Announcements

Announcements List

  • Join SoCal Security Innovation Summit

  • New Mexico Chapter

    Please feel free to invite others to join the Circle!
  • BeLux - Belgium & Luxemburg Chapter

    The BeLux Chapter is operated by LSEC - Leaders In Security, from out of Leuven - Belgium. It has been around since 2012, focusing on creating awareness on cloud and cloud security activities. The CSA BeLux chapter is an active promotor of CSA's activities in BeLux, and in relations to the Brussels EC-based discussions. LSEC is participating in ECSO the European Cybersecurity Organization, and in the CSP-Cert discussions preserving also the interests of CSA. CSA BeLux has organized different annual Cloud Security events, with contributions by the EMEA CSA team. On a monthly basis, LSEC organizes a Cloud Security working group with both technology providers and enterprise cybersecurity and cloud representatives. CSA BeLux has a specific interest in AI, IoT, Incident Management, Privacy and CCA/CCSK developments. CSA BeLux (through LSEC) participated together with CSA EMEA in a couple of European projects, such as Takedown on Cybercrime and Organised Crime. CSA BeLux has approximately 20 industry vendor members and reaches out to over 250 enterprise cloud users on a regular basis.
    CSA BeLux is considering the setup of a new topic group on (Full) Homomorphic Encryption (FHE) and Multi Party Computation (MPC). Belgian an Luxemburgn but also other members, please contact us to be involved in the next activities.
  • CSA Delaware Valley "Fireside Chat with Richard Stiennon" on 10/20 @ 7:30pm EST

    Join us on Tuesday, October 20 at 730pm for a Fireside chat with Richard Stiennon, industry analyst, and author of four books on cyber security including Secure Cloud Transformation: The CIO's Journey. In this Fireside chat our host and former CSA Delaware Valley Chapter Vice President, Mike Jordan, will talk with Richard to hear his perspectives on cloud security and the rapid changes to IT infrastructure that the Cloud is bringing to all of our lives.

    Richard has presented on cybersecurity topics in 31 countries on six continents. He is one of the most followed security industry analysts and writes for Forbes and The Analyst Syndicate.

    BONUS

    Mr. Stiennon has generously donated 50 of his "Security Yearbook 2020" books (https://lnkd.in/g55326A) to the CSA - Delaware Valley Chapter for the first 50 registrants/attendees of this event. You have to register to attend and you must attend to receive one of the books! So don't delay and register today!

    https://lnkd.in/gqvmK28
  • 2020 Ron Knode Awards

    2020 has been a challenging year for all of us. But the digital age has allowed many of us to stay connected, continue business operations, and even enhance our relationships with customers and employees. Through these times, this group of special individuals has stood out helping CSA secure the cloud and the remote workforce. It's been a pleasure getting to know many of them personally over the years. Congratulations to the 2020 Ron Knode Award winners! @Yale Li @Masahiro Morozumi @James Angle @A Chetal @Jon-Michael C. Brook @Michael Roza @Jim de Haas @Vrettos Moulos #CSAvolunteers #RonKnode #CloudSecurity

    https://www.linkedin.com/posts/johnyeoh_csavolunteers-ronknode-cloudsecurity-activity-6720041751274508288-g3yt
    ​​​​​​​​​
  • Welcome to Our New Community!


    We are excited for this opportunity to engage with our peers on the subject of design!

    This community is a place for open discussion between CSA’s internal Design team and the community which we design for. Projects ranging from logos, research papers, and digital illustrations will be shared here for the opportunity to provide feedback. Likewise this community is a space for open discussion on all design topics related to security.

    We invite you to openly communicate with us on our design projects as we strive to create effective and unique designs in order to have a positive impact on the greater Security community. Thank you for being part of this journey!
  • Registration Open for Cloud Security Alliance EMEA Congress 2020

    The free, virtual event will focus on core topics critical to the cloud ecosystem and offer attendees the opportunity to earn up to six continuing professional education (CPE) credits while gleaning educational and practice advice from some of the cloud’s top business and thought leaders. 

