We would like to welcome everyone to the CSA Washington DC Metro  Chapter community. 

We're glad to have you as part of the CSA Washington DC Metro  Chapter Community where you can meet and network with other chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Please feel free to ask questions, post cloud security challenges and solutions, collaborate, and help our community grow.

We plan to post upcoming chapter events, activities, and other opportunities for engagement with the Washington DC Metro  Chapter.

CSA Washington DC Metro Chapter Circle Community

We would like to welcome everyone to the CSA Norway Chapter community. 

We're glad to have you as part of the CSA Community where you can meet with other CSA Norway Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Norway Chapter Circle Community

We would like to welcome everyone to the CSA Ecuador Chapter community. 

We plan to post upcoming events and other engagement activities here for you.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Ecuador Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Ecuador Chapter Circle Community

We would like to welcome everyone to the CSA Colombia Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Colombia Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Colombia Chapter Circle Community

We would like to welcome everyone to the CSA Chile Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Chile Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Chile Chapter Circle Community

Nell’ambito dell’evento Splunk Security Week Italy, il prossimo 21 Aprile dalle 14:15 alle 15:00 i soci Valerio Vertua e Isabella Oldani presenteranno la sessione “GDPR e Cloud Security: Il Codice di Condotta di CSA“.

Il GDPR incoraggia l’adozione di codici di condotta al fine di contribuire alla corretta applicazione del GDPR tenendo conto, al contempo, delle specificità e delle esigenze dei diversi settori. Il Codice di Condotta (“CoC”) sviluppato da Cloud Security Alliance si inserisce in questo contesto come importante strumento capace di assistere i Cloud Service Providers (CSPs) nella corretta applicazione del GDPR. Durante il panel, verranno presentati gli elementi essenziali di cui si compone il CoC: il suo ambito di applicazione, le modalità con cui è possibile aderirvi e con cui i CSPspossono garantire e dimostrare il rispetto della normativa sulla protezione dei dati personali fornendo al contempo ai clienti dei CSPs uno strumento utile per la valutazione del livello di compliance offerto dai CSPs. Fornendo uno standard di conformità per i CSPs, l’adozione del CoC può inoltre svolgere un ruolo essenziale nell’armonizzare ed elevare – anche in un contesto di più ampio respiro internazionale – il livello di protezione garantito ai dati personali nell’ambito del cloud computing.

Get CCAK certified today! CSA and ISACA are excited to announce that the exam for the Certificate of Cloud Auditing Knowledge (CCAK) is now available. CCAK, the only vendor-neutral, technical cloud auditing credential, fills a gap in the industry for competent technical professionals who can help organizations mitigate risks and optimize ROI in the cloud. CCAK prepares you to tackle unique cloud challenges, educate audit professionals and the audit committee, and understand cloud computing security, governance and compliance. Start preparing for the exam now and be among the first to earn your CCAK certificate! Learn more.

Latest updates to CCM v4 now available! The updates provide additional features and support in transitioning from CCM v3, as well as identifies the areas of misalignment between CCM v4 and the ISO/IEC 27k family of standards. Additionally, the Controls Applicability Matrix provides support and guidance to help organizations determine the shared responsibilities between cloud service providers and customers when implementing a CCM control.

We would also like to invite you to the open peer review of the final draft the Cloud Controls Matrix (CCM) Implementation Guidelines and the fourth version of Consensus Assessment Initiative Questionnaire (CAIQ).

The CCM v4 Implementation Guidelines are a new addition to the CCM, providing structured guidance on how to use the CCM and support to users on how to implement the CCM controls. The CAIQ questionnaire accompanies the CCM and provides questions that vendors can answer to ascertain if they comply with the CCM. 

Provide your feedback by April 14, 2021. 

Thank you for your contributions and for helping to make cloud computing more secure! 

APIs are blood line of Cloud Computing. They connect tools, processes and people to offer various cloud based services. The successes of cloud services depends on people and/or companies implementing an efficient API strategy. In summary, APIs glue various cloud services together, and without governing APIs, cloud services will not work efficiently leading to security and legal compliance issues. The focus of this session is on key API Governance considerations that allow enterprises to achieve their cloud security objectives more effectively. In particular, we’ll overview four key aspects of API Governance: (i) Ownership of APIs, (ii) Onboarding of internal/external APIs, (iii) Assignment of APIs, i.e., controlling access privileges to partners and customers that are in the form of individuals and organizations, (iv) Monitoring of APIs for security, auditing and lifecycle management. Throughout this session, we’ll use real-world examples for improving Cloud Security through effective API Governance programs.

