How To Address The BYOD Security Issue
Press Release Published: 03/26/2015
This proliferation of data that is now moving outside of company networks, down to things like employee-owned smartphones, tablets and laptops can increase the chance of data leaking out and getting into the wrong hands. This is perhaps why BYOD has become a huge pain point for professionals look...
OPEN PEER REVIEW: Security Guidance for Early Adopters of IoT
Press Release Published: 03/24/2015
The Cloud Security Alliance would like to invite you to review and comment on the Security Guidance for Early Adopters of the Internet of Things (IoT). This guidance discusses some of the challenges associated with the adoption of the IoT and concludes with a set of recommendations that can be fo...
Securing the Intersection of Sanctioned and Unsanctioned Apps in Cloud Ecosystems
Blog Published: 03/23/2015
If you are in charge of deploying a cloud app or suite like Box, Office 365, or Google Apps in your environment, you need to read this:by Krishna Narayanaswamy, Chief Scientist, NetskopeWe just completed a piece of research here at Netskope on cloud app ecosystems. In it, we highlight an importan...
Cloud Security Alliance Summit 2015 at RSA Conference To Spotlight Enterprise Lessons Learned at the Security Industry’s Largest Event
Press Release Published: 03/20/2015
Opening Keynote to Feature Philippe Courtot, Chairman & CEO of Qualys San Francisco, CA – March 20, 2015 – The Cloud Security Alliance (CSA) today announced the agenda for the CSA Summit 2015, being held at the RSA Conference on Monday, April 20 at Moscone Center West, Room 2014. This year’...
EMEA Congress 2015 CFP
Press Release Published: 03/19/2015
Cloud Security Alliance Opens Call for Presentations for EMEA Congress 2015 Berlin, Germany – March 18, 2015 - The Cloud Security Alliance (CSA) has opened the call for papers for the 2015 CSA EMEA Congress, to be held November 17-18th at the DBB Forum Berlin in Germany. CSA EMEA Congress is Eur...
Cloud Security Alliance: Insider Threat Survey
Press Release Published: 03/18/2015
The Cloud Security Alliance Cloud Data Governance Group is running a very short survey to better understand insider threat vectors and mitigating strategies for public cloud. I would be most appreciative if you could spend a few minutes taking the survey – there are 12 questions in total. Your ...
Cloud Security Alliance Announces New Federal Summit Event
Press Release Published: 03/17/2015
Stellar Program to Feature Leaders from FedRAMP and NIST Providing Key Insights into Security Compliance, Architecture, Technology and Defending the Latest Threats Washington, DC – March 17, 2015 – The Cloud Security Alliance (CSA) today announced a brand new conference to be hosted on May 5, 20...
2015 Bitglass Cloud Security Report : Security Still Cloud's Achilles Heel
Blog Published: 03/12/2015
By Christopher Hines, Product Marketing Manager, BitglassThe cloud. Companies want it, but can they secure it? Moving to cloud applications like Salesforce, Office 365 and Box, can be beneficial for business but companies must first answer the question of security. Today we announced the findings...
A Few Lessons from Recent Adware Insecurities
Blog Published: 03/11/2015
<strong>Recent adware has made significant waves in some information security </strong><strong>circles for its security vulnerabilities and </strong><strong>for its potential larger </strong><strong>impact on one of the essential systems of trust that Int...
24 Hours After FREAK, 766 Cloud Providers Still Vulnerable
Blog Published: 03/06/2015
The Average Company Uses 122 FREAK-vulnerable servicesBy Sekhar Sarukkai, Co-founder and VP of Engineering, Skyhigh NetworksThis week a group of researchers at INRA, Microsoft Reseach, and IMDEA discovered a widespread vulnerability in OpenSSL that has rendered millions of Apple and Android devic...
What Does Customer Managed Encryption Keys Really Mean for Cloud Service Providers?
Blog Published: 03/06/2015
By Todd Partridge, Director of Strategy, IntralinksHave you ever leased a safety deposit box from your bank? For years the security and privacy of a safe deposit box has been the standard in the physical world. People have put their most important and their most valued information in bank vaults ...
Cloud Security Alliance New Survey Finds Financial Firms are in Search of a Cloud Strategy
Press Release Published: 03/05/2015
Hybrid Cloud Adoption is Preferred; Control and Security of Data is Top Concern Seattle, WA –March 5, 2015 - Many financial firms are slowly putting more stock in the cloud. That’s a key finding from a new Cloud Security Alliance (CSA) survey, titled How Cloud is Being Used in the Financial Sect...
Cloud Security Alliance Announces Release of Security Framework for Governmental Clouds
Press Release Published: 03/02/2015
Report jointly developed by CSA, ENISA and TU Darmstadt Provides Step-by-Step Approach for the Procurement and Secure Use of Cloud Services Edinburgh, UK – March 2, 2015 – The Cloud Security Alliance (CSA), announces the release of a new report aimed at providing guidance to European Member Stat...
Why Companies Must Adopt the ‘Assume Mentality’ When It Comes to Breaches
Blog Published: 02/27/2015
By Christopher Hines, Product Marketing Manager, BitglassRecently Target announced that the credit card data breach that they suffered back in 2013 ended up costing them $162M. Now, I know some may argue that to a company like Target, that number is a drop in the bucket, and you’re right. But the...
The International Association of Privacy Professionals and Cloud Security Alliance Announce Privacy. Security. Risk. 2015 Conference and Call for Speaker Proposals
Press Release Published: 02/24/2015
The IAPP’s Privacy Academy and CSA Congress present P.S.R., two conferences with one powerhouse program to connect privacy and security professionals Portsmouth, NH – February 23, 2015 – The International Association of Privacy Professionals (IAPP), the largest organization of privacy profession...
GAPERTISE JOINS CLOUD SECURITY ALLIANCE AS EXECUTIVE MEMBER
Press Release Published: 02/24/2015
Mobile Application Testing Firm Partners with CSA to Collaborate on Research for Next Generation Mobile Application Testing and Assurance Singapore – February 24, 2015 – The Cloud Security Alliance (CSA), a not-for-profit organization with a mission to promote the use of best practices for provi...
The Dark Side of the Web: 14 Essential Cloud Usage Facts Every CISO Should Know
Blog Published: 02/12/2015
By Kamal Shah, Vice President, Products and Marketing, SkyHigh NetworksBetween frequent headlines on data breaches and the growth of Shadow IT, it is easy to be captivated with what people are saying, blogging, and tweeting about the state of cloud adoption and security. But the fact is – it’s ha...
Volunteer Spotlight: Dr. Said Tabet
Press Release Published: 02/12/2015
Dr. Said Tabet is a Senior Technologist and Industry Standards Strategist in the Corporate Office of the CTO at EMC. Said is a member of the Object Management Group Board of Directors and the principal EMC representative to the Industrial Internet Consortium. Said is Chair of the INCITS CS1 Secu...
Anthem’s Breach and the Ubiquity of Compromised Credentials
Blog Published: 02/09/2015
By Sekhar Sarukkai, Co-Founder and VP of Engineering, Skyhigh NetworksThe year is still young, and we’ve already witnessed a breach of potentially historic proportions. Anthem Inc, the nation’s second largest health insurer, released a statement last week announcing the breach of a database with ...
What The Anthem Breach Means For Healthcare Security
Blog Published: 02/06/2015
By Christopher Hines, Product Marketing Manager, Bitglass"Healthcare orgs oh how we love you so, with your data so un secured no wonder we give it a go. SSNs, birthdays and addresses information galore, we can’t wait until next year when we steal some more.”This is the song that healthcare data t...