Many organizations have attempted to align their cloud security programs to existing industry standards but seek to build their controls using cloud-native services. Unfortunately, because the standard was written for brick-and-mortar data centers, many requirements become “not applicable” or are deferred to the CSP.
The Cloud Security Alliance’s Cloud Controls Matrix is a cloud-purposed controls framework dedicated to managing risks in the cloud and used by many to build cloud security governance programs through identifying cloud-specific security controls. GuidePoint Security will discuss how organizations can implement CSA CCM controls using AWS services by walking through examples of people, process and technology within the specific scope of cloud computing.