Cloud 101CircleEventsBlog
Call for Presentations: Share your expertise at SECtember.ai 2024! Submit your proposals by June 28th.

All Articles

All Articles
Open Review Period for Guidance V.3: Domains 2, 3, 5 and 12 (Has Begun)

Press Release Published: 09/20/2011

The Cloud Security Alliance would like to invite you to review and comment on the following Guidance V.3 Domains: * Domain 2: Governance and Enterprise Risk Management * Domain 3: Legal and Electronic Discovery * Domain 5: Information Lifecycle Management * Domain 12: Identity and Access...

Open Review Period for Guidance V.3: Domains 1,6, 10 and 13 (Has Begun)

Press Release Published: 09/15/2011

The Cloud Security Alliance would like to invite you to review and comment on the following Guidance V.3 Domains: Domain 1: Cloud Computing Architectural Framework Domain 6: Portability and Interoperability Domain 10: Application Security Domain 13: Virtualization Your expertise will en...

CSA Blog: The “Don’t Trust Model”

Blog Published: 09/14/2011

By Ed KingThe elephant in the room when it comes to barriers to the growth and adoption of Cloud computing by enterprises is the lack of trust held for Cloud service providers. Enterprise IT has legitimate concerns over the security, integrity, and reliability of Cloud based services. The rece...

Seven Steps to Securing File Transfer’s Journey to the Cloud

Blog Published: 09/12/2011

By Oded Valin, Product Line Manager, Cyber-Ark Software“When it absolutely, positively has to be there overnight.” There’s a lot we can identify with when it comes to reciting FedEx’s famous slogan, especially as it relates to modern file transfer processes. When you think about sharing health c...

New Date for CSA Innovation Conference

Press Release Published: 09/10/2011

The Cloud Security Alliance (CSA) Silicon Valley Chapter has decided to postpone the inaugural Cloud Security Alliance Innovation Conference until January, 2012. This will allow more time to refine the event, allow for a longer paper submissions window, and minimize conflicts in a busy fall con...

Cloud Security Alliance Releases Cloud Controls Matrix v1.2

Press Release Published: 08/26/2011

Palo Alto, CA –Aug 26, 2011 – The Cloud Security Alliance (CSA) today published Version 1.2 of the Cloud Controls Matrix (CCM), which is designed to provide fundamental security principles to guide cloud vendors and to assist prospective cloud customers in assessing the overall security risk of a...

Five Ways to Achieve Cloud Compliance

Blog Published: 08/26/2011

With the rapid adoption of cloud computing technologies, IT organizations have found a way to deliver applications and services more quickly and efficiently to their customers, incorporating the nearly ubiquitous utility-like platforms of managed cloud services companies. The use of these cloud ...

TechAmerica and the Cloud Security Alliance Join Forces to Expand Cloud Offerings to Members

Press Release Published: 08/24/2011

Washington, DC – Aug 24, 2011 – As the leader in cloud computing policy, TechAmerica is proud to announce that a formal relationship has been formed with the Cloud Security Alliance (CSA), the thought-leader in cloud security. This agreement leverages the strengths of both organizations to expand...

Open Review Period for the Draft of SecaaS Defined Categories of Service Whitepaper Starts Today

Press Release Published: 08/18/2011

The Security as a Service (SecaaS) working group would like to invite you to review and comment on the Security as a Service “Defined Categories of Service” whitepaper. Your expertise will ensure that the white paper has accurate content. The open review and comments period starts today and ends ...

Learn About the CSA STAR Registry

Press Release Published: 08/16/2011

The Cloud Security Alliance announces two upcoming opportunities to learn more about its CSA STAR Registry. These public webcast briefings will be held August 18th and 23rd and will cover general information about the STAR Registry and the proper use of linked documents from the GRC Stack. * C...

Cloud Hosting and Security Demystified

Blog Published: 08/16/2011

I am always amazed when I read the daily cloud blogs, articles and news headlines. Any given day will bring conflicting points of view by cloud industry experts and pundits on how secure clouds are, both private and public. There never seems to be a real consensus on how far security in the clou...

Call For Speakers Now Open for Cloud Security Alliance Innovation Conference 2011

Press Release Published: 08/12/2011

Palo Alto, CA –Aug 12, 2011 – The Cloud Security Alliance (CSA) Silicon Valley chapter today published the call for speakers for the inaugural Cloud Security Alliance Innovation Conference 2011, being held October 6th in Silicon Valley. In the spirit of the CSA Silicon Valley Chapter’s mission ...

CSA Announces a New Research Initiative Called Cloud Data Governance

Press Release Published: 08/11/2011

The Cloud Security Alliance is starting a new research initiative called Cloud Data Governance. The initial phase of the initiative will be a survey of cloud providers to determine the current industry practices around data governance as articulated by the Information Security Lifecycle Managemen...

Media Advisory: CSA Announces STAR – CSA Security, Trust and Assurance Registry - To Help Users Assess Security of Cloud Providers

Press Release Published: 08/04/2011

Las Vegas, NV – Aug 4, 2011 – The Cloud Security Alliance (CSA) today announced the launch of a new initiative to encourage transparency of security practices within cloud providers. The CSA Security, Trust & Assurance Registry (STAR) is a free, publicly accessible registry that documents the...

Cloud Signaling – The Data Center’s Best Defense

Blog Published: 07/27/2011

By Rakesh Shah, Director, Product Marketing & Strategy at Arbor NetworksRecent high-profile security incidents heightened awareness of how Distributed Denial of Service (DDoS) attacks can compromise the availability of critical Web sites, applications and services. Any downtime can result in...

Pass the Buck: Who 's Responsible for Security in the Cloud?

Blog Published: 07/27/2011

Cloud computing changes the equation of responsibility and accountability for information security and poses some new challenges for enterprise IT. At Vormetric we are working with service providers and enterprises to help them secure and control sensitive data in the cloud with encryption, which...

Call for Volunteers for V.3 Guidance Group 2: GRC, Audit, Physical, BCM, DR

Press Release Published: 07/26/2011

The Cloud Security Alliance and Group 2 GRC, Audit, Physical, BCM, DR Leadership team are looking for volunteers to assist with drafting Domain 2, 4 and 7 of version 3 of CSA’s Security Guidance for Critical Areas of Focus in Cloud Computing. Group 2 is responsible for Governance, Risk Management...

Call for volunteers for V.3 Guidance Group 8: Virtualization and Technology Compartmentalization

Press Release Published: 07/21/2011

The Cloud Security Alliance and Group 8 Virtualization and Technology Compartmentalization Leadership are looking for volunteers to assist with drafting Domain 13 of version 3 of CSA's Security Guidance for Critical Areas of Focus in Cloud Computing. Group 8 is responsible for understanding how t...

HISPI Offers Membership Discounts to CSA Members

Press Release Published: 07/18/2011

HISPI Members Gain Access to Valuable Content and Can Earn CPE Credits Online Lithonia, GA – July 18, 2011 – The Cloud Security Alliance (CSA) and the Holistic Information Security Practitioner Institute (HISPI) are now offering a 50% discount on HISPI membership to all CSA LinkedIn group membe...

PKI Still Matters, Especially in the Cloud

Blog Published: 07/15/2011

By: Merritt MaximDirector of IAM Product MarketingCA Technologies Inc.Infosec veterans probably remember (with a smirk) how Public Key Infrastructure (PKI) was heralded as the next “big thing” in information security at the dawn of the 21st century. While PKI failed to reach the broad adoption ...

Looking for the CCM?

Start using the Cloud Controls Matrix to simplify compliance with multiple standards & regulations.