In conjunction with the CSA, BSI has developed the CSA STAR Certification scheme to measure the robustness and performance of cloud security. It gives cloud service providers the ability to prove that their registration to the Cloud Security Alliance’s (CSA’s) Security, Trust and Assurance Registry (STAR) has been independently assessed against the new CSA STAR certification maturity model.
Led by an experienced tutor, this advanced course commences with the 1 day ‘Auditing Cloud Security for CSA STAR Certification’ programme before concentrating on how a CSA STAR rating is determined using a detailed case study on day 2.
How will I benefit?
This course will help you:
- Learn how to effectively prepare a cloud service provider for a CSA STAR audit and have sufficient knowledge and skills to conduct 1st and 2nd party audits
- Gain an understanding of what a Cloud Service Provider must do to achieve CSA STAR certification
- Understand the benefits of CSA STAR certification to a CSP and to the customer
Who should attend?
ISO/IEC 27001 qualified auditors or those with equivalent knowledge and experience. Suggested job roles include:
- Network security managers
- Information security consultants
- Cyber Security principals
- IT Risk and Security managers
What will I learn?
You will learn to:
Upon completion of this training, delegates will be able to:
- Define the specific control areas of the CCM and differentiate between them
- Apply the maturity model when auditing a provider's security controls
- Calculate a maturity score for each CCM control area
- Derive a provider's maturity level from the maturity scores
- Recommend STAR certification
- Explain what maturity is and how the CSA certification maturity model works
What is included?
On completion, you’ll be awarded an internationally recognized BSI training course certificate.
Prerequisites
ISO/IEC 27001 audit qualification or equivalent experience. Basic knowledge of Cloud Computing and associated services (SaaS, IaaS, PaaS)