The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. The Cloud Controls Matrix (CCM) is a baseline set of security controls created by the Cloud Security Alliance to help enterprises assess the risk associated with a cloud computing provider. The CSA operates the most popular cloud security provider certification program, the CSA Security, Trust & Assurance Registry (STAR), a three-tiered provider assurance program of self-assessment, 3rd-party audit and continuous monitoring.

Sigma Technology Cloud Security Alliance (CSA) Cloud Controls Matrix simplified readiness assessment by:

• Assures the necessary security controls are integrated into the design and implementation of a cloud-based service
• Identifies gaps between security control requirements and their actual implementation
• Validates that cloud security controls operate and function effectively
• Centralize Evidence Collection
• Serves as the basis for risk acceptance, avoidance, or mitigation decisions
• Provides a dashboard to track audit completion