Please hold the date of April 1, 2021 at 12:30 pm for a one-hour webinar on Zero Trust Security in the cloud.  The Kean University - NJ Chapter will have presenters from Check Point Software, Optiv and a student representative from Kean University.  Please be on the look out for the registration link to follow shortly.

Thank you,
Stan Mierzwa

We would like to welcome everyone to the CSA Kansas City Chapter community. 

We're glad to have you as part of the CSA Kansas City Chapter Community where you can meet and network with other chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Please feel free to ask questions, post cloud security challenges and solutions, collaborate, and help our community grow.

We plan to post upcoming chapter events, activities, and other opportunities for engagement with the Kansas City Chapter.

CSA Kansas City Chapter Circle Community

Developed by CSA and ISACA, the Certificate of Cloud Auditing Knowledge (CCAK) credential and training program fills the need for vendor-neutral, technical training and credentials in cloud auditing. By building on the body of knowledge covered in CSA’s Certificate of Cloud Security Knowledge (CCSK) and complementing ISACA’s ANSI-accredited certifications, CCAK delivers the best possible solution for cloud auditing education.

If you are looking to acquire the necessary foundational knowledge of cloud governance, compliance, security, and auditing, prepare to qualify for the CCAK, the first credential available for industry professionals to demonstrate their expertise in the essential principles of auditing the security of cloud computing systems.

Join our LinkedIn Live Broadcast

Interested in learning more about the CCAK and the imminent launch? Join our LinkedIn Live broadcast on March 2nd hosted by Daniele Catteddu, CTO at Cloud Security Alliance and Paul Philips, Technical Research Manager, ISACA where they will discuss how to establish your cloud audit expertise. 

To join, make sure you are following our CSA LinkedIn profile and are logged into LinkedIn a few minutes before the livestream begins at 7:00 AM PT/ 9:00 AM CT. When we go live, you will receive a notification from LinkedIn. If you don't see the notification, just come to our CSA LinkedIn profile page and you'll see the livestream from a post. See you on Tuesday. 

CCAK Study Guide Available Now

We are also excited to share that the Certificate of Cloud Auditing Knowledge (CCAK) Study Guide is now available for purchase. The study guide is a valuable resource for IT, business professionals looking to qualify for the CCAK exam.

The Certificate of Cloud Auditing Knowledge Study Guide is available for purchase at a cost of $59 for members and $70 for non-members.

We would like to welcome everyone to the CSA Silicon Valley Chapter community. 

We're glad to have you as part of the CSA Silicon ValleyChapter Community where you can meet and network with other chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Please feel free to ask questions, post cloud security challenges and solutions, collaborate, and help our community grow.

We plan to post upcoming chapter events, activities, and other opportunities for engagement with the Silicon Valley Chapter.

CSA Silicon Valley Chapter Circle Community

We would like to welcome everyone to the CSA South Florida Chapter community. 

We're glad to have you as part of the CSA South Florida Chapter Community where you can meet and network with other chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Please feel free to ask questions, post cloud security challenges and solutions, collaborate, and help our community grow.

We plan to post upcoming chapter events, activities, and other opportunities for engagement with the South Florida Chapter.

CSA South Florida Chapter Circle Community

We would like to welcome everyone to the CSA Memphis Chapter community. 

We're glad to have you as part of the CSA Memphis Chapter Community where you can meet and network with other chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Please feel free to ask questions, post cloud security challenges and solutions, collaborate, and help our community grow.

We plan to post upcoming chapter events, activities, and other opportunities for engagement with the Memphis Chapter.

CSA Memphis Chapter Circle Community

We would like to welcome everyone to the CSA Saudi Chapter community. 

