The advancement toward secure cloud computing requires active participation from a broad set of globally-distributed stakeholders. CSA brings together this diverse community of industry partnerships, ...

The CSA AI Controls Framework Working Group’s goal is to define a framework of control objectives to support organizations in their secure and responsible development, management, and use of AI ...

This working group aims to develop Zero Trust standards to achieve consistency for cloud, hybrid and mobile endpoint environments. The topic of group discourse include Zero Trust benefits, ...

An IEEE standard for local and metropolitan area networks–Port-Based Network Access Control. IEEE 802 LANs are deployed in networks that convey or provide access to critical data, that support mission ...

Written by Ken Huang, CEO & Chief AI Officer, DistributedApps.ai. This blog post presents MAESTRO (Multi-Agent Environment, Security, Threat, Risk, and Outcome), a novel threat modeling framework ...

The Cloud Controls Matrix (CCM) is a cybersecurity control framework made up of 207 controls across 17 security domains. The CCM maps to industry best practices and is considered the standard for ...

This publication provides guidance for small and medium-sized businesses (SMBs) transitioning to a Zero Trust architecture. It takes into account the many unique constraints that SMBs face, including ...

Get the comprehensive CCSK v5 Prep Kit. Includes study guide, sample questions, and more to help you pass the cloud security exam.

This group follows closely to the CCM working group in order to map the architecture domains that help enterprises identify critical components that are key to their cloud security architecture. These ...

Overview of cloud security architecture, its core principles, components, and proactive strategies to protect data and ensure business continuity.

The working group will author guidelines and best practices, and promote standards that enhance the lives of technology professionals tasked with adopting and optimizing key management systems for use ...

This report provides case‌ ‌study‌ ‌analyses‌ ‌for‌ last year’s ‌ The‌ ‌Egregious‌ ‌11:‌ ‌Top‌ ‌Threats‌ ‌to‌ ‌Cloud‌ ‌Computing and a relative security industry breach analysis. Using nine actual ...