CSA Seeks Volunteers for Consensus Assessments Initiative Questionnaire (CAIQ) v.2
The Cloud Security Alliance (CSA) warmly invites interested individuals to step forward to contribute to an initiative which promotes cloud security for customers and providers. CSA is calling for volunteers for the following project:
Consensus Assessments Initiative Questionnaire (CAIQ) v.2: The Cloud Security Alliance Consensus Assessments Initiative (CAI) was launched two years ago to perform research, create tools and create industry partnerships to enable cloud computing assessments. It is focused on providing industry-accepted ways to document what security controls exist in IaaS, PaaS, and SaaS offerings, providing security, control and transparency. The initial deliverable of this project was the Consensus Assessments Initiative Questionnaire v.1.1 which was released in 2011. Now CSA calls for volunteers to contribute to the Consensus Assessments Initiative Questionnaire v.2. This question set will be a simplified distillation of the issues, best practices and control specifications from the CSA Guidance v.3 , intended to help organizations build the necessary assessment processes for engaging with cloud providers.
CAIQ is part of the CSA GRC Stack.Together with the CSA Guidance v3, CAIQ v2 and CCM v2 will become the toolkit for cloud customers, providers and auditors. The need for updating this document and issuing v2 indicates on one hand how fast cloud security aspects are progressing and on the other the importance of these two initiatives to the cloud community. Being part of this can influence the result successfully.
CSA is seeking qualified experts with the following profiles:
- experts in auditing and security assessment
- security experts with very good knowledge of ENISA Information Assurance Framework, BSI (Germany) Cloud Security Catalogue, Data Protection security requirements.
The experts will form a working group and work on the mentioned document. If you are interested in volunteering, please reach out to the regional contacts by September, 14 2012:
Security Analyst and Communication Leader
The regional contacts will provide you access to the CAIQ V.2 Collaboration Work Space and invite you to the initial Work Group Kick-off Call. We appreciate your time and look forward to your participation.