Cloud 101CircleEventsBlog
Call for Presentations: Share your expertise at 2024! Submit your proposals by June 28th.

STAR Lead Auditor Training

Gain the skills and credentials to audit cloud providers against the STAR Certification.
STAR Lead Auditor Training

In association with the British Standards Institution (BSI), CSA has developed the BSI/CSA STAR Lead Auditor Training, a self-paced course to help assessors, service providers, and consultants better manage the security of cloud services, as well as provide the credentials necessary to become a qualified STAR Auditor. This should give customers confidence in a STAR Auditor’s ability to deliver, enhance the auditor’s reputation, and differentiate them from competitors.

This comprehensive program is designed to equip individuals with the skills and knowledge required to audit cloud service providers (CSPs) against the STAR Certification scheme. The STAR Certification scheme is an industry-wide initiative that provides a framework for assessing the security and privacy practices of CSPs along with a maturity model that measures the strengths and weaknesses of an organization.

Prerequisites: ISO/IEC 27001 audit qualification or equivalent experience. Knowledge of Cloud Computing and associated services (SaaS, IaaS, PaaS)

What are the benefits?

Prepare a CSP for a CSA STAR audit and conduct 1st and 2nd party audits.

Learn how a CSP can achieve CSA STAR Certification.

Understand the benefits of CSA STAR Certification for CSPs and customers

Who should enroll in this training?

ISO/IEC 27001 qualified auditors
Cyber Security Principals
Network Security Managers
IT Risk and Security Managers
Information Security Consultants

This training is aimed at individuals who want to become STAR Lead Auditors, consultants, and practitioners who are implementing or delivering services based on CSA best practices.

Participants should already have a good understanding of cloud computing and the security and privacy challenges associated with it. The program is also valuable for anyone who wishes to expand their skills and knowledge in the field of cloud security auditing.

Course Modules

  1. Cloud Fundamentals
  2. The CSA and CCM
  3. The CCM and maturity modeling
  4. How to audit using maturity modeling (Part 1)
  1. How to audit using maturity modeling (Part 2)
  2. Key concepts and review
  3. Cirrus Cloud case study scenario

About the Training


6 hours




ISO/IEC 27001 audit qualification or equivalent experience. Knowledge of Cloud Computing and associated services (SaaS, IaaS, PaaS)


Upon completion, you will receive a certificate of completion in addition to 6 Continuing Educational Credits.


The training is online and self-paced.

View Courses


The on-site option is available. This is a two-day in-person classroom course, which is highly interactive and focuses on practical exercises and case studies. Participants will have the opportunity to work in a team to conduct mock audits of CSPs and develop audit reports based on their findings.

Anyone looking for on-site training should email us at [email protected]