We're glad to have you as part of the CSA Community where you can meet with other CSA Saudi Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Saudi Chapter Circle Community

We would like to welcome everyone to the CSA West Michigan Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA West Michigan Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA West Michigan Chapter Circle Community

We would like to welcome everyone to the CSA Vancouver Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Vancouver Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Vancouver Chapter Circle Community

We would like to welcome everyone to the CSA UAE Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA UAE Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA UAE Chapter Circle Community

We would like to welcome everyone to the CSA TOLAs Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA TOLAs Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA TOLAs Chapter Circle Community

We would like to welcome everyone to the CSA Tampa Bay Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Tampa Bay Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Tampa Bay Chapter Circle Community

We would like to welcome everyone to the CSA Southwest Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Southwest Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Southwest Chapter Circle Community​

We would like to welcome everyone to the CSA Pittsburgh Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Pittsburgh Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Pittsburgh Chapter Circle Community

Nos gustaría dar la bienvenida a todos a la Comunidad capítulo de CSA Perú.

Nos complace tenerlo como parte de la Comunidad de CSA, donde puede reunirse y establecer contactos con otros miembros del capítulo de CSA Perú, junto con un grupo diverso de socios de CSA, expertos en la industria y expertos en la materia para obtener respuestas a sus preguntas más urgentes relacionadas con la seguridad cibernética.

Circle es un gran lugar para explorar las investigaciones, eventos e iniciativas más recientes de CSA, participar con grupos de trabajo de investigación global de CSA, hacer preguntas a expertos en la materia y establecer contactos con colegas.

Le recomendamos que se una a la comunidad de 'The Inner Circle' para recibir acceso a las primeras publicaciones de investigación, actualizaciones sobre los últimos recursos y herramientas de CSA y descuentos para miembros en Educación, Capacitación y certificaciones.

CSA Peru Chapter Circle Community

We would like to welcome everyone to the CSA Ohio River Valley Chapter community.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Ohio River Valley Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Ohio River Valley Chapter Circle Community

We're glad to have you as part of the CSA Community where you can meet and network with other CSA North Texas Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA North Texas Chapter Circle Community

We're glad to have you as part of the CSA Community where you can meet and network with other CSA New York Metro Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA New York Metro Chapter Circle Community

We would like to welcome everyone to the CSA Minnesota Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Minnesota Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Minnesota Chapter Circle Community

We would like to welcome everyone to the CSA Mexico Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Mexico Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Mexico Chapter Circle Community

We would like to welcome everyone to the CSA Lehigh Valley Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Lehigh Valley Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Lehigh Valley Chapter Circle Community

We would like to welcome everyone to the CSA Detroit Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Detroit Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Detroit Chapter Circle Community

We would like to welcome everyone to the CSA Colorado Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Colorado Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Colorado Chapter Circle Community

We would like to welcome everyone to the CSA Chicago Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Chicago Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Chicago Chapter Circle Community

 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Carolinas Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Carolinas Chapter Circle Community

We would like to welcome everyone to the CSA Boston Chapter community. 

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Boston Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Boston Chapter Circle Community

We would like to welcome everyone to the CSA Boise Chapter community. 

We're glad to have you as part of the CSA Community where you can meet with other CSA Boise Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Boise Chapter Circle Community

We would like to welcome everyone to the CSA Atlanta Chapter community. 

We're glad to have you as part of the CSA Community where you can meet with other CSA Atlanta Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Atlanta Chapter Circle Community

We would like to welcome everyone to the CSA Argentina Chapter community. 

We're glad to have you as part of the CSA Community where you can meet with other CSA Argentina Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Argentina Chapter Circle Community

Cloud computing has changed over the last 10 years. In this Cloud Security Alliance blog we capture the reason why the original Service models defined by NIST - IaaS, SaaS and PaaS are no longer sufficient and need a new iteration. These changes in the cloud landscape now reflect in the new #softwaredevelopment and deployment paradigms. of #Containers, #Functions, #lowcode and #nocode.

CSA is looking for input from the cybersecurity community on what topics you all would like to see in our new Continuing Professional Education (CPE) course series. What subject areas would you be most interested in learning more about? Let us know by taking this 2 question survey here!

