Browse Resources
 | STAR Registry FAQ The STAR Registry is a globally recognized and publicly accessible repository of over 2,000 service assessments filled out by cloud service providers (CSP... Request to download |
 | Value of STAR Level 2 for Cloud Customers - Letter Template Use this letter template to explain to a customer why your organization decided to use STAR Level 2 Certification or Attestation to minimize multiple cust... Request to download |
 | Requirements for Bodies Providing STAR Certification This document outlines how to conduct STAR certification assessments to the Cloud Controls Matrix (CCM) as part of an ISO 27001 assessment. The STAR certi... Request to download |
 | Deconstructing Application Connectivity Challenges in a Complex Cloud Environment The production and use of SaaS applications in organizations has grown exponentially over the past several years. Application Security has become an integ... Request to download |
 | CSA CCM v4.0 Addendum - ISMAP This document is an addendum to the CCM V4.0 that contain controls mapping between the CSA CCM and Japan's Information System Security Management and Asse... Request to download |
 | Accedere: Using a SOC 2 Approach to Help Organizations Achieve CSA STAR Level 2 Cybersecurity frameworks, standards and certifications can be quite complicated to understand, making it difficult to identify which standard an organizat... Request to download |
 | Flowchart for Becoming a CSA STAR Accredited Assessment Firm Download this flowchart to see the steps needed to become a CSA STAR Accredited Assessment Firm. Request to download |
 | Case Study: Integrating Third-Party Assessments and Regulations with CSA STAR and TokenEx TokenEx is a leading data protection and tokenization platform, founded in 2010. They have completed the CSA STAR Level 1: Security Self-Assessment, docum... Request to download |
 | How to Submit to CSA STAR Download this graph for an overview of the steps your organization will need to take to submit to the CSA STAR registry for both level 1 and level 2. Request to download |
 | The Importance of STAR Compliance requires a comprehensive review of services and processes related to cloud infrastructure and how it is managed during a data lifecycle. STAR f... Request to download |
 | STAR Level and Scheme Requirements Find out about each level of the CSA Security Trust, Assurance and Risk (STAR) program. STAR is the industry’s most powerful program for security assurance i... Request to download |
 | STAR Level 1: Security Questionnaire (CAIQ v4) - Japanese Translation This localized version of this publication was produced from the original source material through the efforts of chapters and volunteers but the translate... Request to download |
 | CCM v4 - Turkish Translation Bu yayının bu yerel dile çevrilmiş versiyonu, bölümlerin ve gönüllülerin çabalarıyla [orijinal kaynak](https://cloudsecurityalliance.org/artifacts/cloud-c... Request to download |
 | CCM and CAIQ v4 -Japanese Translations This localized version of this publication was produced from the original source material (CCM, CAIQ) through the efforts of chapters and volunteers but t... Request to download |
 | CCM v4 - Spanish Translation Esta versión traducida de esta publicación se produjo a partir de la fuente original del material gracias al esfuerzo de los capítulos y voluntarios, pero... Request to download |
 | CCM v4 - Chinese Translation 该中文版本的出版物是根据[原文](https://cloudsecurityalliance.org/artifacts/cloud-controls-matrix-v4/)进行汉化,由CSA大中华区及其志愿者翻译完成,但翻译的内容不属于[CSA研究院生命周期](https://cloudsecuritya... Request to download |
 | CCM v4 - Hungarian Translation A kiadvány e honosított változata az eredeti forrásanyagból készült, helyi szervezetek és önkéntesek erőfeszítései révén, de a lefordított tartalom kívül ... Request to download |
 | Code of Practice for Implementing STAR Level 2 This Code of Practice shows how you can apply the CCM control set in your organization to reach STAR Level 2 third party certification/attestation and als... Request to download |
 | STAR Level 1: Security Questionnaire (CAIQ v4) The STAR Level 1: Security Questionnaire (CAIQ v4) offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and SaaS services,... Request to download |
 | Guidelines for CPAs Providing CSA STAR Attestation v3 This document provides guidance for CPAs in conducting a STAR Attestation. It includes relevant information including: professional requirements, competency ... Request to download |