We are thrilled to share that CloudHealth by VMware has recently been named among the first Trusted Cloud Providers by the Cloud Security Alliance (CSA).
Organizations who are part of the Trusted Cloud Provider Program demonstrate a unique commitment to holistic security and hold industry-recognized credibility and competency for their cloud security solutions.
CloudHealth by VMware has been a proud member of the Cloud Security Alliance for several years now, so it's an honor to now be included in this exclusive cohort as one of the first Trusted Cloud Providers. We look forward to continuing our work with CSA—to define, demonstrate, and distribute cloud security best practices in order to build a more secure cloud computing ecosystem for our customers, partners, and the industry at large.
In this article, we'll provide a brief overview of the Cloud Security Alliance and their new Trusted Cloud Provider Program, along with some of our most popular resources focused on cloud security and compliance management.
Who is the Cloud Security Alliance?
If you’re not familiar, the Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA works in partnership with a multitude of industry experts, associations, solution providers, and community members to provide content, training, certifications, communication platforms, and other valuable resources in support of their mission.
CloudHealth by VMware has been a longstanding Corporate Member with CSA, as well as a part of the Security, Trust, Assurance, and Risk (STAR) Registry—a publicly accessible registry that documents the security and privacy controls provided by popular cloud computing organizations and offerings. As stated by CSA, the STAR registry is the world’s largest and most popular repository of cloud provider security statements.
The STAR registry helps indicate the capabilities of a particular cloud security solution, including the regulations, standards and frameworks it adheres to. There are different levels of assurance and requirements for each level of the STAR program, all of which can be seen on the CSA website here.
Built on the foundation of the STAR registry, CSA has just launched the Trusted Cloud Provider Program—of which CloudHealth is among the first providers to be included!
So what is this new program exactly?
What is the CSA Trusted Cloud Provider Program?
The CSA Trusted Cloud Provider Program recognizes an organization’s “extended commitment to holistic security through training/education and contributing to the community through volunteering and cloud security evangelism.”
To become a CSA Trusted Cloud Provider, organizations must:
- Have a current entry in the CSA Security, Trust, Assurance & Risk (STAR) registry
- Have at least one current member of staff who has achieved the CSA Certificate of Cloud Security Knowledge (CCSK)
- Be a Corporate Member and volunteer at least 20 hours annually to CSA for activities such as research working groups, chapter events, blog posts, and other work for the common good
Corporate membership with CSA, being published to the STAR Registry, and receiving recognition as a Trusted Cloud Provider, are all important indicators for organizations worldwide looking for reliable, trustworthy, and reputable cloud security solutions. These programs make it easier for businesses to find the solutions and resources they need to maintain a strong cloud security posture.
You can see VMware’s portfolio of trustmarked offerings listed on the CSA STAR Registry here, as well as CSA’s complete FAQ documentation about the Trusted Cloud Provider program on their website here. Look for the Trusted Cloud Provider trustmark, as shown below.
CloudHealth’s commitment to cloud security
As part of our commitment to holistic cloud security, we’ve partnered with CSA to produce educational and informative content for the cloud community, including our most recent webinars, Using KPIs to Build Confidence in Your Cloud Security and Compliance Posture and A Practitioner's Guide to Cloud Security and Compliance Processes.
We’re also in the process of conducting a new research report with CSA, which will focus on the state of enterprises’ cloud security posture, and particularly, the challenges they face and the best practices they employ whilst configuring and securing their cloud environments. Stay tuned for this resource—coming soon!
Until then, we encourage you to explore our resource library, with how-to guides, industry reports, customer stories, and more, to help you implement and maintain a strong cloud security posture. Here are a few quick links to some of our most popular resources:
- eBook: 7 Best Practices for Cloud Security Posture Management
- Whitepaper: Building a Successful Cloud Infrastructure Security and Compliance Practice
- Customer story: How Jobcase Optimizes Cloud Security in a DevOps World
- Solution Brief: Mitigating Cloud Security and Compliance Risks with CloudHealth Secure State
You can also get in touch with our team of cloud security experts directly—they’d be happy to answer any questions you may have and walk you through a brief demo of the CloudHealth Secure State platform.