Cloud 101CircleEventsBlog
Help shape the CCSK by participating in the peer reviews for the upcoming CCSK v5 by February 22nd!

Download Publication

CCM and CAIQ FAQ
CCM and CAIQ FAQ

CCM and CAIQ FAQ

Release Date: 04/05/2023

The Cloud Controls Matrix (CCM) is a framework of controls (policies and procedures) that are essential for cloud computing security. It is created and updated by CSA and aligned to CSA best practices. The controls in CCM cover all key aspects of cloud technology and can be used to assess and guide the security of any cloud implementation. CSA has arranged CCM’s controls in both spreadsheet and machine-readable versions of yes/no questions that are easy to read and use, known as the Consensus Assessment Initiative Questionnaire (CAIQ). 

Learn more about what CCM and CAIQ are, why they’re important, and how to use them.
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
Related resources
CCM v4.0 Addendum - ECUC PP v2.1
CCM v4.0 Addendum - ECUC PP v2.1
STAR Attestation Value Proposition
STAR Attestation Value Proposition
Auditors Guidance Document STAR Certification: Auditing the Cloud Controls Matrix
Auditors Guidance Document STAR Certification: ...
The CSA Cloud Controls Matrix and Consensus Assessment Initiative Questionnaire: FAQs
The CSA Cloud Controls Matrix and Consensus Assessment Initiative Q...
Published: 02/17/2024
Data Governance in the Cloud
Data Governance in the Cloud
Published: 02/16/2024
2024: A Critical Year for the Cloud Security Teenager
2024: A Critical Year for the Cloud Security Teenager
Published: 12/29/2023
Applying the AIS Domain of the CCM to Generative AI
Applying the AIS Domain of the CCM to Generative AI
Published: 12/22/2023
Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training