The Enterprise Resource Planning (ERP) working group seeks to develop best practices to enable organizations that run their business on large ERP implementations, such as SAP or Oracle applications, ...

This working group aims to develop a holistic Cloud Incident Response framework that comprehensively covers key causes of cloud incidents (both security and non-security related), and their handling ...

CSA and Northeastern University’s Trusted AI Safety Knowledge Certification Program trains professionals to build, secure, ...

Walk through what makes Kubernetes security so challenging and how security teams can get started with it in a way that sets ...

The Cloud Controls Matrix (CCM) is a framework of controls that are essential for cloud computing security. It is created and updated by CSA and aligned to CSA best practices. You can use CCM to ...

Compliance is becoming an increasingly complex, costly, and inefficient. Organizations face hundreds of evolving regulations, yet traditional compliance methods rely on manual processes, fragmented ...

CAR Champions play a leading role in helping CSA transform compliance and assurance by advocating for automation, regulatory harmonization and real-time information exchanges within their organization ...

Regulatory analysis in the context of the CAR Initiative involves systematically evaluating and mapping regulatory frameworks, standards, and industry requirements to cybersecurity controls. It aims ...

This working group focuses on expanding and standardizing cybersecurity control objectives across various technologies, including Cloud, AI, and IoT/OT. It extends the CSA Cloud Control Matrix (CCM), ...

As cyber threats get smarter, companies are using Zero Trust Security Models to keep their data safe. This way of thinking ...