Member’s Login

Forgot Password  |  Create an account

National Technology Security Coalition (NTSC) and Cloud Security Alliance (CSA) Partner to Improve Cloud Computing Security

Posted By - DynamicCISO,

The National Technology Security Coalition (NTSC) and the Cloud Security Alliance (CSA) announced a partnership to advance cloud computing security at the recently concluded RSA Conference’s CSA Summit. Pete Chronis, CISO of Turner and an NTSC Board Member, announced the partnership during his talk “The CISOs’ role in Shaping Public Policy” where he discussed the opportunities and challenges for CISOs to engage with government on public policy challenges impacting the enterprise and outlined the NTSC’s role in advocating for CISO issues.

By partnering together to promote the adoption of cybersecurity best practices, the NTSC and CSA will aim to improve vendor security. Specifically, the two organizations will help standardize and improve cloud security vendor reviews by promoting and strengthening the CSA’s Security, Trust & Assurance Registry (STAR) and related CSA tools as recommended practices for cloud security and vendor evaluations.

“We are excited to partner with the NTSC to make common cause toward raising the bar for cloud computing security and all new emerging technologies,” said Jim Reavis, CEO of Cloud Security Alliance. “CSA STAR is the world’s largest cloud computing assurance program which, combined with NTSC’s focus on CISO advocacy, will help accelerate trust of the cloud while preventing key stakeholders from reinventing the wheel.”

The NTSC and CSA are seeking to streamline the vendor security review process; reduce time, energy, and effort by encouraging best practices for vendors; and offer benefits to vendors who abide by this process and best practices. Together, the organizations will collaborate on a STAR-based questionnaire that maps to the most used compliance frameworks. A joint whitepaper will then provide information about this program, how CISOs can incorporate this program into their companies, and how vendors would incorporate the program when planning to work with organizations.

“The information security industry needs to evolve the way it assesses and improves cloud vendor security,” said Patrick Gaul, Executive Director of the NTSC. “CISOs don’t have the same kind of transparency with third party cloud security vendors as they do with their own network systems. I’m excited that the preeminent CISO and cloud security auditing associations are partnering together, and we look forward to promoting a more rigorous way to help CISOs vet cloud security vendors based on CSA’s successful STAR program.”

In addition to partnering on a cloud security vetting program, the CSA and the NTSC will also participate in each other’s events, discuss industry issues in working groups, and collaborate on research involving cloud security. The NTSC encourages dialogue about cybersecurity issues, laws, and regulations through advocacy engagement with congressional members, regional CISO policy roundtables, and an annual DC Fly-In as part of its National CISO Policy Conference. The CSA holds many conferences, summits, events, and forums around the world to promote the use of best practices for providing security assurance within cloud computing.

Related Tags - CISO, cybersecurity, National Technology Security Coalition, NTSC, Cloud Security Alliance, cloud security,

Subscribe to our newsletter for all the latest updates and special offers.

Click Here To view archive additions

Older Entries

Monday, April 14th, 2014 02:55:00 PM Heartbleed - Bruce Schneier, CTO
Sunday, April 27th, 2014 09:10:00 AM Heartbleed FAQs - Richard Henderson, Security Strategist FortiGuard Labs
View All