ChaptersCircleEventsBlog
Get early access to CSA’s Trusted AI Safety Certification Program—updates, resources & beta invites!

Download Publication

Informative Reference Details for the Mapping of CCM v4 to NIST CSF v2
Informative Reference Details for the Mapping of CCM v4 to NIST CSF v2

Informative Reference Details for the Mapping of CCM v4 to NIST CSF v2

Release Date: 10/08/2024

The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices for securing cloud computing environments, is pleased to announce the publication of a new mapping of security controls between the CSA Cloud Controls Matrix (CCM) v4 and the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) v2.0. This mapping, now available in the NIST National Online Informative References (OLIR) Catalog, is a result of a joint collaboration between the CCM Working Group and NIST experts.

The NIST OLIR Program facilitates the development of standardized Online Informative References (OLIRs), which establish relationships between elements from cybersecurity, privacy, and other ICT domains.  The newly published mapping aligns the CCM with the CSF, identifying equivalences (overlaps) between the control specifications of the two frameworks. 

This alignment and publication allows cloud organizations to streamline compliance efforts, enhancing both their cloud security and compliance programs.
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
Related resources
Requirements for Bodies Providing STAR Certification
Requirements for Bodies Providing STAR Certific...
NIST CSF v2 Cloud Community Profile - Based on CCM v4
NIST CSF v2 Cloud Community Profile - Based on ...
CCM-Lite and CAIQ-Lite
CCM-Lite and CAIQ-Lite
Implementing CCM: Human Resources Controls
Implementing CCM: Human Resources Controls
Published: 05/16/2025
Applying NIST CSF 2.0 to Hypervisor Security: A Framework for Resilience in Virtualized Environments
Applying NIST CSF 2.0 to Hypervisor Security: A Framework for Resil...
Published: 05/16/2025
ISO 42001 Requirements Explained: What You Need for Compliance
ISO 42001 Requirements Explained: What You Need for Compliance
Published: 05/14/2025
5 Trust Trends Shaping Security Strategies in 2025
5 Trust Trends Shaping Security Strategies in 2025
Published: 05/13/2025
Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training