Cloud 101CircleEventsBlog

Working Group

Hybrid Cloud Security

This working group intends to provide suggestions on hybrid cloud governance, hybrid cloud threat profiles and hybrid cloud security evaluation, guiding both users and cloud service providers to choose and provide secure hybrid cloud solutions, and promoting security planning and implementation.
Secure Connection Requirements of Hybrid Cloud
Secure Connection Requirements of Hybrid Cloud

Download

Hybrid Cloud Security
Working Group Overview

This working group intends to provide suggestions on hybrid cloud governance, hybrid cloud threat profiles and hybrid cloud security evaluation, guiding both users and cloud service providers to choose and provide secure hybrid cloud solutions, and promoting security planning and implementation.


Drafts & Important Docs

Working Group Leadership

Zou Feng
Zou Feng

Zou Feng

Zou has been working in IT for 15+ years with a strong technical background and broad experience in heterogeneous systems and multi-culture environments.
Starting as Communication Engineer at ICBC, the largest bank in China, Zou maintained legacy telecommunication circuits and an IBM mainframe communication controller. During this period, Zou built up their first experience in data security by implementing a cipher machine to...

Read more

Narudom Roongsiriwong
Narudom Roongsiriwong

Narudom Roongsiriwong

Head of Digital Architecture

Narudom ROONGSIRIWONG (SVP, Head of Digital Architecture, Bank of Ayudhya (Krungsri Bank) PCL, Thailand) has been an information security professional for over twenty years with solid technical experience in architecture, data analytics, application development and cloud computing. He has experience in running three security operation centers and the last one operated with in-house AI and Machine Learning. He was a pioneer in setting up the...

Read more

Publications in ReviewOpen Until
Infrastructure and Networking - CCSK v5 Study GuideApr 16, 2024
CSA Large Language Model (LLM) Threats TaxonomyApr 19, 2024
Information Technology Governance, Risk, and Compliance in Healthcare v2Apr 26, 2024
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

Infrastructure and Networking - CCSK v5 Study Guide

Open Until: 04/16/2024

Cloud computing infrastructure and network security are crucial aspects of ensuring the safety and reliability of data and ...

CSA Large Language Model (LLM) Threats Taxonomy

Open Until: 04/19/2024

This document establishes a common taxonomy and definitions for key terms related to AI risk scenarios, threats, and contro...

Information Technology Governance, Risk, and Compliance in Healthcare v2

Open Until: 04/26/2024

Cloud GRC is an effective means for organizations to gather important risk data, validate compliance, and report results. O...