The Cloud Security Alliance (CSA), a coalition of organizations promoting cloud security standards, has updated its implementation guidance documents on security as a service.
Specifically, CSA’s Security as a Service (SecaaS) Working Group is issuing peer-reviewed documentation for each of the 10 service categories defined in its initial recommendations published in August 2011.
The first category being released covers Identity and Access Management (IAM), providing a comprehensive set of controls for assured identities and access management. The documentation is sponsored by Ping Identity and Courion Corp.
The nine other service categories include data-loss prevention, Web security, email security, security assessments, intrusion management, security information and event manager, encryption, business continuity and disaster recovery and network security.
Those guidance documents will be presented at the CSA Summit at RSA Europe in London on Oct. 8 and will be available for download from the CSA website.
The Cloud Security Alliance is a not-for-profit organization led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders with the mission to promote the use of best practices for providing security assurance within cloud computing.