Some potential course topics include:

• Cloud Key Management
• DevSecOps
• Cloud 101 for Board Members
• IoT (Internet of Things)
• Cloud Security 101 for non-tech/security professionals
• Serverless
• Top Threats
• Standards for Cloud
• Containers & Microservices
• Cloud Contract

New CPE course series

Based on the feedback we receive from cybersecurity experts like you, we will continue the development of this new CPE course series. This new series will allow professionals to earn their CPE credits in order to sustain their license, which will consist of 1-hour courses. Each course will be on a different cloud-related topic (based on your feedback), the first of which will be the 1-hour Software Defined Perimeter (SDP) course, a topic closely related to zero trust architecture.

Each 1-hour course will give a certificate demonstrating 1 hour which can then be eligible for 1 CPE credit after completion, not to mention the furtherance of cloud security knowledge and professional growth that these courses will offer.

We’d love to hear from you on what cloud-related subjects you believe require more educational material. Is there any subject area that interests you and you’ve been wanting to learn more about but can’t find adequate content on the subject?

We’d appreciate any suggestions or ideas you might have! To provide us your feedback, you can take this short, 2 question survey: CPE Course Offering Survey

Please help us pass this survey along to any cybersecurity expert you know.

oin the CSA Los Angeles Red Team Hunt for an interactive, hands-on cybersecurity scavenger hunt where participants utilize attacking skills, and possibly learning some new ones along the way, to complete a series of challenges. Participants earn and accumulate points based on how quickly they complete each challenge. Hints can be requested if needed through the challenge, at the cost of points. The further participants get in the challenge or the more they complete without hints, the more points they receive.

Participants must join the kick-off session at the start of the Hunt.  Winners will be announced when the competition concludes at 4:00 pm PT.

Participant Requirements:

• Skill level: Basic attacking skills (i.e. Threat Hunters, Security Analysts, etc)
• VPN installation required
• Completion of Prerequisite: Approximately 5 days prior to the event you will receive a Welcome Email that includes detailed instructions; you will have 48 hours to complete before your position is released to someone on the waitlist.

Prerequisites are as follows:

• Install VPN Client (Zerotier) and establish connection with workshop environment
• Verify connectivity to your assigned Kali instance
• Verify connectivity to your assigned Win10 instance
• Register an account on the Workshop CTF Server

There is a larger group at LinkedIn, if you want to join as well.

Dear CCM users,

Welcome to this new community dedicated to you.

This is the place to discuss your experiences in implementing CCM controls, ask for explanations on how to adopt for the first time controls or how to improve an existing implementation, how to answer a CAIQ question, how to leverage CCM controls within a specific platform or architecture, etc.

This CCM User Group is open to cloud consumers, cloud providers, cloud auditors, to expert users who are willing to help new adopters in using CCM, and neophytes willing to learn the best approaches to CCM control implementation.

All contributions will be personal and shall not constitute a commitment or opinion by the contributor's organization. 

Example of suitable topics to be discussed in the CCM User Group are:

• CCM Controls Implementation
• CCM Controls IaaS / PaaS / SaaS Relevance 
• CCM Controls Applicability / Shared Responsibility Model
• CCM Controls as related to specific technologies
• CCM Controls as related to specific industries 
• CCM Controls as related to specific laws, regulation and other standards
• CAIQ Questions 
• etc

This group will be moderate by CSA to avoid the inappropriate use of the platform, e.g. commercial product announcements, offensive language, misleading information, etc.

We reserve the right to edit or remove inappropriate content.

Please note that this group is NOT about developing the next iteration of the CCM or CAIQ, for that we encourage you to join the CCM WG Community in Circle, though these discussions might provide valuable input to the working group.

Peter van Eijk, CCSK/CCAK trainer

Linda Strick, Managing Director CSA EMEA

Welcome to our new members!  Don't forget to help grow our community and invite other marketing professionals!

Hi all: Really looking forward to our final meeting for 2020 this Thursday. Come and see what a difference this interactive group has made with your feedback this year and looking forward to your wish list for 2021.

We schedule two calls to hopefully make it convenient for all involved. If you did not receive an invite, please let us know.

Hello there.  The Atlanta Chapter is now live on Circle.  2021 is almost here and you'll see Chapter activity here.

Register your interest in CloudBytes Connect, CSA's multi-day virtual event program, taking place on February 2-4, 2021.