  • Participate in the CCM v.4 open peer review

    OPEN PEER REVIEW: 

    The Cloud Controls Matrix (CCM) is a cybersecurity control framework for cloud computing aligned to the Security Guidance v.4, that is considered the de-facto standard for cloud security assurance and compliance. The CCM v.4 constitutes a significant upgrade to the previous version (v3.0.1) by introducing changes in structure of the framework with a new domain dedicated to Log and Monitoring (LOG), and modifications in the existing ones (GRC, A&A, UEM, CEK). This update will also deliver a significant increase of control as result of developing additional controls and updating existing ones. Additional features of the CCM v.4 update are: ensured coverage of requirements deriving from new cloud technologies, new controls and security responsibility matrix, improved auditability of the controls, and enhanced interoperability and compatibility with other standards. The objective of this update is to continue to lead the security industry and market as the cloud provider and user-centric control framework of choice for all. Share your knowledge by providing feedback and contributing to the open peer review for CCM v.4. Participants of the peer review are asked to focus on the content and semantics of controls.

    This peer review closes on Nov 4th. Provide your feedback before then!
  • Dave Glover


    Dave Glover is a Principal Sales Engineer supporting the RSA Netwitness Platform.  Dave has been on Incident Response team for the Black Hat NOC at their conferences worldwide for the past couple of years.  Dave started with RSA in 2002, has held various positions within the company and specializes in the SIEM space.  Dave has spoken at various conferences around the world, and held many customer training workshops.  Dave is a complex problem thinker, and has solved complex challenges at some of the largest global customers.   He has presented at various RSA events for the past decade on the capabilities of RSA products.
  • Mike Godin


    Mike Godin is a CISSP, and holds a B.S. in Psychology from the University of New Hampshire, and an M.S. in Information Assurance from Northeastern University.  With over 20 years experience in Information Technology and Information Security Mike has served in technician, analyst, administrator, engineer and consultant roles.   Based in the North East Mike has been directly employed at large financial services companies such as John Hancock, Thomson Reuters, One Beacon Insurance Group, and information security companies such as Ecora, ESET, RSA and Symantec.    Mike has been focused on SOC technologies, such as EDR, NDR, ETM, DLP, MFA, SIEM, TIP, SOAR, Malware Analysis, and AV, and has been involved in over 30 Incident Response engagements for customers in the financial services, health care, biotech, education, manufacturing and legal industry verticals.
  • Meetup C6 Bank e CSA Brasil: Cloud Computing & Privacidade (online)

    Como a Lei Geral de Proteção de Dados Pessoais (LGPD) pode impactar o uso da Computação em Nuvem? Como adequar nosso ambiente em nuvem as exigências da LGPD?

    A LGPD é um marco regulatório muito importante para as atividades relacionadas ao tratamento de dados pessoais e define vários requisitos de proteção e controle que devem ser incorporados aos processos e ferramentas das empresas.

    Neste encontro online e gratuito, agendado para o dia 17/09, o C6 Bank irá receber o capítulo brasileiro da Cloud Security Alliance (CSA) para discutirmos o impacto da LGPD nas empresas que adotam a computação em nuvem e os recursos existentes de conformidade para apoiar na jornada de adequação.

    Junte-se a nós!

    Agenda (evento online)

    19h - Recepção
    19h15 - Abertura – José Luiz Santana (CISO), C6 Bank
    19h30 – Palestra "LGPD em ambientes de nuvem", Leonardo Goldim (CSA BR)
    20h - Painel "Os impactos da LGPD nos serviços de nuvem e como obter conformidade", Fernando Fonseca (ISACA), Paulo Pagliusi (ISACA RJ) e Natasha Malara (C6 Bank) (moderadora)
    21h - Encerramento

    Participantes

    Leonardo Goldim é empresário e consultor em segurança da informação e privacidade. Diretor executivo do IT2S Group, atua há mais de 10 anos na área. Fundou o capítulo brasileiro da CSA, entidade onde colaborou no desenvolvimento das certificações CCSK e CCSP, além de ministrar os treinamentos oficiais em diversos países da América Latina.

    Natasha Malara é Engenheira de Segurança da Informação, líder Brasil do programa Womcy Talent e especialista em Governança de Segurança, utiliza suas competências para identificar e endereçar riscos cibernéticos em ambientes altamente regulados.

    == ATENÇÃO: O EVENTO SERÁ SOMENTE ONLINE ==

    Photo by Ricardo Gomez Angel on Unsplash
  • CSA NTX - Info Meet - Black Hat Follow up - Session Details

    Hello Everyone, 

    Please find the session details for the meetup this afternoon. 

