These implementation guidelines are designed to support organizations and cloud service providers in understanding and operationalizing the new CCM v4.1 controls. Developed in alignment with the ...

This breakdown of the ISO 27001 certification process will help you get a better idea of what will be reviewed during each phase of the audit process.

Learn how Microsoft is implementing a Zero Trust security model to ensure a healthy and protected environment with the internet as the default network with strong identity, device health enforcement, ...

The CloudSecurityAlliance maintains a number of mailing lists on two major platforms. We use Google groups for a number of lists, to manage your subscriptions please go to ...

© Copyright 2023 Cloud Security Alliance - All rights reserved. You may download, store, display on your computer, view, print, and link to the Cloud Security ...

Today, CSA is releasing the official mapping of the AI Controls Matrix (AICM v1.0) to ISO/IEC 42001:2023—with companion ...

Introducing CSA’s MCP Security Resource Center — the first open industry hub for securing the Model Context Protocol and the broader agentic AI control plane.

The most effective security isn’t a gate—it’s a foundation. By weaving security into the DNA of platforms, we empower teams ...

In 2023, a threat actor launched a social engineering campaign on Retool involving smishing & credential harvesting, leading them to a one-time password token.

Email attacks on financial services rose 25% year-over-year. Learn why FinServ is a top target and how threat actors exploit ...