Leading security experts will focus on the event theme, From SOC to the Boardroom and address the most critical cloud priorities for CISOs, their CxO peers and the board of directors. We will also explore security threats, innovations, best practices, and the global cyber governance approaches needed to traverse and thrive in the new frontiers of cloud security from the industry’s top security experts.

Attend the FREE 3-day virtual event at your own pace and earn up to 7 CPE credits by participating. Visit the event page to register and to stay up-to-date as we release information about the speakers and agenda.

REGISTER

Please feel free to invite others to join the Circle!

The BeLux Chapter is operated by LSEC - Leaders In Security, from out of Leuven - Belgium. It has been around since 2012, focusing on creating awareness on cloud and cloud security activities. The CSA BeLux chapter is an active promotor of CSA's activities in BeLux, and in relations to the Brussels EC-based discussions. LSEC is participating in ECSO the European Cybersecurity Organization, and in the CSP-Cert discussions preserving also the interests of CSA. CSA BeLux has organized different annual Cloud Security events, with contributions by the EMEA CSA team. On a monthly basis, LSEC organizes a Cloud Security working group with both technology providers and enterprise cybersecurity and cloud representatives. CSA BeLux has a specific interest in AI, IoT, Incident Management, Privacy and CCA/CCSK developments. CSA BeLux (through LSEC) participated together with CSA EMEA in a couple of European projects, such as Takedown on Cybercrime and Organised Crime. CSA BeLux has approximately 20 industry vendor members and reaches out to over 250 enterprise cloud users on a regular basis.
CSA BeLux is considering the setup of a new topic group on (Full) Homomorphic Encryption (FHE) and Multi Party Computation (MPC). Belgian an Luxemburgn but also other members, please contact us to be involved in the next activities.

Join us on Tuesday, October 20 at 730pm for a Fireside chat with Richard Stiennon, industry analyst, and author of four books on cyber security including Secure Cloud Transformation: The CIO's Journey. In this Fireside chat our host and former CSA Delaware Valley Chapter Vice President, Mike Jordan, will talk with Richard to hear his perspectives on cloud security and the rapid changes to IT infrastructure that the Cloud is bringing to all of our lives.

Richard has presented on cybersecurity topics in 31 countries on six continents. He is one of the most followed security industry analysts and writes for Forbes and The Analyst Syndicate.

BONUS

Mr. Stiennon has generously donated 50 of his "Security Yearbook 2020" books (https://lnkd.in/g55326A) to the CSA - Delaware Valley Chapter for the first 50 registrants/attendees of this event. You have to register to attend and you must attend to receive one of the books! So don't delay and register today!

https://lnkd.in/gqvmK28

2020 has been a challenging year for all of us. But the digital age has allowed many of us to stay connected, continue business operations, and even enhance our relationships with customers and employees. Through these times, this group of special individuals has stood out helping CSA secure the cloud and the remote workforce. It's been a pleasure getting to know many of them personally over the years. Congratulations to the 2020 Ron Knode Award winners! @Yale Li @Masahiro Morozumi @James Angle @A Chetal @Jon-Michael C. Brook @Michael Roza @Jim de Haas @Vrettos Moulos #CSAvolunteers #RonKnode #CloudSecurity

https://www.linkedin.com/posts/johnyeoh_csavolunteers-ronknode-cloudsecurity-activity-6720041751274508288-g3yt
​​​​​​​​​

We are excited for this opportunity to engage with our peers on the subject of design!

This community is a place for open discussion between CSA’s internal Design team and the community which we design for. Projects ranging from logos, research papers, and digital illustrations will be shared here for the opportunity to provide feedback. Likewise this community is a space for open discussion on all design topics related to security.

We invite you to openly communicate with us on our design projects as we strive to create effective and unique designs in order to have a positive impact on the greater Security community. Thank you for being part of this journey!

The free, virtual event will focus on core topics critical to the cloud ecosystem and offer attendees the opportunity to earn up to six continuing professional education (CPE) credits while gleaning educational and practice advice from some of the cloud’s top business and thought leaders. 