    When: Aug 20, 2020 01:00 PM Central Time (US and Canada)
    Topic: CSA NTX Black Hat Follow up

    Please click the link below to join the webinar:
    https://us02web.zoom.us/j/84579909768?pwd=Qi9md1VTak5JZGRFdkVVUE9HZ3Nldz09
    Passcode: 617220
    Or iPhone one-tap :
    US: +13462487799,,84579909768#,,,,,,0#,,617220# or +12532158782,,84579909768#,,,,,,0#,,617220#
    Or Telephone:
    Dial(for higher quality, dial a number based on your current location):
    US: +1 346 248 7799 or +1 253 215 8782 or +1 669 900 9128 or +1 301 715 8592 or +1 312 626 6799 or +1 646 558 8656
    Webinar ID: 845 7990 9768
    Passcode: 617220
    International numbers available: https://us02web.zoom.us/u/kd3AcjmN0

    Thanks,
    CSA NT Team
  • CSA & ISACA Announce Strategic Partnership to Reinvent Cloud Auditing and Assurance

    Global technology association ISACA and the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, announced a strategic partnership to collaborate closely on critical initiatives to transform the auditing and assurance of cloud computing. The first initiative will combine forces to bring to market the previously announced Certificate of Cloud Auditing Knowledge (CCAK) as a joint venture. 

    The CCAK, scheduled for completion in Q4 2020, is the first credential for industry professionals that demonstrates expertise in the essential principles of auditing cloud computing systems. With this announcement, ISACA has joined CSA as an equal partner to deliver the CCAK portfolio (body of knowledge, training materials, and an examination), giving IT, audit and information security professionals the opportunity to obtain the credential and raise the baseline of cloud assurance knowledge across the industry.

    Join the CCAK Circle community and stay up to date on the latest information on this exciting project. 

  • Neil “Grifter” Wyler

    Neil “Grifter” Wyler is a Threat Hunting and Incident Response Specialist with RSA. He has spent over 20 years as a security professional, focusing on vulnerability assessment, penetration testing, physical security and incident response. He has been a staff member of the Black Hat Security Briefings for over 18 years and a member of the Senior Staff at DEF CON for 19 years. Wyler has spoken at numerous security conferences worldwide, including Black Hat, DEF CON and the RSA Conference. He has been the subject of various online, print, film and television interviews, and has authored several books on information security. Wyler is a member of the DEF CON and Black Hat CFP Review Boards, the Black Hat Training Review Board, the founder of DC801 and founder of his local hackerspace, 801 Labs. You can follow him on Twitter at @grifter801.
  • Second Annual Philadelphia Cyber Security Summit

    The Second Annual Philadelphia Cyber Security Summit has gone virtual and will be held on Thursday, August 20th.


    CSA Delaware Valley is proud to partner with the Cyber Security Summit to offer its members exclusive Free virtual access to this invitation-only event – rated a Top 50 InfoSec Conference to attend Worldwide!


    Learn from experts from the U.S. Dept. of Justice, U.S. Dept. of Homeland Security, Darktrace, Verizon, and more about the latest security threats, best practices to prevent a breach, and protocols if you are breached.


    Those who attend will receive Continuing Education Credits.


    Space is limited. Secure your Free Pass with Registration Code CSA20DV during checkout at https://CyberSummitUSA.com/Summit/Philadelphia20/


    You may share this invitation with your Senior IT Security Team as well.


    Please note: Admission is for C-Suite / Senior Level Executives, Directors, Managers, Heads of IT, etc. Those in Sales / Marketing and Students are not permitted.

    Engage in Interactive Discussions, Including:

    • Security Briefing with the U.S. Dept. of Justice
    • Faking It – How Cyber AI can Combat Digital Fakes
    • Security Orchestration, Automation and How it Relates to the Workforce & Retention
    • Insider Threat – How to Detect Malicious Attacks and Defend Your Organization from the Human Error
    • Security Briefing with the U.S. Dept. of Homeland Security / CISA
    • …and much more!

    Discover & evaluate cutting-edge technologies from 30+ innovative solution providers including Darktrace, Check Point Software Technologies, Verizon, MBA CSi, Fortinet, Palo Alto Networks, Pulse Secure, Arctic Wolf, Tenable, IDMWORKS, SailPoint, ReliaQuest, Spirion, Armor, Code42, BlackBerry Cylance, and many more.

