New & Notable
Cloud Compliance: Federal Regulations and Industry Regulations News
May 29, 2014
The consequences for cloud service providers missing the FedRAMP deadline remain unclear, though experts say those in the queue are in good shape.
January 31, 2014
An attorney says the rumored suspension of Safe Harbor is unlikely, but either way, data privacy compliance will get harder for U.S. companies.
January 22, 2014
The updated EU General Data Protection Regulation raises breach penalties for enterprises operating in the EU. Attorney Francois Gilbert explains.
May 23, 2013
AWS becomes the biggest cloud provider to earn FedRAMP certification, easing the transition to AWS for U.S. government agencies.
Cloud Compliance: Federal Regulations and Industry Regulations Get Started
Bring yourself up to speed with our introductory content
The Cloud Controls Matrix is a baseline set of security controls created by the Cloud Security Alliance to help enterprises assess the risk associated with a cloud computing provider. Continue Reading
SSAE 16, also called Statement on Standards for Attestation Engagements 16, is a regulation created by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA) for redefining and updating how service ... Continue Reading
CloudAudit is a specification for the presentation of information about how a cloud computing service provider addresses control frameworks. The specification provides a standard way to present and share detailed, automated statistics about ... Continue Reading
Evaluate Cloud Compliance: Federal Regulations and Industry Regulations Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
Security expert Ed Moyle explains the CSA STAR certification program and how enterprises can use it to improve cloud provider security evaluations. Continue Reading
Video: Securosis CEO Rich Mogull explains how the NSA monitoring scandal has weakened enterprise security and what infosec pros should do about it. Continue Reading
Has your company considered moving regulated data to the cloud? Expert Richard E. Mackey Jr. explains the pros, cons and security challenges of doing so. Continue Reading
Manage Cloud Compliance: Federal Regulations and Industry Regulations
Learn to apply best practices and optimize your operations.
FedRAMP raises the bar for security among applicable cloud providers, but can it influence broader cloud computing contracts and standards? Continue Reading
Several public-private partnerships are working to develop specifications to support the NIST roadmap. Continue Reading
Deciding whether your cloud provider is a business associate comes down to a judgment call based on the type of cloud usage. Continue Reading
Problem Solve Cloud Compliance: Federal Regulations and Industry Regulations Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
European Union data protection authorities cast doubt on Safe Harbor self-certification for cloud providers. Continue Reading
Organizations face a March 1 deadline for ensuring their cloud and other service providers comply with Massachusetts’ data protection regulation. Continue Reading
Health care providers must plan any cloud migration carefully to protect patient safety and maintain HIPAA compliance. Continue Reading