Download Publication

Cloud OS Security Specification v2.0
Release Date: 10/14/2020
Working Group: Cloud Component Specifications
- Adjusted document structure to be more in line with logical architecture. Corresponding contents in version 1 are also moved / combined / removed according to the structure adjustment.
- New requirements added in view of cloud security technology developments, including micro segmentation, hardware-based encryption, VM High availability, backup & recovery capability, key management service, cloud bastion host.
- Several requirements are improved and revised to be more precise and instructive, such as the processing / saving of sensitive information, identity management and log functions.
Download this Resource
Prefer to access this resource without an account? Download it now.
Sponsor
Related Resources
Acknowledgements

Srinivas Tatipamula
Principal Security Advisor, Fairfax
C-CISO|CISSP|CISA|AWS CSS|AWS CSA|CDPSE|CISM|CGEIT|CRISC|ISO 27000LA|CCSK|ITIL-F|PMP|Bachelor of Economics (Hons)|Bachelor of Law| MS in Digital Forensics
Overall 30 plus years in IT and over 18 years in Cyber Security
Publications:
1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019
2. CSA IoT Controls Matrix March 2019
3. ...

Srinivas Tatipamula
Principal Security Advisor, Fairfax
C-CISO|CISSP|CISA|AWS CSS|AWS CSA|CDPSE|CISM|CGEIT|CRISC|ISO 27000LA|CCSK|ITIL-F|PMP|Bachelor of Economics (Hons)|Bachelor of Law| MS in Digital Forensics
Overall 30 plus years in IT and over 18 years in Cyber Security
Publications:
1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019
2. CSA IoT Controls Matrix March 2019
3. ...

Xiaoyu Ge
Senior Security Standards Manager of Huawei IT
Xiaoyu Ge is the Senior Security Standards Manager of Huawei IT Product Line which include cloud computing, big data, storage, and server products and services. He is also active as security expert in SDOs, He is the ISO/IEC JTC1 SC27 WG expert of China Nation Body, he is the rapporteur of several SC27 project such as “Requirements for establishing roots of trust for virtualized environment”. He participated in CSA several years ago, he is ...

Dez Blanchfield

Dez Blanchfield

Robert Bolton

Matt Kaufman

Humayun Khan

Alan Leffingwell

Edgar Pimenta
VP of Information Security
Edgar Pimenta is the VP for Information Security at Talkdesk (a Cloud Contact Center) and is responsible for the governance, risk and compliance of information security at Talkdesk. He manages the team that deals with policies, the security education program, the security risk management processes, and data protection among others.

K.S Reddy

Justin Stoner

Cedric Thibault

Yu Zhang

Shobharani Jagathpa

Michael Roza
Risk, Audit, Control and Compliance Professional at EVC

Ekta Mishra
Membership Director & Country Manager (India), CSA APAC

Haojie Zhuang
Interested in helping develop research with CSA?
Related Certificates & Training

Learn more