    For full details, visit https://CyberSummitUSA.com/Summit/Philadelphia20/


    If you would like to exhibit and / or speak at the Cyber Security Summit, contact Megan Hutton at MHutton@CyberSummitUSA.com / 212.655.4505 x241.

  • Preview SECtember 2021 through a new CSA webinar series

    Join the SECtember Experience

    CSA is excited to launch the SECtember Experience, a webinar series that will provide a preview of the top-notch content attendees can expect to receive at the in-person SECtember conference in 2021. This complimentary series is designed to guide participants on their race to the cloud, while offering the opportunity to earn CPE credits.

    As a consequence of the COVID-19 pandemic, organizations are accelerating their migration to the cloud as the optimal strategy to support a virtual workforce and enable digital transformation. To meet this unprecedented need, the SECtember Experience will deliver a webinar at 11AM each day, September 8-25, covering a range of topics critical to moving to and securing data in the cloud. Among the sessions will be keynote speeches from Global 2000 security leaders, Chief Information Security Officer (CISO) panels, and cloud security technology deep dives. For the latest agenda and speaker information, please visit www.sectember.com.

  • Preview SECtember 2021 through a new CSA webinar series

    Join the SECtember Experience

    CSA is excited to launch the SECtember Experience, a webinar series that will provide a preview of the top-notch content attendees can expect to receive at the in-person SECtember conference in 2021. This complimentary series is designed to guide participants on their race to the cloud, while offering the opportunity to earn CPE credits.

    As a consequence of the COVID-19 pandemic, organizations are accelerating their migration to the cloud as the optimal strategy to support a virtual workforce and enable digital transformation. To meet this unprecedented need, the SECtember Experience will deliver a webinar at 11AM each day, September 8-25, covering a range of topics critical to moving to and securing data in the cloud. Among the sessions will be keynote speeches from Global 2000 security leaders, Chief Information Security Officer (CISO) panels, and cloud security technology deep dives. For the latest agenda and speaker information, please visit www.sectember.com.


  • CSA UK Chapter Webinar - Demystifying CSA STAR with Daniele Catteddu

    In this webinar Daniele will provide an overview of the CSA cloud security and privacy governance and compliance program: "Security, Trust, Assurance and Risk (STAR) program". In particular, Daniele will explain the benefits of CSA STAR for both to Cloud users and Cloud providers, and highlight differences as well as synergies with other leading security certification and attestation, such as ISO27001 and SOC 2
  • Stay connected with us

    Don't miss out any annoucements and on-demand trainings
  • **Webinar** Securely Connect and Scale Remote Workforces

  • SECtember Call for Papers Extended to June 26

    Now more than ever, we could all use a little more time to get things done. CSA is extending the SECtember Call for Papers (CFP) deadline until June 26th to give you some additional time to gather your ideas.

    Held September 14-18 in CSA’s home city of Seattle, WA, the CFP is your opportunity to get in at the ground floor of CSA’s inaugural event and reach a global audience of security professionals.

    We are interested in new, challenging, innovative and technical content across a variety of cloud and cybersecurity topics, such as:
    • DevOps, DevSecOps & CI/CD security experiences
    • Cloud governance, compliance and risk management
    • Hybrid and multi-cloud implementation & security architectures
    • Incident Management best practices
    • Cloud threats and threat actors 
    • Role of adjacent and emerging technologies in cloud: IoT, Blockchain, 5G, Artificial Intelligence, Quantum Computing
    To submit your paper for consideration, visit sectember.com/cfp. The key objective of SECtember is to deliver top quality content and interesting presentations for attendees. If you have research, developments or experiences that security professionals would value or enjoy hearing about, we strongly encourage you to submit. 
  • CSA-DV Online Events.


