John DiMaria; Director of Operations Excellence
CSA Security Update
CSA STAR is the industry's most powerful program for security assurance in the cloud. The Security Trust Assurance and Risk (STAR) Program encompasses key principles of transparency, rigorous auditing, and harmonization of standards. Companies who use STAR indicate best practices and validate the security posture of their cloud offerings. This podcast series explores CSA STAR as well as CSA best practices and research along with associated technologies and tools.
Koniecznie odwiedź stronę podcastu i wesprzyj twórcę: www.cloudsecurityalliance.org
Autor
John DiMaria; Director of Operations Excellence
Kategoria
Strona podcastu
Ostatni odcinek
17 kwi 2026
Gdzie słuchać?
Podcasty w aplikacji Replaio Radio Już wkrótcePodcasty trafią do aplikacji już wkrótce. Zainstaluj teraz i jako pierwszy zobacz nowe podejście do podcastów
Odcinki
Live from Hong Kong! Meeting Business Requirements with CSA STAR - Guest: Ron Tse; CEO of Ribose 12.09.2019 46:19
Ribose has achieved STAR Attestation, Certification and C-STAR along with being one of the first adopters of STAR Continuous. What was the main driver? What was the approach to implementation and how did they weave the STAR controls into their current management system to build one holistic integrated process? Listen as Ron Tse; Founder and CEO of Ribose as he addresses these questions along with...
CSA Research – Providing solutions for tomorrow's problems today – Guest: John Yeoh; Global V.P. of Research 28.08.2019 27:37
CSA research is such a big part of what CSA does, providing high quality relevant papers, studies and data free for all to take advantage of, yet in some cases is one of the best kept secrets on the amount of effort that goes into the output that has produced over 400 artifacts and to ensure its value and relevance. Collaborating with industry and harnessing the right subject matter expertise to...
Business Email Compromise Scams Remain a Billion-Dollar Problem - Guest: Ken Dunham, Optiv 14.08.2019 30:44
Business email compromise (BEC) scams are not going away anytime soon. For such a relatively low-tech type of financial fraud, it has proved to be a high-yield and lucrative enterprise for scammers. But the prevention measures are not expensive and not technology dependent. Listen as Ken Dunham;Senior Technical Director, Cyber Operations for Optiv discusses this growing issue, the process hackers...
Measuring the Value that Information Sharing adds to Threat Intelligence - Guest: Paul Kurtz; Co-Founder, CEO, TruStar 30.07.2019 31:45
Information sharing activities when combined with other threat intelligence activities can be seen as important part of the arrangements of human and non‐human activities that, together, form a critical part to achieving organizational resilience. There is a reciprocal relationship between all processes within an organization and the ways in which information is used and shared. Join us as we...
The Business Case Behind Continuous Monitoring - Guest: Stephen Boyer; Founder & CTO, BitSight 22.07.2019 38:31
Continuous Monitoring enables automation of the current security practices of cloud providers. Providers publish their security practices according to CSA formatting and specifications, which customers and tool vendors can then retrieve and present in a variety of contexts. Continuous monitoring/auditing improves on the traditional point-in-time certification in both trust and transparency. Po...
CSA CAIQ-Lite – When is a more Streamlined Vendor Security Assessment option applicable? Guest: Nick Sorensen, CEO, Whistic 03.07.2019 22:45
CSA and Whistic identified the need for a lighter-weight assessment questionnaire in order to accommodate the shift to cloud procurement models, and to enable cybersecurity professionals to more easily engage with cloud vendors. CAIQ-Lite was developed to meet the demands of an increasingly fast-paced cybersecurity environment where adoption is becoming paramount when selecting a vendor security q...
The growing complexity around cybersecurity and evolving technology Guest: Dr. Ron Ross, NIST 18.06.2019 21:06
Dr. Ron Ross, Fellow and Senior Computer Scientist and Information Security Researcher in the computer security division at the National Institute of Standards and Technology (NIST) joins us to discuss the growing problem of too much complexity and the associated security issues that are growing because of it. In this episode we discuss the problem, the root cause and the proven best practice so...
Trust and Transparency - The continued challenges in the cloud - Guest: Jim Reavis 04.06.2019 37:26
An interview with Jim Reavis; Co-Founder and CEO of CSA addressing the many challenges and solutions regarding trust and transparency in the cloud as well a new operational security issues that is coming with 5G technology. https://cloudsecurityalliance.org/star/
Pilot Episode - CVE Vulnerability, Information Sharing and applicability to CSA STAR 13.05.2019 27:56
https://cloudsecurityalliance.org/star/
Podobne podcasty
Replaio nie jest wydawcą podcastów; nazwy audycji, okładki i audio należą do ich autorów i są rozpowszechniane przez publiczne kanały RSS