Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Cloud 101CircleEventsBlog
Master CSA’s Security, Trust, Assurance, and Risk program—download the STAR Prep Kit for essential tools to enhance your assurance!

All Articles

Home
All Articles
CSA Summit at RSA 2020 - Recap Part 2

Blog Published: 03/03/2020

By Frank Guanco, Research Program Manager, CSARead part two of the CSA Summit at RSA recap. In this post we’ll be exploring the big ideas and takeaways from the afternoon sessions. Several main questions and ideas our afternoon speakers addressed were:How are enterprises supposed to prepare for i...

CSA Summit at RSA 2020 - Recap Part 1

Blog Published: 03/02/2020

By Frank Guanco, Research Program Manager, CSACSA was excited to welcome a diverse group of speakers to discuss cloud security and privacy during this year’s CSA Summit at RSA Conference 2020. We heard from Glenn Gerstell, Alex Stamos, Phil Venables, Dan Geer and many others. Our speakers address...

​Get a grip on data in Box and beyond - for compliance sake.

Blog Published: 02/27/2020

By: Salah Nassar, Vice President of Marketing, CipherCloudHow it all startedWe all love Box. Box makes cloud collaboration better and is a key business consideration for organizations to begin their journey into cloud adoption on the ever-expanding digital transformation initiatives. In fact, man...

How CSA is Working to Address Privacy

Blog Published: 02/25/2020

By John DiMaria, Assurance Investigatory Fellow, CSAThe European Data Protection Board (EDPB) published an infographic on compliance and enforcement of the GDPR from May 2018 to January 2019. It shows that 95,180 complaints have been made to EU national data protection authorities by individuals ...

The Knowledge Gap, Risk of the Unknown & the Certificate of Cloud Auditing Knowledge

Blog Published: 02/24/2020

By Daniele Catteddu, Chief Technology Officer, CSAI have a business admin academic background and so I have always approached cybersecurity risk management using those lenses. The more I have looked at the issues in cybersecurity, the more I am convinced that if you want to manage your risk, you ...

Cloud Security Alliance 2020 Initiatives Changing the Face of IT Audit and Cloud Assurance

Press Release Published: 02/24/2020

Certificate of Cloud Auditing Knowledge and Cloud Controls Matrix v4 represent critical progress to modernize the audit profession and align cloud assurance with technology innovationsSAN FRANCISCO – FEB. 24, 2020 – RSA CONFERENCE – The Cloud Security Alliance (CSA), the world’s leading organizat...

CSA Continues to Drive Leadership in Cloud Security with New Research

Press Release Published: 02/24/2020

Latest initiatives serve to steer enterprises on a successful cloud migration journeySAN FRANCISCO – Feb. 24, 2020 – RSA CONFERENCE 2020 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure...

Cloud Security Alliance Opens the Call for Papers for SECtember

Press Release Published: 02/24/2020

Registration for leading cloud-security event opens March 16SAN FRANCISCO – FEB. 24, 2020 – RSA CONFERENCE 2020 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environm...

Using Open Policy Agent (OPA) to Develop Policy as Code for Cloud Infrastructure

Blog Published: 02/21/2020

By Becki Lee, Senior Technical writer at Fugue, Inc Originally published as: Interactively Debugging the Rego Policy Language with Frego Policy as code is an effective way to uniformly define, maintain, and enforce security and compliance standards in the cloud. Treating policy like code means ta...

Proposed Principles for Artificial Intelligence Published by the White House

Blog Published: 02/19/2020

By Francoise Gilbert, Data & Privacy Expert, DataMinding.comThis blog originally appeared on Francoise Gilbert's blog here, read more updates around privacy by going to here website DataMinding.com.A draft memorandum outlining a proposed Guidance on Regulation of Artificial Intelligence Appli...

Cloud Security Challenges in 2020

Blog Published: 02/18/2020

By Ashwin Chaudhary, Chief Executive Officer, Accedere Inc.The worldwide public cloud services market is forecast to grow 17% in 2020 to total $266.4 billion, up from $227.8 billion in 2019 according to Gartner. As the cloud continues to be more and more heavily adopted, it’s important to be awa...

Glenn Gerstell to Share Perspective on What the Digital Revolution Holds in Store for Business at CSA Federal Summit 2020

Press Release Published: 02/13/2020

How will private business fare under increased regulations brought on by the electronic era?SEATTLE – Feb. 13, 2020 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing env...

Using SOC Reports for Cloud Security and Privacy

Blog Published: 02/10/2020

By Ashwin Chaudhary, Chief Executive Officer, Accedere Inc Data security and privacy are increasingly challenging in today’s cloud-based environments. Many organizations are storing a significant amount of data in distributed and hybrid cloud and even unmanaged environments, increasing challenge...

CCPA – Introduction, Applicability and Recommendations

Blog Published: 02/06/2020

By Neeraj Nayak, Senior Manager at Cipher Cloud.What is the CCPA and what is its applicability to businesses?The California Consumer Privacy Act (CCPA) of 2018 is a broadly applicable and wide-ranging privacy law that will come into effect on January 1, 2020. The CCPA applies to any business that...

Securing data and maintaining compliance in ServiceNow

Blog Published: 01/27/2020

By Neeraj Nayak, Senior Manager, CipherCloud2019 was one of the worst and shocking years in cybersecurity. Worst because of the scale of data exposure - 5183 breaches, exposing 7.9 billion records in just the first nine months of 2019 [1]. Shocking because of the post-mortem reports - most of the...

Can you arrest a decentralized autonomous organization that lives in outer space?

Blog Published: 01/23/2020

By Kurt Seifried, Chief Blockchain Officer, CSAOne aspect of the modern world is that lawbreaking has gotten more and more ambiguous. If I ship a pile of electronic scooters to some random city and pay contractors to drop them off around the city, have I just committed some bizarre act of litteri...

​Prevent security misconfigurations in a multi-cloud environment

Blog Published: 01/20/2020

By the CipherCloud TeamIn November 2019, we witnessed one of the biggest data breaches to date. Personal information of 1.2 billion users got exposed, including phone numbers, email addresses and profiles of hundreds of millions of people that include home and cell phone numbers, associated socia...

2020 Predictions: Hear Me Now and Believe Me Later

Blog Published: 01/17/2020

By Jim Reavis, Co-Founder and CEO of CSAI am typing up my prediction blog using an invisible ink font, to reduce my embarrassment when 2021 rolls by. I know prediction articles can be a dime a dozen and prognosticators pick both easy and vague items to appear smarter than they are. I am all about...

Behind the Scenes of the IoT Working Group with Mark Yanalitis

Blog Published: 01/15/2020

By CSA Staff and Mark Yanalitis Here at CSA, our working groups are the core of what we do. From researching best practices, to tackling challenges on the horizon, they bring together security professionals from diverse backgrounds and experiences to collaborate on research that will benefit the ...

​Five Predictions to Impact Enterprise Network Security in 2020

Blog Published: 01/10/2020

By Etay Bogner, VP, Zero-Trust Products, ProofpointAccelerating developments in security are playing a significant role in the evolution of enterprise networking. For years, the industry has relied on a hardware-centric, trust-based model that has become increasingly inflexible and insecure. Empl...

Looking for the CCM?

Start using the Cloud Controls Matrix to simplify compliance with multiple standards & regulations.

Learn more
 
« First
122
123
124
126
128
129
130
Last »