Cloud 101CircleEventsBlog

CSA Official Press Release

Published 11/18/2021

Cloud Security Alliance’s Flagship Cloud Security Assessment and Guidance Documents Are Now Available in Five Additional Languages

Cloud Security Alliance’s Flagship Cloud Security Assessment and Guidance Documents Are Now Available in Five Additional Languages

Cloud Controls Matrix (CCMv4), Consensus Assessments Initiative Questionnaire (CAIQ) are now available to a wider global audience

SEATTLENov. 18, 2021 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today announced that two of its most popular assessment and guidance documents that ensure compliance with cloud security protocols are now available in additional languages. The Cloud Controls Matrix (CCMv4) is available in Chinese (ZH), Hungarian (HU), Japanese (JA), Spanish (ES), and Turkish (TR), while the Consensus Assessments Initiative Questionnaire (CAIQv4) has been translated into Japanese (JA). Now available to a wider global audience, these translations offer modern enterprises additional security control transparency.

“With these translations, more organizations around the globe will be able to decisively ascertain a cloud security provider’s security stance,” said Daniele Catteddu, Chief Technology Officer, Cloud Security Alliance. “Determining which providers are satisfying security and compliance standards is a vital part of doing business, and the need to stay on the right side of privacy regulations are essential as enterprises continue to expand their business scope.”

Cloud Controls Matrix (CCM) is a cybersecurity control framework for cloud computing, composed of 197 control objectives that are structured in 17 domains, covering all key aspects of the cloud technology. It can be used as a tool for the systematic assessment of a cloud implementation, and provides guidance on which security controls should be implemented by which actor within the cloud supply chain. The controls framework is aligned to the CSA Security Guidance for Cloud Computing and is considered a de-facto standard for cloud security assurance and compliance.

With the latest roll-out, CCMv4 was combined with CAIQ, a means to document what security controls exist in IaaS, PaaS, and SaaS services. CAIQ provides a set of Yes/No questions that cloud consumers and cloud auditors can ask of a cloud provider to ascertain their compliance to the CCCM. CAIQ helps cloud customers gauge the security posture of prospective cloud service providers and determine if their cloud services are suitably secure.

CCM and CAIQ are free resources. To download these, as well as other translated versions, please visit CSA Research Publications.

About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

Share this content on your favorite social network today!

About Cloud Security Alliance

The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, follow us on Twitter @cloudsa.

For press inquiries, email Zenobia Godschalk of ZAG Communications or reach her by phone at 650.269.8315.