Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Initiatives & Partnerships
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
GDPR Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Platform
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Train my entire team
Trainings
Zero Trust Training (ZTT)
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Architectures and Components
Enterprise Architecture
Hybrid Cloud Security
Emerging Technologies
Blockchain/Distributed Ledger
Quantum-safe Security
Artificial Intelligence
Securing DevOps
Application Containers and Microservices
DevSecOps
Security Services
Enterprise Resource Planning
Software-Defined Perimeter
Zero Trust
Threat Intelligence
Global Security Database (GSD)
Top Threats
View all topics
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Initiatives & Partnerships
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
GDPR Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Platform
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Train my entire team
Trainings
Zero Trust Training (ZTT)
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Architectures and Components
Enterprise Architecture
Hybrid Cloud Security
Emerging Technologies
Blockchain/Distributed Ledger
Quantum-safe Security
Artificial Intelligence
Securing DevOps
Application Containers and Microservices
DevSecOps
Security Services
Enterprise Resource Planning
Software-Defined Perimeter
Zero Trust
Threat Intelligence
Global Security Database (GSD)
Top Threats
View all topics
Cloud 101CircleEventsBlog
Sign In

Working Group

Cloud Controls Matrix Working Group

Along with releasing updated versions of the CCM and CAIQ, this working group provides addendums, control mappings and gap analysis between the CCM and other research releases, industry standards, and regulations to keep it continually up to date.
View Current Projects
Cloud Controls Matrix and CAIQ v4
Cloud Controls Matrix and CAIQ v4

Download

Research Topics
About Topic
Working Group
Discussion Community
Publications
Home
Research
Working Groups
Cloud Controls Matrix Working Group
Working Group Overview

Along with releasing updated versions of the CCM and CAIQ, this working group provides addendums, control mappings and gap analysis between the CCM and other research releases, industry standards, and regulations to keep it continually up to date.


CSA is collaborating with IBM in order to align the two frameworks CCM v4 and IBM Cloud Framework. If you're interested in getting involved, please contact Eleftherios Skoutaris, [email protected].


What do we discuss during our meetings? 

During these meetings we typically discuss changes in the industry and collaborate on projects the group is working on.


Drafts & Important Docs


Working Group Leadership

David Nickles
David Nickles

David Nickles

Global Audit Program Manager for FSIs

David Nickles is a Global Audit Program Manager for FSI’s at Amazon Web Services (AWS). His work focuses on enabling financial services institutions to move their workloads to the cloud by providing sound guidance for building programs to ensure regulatory, governance, risk, compliance, audit, and security control requirements are met, align to industry best practices, and appropriate due diligence activity is completed. Prior to AWS, David...

Read more

Sean Cordero
Sean Cordero

Sean Cordero

Sean Cordero brings more than 15 years of information security and IT experience to his current role as director, information security at Optiv. Cordero provides executive level advisement for the company’s Fortune 50 clients. Cordero’s prior leadership roles included: President of Cloud Watchmen, CSO for EdFund, CSO for ECMC West, Director of Security and Compliance for Charlotte Russe.

Cordero is a thought-leader and serves as chair...

Read more

Shawn Harris
Shawn Harris

Shawn Harris

Director of Information Security

With more than 25 years of information security experience, Shawn Harris is currently the Director of Information Security at Starbucks Coffee Company. His background includes engineering, architecture, and executive responsibilities. Shawn is currently co-chair of the CSA Cloud Controls Matrix working group, where he led efforts to develop the Cloud Control Matrix 4.0. Additionally, he has served on CSA’s Consensus Assessments ...

Read more

Daniele Catteddu
Daniele Catteddu

Daniele Catteddu

Chief Technology Officer, CSA

Daniele Catteddu is an information security and risk management practitioner, technologies expert and privacy evangelist with over 15 of experience. He worked in several senior roles both in the private and public sector. He is member of various national and international security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on risk management, ...

Read more

Eleftherios Skoutaris
Eleftherios Skoutaris

Eleftherios Skoutaris

Program Manager / Research Analyst, CSA EMEA

This person does not have a biography listed with CSA.

