Evaluating Cloud Computing Providers
- March 04, 2016
Several CISOs discussed why cloud access security brokers are imperative to their respective enterprises during a panel discussion at RSA Conference 2016.
- March 02, 2016
Cloud access security brokers are dominating the cloud security conversation at this year's RSA Conference. Here's what vendors are saying about CASBs.
- February 01, 2016
What companies and cloud security products do organizations consider when they see to reduce their cloud vulnerabilities?
- January 28, 2016
An advocacy group representing cloud providers such as Hewlett Packard Enterprise and IBM has criticized FedRAMP and called on the government to fix the cloud certification program.
- January 16, 2015
Cloud collaboration firm Ribose became the first company to achieve the Cloud Security Alliance's STAR Attestation process.
- January 09, 2015
Cloud Security Alliance findings show many enterprises struggle to identify and control shadow cloud apps and services; half of those surveyed told the CSA they have no program in place manage cloud apps and services.
- December 04, 2014
Microsoft is working to improve Azure security, but analysts say Amazon Web Services is still in the lead when it comes to cloud security capabilities.
- November 19, 2014
Newly announced Amazon Web Services security features include an encryption key management service intended to boost cloud security and strengthen appeal of AWS to enterprises.
- September 19, 2014
Internet radio company Pandora explains how it found a strategy to embrace shadow IT and still secure cloud app usage within the company.
- August 06, 2014
At Black Hat 2014, a researcher showed how AWS cloud security flaws and misconfigurations can have devastating consequences for AWS customers that don't take security seriously.
- July 18, 2014
The Cloud Security Alliance has updated its Cloud Controls Matrix (CCM) and Consensus Assessments Questionnaire (CAIQ) to help enterprises standardize cloud provider security assessments.
- May 30, 2014
Security pros say infosec teams must be proactive on cloud security management to reduce risk related to rapid growth in enterprise cloud computing.
- April 25, 2014
A new report shows the volume of cloud attacks is rising, as attack types traditionally associated with on-premises environments migrate with users.
- April 01, 2014
Emerging cloud attacks threaten cloud data security by exploiting the gap between enterprise controls and provider transparency.
- March 04, 2014
Until a common cloud provider assessment paradigm is agreed upon, experts say enterprises will be left wanting on cloud data security validation.
- December 19, 2013
The Cloud Security Alliance hopes Cloud Trust Protocol will boost cloud transparency by automating customer requests for cloud provider security data.
- December 05, 2013
At the 2013 CSA Congress, executives from Microsoft and AWS made the case for why cloud provider security is superior to traditional IT security.
- June 14, 2013
When negotiating with cloud providers, enterprises must demand cloud contracts with specific security and control provisions, Gartner analysts say.
- May 23, 2013
AWS becomes the biggest cloud provider to earn FedRAMP certification, easing the transition to AWS for U.S. government agencies.
- April 26, 2013
In response to growing SMB cloud security issues, the Cloud Security Alliance announced a new working group and membership level focused on SMBs.
- March 01, 2013
A panel of cloud security experts fielded questions on cloud provider transparency, the CSA's Notorious Nine report and more at RSA Conference 2013.
- February 25, 2013
The Cloud Security Alliance expanded its cloud security training and cloud provider security assurance efforts Monday at its 2013 CSA Summit.
- November 30, 2012
IT pros praised the security of Amazon Web Services, saying the show eased their cloud computing security concerns.
- November 30, 2012
At its user conference, Amazon Web Services says customers must understand the implications of its shared security model before moving to the cloud.
- November 28, 2012
Amazon CEO Jeff Bezos will headline this week's first-ever AWS re: Invent cloud computing conference, where several sessions will cover security issues.
- November 27, 2012
Online assessment tests the security posture, but more detailed guidance documents and reports are available from government agencies and organizations.
- November 21, 2012
Enterprises must empower their legal teams to ask the right questions and write contracts based on risk management, explains Tom Kellermann of Trend Micro.
- October 03, 2012
Enterprises must insist transparency, authentication and other key issues are addressed, said Jim Reavis, executive director of the Cloud Security Alliance.
- August 21, 2012
The British Standards Institution will help the CSA develop a certification program for cloud providers.
- July 24, 2012
Amazon Web Services has filed details on its security controls with Cloud Security Alliance online registry, showing a new level of transparency.
- May 10, 2012
Plan calls for working with certification bodies, government agencies, as well as an independent CSA certification.
- February 27, 2012
Alert Logic analysis finds cloud service provider environments suffer fewer security incidents.
- January 20, 2012
Enterprises need cloud security transparency and must understand cloud provider security in order to move forward with engagements.
- December 08, 2011
FedRAMP establishes standard approach for federal agencies to assess cloud providers.
- November 10, 2011
Companies need to educate developers, leverage asset inventories and vet cloud providers, panelists advise.
- October 03, 2011
Co-chair of CSA project talks about the CCM and how organizations can leverage it.
- August 31, 2011
Amy Larsen DeCarlo of Current Analysis says the Verizon CloudSwitch acquisition will bolster cloud application security following cloud migrations.
- August 04, 2011
Free online registry will provide documentation of cloud provider security controls.
- July 15, 2011
Opinion: CSA Executive Director Jim Reavis assesses the challenges associated with certifying the security capabilities of cloud providers.
- July 14, 2011
Free tool gives organizations a standard way to obtain security and compliance information from a cloud provider.
- May 27, 2011
CDW study finds that cloud users aren’t implementing security capabilities or verifying cloud provider security.
- May 09, 2011
McAfee’s security software changes bridge its Web, mobile and email security with Intel’s cloud access control products.
- May 06, 2011
Goal is to create standards that provide transparency into cloud infrastructures.
- May 04, 2011
Businesses must hold cloud providers to the same security standards they hold themselves to, Symantec executives said at the company’s annual Vision user conference.
- February 17, 2011
Security professionals wary of cloud services for regulated data.
- February 17, 2011
Transparency is essential for security and compliance when working with cloud services providers, RSA panelists say.
- June 28, 2010
Security professionals must advise decision makers not to embark on new cloud computing projects without considering the security implications.
- December 17, 2009
New version provides more actionable advice for ensuring cloud computing security
- November 10, 2009
Shared Assessments program unveils updated tools for assessing security of service providers, including cloud providers
- May 14, 2009
While it could save money, many firms should understand the security, privacy and legal issues when using cloud-based services.
- April 22, 2009
The non-profit Cloud Security Alliance says its comprehensive report serves as the starting point for a broader discussion on cloud computing security issues.
- April 17, 2009
Cloud computing is changing the way we do business; the scalability, flexibility and cost savings are seductive, even irresistible. But, as with every "next big thing" in technology, security is a potential stumbling point. The distributed computing...