Cloud Security

Making sure that data is managed and protected effectively as it is being moved, stored, shared and accessed across cloud computing networks in real-time is not only challenging but business critical to get right from the outset.

With system outages and data breaches regularly occurring on cloud-based platforms and services through negligence, cyber-attacks and mismanagement, enormous reputational damage can occur quickly. This could put any cloud service provider out of business regardless of how good previous service levels have been. There are also the other legal implications to consider should private data end up in the wrong hands.

GIS, in association with BSI and Cloud Security Alliance (CSA) has developed training courses to help service providers become better at managing the security of their cloud services. This should not only give customers of service provider’s confidence in their ability to deliver, it can also enhance reputation and could be an important differentiator between competitors.

Our courses cover many aspects from helping you learn how to check compliance with the CSA’s Cloud Controls Matrix to helping you develop the ability to prepare for or maintain CSA’s Security Trust and Assurance Registry (STAR) certification. 

STAR is CSA’s registry that allows users to access and assess the security practices of cloud providers they currently use or are considering contracting to do business with. 

STAR Certification takes this a step further by giving service providers the ability to prove that their STAR registration has been independently checked and assessed against the new STAR Certification scheme. The maturity model checks a service provider’s security performance against the CSA’s Cloud Controls Matrix to award an overall grade.  

Training Courses

  1. Auditing Cloud Security for STAR Certification
    STAR Certification gives cloud service providers the ability to prove that their registration to the Cloud Security Alliance’s (CSA’s) Security, Trust and Assurance Registry (STAR) has been independently assessed against the new STAR certification maturity model. The maturity model checks a service provider’s security performance against the CSA’s Cloud Controls Matrix (CCM) to award an overall grade.    Although only a certified STAR auditor from a certification body can recommend STAR certification, by learning how an organization can meet STAR certification, you can effectively prepare a cloud service provider for a STAR audit.  Led by an experienced tutor, this one day course will help you learn how to audit cloud security for the STAR certification programme and learn how to apply the maturity model when auditing a provider’s security controls.
  2. Certified STAR Auditor
    STAR Certification gives cloud service providers the ability to prove that their registration to the Cloud Security Alliance’s (CSA’s) Security, Trust and Assurance Registry (STAR) has been independently assessed against the new STAR certification maturity model. The maturity model checks a service provider’s security performance against the CSA’s Cloud Controls Matrix (CCM) to award an overall grade.    Only a certified STAR auditor can assess a service provider against the CCM to recommend STAR Certification. Led by an experienced tutor, this two day course will help you learn how to conduct an audit for STAR certification and will work through a detailed case study to teach you how to determine a rating for STAR certification. To successfully complete this course, you will need to pass an examination.