Dear members,
Would like to invite you to participate in & contribute to the mapping project of CCM V4 to PCI DSS V4.
Mapping is progressing well, however we are lacking progress in some of the domains, namely:
• Business Continuity Management & Operational Resilience (BCR)
• Interoperability & Portability (IPY)
• Supply Chain Management, Transparency, and Accountability (STA)
• Universal Endpoint Management (UEM)
Should you be interested, contact me directly to onboard you to the project and walk you through the mapping methodology.
Thank you,
------------------------------
Eleftherios Skoutaris
Program Manager
Cloud Security Alliance
------------------------------
Original Message:
Sent: Mar 13, 2023 03:52:14 AM
From: Eleftherios Skoutaris
Subject: CCMv4.0 – PCI DSS V4 Mapping (Call for participation)
Please join our CCM WG calls coming up this week, March 15th or 16th to discuss ways of you involvement in the mapping.
Call info to join are found in the 'Events' tab, here above.
Thanks,
Lefteris
------------------------------
Eleftherios Skoutaris
Program Manager
Cloud Security Alliance
Original Message:
Sent: Mar 12, 2023 06:56:45 PM
From: Brian Dorsey
Subject: CCMv4.0 – PCI DSS V4 Mapping (Call for participation)
I would be happy to assist.
------------------------------
Brian Dorsey Solutions Engineer CCSK / AWS Security Specialist
Original Message:
Sent: Feb 16, 2023 02:19:32 AM
From: Eleftherios Skoutaris
Subject: CCMv4.0 – PCI DSS V4 Mapping (Call for participation)
Dear members,
CSA and the CCM WG would like to embark on a new mapping project that involves a mapping and gap analysis between the CCM v4.0 and PCI DSS V4. The project is expected to kick-off during the CCM WG call on March 1st.
The objective of the project is the requirements comparison of the 2 frameworks. In this way an opportunity is provided for cloud organizations to identify the equivalent (overlapping) security requirements between the two, and more importantly the missing cloud-specific CCM security requirements (deltas) in PCI DSS, especially when seeking to integrating these within their cloud security and compliance programs.
In this respect, CSA, and under the umbrella of the CCM WG, would like to put together a team of experts, who have good experience in the implementation/assessment of PCI DSS, and/or CCMv4 security controls.
Should you be interested in participating in this project, reply directly to this message (or contact me directly) and I will walk you through the on-boarding process and mapping methodology.
Best regards,
------------------------------
Eleftherios Skoutaris
Program Manager
Cloud Security Alliance
------------------------------