Overview of CCM v4.1 updates: 207 controls, 11 new controls, CAIQ v4.1, and how the Cloud Controls Matrix strengthens cloud ...

Microsoft and Zendesk recognized as first organizations to achieve STAR for AI Level 2 certification ...

A first-hand look at building and testing AI agents, exploring prompts, Rails workflows, and multi-agent collaboration.

Overview of SSCF v1.0, a vendor-agnostic SaaS security standard by CSA, outlining six pillars and adoption guidance.

CSA's provisional STAR for AI Level 2 designation assesses ISO/IEC 42001, AI-CAIQ, and Valid-AI-ted scoring to show AI ...

Voice AI is evolving quickly and won’t wait for the security industry to catch up. The real question is whether we can secure it fast enough.

Identity security has officially overtaken all other risks as the top concern in cloud environments. According to CSA’s State of Cloud and AI Security 2025 survey report, insecure identities and risky ...

Resiliency through multicloud looks great on paper, but the reality is far more complex (and expensive). Thanks to Amazon, Microsoft, and Google, my calendar over the past few weeks spiked with ...

If you still run threat modeling as a one-time design activity, you’re missing the whole point of the cloud. Modern environments are elastic, multi-account, API-driven, and (thanks to AI) constantly ...

Just recently, Microsoft and Intel announced nearly 13,000 layoffs combined. Those headlines reignited conversations about workforce reductions, restructuring, and the human cost of automation and AI.

The Cloud Controls Matrix (CCM) is a framework of controls that are essential for cloud computing security. Created by CSA, the CCM aligns with CSA best practices. You can use CCM to assess and guide ...