    • Lessons from Leveraging Risk Management for Cybersecurity in Healthcare on Tuesday, June 2, 2020 12:00 PM
    • Human Capital and Lessons Learned from COVID-19 for future BCP on Wendnesday, June 10, 2020 12:00 PM
    • Personal Disaster Recovery Preparedness - Train Yourself in Cloud Security on Tuesday, June 16, 2020 12:00 PM
  • Last Chance to Submit Papers for CSA's SECtember

    It's your last chance to submit papers for consideration to be a speaker at CSA's inaugural event: SECtember. There will be no shortage of networking and community engagement opportunities, but the key objective of the conference is to deliver top quality content and interesting presentation for attendees. Check out our list of recommended submission topics and submit your paper by Friday, May 1st to be considered. → 

  • Welcome to The Triangle Chapter of the Cloud Security Alliance

    We are looking for members who want to be actively engaged in all aspects of Cloud Security. Bring your talents and time and we'll bring you connections to some of the brightest minds in Cloud Security.
  • Register for SECtember

    Held in CSA’s home city of Seattle among the giants of cloud computing, SECtember will feature in-depth trainings, networking opportunities and expert-led sessions from industry leaders. Join cybersecurity and cloud professionals as we explore the convergence of national and cybersecurity interests within the market. Register by June 1st to take advantage of early bird pricing.
     
    Your Participation Matters
    Attending SECtember has a direct impact on the community. CSA will donate 5% of all attendee proceeds to the Seattle Children’s Hospital.
     
    Call for Papers is Open
    Gain recognition as a thought leader and subject matter expert by speaking at SECtember. Submit your paper at sectember.com/cfp by May 1st for consideration.

    SECtember:

    September 14th-18th

    Seattle, Washington

    Find out more about our flagship event and register today. → sectember.com

  • Why use the CAIQ for vendor analysis vs. other questionnaires?

    One of our first deliverables from the Focus Group feedback. 
    Feel free to review and please share with your contacts
  • CloudConGR 2020

    On August 19th and 20th, the West Michigan Cloud Security Alliance is thrilled to bring you one of the only cloud-centric security conventions in the world, CloudConGR!
  • CSA-DC Research Committee: Call for Participants

    The CSA-DC Chapter is proud to support local university research efforts that operate to effect improved cloud security for the community.  Additionally, we understand the desire of many of our members to get involved in open collaboration and advanced research activities. As a result, we are honored to deliver the following research support opportunity to our membership.  Ms. Shannon Pearson is conducting research as part of her Doctoral program at Capella University on the use of encryption in cloud security. As you know, encryption technologies though generally agreed to deliver strong data protection against compromises to confidentiality and integrity, may also present management complexities and have performance impacts.  As a topic of interest to our membership, we are pleased to pass along the invitation to support her research (https://qfreeaccountssjc1.az1.qualtrics.com/jfe/form/SV_3NUhMCicW7JrKrb) which will also result in a CSA-DC Chapter specific report that we will distribute to our members upon completion.

     

    Your support for the CSA-DC Chapter is always greatly appreciated and your research ideas are continually sought. Thank you in advance for your participation and please do consider joining the Research Committee because together we make the difference!

     

    Sincerely,

     

    Mari J. Spina, D.Sc

    CSA-DC Research Committee Chair

  • Welcome to the NJ Chapter of CSA at Kean University

    Greetings!  Thank you for connecting with us at the NJ chapter of the CSA, via Circle.  We hope to be able to share content with this community application.
  • Read and discuss the latest blog posts from CSA

    Read the latest cloud security news, trends, and thought leadership from subject matter experts. 
  • Discount codes to SecureWorld Charlotte for CSA Members

    Discount Codes

    CSAP

    $150 off SecureWorld PLUS

    CSA

    $100 off Conference Pass

    CSAO

    $50 off Open Sessions Pass

  • SecureWorld Exhibit & Chapter Meeting

    CSA Carolinas, will have both a booth presence and holding a chapter meeting.  Time on the chapter meeting to be firmed up over next week.

    @Jaclyn Parton
    @Todd Edison
    @Efrem Gonzales
    @James Kidwell
    ​​​​​​​
  • Welcome to Circle!

    Welcome to Circle, your online platform to collaborate with Cloud Security Alliance and our global community.  Circle is a metaphor for how we can create trusted groups of professionals with a common interest.  In Circle you can find special interest working groups, conferences, chapters in your locale and much more.  At CSA, we take enormous pride in our comprehensive industry leading catalog of security guidance and best practices.  Circle gives you the platform to learn, discover and collaborate to solve critical security issues that matter to you and your organization.  I look forward to connecting with you personally inside Circle!
  • Welcome All!

    Welcome to the CCSK training community. 

    Share your experience with the CCSK training and exam. Help answer questions surrounding cloud security and the CCSK. Connect with trainers, others who have taken the course or exam, or those interested in learning more about the CCSK.