Complade Joins Cloud Security Alliance (CSA)
Becoming an Accredited Certification Body for CSA’s Security, Trust, Assurance, and Risk (STAR) Program
Company will perform rigorous, independent security assessments of organizations seeking
to achieve STAR Level 2 certification
Oshawa, ON – October 18, 2024 – Complade today announced that it has joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. Additionally, as a specialist in the external auditing of information security management systems, the company has been accredited as a certification body for CSA’s Security, Trust, Assurance, and Risk (STAR) Program.
Complade is accredited to conduct impartial cybersecurity audits, CyberSecure Canada, and ISO/IEC 27001 certifications, with a particular emphasis on securing cloud environments. Its objective is to provide organizations' stakeholders with an informed sense of assurance by providing tailored audits that align with each organization’s unique objectives, delivering an impartial and transparent assessment that supports the effective improvement of their cybersecurity programs. By joining CSA, Complade is reinforcing its commitment to advancing cloud security standards and contributing its expertise in data protection, risk management, and regulatory compliance to the global community.
“We are thrilled to be a part of the Cloud Security Alliance," said Dina Salah, Certification Manager at Complade. "As a CSA member, we look forward to contributing our knowledge in cloud security and compliance to help out cloud service providers’ clients. This partnership aligns with our commitment to providing clients with the highest level of assurance through impartial audits of their cloud operations, and we’re excited to collaborate with other industry leaders to shape the future of secure cloud computing.”
The CSA STAR Registry is a publicly accessible registry of more than 2,000 providers that documents the security and privacy controls provided by popular cloud computing offerings. STAR encompasses the key principles of transparency, rigorous auditing, and harmonization of standards outlined in the Cloud Control Matrix (CCM). Publishing to the registry allows organizations to show current and potential customers their security and compliance posture, including the regulations, standards, and frameworks they adhere to. It ultimately reduces complexity and helps alleviate the need to fill out multiple customer questionnaires. There are multiple levels of assurance for companies that submit to the STAR registry, each with a different set of requirements.
Level 1: Self-Assessment: Organizations can submit one or both security and privacy self-assessments. For the security assessment, organizations use the CCM to evaluate and document their security controls, whereas the privacy assessment is based on the GDPR Code of Conduct.
Level 2: Third-Party Audit. Level 2 of STAR allows organizations to build off of other industry certifications and standards to make them specific for the cloud. Third-party audits are ideal for companies operating in a medium- to high-risk environment or that are in search of a cost-effective way to increase assurance for cloud security and privacy.
“We are excited to welcome Complade to the Cloud Security Alliance,” said Jim Reavis, co-founder and CEO at Cloud Security Alliance. “Complade’s expertise in cybersecurity audits, particularly for cloud environments, adds tremendous value to the CSA community. Their focus on impartial assessments and tailored audits will contribute significantly to advancing cloud security standards, and we look forward to their active participation in shaping a more secure cloud ecosystem for organizations globally.”
About the Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products. CSA’s activities, knowledge and extensive network benefit the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provide a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
About Complade
Complade is a cyber security standards' conformity auditor who delivers an informed assurance of the balanced status of your organization's cyber risks and controls. We partner with boards of directors and senior management teams to solve cyber security assurance challenges. We provide impartial cyber security audits tailored to your organizational objectives based on de jure cybersecurity standards such as ISO 27001 and CyberSecure Canada. Complade is an ISO/IEC 27001, CyberSecure Canada, and CSA STAR Accredited Certification Body, upholding three main values — integrity, transparency and expertise — to deliver real assurance in regard to information risk and controls. For further information, visit us at www.complade.com and follow us on LinkedIn.