Industry Insights

Read the latest cloud security news, trends, and thought leadership from subject matter experts.

Industry Insights
What is a “Cloud Service Provider”

Published: 04/30/2020

By John DiMaria, Assurance Investigatory Fellow, Cloud Security AllianceDefining what is a Cloud Service Provider is not as easy as one might think, especially if you are an enterprise organization wondering if your vendors are servicing you from the cloud or not. A cloud service provider, or CSP...

Why Better Security is the First Step to Greater Trust

Published: 04/30/2020

By Tim Mullahy, Executive Vice President and Managing Director, Liberty One CenterWe are currently in the midst of a technological renaissance, and the world is going digital. On the one hand, that’s great. Innovations such as the Internet of Things (IoT) come hand-in-hand with incredible benefit...

Human and cyber-pandemic: the importance to get ready

Published: 04/28/2020

By Daniele Catteddu, Chief Technology Office, Cloud Security AllianceIronically, 2020 was supposed to be the year in which our luminous predictions of wealth and development would materialize. The advent of the Zeta-bytes word, trillions of smart devices in our all-encompassing smart environments...

Nine mandates to secure your remote workforce

Published: 04/22/2020

By Ishani Sircar, Manager, Product Marketing at CipherCloudAre We in a Cloud-First Environment?Let us look at a regular workday: A few updates on Slack, followed by emails on Microsoft Outlook, updating attendance on Workday, a few meetings with partners on Microsoft Teams, updating the status o...

Top 10 Audio/Video Conferencing Security Best Practices

Published: 04/22/2020

By Michael Born, Sr. Security Consultant at SecureSkyWith the recent shift of much of the global workforce to home office work environments, it’s a good time to revisit Audio/Video conferencing security best practices. In this blog we will highlight what we consider the Top 10 ways you can train ...

Cloud Incident Response: Guideline for the Dark Cloudy Days

Published: 04/22/2020

By Prof. Alex SIOW, Professor (Practice) in the School of Computing, NUS & LIM Soon Tein, Vice President, IT, ST Engineering ElectronicsGiven today’s evolving threat landscape, incident response (IR) strategy for safeguarding is no longer optional. In 2019 alone, the cloud realm saw countless...

Secure Historical Cloud Data with Cloud Data Discovery

Published: 04/14/2020

By the Cipher Cloud TeamIn today's era, a cloud-first strategy has become the new norm. Providing competitive advantage with improved business agility at lower infrastructure and deployment costs. Cloud services are gaining significant inroads in the industry, with enterprises deploying multiple ...

Coronavirus today and cybersecurity tomorrow

Published: 04/08/2020

By Jim Reavis, Co-Founder and CEO, CSAThe Black Swan event that is Coronavirus is a challenge for our times that we must win. Some may say that this pandemic should not be called a Black Swan event because we had the warning signs. However, the Internet is a great archive and you cannot find a ...

Network Security for the Cloud and Mobile Workforce

Published: 04/08/2020

By Etay Bogner, VP of Zero-Trust Products at ProofpointAn increasing number of enterprises today have made large-scale shifts to cloud-based IT resources by putting their applications in the cloud, subscribing to ready-to-use software-as-a-service (SaaS) applications, and supporting an expanding ...

CSA kicks off project to create a security framework for blockchain and cryptocurrencies.

Published: 04/06/2020

Like many new technologies, many industries are moving ahead with experimentation and deployments of DLT (Distributed Ledger Technology), especially in the finance sector. The benefits offered by DLTs such as tamper evident and tamper proof records, near instant settlement via smart contracts and...

Why use the CAIQ for vendor analysis vs. other questionnaires?

Published: 04/04/2020

By John DiMaria, Assurance Investigatory Fellow, Cloud Security AllianceSecurity assessments, security questionnaires, vendor assessments, RFPs are all unavoidable in today’s world of cloud computing and drain valuable resources and time when completing them. However, they’re a big part of closin...

Using Open Policy Agent (OPA) to Apply Policy-as-Code to Infrastructure-as-Code

Published: 04/02/2020

Originally published as: Pre-deployment Compliance Checks with Regula and Terraform By Becki Lee, Senior Technical Writer, Fugue, Inc. Infrastructure-as-code is a programmatic way of defining and provisioning cloud resources. By treating infrastructure configuration as code, you can apply progr...

IT and Cyber Security Challenges in Healthcare Industry

Published: 03/31/2020

By Salah Nassar, VP of Marketing at CipherCloudThe sudden influx of remote workers due to Coronavirus pandemic has put a strain on business continuity. Many organizations have adopted Virtual Private Networks (VPN) to securely connect with the enterprise data centers. But the VPNs are not designe...

7 Steps to Securing Your Remote Work Lifecycle in the Cloud

Published: 03/27/2020

By Martin Johnson, VP Marketing at PolyrizeCurrent global events and government mandates are forcing many organizations that have not, to date, encouraged remote work to suddenly allow their employees en masse to make a quick, often chaotic scramble for the exit and into the safety of their own h...

The Right Questions to Ask Your Vendors in Times of Large-Scale Remote Working

Published: 03/26/2020

By Elad Shapira, Head of Security, PanoraysIn the wake of coronavirus, companies are now applying immediate work-from-home policies. This sudden and massive change poses a set of new cybersecurity risks and is forcing security teams to take immediate action.One of these cybersecurity risks emanat...

Cloud Security for Newly Distributed Engineering Teams

Published: 03/23/2020

By the Fugue Team in collaboration with Dave Williams, cloud architect at New Light Technologies.Employers across the U.S. and around the world are rapidly shifting to a mandatory work-from-home (WFH) arrangement to help slow the spread of the coronavirus (COVID-19). Even for organizations alread...

Continuous Auditing and Continuous Certification

Published: 03/20/2020

By Alain Pannetrat, Senior Researcher at Cloud Security Alliance and Founder of Omzlo.comFor some cloud customers in sensitive or highly-regulated industries, such as banking or healthcare, “traditional” annual or bi-annual audits do not provide enough assurance to move to the cloud. To address t...

Securely Work From Home With CASB

Published: 03/19/2020

By Neeraj Nayak, Senior Manager, Product Marketing at CipherCloudThe world is witnessing an unseen and unprecedented trend in the past few weeks. While advanced persistent threats have caused an upward trend in data breaches and cybercrime, the introduction of a certain other virus has led multin...

New Threat Intelligence Report Reveals the Rise of Emotet

Published: 03/16/2020

By Renatta Siewert, Senior Security Writer at MimecastThe Mimecast Threat Center launched the Threat Intelligence Report: RSA Conference Edition on February 25th, finding a 145% increase in attack campaigns across the globe from October to December. Researchers believe the increase can be attribu...

California Consumer Privacy Act – 10 Things You Should Know

Published: 03/12/2020

By Francoise Gilbert, Data & Privacy Expert, DataMinding.comThis blog originally appeared on Francoise Gilbert's blog here, read more updates around privacy by going to here website DataMinding.com.Based on personal observation and press reports, it is clear that only a small percentage of bu...

Browse by Topic