Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Initiatives & Partnerships
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
Stay compliant in the cloud
CCAK Training
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
GDPR Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates & Training
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Zero Trust Training (ZTT)
Micro-Trainings
Train my entire team
Get Involved
Become an Instructor
Become a Training Partner
Research
CSA Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Architectures and Components
Enterprise Architecture
Hybrid Cloud Security
Emerging Technologies
Blockchain/Distributed Ledger
Quantum-safe Security
Securing DevOps
Application Containers and Microservices
DevSecOps
Security Services
Enterprise Resource Planning
Software-Defined Perimeter
Zero Trust
Threat Intelligence
Global Security Database (GSD)
Top Threats
View all topics
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Initiatives & Partnerships
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
Stay compliant in the cloud
CCAK Training
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
GDPR Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates & Training
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Zero Trust Training (ZTT)
Micro-Trainings
Train my entire team
Get Involved
Become an Instructor
Become a Training Partner
Research
CSA Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Architectures and Components
Enterprise Architecture
Hybrid Cloud Security
Emerging Technologies
Blockchain/Distributed Ledger
Quantum-safe Security
Securing DevOps
Application Containers and Microservices
DevSecOps
Security Services
Enterprise Resource Planning
Software-Defined Perimeter
Zero Trust
Threat Intelligence
Global Security Database (GSD)
Top Threats
View all topics
Cloud 101
Circle
Events
Blog
Sign In

Welcome to the Cloud Security Alliance

The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.
Earn your certificate in cloud
security
Read the latest cloud security
research
Improve your compliance
with STAR
Become a corporate
member
Join our online
community

Latest News from CSA

FinCloud Security Summit
FinCloud Security Summit
With the accelerated growth of cloud computing as a way for banks, fintech, insurance and other organizations to scale their operations efficiently, adopting security best practices that can minimize risk and demonstrate compliance is critical. Join us and hear from industry leaders at large global banks, fintech, cloud service providers, security auditors and more that are applying solutions today that protect the critical infrastructure of tomorrow in the financial sector.
Register now
Support your Cloud Strategy with CSA Enterprise Membership
Support your Cloud Strategy with CSA Enterprise Membership
Avoid reinventing the wheel by leveraging the best practices and tools created by CSA and its community of experts. CSA members have exclusive access to our vast community of vendor-neutral subject matter experts who can advise on everything from best practices for developing a cloud strategy, to tactical issues such as evaluating and monitoring cloud service providers. Learn how we can help. 
Learn more
Circle has a new look!
Circle has a new look!
Circle got a makeover! A community forum in which individuals with varying levels of experience can collaborate and introduce ideas, Circle connects people interested in anything cloud security. Checkout our new look and connect with your peers a little easier
Go to Circle

Explore Resources

Core Cloud

Regardless if you already have a well established cloud security program or are starting your cloud migration for the first time, CSA can help you enhance your security strategy. Tap into our substantial database of research and strategies needed for organizations to achieve comprehensive cloud security. Learn about cybersecurity threats from the latest Top Threats to Cloud Computing: Pandemic Eleven, close the skills gap by obtaining your CCSK certificate, and support the work CSA does by joining our community or becoming a corporate member.

Cloud Assurance

Improve the security and compliance posture of your organization and leverage the controls inside of cloud assurance to build stronger value in your business systems. CSA provides tools and guidance that help entire industries and countries build their own cloud assurance ecosystem. Publish your organization on the STAR Registry, become CCAK certified, or demonstrate your commitment to holistic security by qualifying for Trusted Cloud Provider status.

Future Cloud

Look beyond the challenges of the current cloud security ecosystem and leverage CSA to help your organization solve tomorrow’s problems, today. Explore innovative technologies and strategies, such as the Zero Trust Advancement Center, Y2Q - the quantum countdown, or our Global Security Base, that will help shape the future of cloud and cybersecurity.

Thank you for attending this year's SECtember conference, September 26-30, 2022 in Bellevue, WA. Presentations will be available to download here. It was exciting to gather with so many members of our community and discuss cyber risk in the modern enterprise. Save the date for SECtember 2023, taking place September 18-22, 2023 in Bellevue, WA. SECtember is the essential industry conference to assist organizations in elevating their cybersecurity capabilities and will feature leaders from Government, Cloud, Cybersecurity and Global 2000 enterprises. The event will provide critical insights into board oversight of cybersecurity, CISO strategies, emerging threats and best practices, all against the backdrop of cloud and related leading edge technologies.

View Recorded Sessions

Join the Alliance

CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products.

34

active working
groups and initiatives

489

research publications

57,000+

visitors view CSA
research each month

126,000+

industry professionals
are a part of CSA

1,900+

services listed in
the STAR Registry

Become a Corporate Member
Join Our Community

Press Releases

Cloud Security Alliance and the Israel National Cyber Directorate Sign Memorandum of Understanding

October 27, 2022

 

Cloud Security Alliance Announces Trusted Cloud Consultant Program

October 27, 2022

 

New Study from Cloud Security Alliance and BigID Finds That Organizations Are Struggling to Track, Secure Sensitive Data in the Cloud

October 20, 2022

 

Cloud Security Alliance Partners with SecurityScorecard

October 20, 2022

 

See more

Industry Insights

Security Program Management (SPM) and Governance, Risk and Compliance (GRC): What’s the Difference?

Security Program Management (SPM) and Governance, Risk and Compliance (GRC): What’s the Difference?

December 07, 2022

 
Zero Trust is Key to Supply Chain Security

Zero Trust is Key to Supply Chain Security

December 07, 2022

 
Manual vs. SSPM: Research on What Streamlines SaaS Security Detection and Remediation

Manual vs. SSPM: Research on What Streamlines SaaS Security Detection and Remediation

December 07, 2022

 
5 Tips for CISOs and Boards Navigating the Evolving Regulatory Landscape

5 Tips for CISOs and Boards Navigating the Evolving Regulatory Landscape

December 06, 2022

 

See more

Upcoming CSA Events

Cloud Security Demo Forum
Cloud Security Demo Forum

October 17, 2022 - March 31, 2023 | Online

Learn more

Zero Trust Demo Forum
Zero Trust Demo Forum

October 17, 2022 - March 31, 2023 | Online

Learn more

FinCloud Fridays Webinars
FinCloud Fridays Webinars

October 28, 2022 - January 21, 2023 | Online

Learn more

Continuously Monitoring First and Third Parties against the CCM Framework
Continuously Monitoring First and Third Parties against the ...

December 13 | online

Learn more