LockPath® has announced that it has joined the Cloud Security Alliance (CSA), a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within cloud computing, and to provide education on the uses of cloud computing to help secure all other forms of computing.
LockPath’s Keylight® GRC Platform is used to manage IT and enterprise risk and demonstrate regulatory compliance. With its fully integrated suite of applications designed to manage all facets of GRC programs, including compliance frameworks, risk assessments and control libraries, Keylight brings order to information governance, risk management and IT security.
“LockPath offers a comprehensive approach to GRC in the cloud,” said Jim Reavis, CEO of the CSA. “We look forward to the company’s contributions to our initiatives and research, as we continue on CSA’s mission to promote secure computing, both in and by leveraging the cloud.”
LockPath will work with CSA to provide the Cloud Controls Matrix (CCM), a controls framework that gives detailed understanding of security concepts and principles. The CCM is designed to guide cloud vendors and to assist prospective cloud customers in assessing the overall security risk of a cloud provider. The CCM is based on industry security standards, regulations, and controls frameworks, such as the ISO 27001/27002, ISACA COBIT, PCI, NIST, Jericho Forum and NERC CIP. As a framework, the CSA CCM provides organizations with the structure, detail and clarity required for tailoring information security to the cloud industry.
LockPath will also provide CSA’s Consensus Assessments Initiative Questionnaire (CAIQ), which was launched to perform research, create tools and create industry partnerships to enable cloud computing assessments. This initiative is focused on providing industry best practices for documenting security controls in IaaS, PaaS, and SaaS offerings, providing security control transparency.
“As one of the industry’s most respected organizations, the Cloud Security Alliance is making strides in establishing and promoting best practices for security in cloud computing,” said Chris Caldwell, LockPath CEO and founder. “LockPath is proud to collaborate with the CSA on developing cloud security best practices to further the cloud computing industry.”