Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Cloud 101CircleEventsBlog
Master CSA’s Security, Trust, Assurance, and Risk program—download the STAR Prep Kit for essential tools to enhance your assurance!

All Articles

Home
All Articles
Cybersecurity and Privacy Certification from the Ground Up

Blog Published: 06/04/2018

By Daniele Catteddu, CTO, Cloud Security Alliance The European Cybersecurity Act, proposed in 2017 by the European Commission, is the most recent of several policy documents adopted and/or proposed by governments around the world, each with the intent (among other objectives) to bring clarity to ...

Prepare to Take (and Ace) the CCSK Exam at Infosecurity Europe

Blog Published: 05/31/2018

By Ryan Bergsma, Training Program Director, Cloud Security AllianceHere’s a riddle for you. It’s been called the “mother of all cloud computing security certifications” by CIO Magazine. Search Cloud Security said it’s “a good alternative cloud security certification for an entry-level to midrange...

Bitglass Security Spotlight: Twitter, PyRoMine, & Stresspaint

Blog Published: 05/31/2018

By Jacob Serpa, Product Marketing Manager, BitglassHere are the top cybersecurity stories of recent weeks:—Twitter exposes user credentials in plaintext—PyRoMine mines Monero and disables security—Stresspaint malware hunts Facebook credentials—MassMiner malware mines cryptocurrency—Access Group E...

Open Survey: Enterprise Resource Planning and Cloud Adoption Survey

Press Release Published: 05/29/2018

In February, the Cloud Security Alliance released ”The State of ERP Security in the Cloud” to provide IT and management professionals with a sound overview of cloud security for ERP systems. The following survey will attempt to better understand cloud preparation and migration, features and benef...

CCSK Certification vs AWS Certification – A Definitive Guide

Blog Published: 05/28/2018

Updated on 7/15/24 to reflect the current versions of the CCSK and AWS Certifications. By Graham Thompson, CCSK, CCSP, CISSP, Authorized Trainer, Intrinsec Security. I was recently asked about CCSK certification vs AWS certification and which one should be pursued by someone looking to get int...

How ChromeOS Dramatically Simplifies Enterprise Security

Blog Published: 05/25/2018

By Rich Campagna, Chief Marketing Officer, BitglassGoogle's Chromebooks have enjoyed significant adoption in education, but have seen very little interest in the enterprise until recently. According to Gartner's Peter Firstbrook in Securing Chromebooks in the Enterprise (6 March 2018), a survey o...

What If the Cryptography Underlying the Internet Fell Apart?

Blog Published: 05/23/2018

By Roberta Faux, Director of Research, EnvietaWithout the encryption used to secure passwords for logging in to services like Paypal, Gmail, or Facebook, a user is left vulnerable to attack. Online security is becoming fundamental to life in the 21st century. Once quantum computing is achieved, a...

Cloud Security Alliance Releases The State of Post-Quantum Cryptography

Press Release Published: 05/23/2018

Report offers an overview of challenges involved with future of data security SEATTLE, WA – May 23, 2018 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environme...

Surprise Apps in Your CASB PoC

Blog Published: 05/21/2018

By Rich Campagna, Chief Marketing Officer, BitglassBarely five years old, the Cloud Access Security Broker (CASB) market is undergoing its second major shift in primary usage. The first CASBs to hit the market way back in 2013-2014 primarily provided visibility into Shadow IT. Interest in that vi...

Majority of Australian Data Breaches Caused by Human Error

Blog Published: 05/18/2018

By Rich Campagna, Chief Marketing Officer, Bitglass It wasn't long ago that the first breach under the Office of the Australian Information Commissioner's (OAIC) Privacy Amendment Bill was made public. Now, OAIC is back with their first Quarterly Statistics Report of Notifiable Data Brea...

Bitglass Security Spotlight: LinkedIn, Vector, and AWS

Blog Published: 05/17/2018

By Jacob Serpa, Product Marketing Manager, BitglassHere are the top cybersecurity stories of recent weeks:—LinkedIn security gap exposes users' data—Vector app reveals customers' information—AWS misconfiguration makes LocalBlox user information public—New malware steals data via power lines—Banki...

Cloud Security Alliance Announces FedSTAR, a New Joint Certification System with FedRAMP

Press Release Published: 05/14/2018

System to be based on a common framework for deployment, use and maintenance 
Seattle, WA– May 14, 2018 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, tod...

Bob Gourley to Speak on Nation State Attacks at CSA Federal Summit 2018

Press Release Published: 05/11/2018

Joins world-class speaker line-up of federal and cybersecurity experts 
 Seattle, WA – May 11, 2018 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, announc...

Orbitz: Why You Can't Secure Data in the Dark

Blog Published: 05/11/2018

By Jacob Serpa, Product Marketing Manager, BitglassOn March 1, 2018, Orbitz discovered that a malicious party may have stolen information from one of its legacy platforms. The compromised platform housed Orbitz customer information such as mailing addresses, phone numbers, email addresses, and fu...

Cloud Security Alliance Announces Federal Summit 2018 Speaker Line-up

Press Release Published: 05/10/2018

Presentations to focus on how agencies can shift to a secure cloud 
for mission critical systems Seattle, WA – May 9, 2018 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computi...

baseStriker: Office 365 Security Fails To Secure 100 Million Email Users

Blog Published: 05/10/2018

By Yoav Nathaniel, Customer Success Manager, AvananWe recently uncovered what may be the largest security flaw in Office 365 since the service was created. Unlike similar attacks that could be learned and blocked, using this vulnerability hackers can completely bypass all of Microsoft’s security,...

CSA Summit Returns to Infosecurity Europe 2018

Press Release Published: 05/09/2018

World’s leading cloud security organization brings its premier event to Europe’s top information security conference Seattle, WA – May 9, 2018 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secu...

One Simple Way to Avoid 57 Percent of Breaches

Blog Published: 05/08/2018

By Rich Campagna, Chief Marketing Officer, Bitglass I recently caught wind of a survey of 3000 cybersecurity professionals commissioned by ServiceNow and Ponemon. One of the first statistics that jumped out at me? "57% of data breach victims said they were breached due to an unpatched k...

The Case for CASB: Healthcare

Blog Published: 05/01/2018

By Rich Campagna, Chief Marketing Officer, BitglassOver the past couple of years, Cloud Access Security Brokers (CASBs) have gone from a nascent, barely known technology to the de facto standard for secure public cloud enablement in every enterprise vertical. Early on, it's tough to draw patterns...

Are Traditional Security Tools Dead?

Blog Published: 04/26/2018

By Salim Hafid, Product Marketing Manager, BitglassWhen evaluating security options, CISOs and security architects are always looking to the solution that will minimize cost and administrative overhead while maximizing data protection. At the highest levels, enterprises have relied on traditional...

Looking for the CCM?

Start using the Cloud Controls Matrix to simplify compliance with multiple standards & regulations.

Learn more
 
« First
133
134
135
137
139
140
141
Last »