OPEN PEER REVIEW: 

The Cloud Controls Matrix (CCM) is a cybersecurity control framework for cloud computing aligned to the Security Guidance v.4, that is considered the de-facto standard for cloud security assurance and compliance. The CCM v.4 constitutes a significant upgrade to the previous version (v3.0.1) by introducing changes in structure of the framework with a new domain dedicated to Log and Monitoring (LOG), and modifications in the existing ones (GRC, A&A, UEM, CEK). This update will also deliver a significant increase of control as result of developing additional controls and updating existing ones. Additional features of the CCM v.4 update are: ensured coverage of requirements deriving from new cloud technologies, new controls and security responsibility matrix, improved auditability of the controls, and enhanced interoperability and compatibility with other standards. The objective of this update is to continue to lead the security industry and market as the cloud provider and user-centric control framework of choice for all. Share your knowledge by providing feedback and contributing to the open peer review for CCM v.4. Participants of the peer review are asked to focus on the content and semantics of controls.

This peer review closes on Nov 4th. Provide your feedback before then!

Dave Glover is a Principal Sales Engineer supporting the RSA Netwitness Platform.  Dave has been on Incident Response team for the Black Hat NOC at their conferences worldwide for the past couple of years.  Dave started with RSA in 2002, has held various positions within the company and specializes in the SIEM space.  Dave has spoken at various conferences around the world, and held many customer training workshops.  Dave is a complex problem thinker, and has solved complex challenges at some of the largest global customers.   He has presented at various RSA events for the past decade on the capabilities of RSA products.

Mike Godin is a CISSP, and holds a B.S. in Psychology from the University of New Hampshire, and an M.S. in Information Assurance from Northeastern University.  With over 20 years experience in Information Technology and Information Security Mike has served in technician, analyst, administrator, engineer and consultant roles.   Based in the North East Mike has been directly employed at large financial services companies such as John Hancock, Thomson Reuters, One Beacon Insurance Group, and information security companies such as Ecora, ESET, RSA and Symantec.    Mike has been focused on SOC technologies, such as EDR, NDR, ETM, DLP, MFA, SIEM, TIP, SOAR, Malware Analysis, and AV, and has been involved in over 30 Incident Response engagements for customers in the financial services, health care, biotech, education, manufacturing and legal industry verticals.

Como a Lei Geral de Proteção de Dados Pessoais (LGPD) pode impactar o uso da Computação em Nuvem? Como adequar nosso ambiente em nuvem as exigências da LGPD?

A LGPD é um marco regulatório muito importante para as atividades relacionadas ao tratamento de dados pessoais e define vários requisitos de proteção e controle que devem ser incorporados aos processos e ferramentas das empresas.

Neste encontro online e gratuito, agendado para o dia 17/09, o C6 Bank irá receber o capítulo brasileiro da Cloud Security Alliance (CSA) para discutirmos o impacto da LGPD nas empresas que adotam a computação em nuvem e os recursos existentes de conformidade para apoiar na jornada de adequação.

Junte-se a nós!

Agenda (evento online)

19h - Recepção
19h15 - Abertura – José Luiz Santana (CISO), C6 Bank
19h30 – Palestra "LGPD em ambientes de nuvem", Leonardo Goldim (CSA BR)
20h - Painel "Os impactos da LGPD nos serviços de nuvem e como obter conformidade", Fernando Fonseca (ISACA), Paulo Pagliusi (ISACA RJ) e Natasha Malara (C6 Bank) (moderadora)
21h - Encerramento

Participantes

Leonardo Goldim é empresário e consultor em segurança da informação e privacidade. Diretor executivo do IT2S Group, atua há mais de 10 anos na área. Fundou o capítulo brasileiro da CSA, entidade onde colaborou no desenvolvimento das certificações CCSK e CCSP, além de ministrar os treinamentos oficiais em diversos países da América Latina.

Natasha Malara é Engenheira de Segurança da Informação, líder Brasil do programa Womcy Talent e especialista em Governança de Segurança, utiliza suas competências para identificar e endereçar riscos cibernéticos em ambientes altamente regulados.

== ATENÇÃO: O EVENTO SERÁ SOMENTE ONLINE ==

Photo by Ricardo Gomez Angel on Unsplash

Global technology association ISACA and the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, announced a strategic partnership to collaborate closely on critical initiatives to transform the auditing and assurance of cloud computing. The first initiative will combine forces to bring to market the previously announced Certificate of Cloud Auditing Knowledge (CCAK) as a joint venture. 

