Having trouble seeing this email?  view it online or unsubscribe

Cloud Security Alliance

May 24, 2016

CSA Monthly Newsletter

Welcome to the CSA Monthly Newsletter

With a full slate of events, CloudBytes, surveys, and project initiatives in May, the CSA Research team's slate welcomes all CSA members and contacts to participate. More information in this month's newsletter for the latest in CSA Research.

Research News

Stay up to date with our latest research projects.

Cloud Security Alliance Asia Pacific Hosts Its 5th Annual CSA APAC Summit

The Cloud Security Alliance hosted its 5th annual CSA APAC Summit in Singapore, beginning May 3rd. The weeklong event was attended by thought leaders, policy and decision makers representing key industry organizations, cloud customers, and the R&D community. Attendees represented both end-user and industry viewpoints and provided networking and business opportunities.

Learn More

Cloud Security Alliance Announces Speakers and Presentations for Upcoming SecureCloud 2016 Conference

The Cloud Security Alliance, in collaboration with Fraunhofer FOKUS and ENISA, announced the presentations and speaker line up for the upcoming SecureCloud conference. SecureCloud is the only European conference focused exclusively on cloud security and aims to provide an opportunity for government experts, industry experts, and corporate decision makers to discuss and exchange ideas about how to shape the future of cloud computing security.

Learn More

Mitigating Risk for Cloud Apps Survey

Current state of SaaS security – with several years of cloud adoption in many organizations, approaches to security have been evolving rapidly. The purpose of this survey is to look at the specific concerns, policies, and controls that enterprises are using. The goal will be to answer the question, what are today’s enterprises doing to mitigate risk across both sanctioned and unsanctioned cloud applications?

Take the survey

Learn about our research at https://cloudsecurityalliance.org/research/.

Upcoming Events

Join us in our efforts of solving critical security problems by attending the events below.

SecureCloud 2016

May 24-25, 2016 - Dublin, Ireland

SecureCloud is the only European conference focussed exclusively on cloud security. It aims to provide an opportunity for government experts, industry experts, and corporate decision makers to discuss and exchange ideas about how to shape the future of cloud computing security.

For more information

CSA Nordic Summit 2016

June 16-18, 2016 - Oslo, Norway

The CSA Nordic Summit is the annual Cloud Security Alliance summit for Northern Europe, organized by the CSA Norway Chapter. For 2016, the Nordic Summit will join the forces with the Security Culture Framework community to bring on a bigger, better and more exiting conference!

For more information

CSA Argentina Summit 2016

June 30, 2016 - Buenos Aires, Argentina

The Information Technology and Security industry is rapidly moving towards solutions delivered by and through cloud computing. Join us at CSA-AR SUMMIT 2016 to learn more about the progress and challenges faced by local and global organizations in their shift to this new paradigm, as well as the key information security trends that apply to cloud computing

For more information

All of our upcoming event information can also be viewed online at https://csacongress.org/events/.

Education Opportunities

Cloud Security Alliance seeks to educate and inform users and providers of cloud services.

CSA Software-Defined Perimeter for IaaS Initiative: Best Practices and a Progres

June 2, 2016

Enterprise adoption of IaaS environments has brought tremendous benefits, in terms of cost savings and agility, and enabled a more dynamic infrastructure. However, these changes have created new security, compliance, and IT administration challenges for enterprises, and management challenges for cloud service providers.


Mitigating risk with application isolation and cryptographic segmentation

This presentation will cover use case examples of application isolation, cryptographic segmentation, and role-based access control methodologies that limit application exposure while containing and minimizing the damage of breaches when they occur.

Watch the webinar

Risky Business: Key Cloud Security Metrics your Board Needs to See

In this session, you’ll learn how to: Develop a comprehensive cloud security and governance framework, Map your organization’s maturity based on current practices, Identify key business outcomes across the 4 pillars of cloud security, and Implement best practices for presenting cloud security metrics to the board.

Watch the webinar

Get more information about cloud security training — including the CCSK Training Schedule at https://cloudsecurityalliance.org/education/.


Recent publications from our ongoing research initiatives.

Identity Security Survey Report

The goal of the Identity Solutions: Security Beyond the Perimeter survey was to address Insufficient Identity, Credential, and Access Management and gain a better understanding and perception of enterprise security in the evolving Information Technology (IT) world.

Download now

CSA STAR Program & Open Certification Framework in 2016 and Beyond

The OCF/STAR program comprises a global cloud computing assurance framework with a scope of capabilities, flexibility of execution, and completeness of vision that far exceeds the risk and compliance objectives of other security audit and certification programs.

Download now

State of Cloud Security 2016

This paper seeks to view the cloud computing industry through the lens of the enterprise information security practitioner. By articulating the state of cloud security from this viewpoint, we can better understand the gaps and solutions we must advocate for and help cloud providers better understand the needs of their consumers.

Download now

Find more publications at https://cloudsecurityalliance.org/download/.