Membership
Become a Member
Enterprises
Solution Providers
Startups
Current Members
Solution Providers
Affiliates
Assurance
STAR Program
STAR Levels
View Registry
Submit to Registry
Provide Feedback
GDPR Code of Conduct for STAR
STAR Resources
CAIQ
Cloud Controls Matrix
GDPR Code of Conduct
CAIQ-Lite
CSA-OneTrust VRM Tool
GDPR
Download the Code of Conduct
Submit Code of Conduct to the Registry
Resource Center
Global Consultancy
Become a Consulting Partner
Find a Consulting Service
Certificates & Training
Certificates
CCSK
CCAK
Trainings
CCAK (Coming Soon)
CCSK Lectures
CCSK Lectures + Labs
Advanced Cloud Security Practitioner
Register for Training
For Individuals
For Enterprises
Instructors
Become an Instructor
Training Partners
Become a Training Partner
Webinars
Cloudbytes
Research
GDPR
Events
Americas
APAC
EMEA
Research
What We Do
Research Working Groups
CSA Research Lifecycle
Research Publications
Security Guidance v4
Cloud Controls Matrix (CCM)
IoT Framework
Contribute
Open Peer Reviews
Surveys
Volunteer FAQ
Ron Knode Award
Working Groups
Internet of Things
DevSecOps
Software Defined Perimeter
Blockchain
Cloud Controls Matrix
EMEA Projects
APAC Projects
Community
Circle
Create an Account
Inner Circle Discussion
Job Board Postings
How To Get Started
Blog
Events
Americas
APAC
EMEA
Chapters
Global Chapters
Form a Chapter
About
About CSA
Board
History
CSA Staff
CSA EMEA
Press Releases
News Coverage

Working Group

Hybrid Cloud Security

Join Group
Research Home
View Working Groups
Contribute
Download Publications
Home
Research
Working Groups
Hybrid Cloud Security

Introduction

As businesses are developing rapidly, and IT infrastructures constantly diversified, a single public / private cloud or traditional on-premises datacenter is no longer able to meet service requirements in terms of costs, performance, scalability, security, and compatibility. Users are increasingly choosing hybrid clouds to meet their needs. Hybrid clouds take advantage of various clouds and traditional IT infrastructures and work systematically to benefit the users based on their service requirements. However, there are different security risks the hybrid clouds pose, bringing on challenges to security protection. This initiative aims to identify hybrid cloud security risks and countermeasures, helping users identify and reduce risk. Besides this, the working group also intends to provide suggestions on hybrid cloud governance, hybrid cloud threat profiles and hybrid cloud security evaluation, guiding both users and cloud service providers to choose and provide secure hybrid cloud solutions, and promoting security planning and implementation.

Join Group

Artifacts

Mitigating Hybrid Clouds Risks

Release Date: 10/22/2020

Hybrid clouds are often the starting point for organizations in their cloud journey. However, any cloudmodel consists of ris...

Download Now
Mitigating Hybrid Clouds Risks

Cloud Penetration Testing Playbook

Release Date: 07/12/2019

As cloud services continue to enable new technologies and see massive adoption there is a need to extend the scope of penetratio...

Download Now
Cloud Penetration Testing Playbook
Read the Blog

Open Peer Reviews

Artifact reviews allow security professionals from around the world to collaborate on CSA research. Provide your feedback on the following documents in progress.

Learn more

Next Meeting

No Meetings Currently Scheduled

Leadership

Zou Feng Headshot

Zou Feng (CISSP-ISSAP, CISA) has been working in IT for 20+ years with strong technical background and broad experience in heterogeneous system and multi-culture environment. Starting as Communicat...

 
Zou Feng
 
Narudom Roongsiriwong Headshot

Narudom is a certified information security professional with more than 20 years of experience. His primary areas of interest in information security are in solution designing, analytics, and appli...

 
Narudom Roongsiriwong