CSA Cloud Controls Matrix (CCM) v4
What is the Cloud Security Alliance? The Cloud Security Alliance (CSA) is a non-profit organisation founded in 2008 with a mission to promote the use of best practices for providing security assurance within cloud computing. With tens of thousands of individual members and hundreds of corporate members worldwide, CSA is the world’s leading organisation dedicated […]
SOC 2 Type II
What is SOC 2? SOC 2 (System and Organisation Controls 2) is an auditing standard developed by the American Institute of Certified Public Accountants (AICPA) that evaluates how organisations manage customer data based on five Trust Services Criteria: Security, Availability, Processing Integrity, Confidentiality and Privacy. It has become the de facto standard for demonstrating security […]
NIST Cybersecurity Framework 2.0
What is NIST? The National Institute of Standards and Technology (NIST) is a non-regulatory federal agency within the US Department of Commerce. Founded in 1901, NIST develops standards, guidelines and best practices that help organisations manage risk, improve security and drive innovation. In cybersecurity, NIST is the most trusted standards body in the United States […]