Research Arrow to Content

Some highlights of CSA’s current research initiatives, for more information contact [email protected]

Research at Cloud Security Alliance

CSA boasts a rapidly expanding suite of research initiatives, including 25 active work groups

New CSA Survey Finds Financial Firms are in Search of a Cloud Strategy

The CSA released their latest survey report, “How Cloud is Being Used in the Financial Sector”, administered by CSA’s Financial Services Working Group. The survey targeted executives from banking, insurance and investment firms around the world. While the survey found that cloud computing is becoming more and more prevalent throughout the financial sector, many respondents indicated having less than 50 percent of a solidified, concerted cloud strategy with controls and security being a main concern. This finding and many more can be found in the report.

Cloud Industry’s First CSA STAR Attestation!

Ribose Gains Successful Third-Party Assessment Based Upon Joint CSA & AICPA Guidelines

Ribose achieved the CSA Trust and Assurance Registry (STAR) Attestation level of third-party assessment. Ribose is the first and only cloud service provider worldwide that has successfully completed a Service Organization Control 2 assessment using criteria from the American Institute of Certified Public Accountants Trust Service Principles and the CSA Cloud Controls Matrix 3.01, according to AICPA’s Attest Engagement AT Section 101.

Ronald Tse, founder of Ribose, and member of the CSA’s International Standardization Council, says: “STAR Attestation provides cloud customers with an unparalleled level of assurance and verified transparency. This is the strongest cloud compliance scheme available to date – combining the depth of AICPA’s SOC engagements with the comprehensive cloud security coverage of the CCM. We consider this the most powerful way to convince customers: by showing an attestation report issued by an international auditing firm, fully listing all the organization’s controls with their design and operational effectiveness described in detail, covering all criteria of TSP 100 and CCM 3.0.1.”

Page Dividing Line