CSA, BSI launch cloud security cert program
The Cloud Security Alliance (CSA) and Australian business standards company BSI have launched a third-party security certification program for cloud providers.
The STAR Certification program assesses cloud providers’ security capabilities using ISO/IEC guidelines and the CSA’s own Cloud Control Matrix.
Companies looking to achieve STAR Certification will need to demonstrate compliance with the globally recognised ISO/IEC 27001 information security management standard.
Providers must also meet the various criteria of the Cloud Control Matrix, including sections covering data governance, information security and resilience.
Assessments will be carried out by CSA-accredited certification bodies such as BSI. There will be three levels of certification - gold, silver and bronze - based on the maturity of providers’ various processes.
BSI Managing Director Nick Koukoulas said the certification program will fulfil an unmet need. “In response to recent concerns raised by the government, both consumers and providers of cloud-based services have been asking for independent, technology-neutral certification to help them make more informed decisions about the services they purchase and use,” he said.
“In providing a rigorous, user-centric assessment, STAR Certification will provide an additional layer of transparency,” Koukoulas said.
AI is driving the case for a fresh look at data sovereignty in Australia
In Australia, artificial intelligence has emerged as one of the strongest drivers for the...
The hidden risks of cloud AI are a security crisis in the making
It is important to act now to close AI security gaps before they become existential threats.
Aussie Broadband goes open source with SUSE
SUSE has helped Aussie Broadband simplify infrastructure, unify workloads, and boost operational...