The CCAK, scheduled for completion in Q4 2020, is the first credential for industry professionals that demonstrates expertise in the essential principles of auditing cloud computing systems. With this announcement, ISACA has joined CSA as an equal partner to deliver the CCAK portfolio (body of knowledge, training materials, and an examination), giving IT, audit and information security professionals the opportunity to obtain the credential and raise the baseline of cloud assurance knowledge across the industry.

Join the CCAK Circle community and stay up to date on the latest information on this exciting project. 

Neil “Grifter” Wyler is a Threat Hunting and Incident Response Specialist with RSA. He has spent over 20 years as a security professional, focusing on vulnerability assessment, penetration testing, physical security and incident response. He has been a staff member of the Black Hat Security Briefings for over 18 years and a member of the Senior Staff at DEF CON for 19 years. Wyler has spoken at numerous security conferences worldwide, including Black Hat, DEF CON and the RSA Conference. He has been the subject of various online, print, film and television interviews, and has authored several books on information security. Wyler is a member of the DEF CON and Black Hat CFP Review Boards, the Black Hat Training Review Board, the founder of DC801 and founder of his local hackerspace, 801 Labs. You can follow him on Twitter at @grifter801.

The Second Annual Philadelphia Cyber Security Summit has gone virtual and will be held on Thursday, August 20th.

CSA Delaware Valley is proud to partner with the Cyber Security Summit to offer its members exclusive Free virtual access to this invitation-only event – rated a Top 50 InfoSec Conference to attend Worldwide!

Learn from experts from the U.S. Dept. of Justice, U.S. Dept. of Homeland Security, Darktrace, Verizon, and more about the latest security threats, best practices to prevent a breach, and protocols if you are breached.

Those who attend will receive Continuing Education Credits.

Space is limited. Secure your Free Pass with Registration Code CSA20DV during checkout at https://CyberSummitUSA.com/Summit/Philadelphia20/

You may share this invitation with your Senior IT Security Team as well.

Please note: Admission is for C-Suite / Senior Level Executives, Directors, Managers, Heads of IT, etc. Those in Sales / Marketing and Students are not permitted.

Engage in Interactive Discussions, Including:

• Security Briefing with the U.S. Dept. of Justice
• Faking It – How Cyber AI can Combat Digital Fakes
• Security Orchestration, Automation and How it Relates to the Workforce & Retention
• Insider Threat – How to Detect Malicious Attacks and Defend Your Organization from the Human Error
• Security Briefing with the U.S. Dept. of Homeland Security / CISA
• …and much more!

Discover & evaluate cutting-edge technologies from 30+ innovative solution providers including Darktrace, Check Point Software Technologies, Verizon, MBA CSi, Fortinet, Palo Alto Networks, Pulse Secure, Arctic Wolf, Tenable, IDMWORKS, SailPoint, ReliaQuest, Spirion, Armor, Code42, BlackBerry Cylance, and many more.

For full details, visit https://CyberSummitUSA.com/Summit/Philadelphia20/

If you would like to exhibit and / or speak at the Cyber Security Summit, contact Megan Hutton at [email protected] / 212.655.4505 x241.

Join the SECtember Experience

CSA is excited to launch the SECtember Experience, a webinar series that will provide a preview of the top-notch content attendees can expect to receive at the in-person SECtember conference in 2021. This complimentary series is designed to guide participants on their race to the cloud, while offering the opportunity to earn CPE credits. As a consequence of the COVID-19 pandemic, organizations are accelerating their migration to the cloud as the optimal strategy to support a virtual workforce and enable digital transformation. To meet this unprecedented need, the SECtember Experience will deliver a webinar at 11AM each day, September 8-25, covering a range of topics critical to moving to and securing data in the cloud. Among the sessions will be keynote speeches from Global 2000 security leaders, Chief Information Security Officer (CISO) panels, and cloud security technology deep dives. For the latest agenda and speaker information, please visit www.sectember.com.

