Introducing the SaaS Security Capability Framework (SSCF) v1.0: Raising the Bar for SaaS Security

Introducing the SaaS Security Capability Framework (SSCF) v1.0: Raising the Bar for SaaS Security

8 months ago 132
RiskRubric: A New Compass for Secure and Responsible Model Adoption

RiskRubric: A New Compass for Secure and Responsible Model Adoption

8 months ago 184
Why I'm Joining CSA

Why I'm Joining CSA

8 months ago 116
EQS Group Achieves EU Cloud Code of Conduct Compliance through the Cloud Security Alliance Framework

EQS Group Achieves EU Cloud Code of Conduct Compliance through the Cloud Security Alliance Framework

8 months ago 141
Reflecting on the 2024 Microsoft Breach

Reflecting on the 2024 Microsoft Breach

9 months ago 328
EDR Killers: How Modern Attacks Are Outpacing Traditional Defenses

EDR Killers: How Modern Attacks Are Outpacing Traditional Defenses

9 months ago 124
Fortifying the Agentic Web: A Unified Zero Trust Architecture Against Logic-Layer Threats

Fortifying the Agentic Web: A Unified Zero Trust Architecture Against Logic-Layer Threats

9 months ago 139
The Hidden Security Threats Lurking in Your Machine Learning Pipeline

The Hidden Security Threats Lurking in Your Machine Learning Pipeline

9 months ago 121
From Policy to Prediction: The Role of Explainable AI in Zero Trust Cloud Security

From Policy to Prediction: The Role of Explainable AI in Zero Trust Cloud Security

9 months ago 330
What is Continuous Compliance, and How Can Your Team Actually Achieve It?

What is Continuous Compliance, and How Can Your Team Actually Achieve It?

9 months ago 117
AB 1018: California’s Upcoming AI Regulation and What it Means for Companies

AB 1018: California’s Upcoming AI Regulation and What it Means for Companies

9 months ago 185
10 Questions to Evaluate Cloud Email Security Solutions

10 Questions to Evaluate Cloud Email Security Solutions

9 months ago 150
The Oversight That Could Cost You: Why Basic Hypervisor Protection Fails

The Oversight That Could Cost You: Why Basic Hypervisor Protection Fails

9 months ago 123
A Look at the New AI Control Frameworks from NIST and CSA

A Look at the New AI Control Frameworks from NIST and CSA

9 months ago 139
Machine Identities: Definition, How They Work, and Security Best Practices

Machine Identities: Definition, How They Work, and Security Best Practices

9 months ago 134
A Successful SIM Swap Attack: Unpacking the 2022 FTX Hack

A Successful SIM Swap Attack: Unpacking the 2022 FTX Hack

9 months ago 334
Understanding U.S. AI Policy: Executive Orders, the Big Beautiful Bill, & America’s AI Action Plan

Understanding U.S. AI Policy: Executive Orders, the Big Beautiful Bill, & America’s AI Action Plan

9 months ago 113
Achieving Resilience Through Zero Trust

Achieving Resilience Through Zero Trust

9 months ago 120
Risk-Based vs. Compliance-Based Security: Why One Size Doesn’t Fit All

Risk-Based vs. Compliance-Based Security: Why One Size Doesn’t Fit All

9 months ago 114
Securing the Agentic AI Control Plane: Announcing the MCP Security Resource Center

Securing the Agentic AI Control Plane: Announcing the MCP Security Resource Center

9 months ago 227
Agentic AI and Zero Trust

Agentic AI and Zero Trust

9 months ago 158
Sunsetting Circle: Where CSA Communities Are Headed and How to Join

Sunsetting Circle: Where CSA Communities Are Headed and How to Join

10 months ago 169
Cloud Security Alliance Names Google Cloud as First Company to be Valid-AI-ted, Setting New Benchmark for Data-driven Cloud Assurance

Cloud Security Alliance Names Google Cloud as First Company to be Valid-AI-ted, Setting New Benchmark for Data-driven Cloud Assurance

10 months ago 147
Inadequate Database Security: A Case Study of the 2023 Darkbeam Incident

Inadequate Database Security: A Case Study of the 2023 Darkbeam Incident

10 months ago 142
Jurassic Access: What Jurassic Park Teaches Us About Identity and Access Management

Jurassic Access: What Jurassic Park Teaches Us About Identity and Access Management

10 months ago 149