03 May 2011
The Cloud Security Alliance and the International Organization for Standardization announced a partnership to develop cloud security standards last week at Infosecurity Europe in London.
A number of organizations have called for the development of standards to provide companies with clear guidance related to best practices to protect data in the cloud. With the CSA and ISO collaborating on the project, it's clear that making the standards internationally relevant is a goal.
The CSA said it will begin work on a pair of projects aimed at defining responsibilities of both vendors and customers entering into cloud agreements. Having both organizations enlisted in the development of these standards is likely to show companies the gravity of the guidelines they create.
"By working closely with ISO in the highly dynamic cloud computing environment, the industry can have confidence that CSA guidance will be enduring, and that they can align with it now," Dave Cullinane, chairman of the CSA, said.
The Information Systems Audit and Control Association also presented at Infosecurity Europe and found that regulatory compliance is the primary concern of companies moving forward. For organizations moving IT solutions to the cloud, it is imperative that they are compliant with federal regulations.
-McAfee Cloud Security