Dear members,
We are excited to announce the formation of a new working group focused on developing technical security controls tailored for SaaS cloud services. This initiative is a collaboration between CSA's Cloud Controls Matrix (CCM) Working Group, MongoDB, and GuidePoint Security.
Project Overview:
The rapid adoption of SaaS solutions has introduced challenges in maintaining consistent security capabilities across different vendors. Vendor selection becomes complex and costly while maintaining a consistent security posture across hundreds of SaaS services proves difficult. Our goal is to bridge this gap by creating technical controls and guidelines to streamline vendor selection, establish benchmarks for SaaS security capabilities, and simplify security management for organizations using multiple SaaS solutions.
Call for Experts:
We invite cloud security experts, SaaS provider representatives, security practitioners, and other stakeholders to join this collaborative effort. Your technical expertise and insights will be invaluable in shaping a comprehensive set of controls that address these challenges and anticipate future needs. We are particularly interested in professionals experienced with large-scale SaaS deployments and the creation of new controls, as well as those with experience in assessing SaaS vendors' compliance with internal security requirements. We welcome input from SaaS vendors to ensure the controls we develop are practical and applicable in real-world scenarios.
How to Get Involved:
If you are interested in contributing to this project, please contact Lefteris Skoutaris at [eskoutaris@cloudsecurityalliance.org] and confirm your participation by July 29th.
------------------------------
[Lefteris] [Skoutaris]
[Cloud Controls Matrix, Program Manager]
[Cloud Security Alliance]
------------------------------