Cloud Security Alliance

Cloud Security Alliance Announces Availability of STAR for AI Level 2 and Valid-AI-ted for AI

Microsoft and Zendesk recognized as first organizations to achieve STAR for AI Level 2 certification ...
Cloud Security Alliance

Understanding STAR for AI Level 2: A Practical Step Toward AI Security Compliance

CSA's provisional STAR for AI Level 2 designation assesses ISO/IEC 42001, AI-CAIQ, and Valid-AI-ted scoring to show AI ...
Cloud Security Alliance

The Internet is a Single Point of Failure

Explores multicloud resiliency, its costs, and why single-cloud resilience with chaos engineering is the recommended approach ...
Cloud Security Alliance

SSCF v1.0: The Standard That Simplifies SaaS Security

Overview of SSCF v1.0, a vendor-agnostic SaaS security standard by CSA, outlining six pillars and adoption guidance.
Cloud Security Alliance

Red Teaming Voice AI: Securing the Next Generation of Conversational Systems

Voice AI is evolving quickly and won’t wait for the security industry to catch up. The real question is whether we can secure it fast enough.
Cloud Security Alliance

It’s Time to Make Cloud Threat Modeling Continuous

If you still run threat modeling as a one-time design activity, you’re missing the whole point of the cloud. Modern environments are elastic, multi-account, API-driven, and (thanks to AI) constantly ...
Cloud Security Alliance

Implementing CCM: Threat & Vulnerability Management Controls

The Cloud Controls Matrix (CCM) is a framework of controls that are essential for cloud computing security. Created by CSA, the CCM aligns with CSA best practices. You can use CCM to assess and guide ...
Cloud Security Alliance

How to Measure SOC Efficiency and Performance (Lessons from the Frontlines)

Poor SOC performance can cause burnout, human error, missed threats, & huge financial losses. Here’s what two experts learned ...