertise with the CSA network as well as engage better with other industry leaders on research initiatives.

Keeping a pulse on future technologies & standards

CSA is the single source for enterprises to understand how changes in standards and regulations affect your organization. Keep up with cloud security initiatives and understand how your organization can save money when complying with multiple standards. Participate in CSA’s Open Certification (OCF) working group or join our member-exclusive ISC Council.

Securing current and future partners…

Part of security is giving back; while your organization may be secure, that doesn’t mean the companies you partner with are. The CSA community realizes the value in ensuring that everyone is secure- from suppliers, to third-party services, to business partners. For mature organizations, joining CSA lets you be recognized as a leader by proposing and leading research initiatives.

Join the Alliance

400+

providers listed in
the STAR Registry

29

active working
groups and initiatives

237

research downloads

173+

CloudBytes webinars

Contact Us

Latest News

CSA Releases “The Six Pillars of DevSecOps” Report

August 09, 2019

 

CSA Releases New Research - Top Threats to Cloud Computing: 
Egregious Eleven

August 09, 2019

 

Cloud Security Alliance Releases Best Practices for Implementing a Secure Application Container Architecture

July 26, 2019

 

Cloud Security Alliance Releases New Research Identifying Challenges in Securing Application Containers and Microservices

July 16, 2019

 

See more

Industry Insights

Egregious 11 Meta-Analysis Part 1: (In)sufficient Due Diligence and Cloud Security Architecture and Strategy  

August 13, 2019

 

Cloud Security Alliance’s D.C. Metro Area Chapter announces the event of the year: the Cybersecurity Cruise!

August 12, 2019

 

A Technical Analysis of the Capital One Cloud Misconfiguration Breach

August 9, 2019

 

Uncovering the CSA Top Threats to Cloud Computing with Jim Reavis

August 8, 2019

 

See more

Resources & Education

CSA Knowledge Center

Our e-learning platform is a place to gain training on vendor-neutral & industry-backed research that won’t obliterate your training budget and complements other security certifications on the market.

Learn More

STAR Registry

STAR verifies cloud providers that are prepared for the cloud. Ensuring trust & transparency in both security and privacy. View organizations who are cloud verified.

View Registry

Research

To this day industry experts, thought leaders and CSA analysts from around the world have collaborated to create over 200 research reports and artifacts freely available to the security community.

View Research

Upcoming CSA Events

CSA APAC Summit Beijing 2019 – CSA Summit at BCS

August 22, 2019, Beijing, China

Register to attend
 

CSA Detroit Chapter Event 2019

AUGUST 2019, Detroit, MI

Register to attend
 

CSA Bangalore Summit 2019

September 9, 2019, Bangalore, India

Register to attend
 

Membership

For Solution Providers

Showcase your expertise and good practices to a global marketplace. Membership allows provides channel to hear about cloud challenges experienced by enterprise users. As competition continues to increase, take an active role in shaping the future of IT by setting the tone for future CSA education and research.

Learn More
 

Privacy in the Cloud

GDPR Center of Excellence

This is CSA’s information hub for GDPR compliance in the cloud and emerging technologies. The center of excellence bundles knowledge from cloud experts and acts as a single point of entry for everything GDPR. Access tools, services and best practices to comply with GDPR.

Go to Resource Center