Cloud Security Alliance
The regulating documents created by CSA, including, '10 major risks of cloud computing' (Top Threats to Cloud Computing) and 'The security guidance for application to crucial aspects of cloud computing' enjoy wide popularity (Security Guidance for Critical Areas of Focus in Cloud Computing). Also the development of GRC Stack representing tool kit for assessment of controllability, risks and level of observance of the existing requirements is of great interest (Governance, Risk Management and Compliance). GRC Stack includes tools of carrying out audit of the cloud CloudAudit systems, the list of control indicators during the carrying out audit and assessment of cloud risks of Cloud Control Matrix and also the questionnaire for assessment of the security level of the cloud Consensus Assessments Initiative systems.
History
- At a seminar 'Safety of cloud computing' which was held on March 9, 2011 by association of professionals in information security fields of RISSPA, it was announced start of the Russian department of the international non-profit association Cloud Security Alliance (CSA). The vice president of RISSPA and the initiator of creation of the Russian department CSA (CSA Russian Chapter) Klimov Evgeny performed with this news.