CSA Research

Security through innovation.
Innovation through collaboration.

View Working Groups
Research Home
Working Groups
Artifacts
Contribute
CloudBytes
Upcoming CloudBytes
Previous CloudBytes
Home
Research

Research Artifacts

Cloud Controls Matrix v3.0.1
Cloud Controls Matrix v3.0.1

Description: The CCM, the only meta-framework of cloud-specific security controls, mapped to leading standards, best practices and regulation...

SDP Architecture Guide v2
SDP Architecture Guide v2

Software Defined Perimeter (SDP) Architecture Guide is designed to leverage proven, standards-based components to stop network attacks agains...

Top Threats to Cloud Computing: Deep Dive
Top Threats to Cloud Computing: Deep Dive

This case study attempts to connect all the dots when it comes to security analysis by using nine anecdotes cited in the Top Threats for its ...

Best Practices for Cyber Incident Exchange
Best Practices for Cyber Incident Exchange

Description: No organization is immune from cyber attack. Malicious actors collaborate with skill and agility, effectively moving from target...

Future Proofing the Connected World
Future Proofing the Connected World

See all artifacts

Research Insights

Cyber criminals are adopting cloud services just as rapidly as the rest of us!

December 10, 2019, Paolo Passeri - Cyber Intelligence Principal; Neil Thacker - CISO EMEA; & Ross Asquith - Security Transformation Principal

Register to attend
CSA CloudBytes Figure

Upcoming Meetings

Community
Begins at
Quantum-safe Security Working Group
Dec 10, 2019, 08:00AM PST
Cloud Controls Matrix Working Group
Dec 11, 2019, 08:00AM PST
Open Certification Framework Working Group
Dec 12, 2019, 07:00AM PST
See all meetings

Contribute to CSA Research

Artifact reviews allow security professionals from around the world to collaborate on CSA research. Provide your feedback on the following documents in progress.

Artifacts in Review
Open Until
CloudAbuse Working Group Charter
Dec 16, 2019
Hybrid Cloud and Its Associated Risks
Dec 27, 2019
Cloud Incident Response Framework – A Quick Guide
Dec 27, 2019
View all

Collaborating with CSA

Research Lifecycle Figure

Research Lifecycle

A step-by-step look at the research process, from proposal to publication.

Learn more
 

Research Volunteer FAQ

Contributors to research are composed of solution providers, end users, subject matter experts, and key stakeholders in cloud and related technologies. Join the movement!

Learn more
Research Volunteer FAQ Figure
 

Thank You Research Contributors!

Research awards recognize individuals who demonstrate significant accomplishments and contribution to CSA research. Annual and long-term achievement awards are bestowed to those who also reflect industry leadership, community participation and passion for volunteerism.

Read more
Thank You Research Contributors
 

Featured Working Groups

Artificial intelligence

As we move forward into the future of automation, AI is proving to be playing a critical role in the realm of both cyber and cloud security. The ability to learn at a rate that AI does makes it extremely important...

View Group

Blockchain

Blockchain and distributed ledger technology is an innovative and continuously evolving technology that has far reaching security implications beyond the financial services industries.

View Group

Cloud Controls Matrix

The Cloud Controls Matrix (CCM) working group supports CSA’s industry-leading meta-framework for cloud security assurance. The working group conducts controls mapping projects with the aim of identifying and analysing compliance gaps.

View Group

DevSecOps

Changing the mindset of the industry and establishing fundamental principles to enhance the development, security, and operations during project lifecycles.

View Group

Internet of Things

As the cloud environment expand to new technologies, the connected world depends on devices to manage, orchestrate, and provision data.

View Group

Software Defined Perimeter

The Software Defined Perimeter working grouped launched with the goal to develop a solution to stop network attacks against application infrastructure.

View Group
View all Working Groups