CSAIChaptersEventsBlog
Join CSA, RSAC, and UNLV for a one-day summit in Las Vegas exploring how AI is reshaping enterprise cybersecurity →

CSA STAR Registry

Security, Trust, Assurance, and Risk Registry

Listings for Microsoft

Listings for Microsoft

Microsoft 365

Microsoft 365 is a multi-tenant cloud computing-based subscription service offering from Microsoft. Cloud computing has been defined by NIST as a model fo...

Listed Since: 2020-06-15

CAIQ
Offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services. It provides a set of Yes/No/NA questions and space to justify the response a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the Cloud Controls Matrix (CCM).
AI CAIQ
Offers an industry-accepted way to document what security controls exist in solutions that include AI components or are AI products. It provides a set of Yes/No questions a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the Artificial Intelligence Controls Matrix (AICM).
ISO/IEC 42001
ISO/IEC 42001 is the international standard that specifies requirements for establishing, implementing, maintaining, and continually improving an Artificial Intelligence Management System (AIMS) to ensure the responsible, ethical, and effective use of AI.
A technology-neutral certification leveraging the requirements of the ISO/IEC 27001 management system and ISO/IEC 42001 AI management system standards together with the CSA AI Controls Matrix (AICM).
Organizations who have the CSA Trusted Cloud Provider trustmark demonstrate a commitment to organizational security. They are a CSA Corporate Member, volunteer regularly for CSA, and have at least one staff member who has earned their CCSK.

Microsoft Azure

Azure is a multi-tenant hyperscale cloud platform that is available or announced to customers in 60+regions worldwide. Most Azure services enable customer...

Listed Since: 2016-04-05

CAIQ
Offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services. It provides a set of Yes/No/NA questions and space to justify the response a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the Cloud Controls Matrix (CCM).
Certification
A technology-neutral certification leveraging the requirements of the ISO/IEC 27001 management system standard together with the CSA Cloud Controls Matrix (CCM).
Organizations who have the CSA Trusted Cloud Provider trustmark demonstrate a commitment to organizational security. They are a CSA Corporate Member, volunteer regularly for CSA, and have at least one staff member who has earned their CCSK.

Microsoft Corporation

Listed Since: 2024-02-25

EU Cloud CoC
This trustmark signifies adherence to the EU Cloud CoC through a dedicated framework and legally demonstrates GDPR compliance. Cloud Service Providers that have successfully passed the EU Cloud CoC’s evaluation process have their Compliance Mark visible in both the Code’s Public Registry as well as here in the CSA STAR Registry.
Organizations who have the CSA Trusted Cloud Provider trustmark demonstrate a commitment to organizational security. They are a CSA Corporate Member, volunteer regularly for CSA, and have at least one staff member who has earned their CCSK.