15 matches found
AAGATE: A NIST AI RMF-Aligned Governance Platform for Agentic AI
This paper introduces the Agentic AI Governance Assurance & Trust Engine AAGATE, a Kubernetes-native control plane designed to address the unique security and governance challenges posed by autonomous, language-model-driven agents in production. Recognizing the limitations of traditional...
The Annual SaaS Security Report: 2025 CISO Plans and Priorities
Seventy percent of enterprises are prioritizing investment in SaaS security by establishing dedicated teams to secure SaaS applications, as part of a growing trend of maturity in this field of cybersecurity, according to a new survey released this month by the Cloud Security Alliance CSA. Despite...
Zero Trust: 7 adoption strategies from security leaders
Microsoft considers Zero Trust an essential component of any organization’s security plan. We have partnered with Cloud Security Alliance, a not-for-profit organization that promotes cloud computing best practices, to bring together executive security leaders to discuss and share insights about...
Zero Trust: 7 adoption strategies from security leaders
Microsoft considers Zero Trust an essential component of any organization’s security plan. We have partnered with Cloud Security Alliance, a not-for-profit organization that promotes cloud computing best practices, to bring together executive security leaders to discuss and share insights about...
Data Security in the Cloud: How to Lock Down the Next-Gen Perimeter
With businesses continuing their digital migrations to cloud services and applications, IT is finding itself wrestling with how to keep companies’ data safe. The challenge? The cloud has created a next-generation, virtual perimeter. Businesses are using infrastructure-as-a-service IaaS, cloud...
GDPR Is Here: Don’t Neglect Public Cloud Security
With organizations aggressively moving workloads to public cloud platforms, such as Amazon’s AWS, protecting these environments is critical for complying with the EU’s General Data Protection Regulation GDPR. GDPR, which went into effect in May, imposes strict requirements on millions of business...
When Preparing for GDPR, Don’t Neglect Public Cloud Security
With organizations aggressively moving workloads to public cloud platforms, such as Amazon’s AWS, Google Cloud, and Microsoft’s Azure, protecting these environments is critical for compliance with the EU's General Data Protection Regulation GDPR. These public cloud platforms are being used to pow...
Alliance Issues Guidance for Cloud-Based SIEM Services
The non-profit Cloud Security Alliance today released guidelines for the nascent Security as a Service SecaaS specialization within the broader realm of cloud computing. The goal, the group says, is to help companies and consumers gain a better handle on how best to evaluate, build and deploy...
Cloud Security Alliance Releases New Toolkit
In an effort to better weigh the security of cloud-based infrastructures, the Cloud Security Alliance has released a new toolkit, the Governance, Risk Management and Compliance GRC Stack. Available as a free download on the organization’s website, the collection consists of three tools: CloudAudi...
IEEE and Cloud Security Alliance Form Partnership
The Cloud Security Alliance CSA and IEEE are joining forces to ensure that best practices and standards are developed and available to provide security assurance for cloud computing. As a result of this collaboration, CSA and IEEE have been conducting a survey to identify and define the most...
Cloud Security Alliance Gives New Guidance
Version 2.1 of the Cloud Security Alliance’s “Guidance for Critical Areas of Focus in Cloud Computing” provides more concise and actionable guidance across all domains, and encompasses knowledge gained from real world deployments over the past six months. Read the full article. Help Net Security...
Q&A: Chris Hoff on cloud computing
Chris Hoff, the former chief security architect at Unisys and the author of the consistently insightful and funny Rational Survivability blog, is among the most sought-after speakers in the security industry and an authority on cloud computing and virtualization security. In this interview, he...
Cloud security needs its rainmaker
From Information Week George Hulme The Cloud Security Alliance CSA made its inaugural splash at last week’s RSA Security Conference 2009 in San Francisco. The group kicked off an ambitious white paper cloudsecurityalliance.org that attempts to define everything from the architecture of cloud...
Virtualization security debate rages on
From SearchSecurity.com Robert Westervelt The debate around cloud security is quickly beginning to mirror the one that has followed virtualization security for the last few years. What begins as a philosophical discussion usually devolves into arguments about technology or vendor roles. In a pane...
Chris Hoff on the Cloud Security Alliance, Virtualization Security and Cage Matches
Dennis Fisher talks to Chris Hoff, author of the Rational Survivability blog and well-known speaker on cloud security and virtualization security issues. Download Subscribe to the Digital Underground podcast on...