Publications in ReviewOpen Until
The Six Pillars of DevSecOps - Collaboration and IntegrationOct 20, 2023
Key Management Lifecycle Best PracticesOct 26, 2023
Cloud Security Maturity Model 2023Oct 26, 2023
View all
Want to join this working group? Register or sign-into Circle to get started.
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

Sep

27

Wed, September 27, 6:00pm - 7:00pm
CCMv4 WG
See details
Passcode: 621643

Additional info:

  • Follow up on the latest CCM WG activities in Circle.
  • If having issues finding the CCM WG, please follow the step by step guide to Circle on-boarding here
  • WG call meetings are recorded and made available to the rest of the group. The purpose of the recordings and their use is for the writing of meetings minutes and members in "difficult" time zones only. Please visit the "Data Protection Notice" document, which includes the purposes of use, retention period of audio files, etc.


Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://zoom.us/j/245687063

Meeting ID: 245 687 063
Passcode: 621643

One tap mobile
+16699009128,,245687063# US (San Jose)
+16465588656,,245687063# US (New York)

Dial by your location
        +1 669 900 9128 US (San Jose)
        +1 646 558 8656 US (New York)
Meeting ID: 245 687 063
Find your local number: https://zoom.us/u/ac16Mhvmr3
View Event

Sep

28

Thu, September 28, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Oct

5

Thu, October 5, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Oct

11

Wed, October 11, 6:00pm - 7:00pm
CCMv4 WG
See details
Passcode: 621643

Additional info:

  • Follow up on the latest CCM WG activities in Circle.
  • If having issues finding the CCM WG, please follow the step by step guide to Circle on-boarding here
  • WG call meetings are recorded and made available to the rest of the group. The purpose of the recordings and their use is for the writing of meetings minutes and members in "difficult" time zones only. Please visit the "Data Protection Notice" document, which includes the purposes of use, retention period of audio files, etc.


Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://zoom.us/j/245687063

Meeting ID: 245 687 063
Passcode: 621643

One tap mobile
+16699009128,,245687063# US (San Jose)
+16465588656,,245687063# US (New York)

Dial by your location
        +1 669 900 9128 US (San Jose)
        +1 646 558 8656 US (New York)
Meeting ID: 245 687 063
Find your local number: https://zoom.us/u/ac16Mhvmr3
View Event

Oct

12

Thu, October 12, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Oct

19

Thu, October 19, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Oct

25

Wed, October 25, 6:00pm - 7:00pm
CCMv4 WG
See details
Passcode: 621643

Additional info:

  • Follow up on the latest CCM WG activities in Circle.
  • If having issues finding the CCM WG, please follow the step by step guide to Circle on-boarding here
  • WG call meetings are recorded and made available to the rest of the group. The purpose of the recordings and their use is for the writing of meetings minutes and members in "difficult" time zones only. Please visit the "Data Protection Notice" document, which includes the purposes of use, retention period of audio files, etc.


Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://zoom.us/j/245687063

Meeting ID: 245 687 063
Passcode: 621643

One tap mobile
+16699009128,,245687063# US (San Jose)
+16465588656,,245687063# US (New York)

Dial by your location
        +1 669 900 9128 US (San Jose)
        +1 646 558 8656 US (New York)
Meeting ID: 245 687 063
Find your local number: https://zoom.us/u/ac16Mhvmr3
View Event

Oct

26

Thu, October 26, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Nov

2

Thu, November 2, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Nov

8

Wed, November 8, 6:00pm - 7:00pm
CCMv4 WG
See details
Passcode: 621643

Additional info:

  • Follow up on the latest CCM WG activities in Circle.
  • If having issues finding the CCM WG, please follow the step by step guide to Circle on-boarding here
  • WG call meetings are recorded and made available to the rest of the group. The purpose of the recordings and their use is for the writing of meetings minutes and members in "difficult" time zones only. Please visit the "Data Protection Notice" document, which includes the purposes of use, retention period of audio files, etc.


Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://zoom.us/j/245687063

Meeting ID: 245 687 063
Passcode: 621643

One tap mobile
+16699009128,,245687063# US (San Jose)
+16465588656,,245687063# US (New York)

Dial by your location
        +1 669 900 9128 US (San Jose)
        +1 646 558 8656 US (New York)
Meeting ID: 245 687 063
Find your local number: https://zoom.us/u/ac16Mhvmr3
View Event

Nov

9

Thu, November 9, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Nov

16

Thu, November 16, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Nov

22

Wed, November 22, 6:00pm - 7:00pm
CCMv4 WG
See details
Passcode: 621643

Additional info:

  • Follow up on the latest CCM WG activities in Circle.
  • If having issues finding the CCM WG, please follow the step by step guide to Circle on-boarding here
  • WG call meetings are recorded and made available to the rest of the group. The purpose of the recordings and their use is for the writing of meetings minutes and members in "difficult" time zones only. Please visit the "Data Protection Notice" document, which includes the purposes of use, retention period of audio files, etc.


Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://zoom.us/j/245687063

Meeting ID: 245 687 063
Passcode: 621643

One tap mobile
+16699009128,,245687063# US (San Jose)
+16465588656,,245687063# US (New York)

Dial by your location
        +1 669 900 9128 US (San Jose)
        +1 646 558 8656 US (New York)
Meeting ID: 245 687 063
Find your local number: https://zoom.us/u/ac16Mhvmr3
View Event

Nov

23

Thu, November 23, 6:00pm - 7:00pm
CCMv4 Workshop Sessions
See details
This call, starting from June 27th 2023 and until the end of the same year, is to be dedicated to conducting a mapping & gap analysis of CCM V4 to the Zero Trust architecture and best practices.

In overall, the objective of this workshop meeting is to support the CCMv4 WG activities at a more granular level, allowing for smaller group discussions to enter deeper technical details in the ongoing works.

Scope & Objectives:
  • Provide guidance to new members participating in the exercise,
  • Allowing for participants involved in the mappings to meet up and discuss the consolidation of the provided inputs, 
  • Discuss and resolve any inquiries, issues, challenges pertaining to the mapping and gap analysis methodology followed,
  • Benefit the project by enhancing the collaboration between CCM WG "mapping veterans" and new, less experienced members,
  • Share the "know-how" for the proper interpretation and comparison analysis of controls' semantics,
  • Obtain a deeper insight and better understanding of the CCMv4 and other international standards control specifications,
  • Maintain a steady pace and progress towards the mappings development timeline and meet expected deadlines

Looking forward to lively and fruitful discussions.

Best,

Lefteris
──────────
Eleftherios Skoutaris is inviting you to a scheduled Zoom meeting.

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/94971976122?pwd=NFZsZ0haaU93dXZoc3ZrenZnZHpOQT09

Meeting ID: 949 7197 6122
Passcode: 204148
One tap mobile
+12532158782,,94971976122# US (Tacoma)
+13017158592,,94971976122# US (Germantown)

Dial by your location
        +1 253 215 8782 US (Tacoma)
        +1 301 715 8592 US (Germantown)
        +1 312 626 6799 US (Chicago)
        +1 346 248 7799 US (Houston)
        +1 646 558 8656 US (New York)
        +1 669 900 9128 US (San Jose)
Meeting ID: 949 7197 6122
Find your local number: https://cloudsecurityalliance.zoom.us/u/acGzvkc1Sr


──────────
View Event

Current Projects

View recent publications
Sign-up for this group

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

The Six Pillars of DevSecOps - Collaboration and Integration

Open Until: 10/20/2023

The Cloud Security Alliance DevSecOps Working Group (WG) issued high-level guidance in “Information Security Management thr...

Participate in peer review

Key Management Lifecycle Best Practices

Open Until: 10/26/2023

The scope of the Key Management Lifecycle Best Practices document is to provide guidance, procedures, and important conside...

Participate in peer review

Cloud Security Maturity Model 2023

Open Until: 10/26/2023

The Cloud Security Alliance has partnered with IANS research and Securosis to develop and release version 2.0 of the Cloud ...

Participate in peer review