Cloud Controls Matrix

Thread Subject	Replies	Last Post
Meeting at RSA	0	yesterday by Eleftherios Skoutaris
CCMv4.0 - ISF SOGP Mapping (Call for participation)	2	4 days ago by Uilson Souza - MBA Original post by Eleftherios Skoutaris
EA to CCM4 Mapping - ETA	4	12 days ago by Michael Roza Original post by James Dawson
Mapping Tools to Capabilities and Models	0	19 days ago by James Dawson
CCMv4.0 - ISO/IEC 27001/02:2022 Mapping (Kick-off call tomorrow)	1	21 days ago by Miguel Angel Arenas Original post by Eleftherios Skoutaris
CCMv4.0 - ISO/IEC 27001/02:2022 Mapping (Call for participation)	15	25 days ago by Miguel Angel Arenas Original post by Eleftherios Skoutaris
CCMv4 Development Activities Update (29/4/22) CCMv4 CCMv4_Development CCMv4_Mappings CCMv4_SSRM	0	29 days ago by Eleftherios Skoutaris
IBM FSCF - CCMv4.0 Reverse Mapping (Call for participation)	0	2 months ago by Eleftherios Skoutaris
ISO/IEC TR 3445:2022 Information technology - Cloud computing - Audit of cloud services	0	2 months ago by Michael Roza
CAIQ-Lite	1	2 months ago by Eleftherios Skoutaris Original post by Masahiro Morozumi
CCMv4 Development Activities Update (14/3/22) CCMv4 CCMv4_Development CCMv4_Mappings CCMv4_SSRM	1	2 months ago by Uilson Souza - MBA Original post by Eleftherios Skoutaris
CCM WG call cancelled for today March 2nd	3	2 months ago by Uilson Souza - MBA Original post by Eleftherios Skoutaris
ISO 31073:2022 Risk management - Vocabulary	0	3 months ago by Michael Roza
Error when downloading CCM v4	2	3 months ago by Uilson Souza - MBA
NISTIR 8286C Draft Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight	0	3 months ago by Michael Roza
NISTIR 8286B Prioritizing Cybersecurity Risk for Enterprise Risk Management	0	3 months ago by Michael Roza
CCMv4 Development Activities Update (2/1/22) CCMv4 CCMv4_Development CCMv4_Mappings CCMv4_SSRM	1	3 months ago by debjyoti mukherjee Original post by Eleftherios Skoutaris
Linux Foundation Software Bill of Materials (SBOM) and Cybersecurity Readiness	1	3 months ago by Max Pritikin Original post by Michael Roza
Assistance in CRI mapping	0	3 months ago by Larry Marks
CCMv4 Development Activities Update (11/9/21) CCMv4 CCMv4_AG CCMv4_Mappings	4	3 months ago by Eleftherios Skoutaris
NIST Special Publication (SP) 800-53A Revision 5, Assessing Security and Privacy Controls in Information Systems and Organizations	0	4 months ago by Michael Roza
ISO/IEC TS 38505-3:2021 Information technology - Governance of data - Part 3: Guidelines for data classification	0	4 months ago by Michael Roza
Map to Single or Multiple Target Controls (even though gap is closed)?	4	4 months ago by Johan Olivier
FedRAMP Publishes Draft Rev. 5 Baselines for comment	0	5 months ago by Michael Roza
CCM v4.0 Auditing Guidelines Publication	1	5 months ago by Johan Olivier Original post by Eleftherios Skoutaris
Looking for clarification on CCMv4.0.3, control CCC-05	2	5 months ago by Daniel Downs
Where do I find controls and their description	1	5 months ago by Johan Olivier Original post by Narasimha Reddy
CSA - IBM Partnership (Call for Participation)	5	5 months ago by Benjamin Molnar Original post by Eleftherios Skoutaris
ISO/IEC 22237-4:2021 Information technology - Data centre facilities and infrastructures - Part 4: Environmental control	0	6 months ago by Michael Roza
CCM WG open candidacy for Co-chair (CSP role)	1	6 months ago by Eleftherios Skoutaris
NIST SP 800-161 Revision 1 - Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations - Comments Due by December 3, 2021 on Draft	0	7 months ago by Michael Roza
CCM Lite	0	7 months ago by Daniele Catteddu
CSA CCM - IBM FS Cloud Frameworks Mapping	1	7 months ago by Michael Dombrowski Original post by Eleftherios Skoutaris
ISO/IEC 22237-1:2021 Information technology — Data centre facilities and infrastructures — Part 1: General concepts	0	7 months ago by Michael Roza
ISO/IEC 27555:2021 Information security, cybersecurity and privacy protection — Guidelines on personally identifiable information deletion	0	7 months ago by Michael Roza
ISO/IEC 22237-3:2021 Information technology - Data centre facilities and infrastructures - Part 3: Power distribution	0	7 months ago by Michael Roza
NIST Launching Today \| New Online Tool to Improve Stakeholder Engagement with Security and Privacy Controls	4	8 months ago by Daniele Catteddu Original post by Michael Roza
CCMv4.0 Auditing Guidelines - Last call for participation in the Open Peer Review (ends 27.7)	4	8 months ago by Faizan Ali Original post by Eleftherios Skoutaris
CCM understanding	0	8 months ago by Anwer Gillani
Cloud Base Data Warehouse Best Practices	1	8 months ago by Anwer Gillani Original post by Asim Masood
Prioritizing Cybersecurity Risk for Enterprise Risk Management: Draft NISTIR 8286B Available for Comment	1	8 months ago by Daniele Catteddu Original post by Michael Roza
CCMv4 Call, August 18th & 19th [Meeting Minutes] CCMv4_Development CCMv4_IG CCMv4_Mappings	0	9 months ago by Eleftherios Skoutaris
CCMv4 Call, 18th August [Agenda]	1	9 months ago by Mark Carter Original post by Eleftherios Skoutaris
CCM v4.0.2 Errata	2	9 months ago by Koichiro Watanabe
Auditing Guidelines dev. Team Call - July 30th [Meeting Minutes] CCMv4_AG	0	9 months ago by Eleftherios Skoutaris
NIST Special Publication (SP) 800-53A Revision 5, Assessing Security and Privacy Controls in Information Systems and Organizations Draft	0	9 months ago by Michael Roza
CCMv4 Workshop Call, July 29th [Meeting Minutes] CCMv4_IG CCMv4_Mappings	0	10 months ago by Eleftherios Skoutaris
CCM 3.0.1 IAM 12 and CCM 4.0.2	1	10 months ago by Eleftherios Skoutaris Original post by Yann Riviere
+2 CCMv4 Mappings CloudComputing CloudSecurity CyberSecurity	1	10 months ago by Anwer Gillani Original post by Olivia Rempe
NTIA The Minimum Elements For a Software Bill of Materials (SBOM)	0	10 months ago by Michael Roza