Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Member Portal
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Education Platforms
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Cloud Security Glossary
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Cloud 101CircleEventsBlog
Master CSA’s Security, Trust, Assurance, and Risk program—download the STAR Prep Kit for essential tools to enhance your assurance!

All Articles

Home
All Articles
Cloud Security Alliance: Insider Threat Survey

Press Release Published: 03/18/2015

The Cloud Security Alliance Cloud Data Governance Group is running a very short survey to better understand insider threat vectors and mitigating strategies for public cloud. I would be most appreciative if you could spend a few minutes taking the survey – there are 12 questions in total. Your ...

Cloud Security Alliance Announces New Federal Summit Event

Press Release Published: 03/17/2015

Stellar Program to Feature Leaders from FedRAMP and NIST Providing Key Insights into Security Compliance, Architecture, Technology and Defending the Latest Threats Washington, DC – March 17, 2015 – The Cloud Security Alliance (CSA) today announced a brand new conference to be hosted on May 5, 20...

2015 Bitglass Cloud Security Report : Security Still Cloud's Achilles Heel

Blog Published: 03/12/2015

By Christopher Hines, Product Marketing Manager, BitglassThe cloud. Companies want it, but can they secure it? Moving to cloud applications like Salesforce, Office 365 and Box, can be beneficial for business but companies must first answer the question of security. Today we announced the findings...

A Few Lessons from Recent Adware Insecurities

Blog Published: 03/11/2015

<strong>Recent adware has made significant waves in some information security </strong><strong>circles for its security vulnerabilities and </strong><strong>for its potential larger </strong><strong>impact on one of the essential systems of trust that Int...

24 Hours After FREAK, 766 Cloud Providers Still Vulnerable

Blog Published: 03/06/2015

The Average Company Uses 122 FREAK-vulnerable servicesBy Sekhar Sarukkai, Co-founder and VP of Engineering, Skyhigh NetworksThis week a group of researchers at INRA, Microsoft Reseach, and IMDEA discovered a widespread vulnerability in OpenSSL that has rendered millions of Apple and Android devic...

What Does Customer Managed Encryption Keys Really Mean for Cloud Service Providers?

Blog Published: 03/06/2015

By Todd Partridge, Director of Strategy, IntralinksHave you ever leased a safety deposit box from your bank? For years the security and privacy of a safe deposit box has been the standard in the physical world. People have put their most important and their most valued information in bank vaults ...

Cloud Security Alliance New Survey Finds Financial Firms are in Search of a Cloud Strategy

Press Release Published: 03/05/2015

Hybrid Cloud Adoption is Preferred; Control and Security of Data is Top Concern Seattle, WA –March 5, 2015 - Many financial firms are slowly putting more stock in the cloud. That’s a key finding from a new Cloud Security Alliance (CSA) survey, titled How Cloud is Being Used in the Financial Sect...

Cloud Security Alliance Announces Release of Security Framework for Governmental Clouds

Press Release Published: 03/02/2015

Report jointly developed by CSA, ENISA and TU Darmstadt Provides Step-by-Step Approach for the Procurement and Secure Use of Cloud Services Edinburgh, UK – March 2, 2015 – The Cloud Security Alliance (CSA), announces the release of a new report aimed at providing guidance to European Member Stat...

Why Companies Must Adopt the ‘Assume Mentality’ When It Comes to Breaches

Blog Published: 02/27/2015

By Christopher Hines, Product Marketing Manager, BitglassRecently Target announced that the credit card data breach that they suffered back in 2013 ended up costing them $162M. Now, I know some may argue that to a company like Target, that number is a drop in the bucket, and you’re right. But the...

The International Association of Privacy Professionals and Cloud Security Alliance Announce Privacy. Security. Risk. 2015 Conference and Call for Speaker Proposals

Press Release Published: 02/24/2015

The IAPP’s Privacy Academy and CSA Congress present P.S.R., two conferences with one powerhouse program to connect privacy and security professionals Portsmouth, NH – February 23, 2015 – The International Association of Privacy Professionals (IAPP), the largest organization of privacy profession...

