STAR Registry Listing for
Cloud Computing Services of the Employment Information System of the Campania Region (Italy)
Founded in 2013 by the Cloud Security Alliance, the Security Trust Assurance and Risk (STAR) registry encompasses key principles of transparency, rigorous auditing, and cloud security and privacy best practices.
The "Cloud Computing, Security, Online Service Portal Solutions and Application Cooperation" service created for the Campania Region in Italy envisaged the migration and consolidation of the entire application systems of the Region's Employment Information System, which represents an important case history for the number of users and variety of services provided directly online. The platform is accessible to all users through the classic internet connection for both citizens and operators of the Campania Region. All platform systems communicate with each other within the cloud. Daily checks on the IT system and on the machines ensure constant monitoring of all the main systems of the IT infrastructure set up. The adoption of the cloud infrastructure allows, in fact, to improve the operational efficiency of ICT systems, to achieve significant cost reductions, to make it easier and cheaper to update software, to improve security and data protection and to speed up the delivery of services to citizens and businesses. Converting services or applications from on premise to cloud involves a series of gradual steps, which is why administrations can rely on ETT in all the necessary steps, from design, implementation and application porting. Using familiar tools and templates allows ETT to reduce risk, increase efficiency and accelerate cloud migration even for complex work systems, improving performance, speeding time-to-value and protecting cloud investments in the long period.
Listed Since: 11/10/2021
Last Updated: 03/25/2022
Level 1: Self-Assessment
At level one organizations can submit one or both of the security and privacy self-assessments. These are based off of the Cloud Controls Matrix and the CSA Code of Conduct for GDPR Compliance.