Browse Resources
![]() | Requirements for Bodies Providing STAR Certification Release Date: 03/31/2025 This document outlines how to conduct STAR certification assessments to the Cloud Controls Matrix (CCM) as part of an ISO 27001 assessment. The STAR certi... Request to download |
![]() | Release Date: 11/13/2024 The STAR Prep Kit is your comprehensive guide to mastering the components of CSA’s Security, Trust, Assurance, and Risk (STAR) program. This kit includes ... Request to download |
![]() | NIST CSF v2 Cloud Community Profile - Based on CCM v4 Release Date: 10/15/2024 The CSFv2.0 Cloud Community Profile aligns the Cloud Controls Matrix (CCM) version 4.0 with the Cybersecurity Framework (CSF) version 2.0 by mapping equiv... Request to download |
![]() | Release Date: 04/22/2024 Discover the depth of resources available through the Cloud Security Alliance (CSA) in this updated Corporate Brochure. This overview introduces you to CS... Request to download |
![]() | Release Date: 02/26/2024 The Cloud Security Alliance (CSA) has partnered with the European Union Cloud Code of Conduct (EU Cloud CoC) on a pioneering initiative setting market sta... Request to download |
![]() | STAR Lead Auditor Training FAQ Release Date: 02/14/2024 Developed in collaboration with the CSA and British Standards Institution (BSI), the STAR Lead Auditor training is a comprehensive program that aims to eq... Request to download |
![]() | Release Date: 11/02/2023 STAR Extended delivers the elements of the globally-recognized STAR program in a customized fashion. This allows governments, industries, and other entiti... Request to download |
![]() | Release Date: 10/12/2023 If you’re evaluating the cloud security of your organization or a potential cloud provider, you can use the Cloud Controls Matrix (CCM) free of charge. Ho... Request to download |
![]() | STAR Attestation Value Proposition Release Date: 10/03/2023 Request to download |
![]() | Release Date: 09/25/2023 The Cloud Controls Matrix (CCM) is a globally recognized framework of 197 controls (policies, procedures, and technical measures) that are crucial for clo... Request to download |
![]() | Guidelines for CPAs Providing CSA STAR Attestation v4 Release Date: 09/07/2023 This document provides guidance for CPAs in conducting a STAR Attestation. It includes relevant information including professional requirements, competenc... Request to download |
![]() | Release Date: 08/22/2023 Assurance education encompasses training and certification programs that teach individuals how to determine the effectiveness of the cybersecurity practic... Request to download |
![]() | Release Date: 08/22/2023 The STAR Assessment Portfolio is a collection of globally-recognized cloud security and privacy assessments that can be completed by cloud service provide... Request to download |
![]() | Release Date: 05/05/2023 The STAR Registry is a globally recognized and publicly accessible repository of over 2,000 service assessments filled out by cloud service providers (CSP... Request to download |
![]() | Value of STAR Level 2 for Cloud Customers - Letter Template Release Date: 03/09/2023 Use this letter template to explain to a customer why your organization decided to use STAR Level 2 Certification or Attestation to minimize multiple cust... Request to download |
![]() | Deconstructing Application Connectivity Challenges in a Complex Cloud Environment Release Date: 12/14/2022 The production and use of SaaS applications in organizations has grown exponentially over the past several years. Application Security has become an integ... Request to download |
![]() | Release Date: 10/04/2022 This document is an addendum to the CCM V4.0 that contain controls mapping between the CSA CCM and Japan's Information System Security Management and Asse... Request to download |
![]() | Accedere: Using a SOC 2 Approach to Help Organizations Achieve CSA STAR Level 2 Release Date: 09/19/2022 Cybersecurity frameworks, standards and certifications can be quite complicated to understand, making it difficult to identify which standard an organizat... Request to download |
![]() | Flowchart for Becoming a CSA STAR Accredited Assessment Firm Release Date: 09/13/2022 Download this flowchart to see the steps needed to become a CSA STAR Accredited Assessment Firm. Request to download |
![]() | Case Study: Integrating Third-Party Assessments and Regulations with CSA STAR and TokenEx Release Date: 03/23/2022 TokenEx is a leading data protection and tokenization platform, founded in 2010. They have completed the CSA STAR Level 1: Security Self-Assessment, docum... Request to download |