CSA Blog: The “Don’t Trust Model”
Blog Published: 09/14/2011
By Ed KingThe elephant in the room when it comes to barriers to the growth and adoption of Cloud computing by enterprises is the lack of trust held for Cloud service providers. Enterprise IT has legitimate concerns over the security, integrity, and reliability of Cloud based services. The rece...
Seven Steps to Securing File Transfer’s Journey to the Cloud
Blog Published: 09/12/2011
By Oded Valin, Product Line Manager, Cyber-Ark Software“When it absolutely, positively has to be there overnight.” There’s a lot we can identify with when it comes to reciting FedEx’s famous slogan, especially as it relates to modern file transfer processes. When you think about sharing health c...
New Date for CSA Innovation Conference
Press Release Published: 09/10/2011
The Cloud Security Alliance (CSA) Silicon Valley Chapter has decided to postpone the inaugural Cloud Security Alliance Innovation Conference until January, 2012. This will allow more time to refine the event, allow for a longer paper submissions window, and minimize conflicts in a busy fall con...
Cloud Security Alliance Releases Cloud Controls Matrix v1.2
Press Release Published: 08/26/2011
Palo Alto, CA –Aug 26, 2011 – The Cloud Security Alliance (CSA) today published Version 1.2 of the Cloud Controls Matrix (CCM), which is designed to provide fundamental security principles to guide cloud vendors and to assist prospective cloud customers in assessing the overall security risk of a...
Five Ways to Achieve Cloud Compliance
Blog Published: 08/26/2011
With the rapid adoption of cloud computing technologies, IT organizations have found a way to deliver applications and services more quickly and efficiently to their customers, incorporating the nearly ubiquitous utility-like platforms of managed cloud services companies. The use of these cloud ...
TechAmerica and the Cloud Security Alliance Join Forces to Expand Cloud Offerings to Members
Press Release Published: 08/24/2011
Washington, DC – Aug 24, 2011 – As the leader in cloud computing policy, TechAmerica is proud to announce that a formal relationship has been formed with the Cloud Security Alliance (CSA), the thought-leader in cloud security. This agreement leverages the strengths of both organizations to expand...
Open Review Period for the Draft of SecaaS Defined Categories of Service Whitepaper Starts Today
Press Release Published: 08/18/2011
The Security as a Service (SecaaS) working group would like to invite you to review and comment on the Security as a Service “Defined Categories of Service” whitepaper. Your expertise will ensure that the white paper has accurate content. The open review and comments period starts today and ends ...
Learn About the CSA STAR Registry
Press Release Published: 08/16/2011
The Cloud Security Alliance announces two upcoming opportunities to learn more about its CSA STAR Registry. These public webcast briefings will be held August 18th and 23rd and will cover general information about the STAR Registry and the proper use of linked documents from the GRC Stack. * C...
Cloud Hosting and Security Demystified
Blog Published: 08/16/2011
I am always amazed when I read the daily cloud blogs, articles and news headlines. Any given day will bring conflicting points of view by cloud industry experts and pundits on how secure clouds are, both private and public. There never seems to be a real consensus on how far security in the clou...
Call For Speakers Now Open for Cloud Security Alliance Innovation Conference 2011
Press Release Published: 08/12/2011
Palo Alto, CA –Aug 12, 2011 – The Cloud Security Alliance (CSA) Silicon Valley chapter today published the call for speakers for the inaugural Cloud Security Alliance Innovation Conference 2011, being held October 6th in Silicon Valley. In the spirit of the CSA Silicon Valley Chapter’s mission ...
CSA Announces a New Research Initiative Called Cloud Data Governance
Press Release Published: 08/11/2011
The Cloud Security Alliance is starting a new research initiative called Cloud Data Governance. The initial phase of the initiative will be a survey of cloud providers to determine the current industry practices around data governance as articulated by the Information Security Lifecycle Managemen...
Media Advisory: CSA Announces STAR – CSA Security, Trust and Assurance Registry - To Help Users Assess Security of Cloud Providers
Press Release Published: 08/04/2011
Las Vegas, NV – Aug 4, 2011 – The Cloud Security Alliance (CSA) today announced the launch of a new initiative to encourage transparency of security practices within cloud providers. The CSA Security, Trust & Assurance Registry (STAR) is a free, publicly accessible registry that documents the...
Cloud Signaling – The Data Center’s Best Defense
Blog Published: 07/27/2011
By Rakesh Shah, Director, Product Marketing & Strategy at Arbor NetworksRecent high-profile security incidents heightened awareness of how Distributed Denial of Service (DDoS) attacks can compromise the availability of critical Web sites, applications and services. Any downtime can result in...
Pass the Buck: Who 's Responsible for Security in the Cloud?
Blog Published: 07/27/2011
Cloud computing changes the equation of responsibility and accountability for information security and poses some new challenges for enterprise IT. At Vormetric we are working with service providers and enterprises to help them secure and control sensitive data in the cloud with encryption, which...
Call for Volunteers for V.3 Guidance Group 2: GRC, Audit, Physical, BCM, DR
Press Release Published: 07/26/2011
The Cloud Security Alliance and Group 2 GRC, Audit, Physical, BCM, DR Leadership team are looking for volunteers to assist with drafting Domain 2, 4 and 7 of version 3 of CSA’s Security Guidance for Critical Areas of Focus in Cloud Computing. Group 2 is responsible for Governance, Risk Management...
Call for volunteers for V.3 Guidance Group 8: Virtualization and Technology Compartmentalization
Press Release Published: 07/21/2011
The Cloud Security Alliance and Group 8 Virtualization and Technology Compartmentalization Leadership are looking for volunteers to assist with drafting Domain 13 of version 3 of CSA's Security Guidance for Critical Areas of Focus in Cloud Computing. Group 8 is responsible for understanding how t...
HISPI Offers Membership Discounts to CSA Members
Press Release Published: 07/18/2011
HISPI Members Gain Access to Valuable Content and Can Earn CPE Credits Online Lithonia, GA – July 18, 2011 – The Cloud Security Alliance (CSA) and the Holistic Information Security Practitioner Institute (HISPI) are now offering a 50% discount on HISPI membership to all CSA LinkedIn group membe...
PKI Still Matters, Especially in the Cloud
Blog Published: 07/15/2011
By: Merritt MaximDirector of IAM Product MarketingCA Technologies Inc.Infosec veterans probably remember (with a smirk) how Public Key Infrastructure (PKI) was heralded as the next “big thing” in information security at the dawn of the 21st century. While PKI failed to reach the broad adoption ...
Cloud Security Alliance Issues First Cloud Compliance Report For Spain
Press Release Published: 07/12/2011
Spanish Chapter Publishes Report Providing a Methodological Approach to Help Address Compliance Needs in Cloud Computing Madrid, Spain –July 12, 2011 – The Cloud Security Alliance (CSA) today announced that the Spanish Chapter, CSA-ES, has published the first Cloud Compliance Report. This Report...
Understanding Best-in-Class Cloud Security Measures and How to Evaluate Providers
Blog Published: 07/11/2011
By Fahim SiddiquiDespite a broader interest in cloud computing, many organizations have been reluctant to embrace the technology due to security concerns. While today’s businesses can benefit from cloud computing’s on-demand capacity and economies of scale, the model does require they relinquish ...