360 Advanced, Inc. today announced that it has joined the Cloud Security Alliance (CSA), introducing a new security offering for cloud service providers.
As a member of CSA, 360 Advanced can now provide CSA Security, Trust, Assurance and Risk (STAR) Attestations. CSA STAR Attestation provides guidelines for Certified Public Accountants to conduct SOC 2 engagements using criteria from the American Institute of Certified Public Accountants (AICPA) Trust Services Principles (TSP) and the CSA Cloud Controls Matrix (CCM). Created as a collaborative effort between CSA and AIPCA, STAR Attestation couples traditional SOC 2 reporting with cloud-specific content to result in a rigorous, independent assessment of a service provider’s system and controls, including a description of the service auditor’s tests of controls.
These technology-neutral, third-party assessments report on the day-to-day effectiveness of a company’s controls. Upon completion, cloud service providers are added to the CSA’s free, publicly available registry, allowing prospective clients to verify that a vendor’s security posture meets industry requirements.
New CSA Star Attestation Services Help Reflect the Growing Needs of the Cloud Industry
“We are very excited to add this offering for our cloud provider clients. As cloud applications continue to grow, this will allow us to provide an additional service that will help our clients show a higher level of diligence when it comes to securing their clients’ data,” explained Eric Ratcliffe, Director of Compliance Strategy for 360 Advanced.
“We’re pleased to welcome 360 Advanced to the Cloud Security Alliance and look forward to working together with them to strengthen the cloud security and compliance industries in the years to come,” said CSA Co-founder and CEO Jim Reavis.
According to IDG, 73 percent of organizations reported using at least one cloud application in 2018. An additional 17 percent planned to do so by the end of 2019.
This rapid growth has been driven by companies’ desire to reduce the complexity and costs of information technology. Ultimately, however, privacy and security have remained concerns – especially at the enterprise level.
While providers of any size can benefit from a CSA Star attestation, large enterprises face higher expectations of transparency and compliance. Prospective clients often ask for assurance that adequate security and privacy measures are in place.
To help meet these expectations, 360 Advanced can provide independent validation that controls have been established to protect confidential data. Attestations include a final deliverables report that outlines the control testing and control activities.
“We look forward to helping our clients stay at the forefront of their ever-changing industry,” continued Ratcliffe. “As always, that includes collaborative audit and assessment services that go beyond basic, check-the-box assessments.”
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA’s activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at https://cloudsecurityalliance.org/, and follow us on Twitter @cloudsa.