Continuous Audit-based Certification

Presented by

Alain Pannetrat Senior Researcher Cloud Security Alliance

About this talk

Certifications or attestations championed through the CSA STAR program, ISO/IEC, or AICPA, have been a critical driver in the adoption of cloud service across the globe. However, for some cloud customers in sensitive or highly-regulated industries such as banking or healthcare, these certifications or attestations are not sufficient because they do not provide a continuous level of assurance as they rely on annual or bi-annual audits only. To address the concerns of this segment of the industry, the Cloud Security Alliance (CSA) is building a continuous auditing framework designed to provide assurance to customers on a monthly, daily, or even hourly basis. This framework can be applied either to self-assessments or third-party certifications.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (178)
Subscribers (16222)
Go in depth into CSA's latest research on everything from IoT to containers to blockchain. Webcasts will break down the research, provide use cases, instructions for implementation, and further insights.