Tap into the collective knowledge of the security community, with best practices and research from industry thought leaders.

Transitioning to the Cloud

Consensus driven guidance…

Start your journey by consulting the roadmap to cloud adoption, the CSA Security Guidance v4 and our guidelines for privacy in the cloud, the CSA GDPR Code of Conduct.

Combating governance complexity…

Simplify and clarify governance in an industry thick with complexity. Assess the overall security risk of a cloud provider with a single framework that consolidates industry-accepted security standards, regulations, and controls frameworks.

Confidence through education

Build confidence to support a cloud transition and beyond with focused training and skills certification.

Certificate of Cloud Security Knowledge (CCSK)

Cloud Governance & Compliance

Leveraging Industry Expertise

Enterprises can seek private, vendor-neutral advice from subject matter experts on everything from best practices for developing a cloud strategy to tactical issues such as selecting, evaluating, on-boarding and monitoring cloud service providers.

Increasing Trust & Transparency….

Improve your management, selection and procurement of cloud service providers with increased visibility into the controls being used to keep your data safe.

STAR Program

Streamlining Vendor IT Security & Risk Assessments

Formulating a Cloud Strategy

Tackling the hard questions…

When you join CSA we tackle current and future problems, looking ahead to what could be and
focusing on unresolved solutions to what the industry currently faces. Heading off potential security
issues, while investing in the development of tools and resources for current issues.

What are the base-level
security controls required for
an IoT system?
What are the top threats to
cloud computing?
How will we protect networks
and data in the era of quantum
computing?

Entering the CSA Network

Invest your expertise into the global community…

Part of security is giving back, and companies that join the CSA community realize the value in ensuring that everyone is secure from suppliers to third-party services, to business partners. For mature organizations, joining as a member allows you to be recognized as a leader and share your expertise with the CSA network as well as engage better with other industry leaders on research initiatives.

Keeping a pulse on future technologies & standards

CSA is the single source for enterprises to understand how changes in standards and regulations affect your organization. Keep up with cloud security initiatives and understand how your organization can save money when complying with multiple standards. Participate in CSA’s Open Certification (OCF) working group or join our member-exclusive ISC Council.

Securing current and future partners…

Part of security is giving back; while your organization may be secure, that doesn’t mean the companies you partner with are. The CSA community realizes the value in ensuring that everyone is secure- from suppliers, to third-party services, to business partners. For mature organizations, joining CSA lets you be recognized as a leader by proposing and leading research initiatives.

Join the Alliance

400+

providers listed in
the STAR Registry

30

active working
groups and initiatives

227

research downloads

173+

CloudBytes webinars

Latest News

CSA Contributes to Key How-To Guidance Documents for Multi-Party Recognition and Continuous Audit-Based Certification

November 07, 2019

 

CSA Announces Advanced Cloud Security Practitioner Training, a Highly Technical Hands-on Course for Technical Security Professionals

November 04, 2019

 

Cloud Security Alliance Releases Anti-DDoS: Software-Defined Perimeter 
As a DDoS Prevention Mechanism

October 28, 2019

 

Cloud Security Alliance 2019 EMEA Congress Adds Focus on Risk Governance and European Cloud Certification Enablement

October 24, 2019

 

See more

Industry Insights

​Keeping Up With Changing Technology by Reducing Complexity

November 15, 2019

 

4 Common Cloud Misconfigurations & What To Do About Them

November 14, 2019

 

The Risk of Unsecured Dev Accounts

November 13, 2019

 

Google’s Potential Claim to the Throne of Quantum Supremacy: What Does it Mean for Cybersecurity?

November 06, 2019

 

See more

Resources & Education

CSA Knowledge Center

Our e-learning platform is a place to gain training on vendor-neutral & industry-backed research that won’t obliterate your training budget and complements other security certifications on the market.

STAR Registry

STAR verifies cloud providers that are prepared for the cloud. Ensuring trust & transparency in both security and privacy. View organizations who are cloud verified.

Research

To this day industry experts, thought leaders and CSA analysts from around the world have collaborated to create over 200 research reports and artifacts freely available to the security community.

Upcoming CSA Events

CSA EMEA Congress 2019

November 18, 2019 - November 21, 2019, Berlin, Germany

 

CSA Summit at RSA Conference 2020

February 24, 2020, San Francisco, CA United States

 

Membership

For Solution Providers

Showcase your expertise and good practices to a global marketplace. Membership allows provides channel to hear about cloud challenges experienced by enterprise users. As competition continues to increase, take an active role in shaping the future of IT by setting the tone for future CSA education and research.

 

Privacy in the Cloud

GDPR Center of Excellence

This is CSA’s information hub for GDPR compliance in the cloud and emerging technologies. The center of excellence bundles knowledge from cloud experts and acts as a single point of entry for everything GDPR. Access tools, services and best practices to comply with GDPR.