CSA introduces the SaaS Security Controls Framework (SSCF) to reduce complexity, standardize controls, and strengthen shared responsibility.

Help is on the way for public sector agencies and cloud vendors struggling to reconcile multiple cybersecurity frameworks. The help is coming from StateRAMP, whose framework-harmonization initiative ...

The CSA’s SSCF benchmark aims to help SaaS vendors build zero trust principles into their environments and give customers ...

SANTA CLARA, Calif.--(BUSINESS WIRE)--AttackIQ Ⓡ, the leading independent vendor of Breach and Attack Simulation (BAS) systems, today announced that its Security Optimization Platform can test the ...

Explores key security indicators as a modern alternative to controls in FedRAMP, their benefits, differences, and automation ...

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More As the head of security at a cloud-forward organization, you are an info ...

Does your organization need NIST, CSC, ISO, or FAIR frameworks? Here's how to start making sense of security frameworks. Cybersecurity professionals often face the curse of knowledge–understanding so ...

This mapping serves to align CCM with CSF and to identify the equivalence, gaps, and misalignment between the control specifications of the two frameworks. “By expanding upon the CCM’s current mapping ...

It’s time the National Institute of Standards and Technology point to how organizations should be assessing the risk they’re associating with systems when deciding what security controls to implement ...

When it comes to securing IT systems, NIST and other security frameworks often point to either of two public configuration standards: STIGs and the CIS Benchmarks. We have entered the era of multiple ...

In light of the increased number of cyberattacks on financial institutions utilising the SWIFT network, the financial messaging service provider launched the Customer Security Control Framework (CSCF) ...