Cloud Controls Matrix

Back to discussions
Expand all | Collapse all

Open "Auditor" Co-chair position for the CCM WG (Call for interest)

  • 1.  Open "Auditor" Co-chair position for the CCM WG (Call for interest)

    Posted Oct 21, 2022 03:34:00 AM
    Edited by Lefteris Skoutaris Nov 09, 2022 02:51:29 AM

    Dear members,

    The Cloud Security Alliance is looking for a co-chair to cover for the open position of the Auditor representative for the Cloud Controls Matrix working group. 

    Note: The CCM WG is chaired by the appointed co-chairs and is comprised of representatives from the cloud computing industry, namely, the Audit, Cloud provider and Cloud Customer communities.

    The CCM working group aims to define and conduct activities that pertain to the development and evolution of the Cloud Controls Matrix V4 and its underlying components (i.e., Mappings, CAIQv4, Metrics, Implementation/Auditing guidelines, SSRM models, etc).

    The co-chair will lead the working group, while steering the focus of the topic of the working group, suggest new activities, and ensure forward progress for the working group. 

    Purpose:

    To lead the working group through the business of completing the tasks required in order to meet the mandate and objectives of the working group as they are formed in the working group's charter document.

    Responsibilities:

    • Coordinate the activities of the working group;
    • Develop CCM 4.0;
    • Continually support programs and research as it applies to CCM 4.0;
    • Define the work plan for each year (e.g., meetings and expected deliverables);
    • Ensure progress of work according to the work plan;
    • Report to the CSA Executive Team on execution risks and suggest possible solutions;
    • Convene meetings when necessary and act as Chairperson of CCM;
    • Lead the preparation of draft deliverables, or identify a suitable person within the CCM who will take the role of main editor/rapporteur of the deliverable;
    • Ensure that guidance provided in the current CCM charter is followed;
    • Ensure that relevant documents are circulated to CCM members;

    What we're looking for in a co-chair:

    • 7+ years of experience in cloud security
    • Experience in chairing similar groups, committees, and/or conferences;
    • Previous participation or technical contributions in related communities;
    • Ability to satisfy the time commitment;
    • Ability to keep the Working Group "in Charter";
    • Developing a service offering or assessing a service offering against the CSA STAR, Fedramp, or ISO based programs;
    • Must have experience with CCM v4.0 and/or the CSA STAR program;

    Anyone with expertise on the subject and who satisfies the above criteria is welcome to state their interest until November 18th .

    Candidates should provide the following information:

    • Bio and how it relates to the CCM WG co-chair position;
    • Ideas for the working group roadmap;
    • What role can the working group have for the related cloud security/compliance industry?

    Candidates will then be chosen through a voting tool.

    Should you be interested, please send an email to [email protected].

    Best regards,



    ------------------------------
    Eleftherios Skoutaris
    Program Manager
    Cloud Security Alliance
    ------------------------------