Join the SECtember Experience

CSA is excited to launch the SECtember Experience, a webinar series that will provide a preview of the top-notch content attendees can expect to receive at the in-person SECtember conference in 2021. This complimentary series is designed to guide participants on their race to the cloud, while offering the opportunity to earn CPE credits. As a consequence of the COVID-19 pandemic, organizations are accelerating their migration to the cloud as the optimal strategy to support a virtual workforce and enable digital transformation. To meet this unprecedented need, the SECtember Experience will deliver a webinar at 11AM each day, September 8-25, covering a range of topics critical to moving to and securing data in the cloud. Among the sessions will be keynote speeches from Global 2000 security leaders, Chief Information Security Officer (CISO) panels, and cloud security technology deep dives. For the latest agenda and speaker information, please visit www.sectember.com.

In this webinar Daniele will provide an overview of the CSA cloud security and privacy governance and compliance program: "Security, Trust, Assurance and Risk (STAR) program". In particular, Daniele will explain the benefits of CSA STAR for both to Cloud users and Cloud providers, and highlight differences as well as synergies with other leading security certification and attestation, such as ISO27001 and SOC 2

Don't miss out any annoucements and on-demand trainings

Now more than ever, we could all use a little more time to get things done. CSA is extending the SECtember Call for Papers (CFP) deadline until June 26th to give you some additional time to gather your ideas.

Held September 14-18 in CSA’s home city of Seattle, WA, the CFP is your opportunity to get in at the ground floor of CSA’s inaugural event and reach a global audience of security professionals.

We are interested in new, challenging, innovative and technical content across a variety of cloud and cybersecurity topics, such as:

• DevOps, DevSecOps & CI/CD security experiences
• Cloud governance, compliance and risk management
• Hybrid and multi-cloud implementation & security architectures
• Incident Management best practices
• Cloud threats and threat actors 
• Role of adjacent and emerging technologies in cloud: IoT, Blockchain, 5G, Artificial Intelligence, Quantum Computing

To submit your paper for consideration, visit sectember.com/cfp. The key objective of SECtember is to deliver top quality content and interesting presentations for attendees. If you have research, developments or experiences that security professionals would value or enjoy hearing about, we strongly encourage you to submit. 

• Lessons from Leveraging Risk Management for Cybersecurity in Healthcare on Tuesday, June 2, 2020 12:00 PM
• Human Capital and Lessons Learned from COVID-19 for future BCP on Wendnesday, June 10, 2020 12:00 PM
• Personal Disaster Recovery Preparedness - Train Yourself in Cloud Security on Tuesday, June 16, 2020 12:00 PM

It's your last chance to submit papers for consideration to be a speaker at CSA's inaugural event: SECtember. There will be no shortage of networking and community engagement opportunities, but the key objective of the conference is to deliver top quality content and interesting presentation for attendees. Check out our list of recommended submission topics and submit your paper by Friday, May 1st to be considered. → 

We are looking for members who want to be actively engaged in all aspects of Cloud Security. Bring your talents and time and we'll bring you connections to some of the brightest minds in Cloud Security.

We're glad to have you as part of the CSA Community where you can meet and network with other CSA Triangle Chapter members along with a diverse group of CSA partners, industry insiders and subject matter experts to get answers to your most pressing questions related to cyber security. 

Circle is a great place to explore CSA’s newest research, events, and initiatives, engage with CSA global research working groups, ask questions of subject matter experts, and network with peers. 

We recommend that you join 'The Inner Circle’ community to receive access to early research releases, updates on the latest CSA resources and tools, and member discounts on education, training, and certifications.

CSA Triangle Chapter Circle Community

Held in CSA’s home city of Seattle among the giants of cloud computing, SECtember will feature in-depth trainings, networking opportunities and expert-led sessions from industry leaders. Join cybersecurity and cloud professionals as we explore the convergence of national and cybersecurity interests within the market. Register by June 1^st to take advantage of early bird pricing.
 
Your Participation Matters
Attending SECtember has a direct impact on the community. CSA will donate 5% of all attendee proceeds to the Seattle Children’s Hospital.
 
Call for Papers is Open
Gain recognition as a thought leader and subject matter expert by speaking at SECtember. Submit your paper at sectember.com/cfp by May 1st for consideration.

SECtember:
September 14th-18th
Seattle, Washington

Find out more about our flagship event and register today. → sectember.com