This breakdown of the ISO 27001 certification process will help you get a better idea of what will be reviewed during each phase of the audit process.

The CloudSecurityAlliance maintains a number of mailing lists on two major platforms. We use Google groups for a number of lists, to manage your subscriptions please go to ...

© Copyright 2023 Cloud Security Alliance - All rights reserved. You may download, store, display on your computer, view, print, and link to the Cloud Security ...

This Code of Conduct applies within all community spaces, and also applies when an individual is officially representing the community in public spaces. Examples of representing our community include ...

Today, CSA is releasing the official mapping of the AI Controls Matrix (AICM v1.0) to ISO/IEC 42001:2023—with companion ...

Introducing CSA’s MCP Security Resource Center — the first open industry hub for securing the Model Context Protocol and the broader agentic AI control plane.

Effective August 19, 2025 Welcome to https://cloudsecurityalliance.org (“Site”). The Site is owned and operated by the Cloud Security Alliance (“CSA”). BY VISITING AND USING THE SITE, YOU ACKNOWLEDGE ...

In 2023, a threat actor launched a social engineering campaign on Retool involving smishing & credential harvesting, leading ...

In 2023, a threat actor launched a social engineering campaign on Retool involving smishing & credential harvesting, leading them to a one-time password token.

STAR Registry Listing for EverestIMS Technologies Liited Founded in 2013 by the Cloud Security Alliance, the Security Trust Assurance and Risk (STAR) registry encompasses key principles of ...

STAR Registry Listing for AceCloud Public Cloud Founded in 2013 by the Cloud Security Alliance, the Security Trust Assurance and Risk (STAR) registry encompasses key principles of transparency, ...