Cloud 101CircleEventsBlog
Help shape the future of cloud security! Take our quick survey on SaaS Security and AI.

Download Publication

CCM and CAIQ FAQ
CCM and CAIQ FAQ

CCM and CAIQ FAQ

Release Date: 04/05/2023

Working Group: Cloud Controls Matrix

The Cloud Controls Matrix (CCM) is a framework of controls (policies and procedures) that are essential for cloud computing security. It is created and updated by CSA and aligned to CSA best practices. The controls in CCM cover all key aspects of cloud technology and can be used to assess and guide the security of any cloud implementation. CSA has arranged CCM’s controls in both spreadsheet and machine-readable versions of yes/no questions that are easy to read and use, known as the Consensus Assessment Initiative Questionnaire (CAIQ). 

Learn more about what CCM and CAIQ are, why they’re important, and how to use them.
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
Related resources
CCM-Lite and CAIQ-Lite
CCM-Lite and CAIQ-Lite
CCM v4.0 Implementation Guidelines
CCM v4.0 Implementation Guidelines
Cloud Controls Matrix and CAIQ v4
Cloud Controls Matrix and CAIQ v4
Discover Cloud Security Services That are Enabled with CSA STAR
Discover Cloud Security Services That are Enabled with CSA STAR
Published: 09/06/2024
ISO 27001: Auditing “Themes” in the 2022 Revision
ISO 27001: Auditing “Themes” in the 2022 Revision
Published: 08/09/2024
CSA Community Spotlight: Contributing Something Meaningful with Head of Security Partha Chakraborty
CSA Community Spotlight: Contributing Something Meaningful with Hea...
Published: 08/07/2024
Assessment, Remediation, and Certification Framework for Anything as a Service (XaaS) Products
Assessment, Remediation, and Certification Framework for Anything a...
Published: 07/19/2024
Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training