GAPERTISE JOINS CLOUD SECURITY ALLIANCE AS EXECUTIVE MEMBER

Press Release Published: 02/24/2015

Mobile Application Testing Firm Partners with CSA to Collaborate on Research for Next Generation Mobile Application Testing and Assurance Singapore – February 24, 2015 – The Cloud Security Alliance (CSA), a not-for-profit organization with a mission to promote the use of best practices for provi...

The Dark Side of the Web: 14 Essential Cloud Usage Facts Every CISO Should Know

Blog Published: 02/12/2015

By Kamal Shah, Vice President, Products and Marketing, SkyHigh NetworksBetween frequent headlines on data breaches and the growth of Shadow IT, it is easy to be captivated with what people are saying, blogging, and tweeting about the state of cloud adoption and security. But the fact is – it’s ha...

Volunteer Spotlight: Dr. Said Tabet

Press Release Published: 02/12/2015

Dr. Said Tabet is a Senior Technologist and Industry Standards Strategist in the Corporate Office of the CTO at EMC. Said is a member of the Object Management Group Board of Directors and the principal EMC representative to the Industrial Internet Consortium. Said is Chair of the INCITS CS1 Secu...

Anthem’s Breach and the Ubiquity of Compromised Credentials

Blog Published: 02/09/2015

By Sekhar Sarukkai, Co-Founder and VP of Engineering, Skyhigh NetworksThe year is still young, and we’ve already witnessed a breach of potentially historic proportions. Anthem Inc, the nation’s second largest health insurer, released a statement last week announcing the breach of a database with ...

What The Anthem Breach Means For Healthcare Security

Blog Published: 02/06/2015

By Christopher Hines, Product Marketing Manager, Bitglass"Healthcare orgs oh how we love you so, with your data so un secured no wonder we give it a go. SSNs, birthdays and addresses information galore, we can’t wait until next year when we steal some more.”This is the song that healthcare data t...

Cutting Out The Security Blind Spots

Blog Published: 01/30/2015

By Chris Hines, Product Marketing Manager, Bitglass When Henry Ford’s Model T was introduced to the world in 1908, with a list price of $850, it revolutionized transportation for the masses at the time. What many folks don’t know is that it had absolutely no mirrors attached to it. Early dri...

Limit The Damage

Blog Published: 01/23/2015

By Chris Hines, Product Marketing Manager, BitglassDespite investments in security, breaches are still occurring at an alarming rate. Whether the result of the world’s nefarious cyber criminals sending phishing or malware attacks through company emails, or insiders simply misusing sensitive data....

The Truth About Encryption

Blog Published: 01/20/2015

By Christopher Hines, Product Marketing Manager, Bitglass“Encryption is the conversion of electronic data into another form, called ciphertext, which cannot be easily understood by anyone except authorized parties.” – TechTargetEncryption has gotten some much-needed attention over the past few w...

EY helps Ribose Make History with First Cloud Security Alliance (CSA) STAR Attestation

Press Release Published: 01/14/2015

Cloud Industry’s First Third Party Assessment Based Upon Joint CSA & AICPA Guidelines Seattle, WA – January, 14 2015 – The Cloud Security Alliance (CSA) today announced that global professional services organization, Ernst & Young (EY), has helped Ribose become the first company wo...

CSA Survey: Security of Cloud Data Now a Board-Level Concern

Blog Published: 01/12/2015

Security and Skills Gap Hold Back Cloud Projects While Shadow IT GrowsBy Cameron Coles, Sr. Product Marketing Manager, SkyhighA recent Cloud Security Alliance & Skyhigh survey shows that while security and skills gaps remain significant barriers to corporate-sanctioned cloud projects, end use...

Looking for the CCM?

Start using the Cloud Controls Matrix to simplify compliance with multiple standards & regulations.

Learn more
 
« First
157
158
159
161
163
164
165
Last »