Microsoft and Zendesk recognized as first organizations to achieve STAR for AI Level 2 certification ...

NHIs survive layoffs and acquisitions, leaving hidden credentials and risk. Learn why visibility and ownership matter for security.

Overview of SSCF v1.0, a vendor-agnostic SaaS security standard by CSA, outlining six pillars and adoption guidance.

One in five exposed enterprise secrets originated from SharePoint due to a default OneDrive auto-sync feature. Learn what ...

Adopting MFA across the virtualization layer dramatically reduces risk of hypervisor breaches and ransomware impact.

Explore the four generations of AI, from rule-based chatbots to autonomous agentic AI, and understand how this evolution is ...

Voice AI is evolving quickly and won’t wait for the security industry to catch up. The real question is whether we can secure it fast enough.

The EU Cyber Resilience Act sets a new regulatory benchmark for product cybersecurity. Learn about the Act’s scope, key ...

CSA's provisional STAR for AI Level 2 designation assesses ISO/IEC 42001, AI-CAIQ, and Valid-AI-ted scoring to show AI ...

Organizations that move sensitive data over HTTPS, SSH, or VPNs can prepare for post-quantum by using encryption in transit ...

Explore how IAM, SecOps, and data owners collaborate to implement least privilege, mitigating risk and privilege sprawl across the enterprise.

The Cloud Controls Matrix (CCM) is a framework of controls that are essential for cloud computing security. Created by CSA, the CCM aligns with CSA best practices. You can use CCM to assess and guide ...