Cloud 101CircleEventsBlog
Register for CSA’s free Virtual Cloud Trust Summit to tackle enterprise challenges in cloud assurance.

Working Group

Continuous Assurance Metrics

The Continuous Assurance Metrics working group aims to define a catalogue of security attributes and their corresponding metrics, derived from the CSA Cloud Controls Matrix (CCM), which can be used as a reference for auditors, cloud service providers, cloud customers and security solution vendors that wish to engage in continuous audit-based self-assessments or certifications.
The Continuous Audit Metrics Catalog
The Continuous Audit Metrics Catalog

Download

Continuous Assurance Metrics
Working Group Overview

The Continuous Assurance Metrics working group aims to define a catalogue of security attributes and their corresponding metrics, derived from the CSA Cloud Controls Matrix (CCM), which can be used as a reference for auditors, cloud service providers, cloud customers and security solution vendors that wish to engage in continuous audit-based self-assessments or certifications.


Drafts & Important Docs

Working Group Leadership

Hafiz Sheikh Adnan Ahmed
Hafiz Sheikh Adnan Ahmed

Hafiz Sheikh Adnan Ahmed

Hafiz Sheikh Adnan Ahmed is a futurist and technology/Security leader with 17+ years track record in the areas of ICT Governance, Cyber Security & Resilience, Data Privacy & Protection, Risk Management, Corporate Excellence & Innovation, Digital Transformation, Strategic Transformation.

Read more

Max Pritikin
Max Pritikin

Max Pritikin

Principal Engineer, Cisco

This person does not have a biography listed with CSA.

Publications in ReviewOpen Until
CSA Large Language Model (LLM) Threats TaxonomyApr 19, 2024
Data Security - CCSK v5 Study GuideApr 22, 2024
Information Technology Governance, Risk, and Compliance in Healthcare v2Apr 26, 2024
Enterprise Authority To Operate (EATO) Controls FrameworkMay 12, 2024
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

Apr

24

Wed, April 24, 7:00pm - 8:00pm
Continuous Assurance Metrics WG Call
See details
This is the biweekly call of the CSA CAM WG.

Join the CAM WG in Circle here.

May

8

Wed, May 8, 7:00pm - 8:00pm
Continuous Assurance Metrics WG Call
See details
This is the biweekly call of the CSA CAM WG.

Join the CAM WG in Circle here.

May

22

Wed, May 22, 7:00pm - 8:00pm
Continuous Assurance Metrics WG Call
See details
This is the biweekly call of the CSA CAM WG.

Join the CAM WG in Circle here.

Jun

5

Wed, June 5, 7:00pm - 8:00pm
Continuous Assurance Metrics WG Call
See details
This is the biweekly call of the CSA CAM WG.

Join the CAM WG in Circle here.

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

CSA Large Language Model (LLM) Threats Taxonomy

Open Until: 04/19/2024

This document establishes a common taxonomy and definitions for key terms related to AI risk scenarios, threats, and contro...

Data Security - CCSK v5 Study Guide

Open Until: 04/22/2024

Data security stands as a cornerstone of maintaining organizational integrity and confidentiality. The rapid expansion of c...

Information Technology Governance, Risk, and Compliance in Healthcare v2

Open Until: 04/26/2024

Cloud GRC is an effective means for organizations to gather important risk data, validate compliance, and report results. O...

Enterprise Authority To Operate (EATO) Controls Framework

Open Until: 05/12/2024

The Enterprise Authority To Operate (EATO) working group is opening their Controls Framework for open peer review.<...