CSA Security Trust Assurance and Risk (STAR) Registry Reaches Significant Milestone with 1,000 Entries
Registry is world’s largest repository of cloud provider security testimonials
The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, announced today that its Security Trust Assurance and Risk (STAR) Registry, a publicly accessible listing which documents the security and privacy controls provided by popular cloud computing offerings, has reached a significant milestone. The STAR Registry has reached a total of 1,000 cloud services evaluated according to the principles of CSA’s STAR Program and the requirements of the Cloud Control Matrix (CCM).
The STAR Registry, which allows cloud customers to assess their security providers prior to making a procurement decision, has fast become a mandate for enterprise users as part of their third-party risk management program. This achievement further validates the value and relevance of the STAR Program, the industry’s most powerful program for security assurance in the cloud, to the cloud community. Since its inception in 2011, the program has become the industry’s leading cloud-specific program for governance, risk, and compliance.
“What began as a humble initiative to encourage transparency on the part of cloud providers, as well as alignment with Cloud Security Alliance’s best practices, has mushroomed into the world’s largest repository of cloud provider security testimonials. By requesting that their cloud providers are listed in CSA STAR, enterprises not only help secure their own journey to the cloud, they help improve the security baseline across the industry,” said Jim Reavis, co-founder and CEO, Cloud Security Alliance.
The STAR Program framework provides a flexible, incremental, and multi-layered cloud-provider system that is recognized as the international, certifiable harmonized governance, risk management, and compliance solution. By utilizing the STAR Program and its accompanying tools (Cloud Controls Matrix, Consensus Assessment Initiative Questionnaire, and the GDPR