Sangfor Cloud Achieves CSA STAR Level 1 Certification
Sangfor Technologies, a global leader in AI-enabled and integrated cybersecurity and cloud computing, proudly announces its certification in Cloud Security Alliance's Security, Trust, Assurance, and Risk (CSA STAR) registry – globally recognized as the most powerful program for security assurance in the cloud industry.
By attaining CSA STAR Level 1 for Sangfor Cloud – our cutting-edge line of cloud computing products, solutions, and services – we have demonstrated an exceptional level of transparency, trustworthiness, and security excellence. This certification serves as a testament to our relentless dedication to safeguarding our customers' valuable data and ensuring their peace of mind throughout their cloud adoption journey.
It is with great pleasure to announce on behalf of Sangfor Technologies that we have achieved the globally recognized CSA STAR certification. With this STAR Certification, our customers and partners can rest assured that their data in our Cloud is protected using a security framework designed specifically for cloud computing. The CSA STAR Certification demonstrates our compliance and conformity to the applicable requirements of ISO 27001 and that we address issues critical to cloud security as outlined in the CSA CCM (Cloud Controls Matrix) framework.Nicholas Tay Chee Seng, Cloud Chief Technology Officer, Sangfor Technologies
What is CSA STAR?
Security, Trust, Assurance, and Risk (STAR) is a program developed by CSA to provide organizations with a standardized and transparent way to assess the security posture of cloud service providers (CSPs). It serves as a global repository of cloud service provider security controls and practices, based on the CSA Cloud Controls Matrix (CCM).
CSA Cloud Controls Matrix (CCM)
The Cloud Controls Matrix (CCM) is a key component of the Cloud Security Alliance's (CSA) security framework. It is a comprehensive set of control objectives, guidelines, and best practices designed to help organizations assess the security risks and implement appropriate security controls when using cloud services. The CCM provides a structured framework that covers a wide range of security domains, including data security, compliance, incident response, and infrastructure security. CCM v4 (the latest version of CCM), features 197 control objectives in 17 domains and it aligns with industry standards, regulations, and frameworks such as ISO 27001/27002, PCI DSS, HIPAA, and NIST.
The CCM assessment includes an evaluation of Sangfor Cloud's maturity level across each CCM security domain, which is scored based on specific maturity against five management principles, including:
- Communication and Stakeholder Engagement
- Policies, Plans and Procedures, and a Systematic Approach
- Skills and Expertise
- Ownership, Leadership, and Management
- Monitoring and Measuring
Benefits of CSA STAR Certification
In brief, the CSA STAR Program is a publicly available registry designed to recognize assurance requirements and maturity levels of cloud technology and its service providers (CSPs). It is globally recognized as a best practice framework that provides cloud assurance and addresses risks by utilizing a unique scheme developed to address specific issues relating to cloud security as an enhancement to ISO/IEC 27001. This means that Sangfor Cloud is protected using a security framework designed specifically for cloud computing. With this STAR Certification, our customers and partners are assured that Sangfor Cloud has an active and compliant security program in place, which helps to identify, mitigate, and monitor information security risks, ensuring your data in our Cloud is safe and secure.
You can view Sangfor’s CSA STAR listing and detailed CAIQ self-assessment at: https://cloudsecurityalliance.org/star/registry/sangfor-technologies-inc/services/sangforcloud
Visit the Sangfor Cloud to discover our range of cloud products, solutions, and services, including Hyperconverged Infrastructure (HCI), Virtual Desktop Infrastructure (VDI), Hybrid Cloud, Managed Cloud, Disaster Recovery, Software-Defined Storage, and more!