Cloud 101CircleEventsBlog

Working Group

Open Certification Framework

The CSA Open Certification working group is an industry initiative to allow global, accredited, trusted certification of cloud providers.
Open Certification Framework Working Group Charter
Open Certification Framework Working Group Charter

Download

Open Certification Framework
Working Group Overview

The CSA Open Certification working group is an industry initiative to allow global, accredited, trusted certification of cloud providers. It manages the foundation that runs and monitors the CSA STAR Certification program.

What do we discuss during our meetings? 
During these meetings we typically discuss changes in the industry and certification schemes, as well as collaborate on projects the group is working on. Be sure to familiarize yourself with the CSA STAR program as that is what this group is focused on.


Drafts & Important Docs


Working Group Leadership

Tyler Messa Headshot Missing
Tyler Messa

Tyler Messa

STAR Technical Director, CSA

This person does not have a biography listed with CSA.

Daniele Catteddu
Daniele Catteddu

Daniele Catteddu

Chief Technology Officer, CSA

Daniele Catteddu is an information security and risk management practitioner, technologies expert and privacy evangelist with over 15 of experience. He worked in several senior roles both in the private and public sector. He is member of various national and international security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on risk management, ...

Read more

Working Group Co-Chairs

Ryan Mackie
Ryan Mackie

Ryan Mackie

Principal, Schellman & Company

Ryan Mackie is a Principal at Schellman & Company, LLC. Ryan manages SOC, PCI-DSS, ISO, HIPAA, and Cloud Security Alliance (CSA) STAR Certification and Attestation service delivery and also oversees the firm-wide methodology and execution for the ISO certification services, including ISO 27001, ISO 9001, ISO 20000, and ISO 22301 as well as CSA STAR certification services. He has over 20 years of experience, including 14 at Schellman, 2 at P...

Read more

Ronald Tse
Ronald Tse

Ronald Tse

CEO, Ribose

Ronald has served CSA in numerous capacities, including as a member of CSA's APAC Research Advisory and International Standardization Council. Additionally, he co-chairs the Open Certification Framework (OCF), SaaS Governance, and DevSecOps working groups. He is the founder and CEO of Ribose, where under his leadership the company has been consistently awarded the industry's highest cloud security ratings, including being the on...

Read more

Publications in ReviewOpen Until
Infrastructure and Networking - CCSK v5 Study GuideApr 16, 2024
CSA Large Language Model (LLM) Threats TaxonomyApr 19, 2024
Information Technology Governance, Risk, and Compliance in Healthcare v2Apr 26, 2024
Enterprise Authority To Operate (EATO) Controls FrameworkMay 12, 2024
View all
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

May

9

Thu, May 9, 8:00am - 9:00am
OCF Working Group Recurring Call - 2023
See details
2023 Recurring OCF WG meetings

Agenda

  • A detailed agenda will be shared one week before the meeting.

May

9

Thu, May 9, 9:00am - 10:00am
OCF Working Group Recurring Call - 2024
See details
2024 Recurring OCF WG meetings

Agenda

  • A detailed agenda will be shared the Monday before the meeting.

Jun

13

Thu, June 13, 8:00am - 9:00am
OCF Working Group Recurring Call - 2023
See details
2023 Recurring OCF WG meetings

Agenda

  • A detailed agenda will be shared one week before the meeting.

Jun

13

Thu, June 13, 9:00am - 10:00am
OCF Working Group Recurring Call - 2024
See details
2024 Recurring OCF WG meetings

Agenda

  • A detailed agenda will be shared the Monday before the meeting.

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

Infrastructure and Networking - CCSK v5 Study Guide

Open Until: 04/16/2024

Cloud computing infrastructure and network security are crucial aspects of ensuring the safety and reliability of data and ...

CSA Large Language Model (LLM) Threats Taxonomy

Open Until: 04/19/2024

This document establishes a common taxonomy and definitions for key terms related to AI risk scenarios, threats, and contro...

Information Technology Governance, Risk, and Compliance in Healthcare v2

Open Until: 04/26/2024

Cloud GRC is an effective means for organizations to gather important risk data, validate compliance, and report results. O...

Enterprise Authority To Operate (EATO) Controls Framework

Open Until: 05/12/2024

The Enterprise Authority To Operate (EATO) working group is opening their Controls Framework for open peer review.<...