CSAIChaptersEventsBlog
Join CSA, RSAC, and UNLV for a one-day summit in Las Vegas exploring how AI is reshaping enterprise cybersecurity →

CSA STAR Registry

Security, Trust, Assurance, and Risk Registry

Listings for Portfolio BI

Listings for Portfolio BI

Financial Services

Specialties AWS, Azure, Cloud, Trading, Execution, FIX, Market data, Hedge funds, Asset management, Cyber security, and FCA, SEC, CFTC, Mifid

Listed Since: 2019-09-12

CAIQ
Offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services. It provides a set of Yes/No/NA questions and space to justify the response a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the Cloud Controls Matrix (CCM).
Continuous
Offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services. It provides a set of Yes/No questions a cloud consumer and cloud auditor may wish to ask of a cloud provider to ascertain their compliance to the CSA Cloud Controls Matrix (CCM). Organizations who have a Continuous Self-assessment submit an updated CAIQ every month.