Cloud Security
Cloud Controls (CSA CCM)
Cloud Controls Matrix v4.0 des CSA (Cloud Security Alliance) — 17 Control Domains mit Mapping auf DORA, ISO 27001 und BSI C5.
| CSA CCM Domain | DORA | ISO 27001 |
|---|---|---|
| AIS — Application & Interface Security | Art. 8-9 | A.14 |
| AST — Asset Management | Art. 7 | A.8 |
| BCD — Business Continuity & Disaster Recovery | Art. 11 | A.17 |
| CCC — Change Control & Configuration Management | Art. 9 | A.12 |
| DCS — Data Center Security | Art. 11 | A.11 |
| DSP — Data Security & Privacy | Art. 8 | A.18 |
| GRC — Governance, Risk & Compliance | Art. 5-6 | A.6 |
| HRS — Human Resources Security | Art. 10 | A.7 |
| IAM — Identity & Access Management | Art. 9 | A.9 |
| ... und 8 weitere Domains (IVS, LOG, MOS, OPS, RSR, SEF, STA, TVM) | ||