SaaS working group up and running

SaaS working group up and running

The Cloud Security Alliance (CSA) launched a Security as a Service working group at the RSA conference in February, to help organizations evaluate and implement security solutions provided via the SaaS model.

So far much of the effort has focused on organizing the group, while the real work still lies ahead, says Michael Sutton, vice president of security research at Zscaler and head of the working group.

More on cloud computing and security

CSA's stated mission is to promote the use of best practices for providing security assurance within cloud computing, and to provide education on the uses of cloud computing to help secure all other forms of computing.

The first part of the mission focuses on security technologies developed in the cloud, Sutton says, while the second focuses on leveraging the cloud to deliver security to other organizations -- security that was traditionally delivered via software and appliances.

"To date, CSA has primarily focused on the first part of the mission statement," Sutton says. The working group will focus on the second part. He says there's no shortage of companies claiming to deliver security via a SaaS model, "however, there has been very little done to define [security as a service] and establish best practices. We aim to change that."

Specifically, the working group will attempt to identify consensus definitions of what security as a service means, categorize the different types of security as a service offerings, and provide guidance to organizations on reasonable implementation practices.

In terms of a timeline, the goal is to have service categories identified and adoption statistics presented by April, a subject matter expert guide completed by July, and a final implementation guidance draft ready by September.

Read more about cloud security in CSOonline's Cloud Security section.

Follow Us

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags SaaScloud computinginternetsoftwaredata protectionapplicationsrsacloud security alliancezscalerSoftware as a serviceData Protection | Cloud Securitysecurity as a servicecloud security standardsSaaS working group

Brand Post

How to become the best IT MSP

This article provides guidance for managed service providers (MSPs) that want to grow their business. It is also useful for any IT service provider looking to move from the break-fix model to managed IT services.



Reseller News Innovation Awards 2019: meet the winners

Reseller News Innovation Awards 2019: meet the winners

Reseller News honoured the standout players of the New Zealand channel in front of more than 480 technology leaders in Auckland on 23 October, recognising the achievements of top partners, emerging entrants and innovative start-ups.

Reseller News Innovation Awards 2019: meet the winners
Malwarebytes shoots the breeze with channel, prospects

Malwarebytes shoots the breeze with channel, prospects

A Kumeu, Auckland, winery was the venue for a Malwarebytes event for partner and prospect MSPs - with some straight shooting on the side. The half-day getaway, which featured an archery competition, lunch and wine-tasting aimed at bringing Malwarebytes' local New Zealand and top and prospective MSP partners together to celebrate recent local successes, and discuss the current state of malware in New Zealand. This was also a unique opportunity for local MSPs to learn about how they can get the most out of Malwarebytes' MSP program and offering, as more Kiwi businesses are targeted by malware.

Malwarebytes shoots the breeze with channel, prospects
Show Comments