Download Publication
Who it's for:
- Cloud service customers
- Cloud service providers
- HSM manufacturers
- Key management solution providers
- Application developers
- Auditors
HSM-as-a-Service Use Cases, Considerations, and Best Practices
Release Date: 04/03/2024
Working Group: Cloud Key Management
- The definition and architecture of an HSM
- The current and future state of the HSMaaS market
- Industry, compliance, and risk use cases for the HSMaaS model
- The importance of clearly defined responsibilities in the HSMaaS model
- Security considerations for HSMs
- Key management considerations unique to HSMaaS
- Important considerations when setting up governance for HSMs
- HSM vendor selection best practices
Download this Resource
Acknowledgements
Sam Pfanstiel Ph.D.
Principal, Technical Compliance, PCI
As Principal Analyst at Toast, Sam is responsible for heading the Payment Card Industry (PCI) compliance programs for this cloud-based fintech company. Over the past 27 years, Sam has held key roles in security, technology, and management, and developed expertise in multiple disciplines, including payments, PCI compliance, fraud, cloud service delivery, application development, mobile technology, infrastructure, and cryptography. This dive...
Sunil Arora
Cybersecurity Leader, Researcher, Speaker, and Author
Sunil Arora is a cybersecurity researcher and expert with over 18 years of work experience in the finance, healthcare, telecom, and technology services industries. Sunil has a distinguished record of accomplishments in assisting businesses and technology teams in protecting infrastructure, applications, cloud environments, and risk management. Sunil is a passionate cybersecurity advocate and an expert on cloud security, information security...
Iain Beveridge
Senior Product Marketing Manager
Santosh Bompally
Marina Bregkou
Senior Research Analyst, CSA EMEA
Parthasarathi Chakraborty
Associate VP, Cloud Security, Cyber Innovation and R&D
Partha has over 20 years of cyber security leadership experience in the financial services and healthcare industry. An active speaker and panelist in major cyber security conferences around the world, and frequently called in for views and interviews in electronic media like The Economist, UK. Very much passionate about learning new technologies and writing on recent groundbreaking cyber trends. He is also the founder of Cloud Security Pra...
Rajat Dubey
Cybersecurity Expert, Allianz Commercial
Rajat is an accomplished cybersecurity expert with over 13 years of experience safeguarding critical systems and data for global enterprises. His expertise spans cyber risk assessment, compliance, threat modeling, incident response, Penetration testing, Ethical hacking, Digital Forensic, Cloud Security and emerging technologies (AI, Blockchain, IoT, Quantum computing) for enhanced security.
Parth Jamodkar
Carlos Rombaldo Jr.
Michael Roza
Risk, Audit, Control and Compliance Professional at EVC
Since 2012, Michael Roza has been a pivotal member of the Cloud Security Alliance (CSA) family. He has contributed to over 125 projects, as a Lead Author or Author/Contributor and many more as a Reviewer/Editor.
Michael's extensive contributions encompass critical areas including Artificial Intelligence, Zero Trust/Software Defined Perimeter, Internet of Things, Top Threats, Cloud Control Matrix, DevSecOps, and Key Management. His lea...
Thanos Vrachnos
Cyber Security Consultant at SpearIT
Amanda Gabiam
Simon Keates
Bruno Kovacs
Smita Mahapatra
Tim Winston
Interested in helping develop research with CSA?
Related Certificates & Training
Learn more