Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Platform
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Zero Trust Training (ZTT)
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Membership
Join as an Organization
Enterprises
Solution Providers
Contact Us
Current Members
Initiatives & Partnerships
AI Safety Initiative
CxO Trust
Zero Trust Advancement Center
Trusted Cloud Providers
Trusted Cloud Consultant
Other Opportunities
Event Sponsorships
Join as Individual
Chapters
Circle Community Forum
Research Working Groups
Volunteer Opportunities
STAR Program
STAR Home
STAR Registry
Submit to Registry
Provide Feedback
Certified STAR Auditors
STAR Enabled Solutions
Stay compliant in the cloud
CCAK Training
STAR Lead Auditor Training
Training for Government Agencies
Governance, Risk & Compliance Tools
Cloud Controls Matrix (CCM)
Consensus Assessment Initiative Questionnaire (CAIQ)
EU Cloud Code of Conduct
STAR Level 1
At level one organizations submit a self-assessment.
View companies at level one
Learn about level one
STAR Level 2
At level two organizations earn a certification or third-party attestation.
View companies at level two
Learn about level two
Certificates & Training
Online Platform
Knowledge Center
CSA Exams
Events
Learn and network while you earn CPE credits.
Virtual Events & Webinars
Event Sponsorships
Certificates
Certificate of Cloud Security Knowledge (CCSK)
Certificate of Cloud Auditing Knowledge (CCAK)
Certificate of Competence in Zero Trust (CCZT)
Digital Badges
Trainings
Zero Trust Training (ZTT)
Cloud Infrastructure Security Training
STAR Lead Auditor Training
Advanced Cloud Security Practitioner (ACSP) Training
CCSK Train the Trainer
Training Network
Become an Instructor
Become a Training Partner
Specialized Training Options
Train my entire team
Training for Government Agencies
Research
CSA Research
Latest Research
Working Groups
Open Peer Reviews
Research Topics
Strategic Initiatives
AI Safety Initiative
Zero Trust Advancement Center
CxO Trust
Trusted Cloud Consultant
FinCloud Security
Thought Leadership
CloudBytes Webinars
Blog
Getting Started with CSA Research
Cloud security best practices
Assess your cloud compliance
Security questionnaire for vendors
Top threats to cloud computing
Awards & Recognition
Juanita Koilpillai Awards
Research Fellows
Critical Topics
AI Safety Initiative
AI Technology and Risk
AI Governance & Compliance
AI Controls
AI Organizational Responsibilities
Enterprise Architecture
Blockchain
Zero Trust
DevSecOps
Top Threats
Cloud 101CircleEventsBlog
Register for CSA’s free Virtual Cloud Trust Summit to tackle enterprise challenges in cloud assurance.

Working Group

International Standardization Council

The International Standardization Council (ISC) within the Cloud Security Alliance (CSA) has been designated to coordinate all aspects of standardization efforts within CSA.
International Standardization Council Charter 2023
International Standardization Council Charter 2023

Download

Research Topics
About Topic
Working Group
Discussion Community
Publications
Home
Research
Working Groups
International Standardization Council
Overview
The International Standardization Council (ISC) has been designated to coordinate all aspects of standardization efforts within CSA. The ISC actively searches mechanisms of inserting CSA content into standards under development, captures and codifies the knowledge gained from CSA past experience, and increases education and awareness with respect to standards. Additionally, ISC provides an avenue for corporate members to participate and influence standardization efforts worldwide represented under the CSA banner.


Due to the highly strategic value of the ISC as well as the sensitivity of work and protection of IP, we encourage participation by individuals with a strong background working with international standardization communities and processes. New membership is then approved by a simple majority vote by the current ISC membership. All members are bounded by the CSA IPR policy. Current membership has representatives from various National Bodies (NBs), including CA, CN, DE, FR, GB, HK, SG, TW, US.


Drafts & Important Documents

Working Group Leadership

Tyler Messa Headshot Missing
Tyler Messa

Tyler Messa

STAR Technical Director, CSA

This person does not have a biography listed with CSA.

Working Group Co-Chairs

Eric Hibbard
Eric Hibbard

Eric Hibbard

Hitachi Data Systems’ CTO Security & Privacy

Eric Hibbard is Hitachi Data Systems’ CTO for Security & Privacy where he leads the Hitachi product-oriented security strategy activities with an emphasis on data and storage security. He is a senior security professional with expertise in information assurance, privacy, storage, cloud computing, eDiscovery and enterprise ICT. He leverages this expertise and extensive experience in the public and private sectors in leadership roles within t...

Read more

Laura Lindsay
Laura Lindsay

Laura Lindsay

Contributions: Member of CSA International Standards Council (ISC). Represented CSA as the Liaison Officer to ISO/IEC JTC 1/SC 38 and ISO/IEC JTC 1/SC 27, and as editor on ISO/IEC 19086-3. Participant on the Service Level Agreements and Cloud Trust Protocol Working, and represents CSA research in the International Standards space, particularly ISO/IEC JTC 1 and ITU-T.

Read more

Publications in ReviewOpen Until
Information Technology Governance, Risk, and Compliance in Healthcare v2Apr 26, 2024
Lenses and Processes - CCSK v5 Study GuideApr 28, 2024
Enterprise Authority To Operate (EATO) Controls FrameworkMay 12, 2024
View all
Want to join this working group? Register or sign-into Circle to get started.
Who can join?

Anyone can join a working group, whether you have years of experience or want to just participate as a fly on the wall.

What is the time commitment?

The time commitment for this group varies depending on the project. You can spend a 15 minutes helping review a publication that's nearly finished or help author a publication from start to finish.

Virtual Meetings

Attend our next meeting. You can just listen in to decide if this group is a good for you or you can choose to actively participate. During these calls we discuss current projects, and well as share ideas for new projects. This is a good way to meet the other members of the group. You can view all research meetings here.

May

16

Thu, May 16, 9:00am - 10:00am
International Standards Council Monthly Meeting
See details
Agenda will be issued through the ISC Circle community Monday prior


Tyler Messa is inviting you to a scheduled Zoom meeting.

Topic: ISC Monthly Meeting
Time: May 16, 2024 08:00 AM Mountain Time (US and Canada)
        Every month on the Third Thu, until Dec 19, 2024, 8 occurrence(s)
        May 16, 2024 08:00 AM
        Jun 20, 2024 08:00 AM
        Jul 18, 2024 08:00 AM
        Aug 15, 2024 08:00 AM
        Sep 19, 2024 08:00 AM
        Oct 17, 2024 08:00 AM
        Nov 21, 2024 08:00 AM
        Dec 19, 2024 08:00 AM

Please download and import the following iCalendar (.ics) files to your calendar system.

Monthly: https://cloudsecurityalliance.zoom.us/meeting/tZArfuGoqzMvEtUYIl9j7nZtccoY4cydap7T/ics?icsToken=98tyKuGsqDIiGtGdtRGGRpwIBIr4WfTwmFxYj7dopTbpWioEbDniNeFNC-Z8CdzR

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/84698058581

Meeting ID: 846 9805 8581

---

One tap mobile
+17207072699,,84698058581# US (Denver)
+17193594580,,84698058581# US

---

Dial by your location
• +1 720 707 2699 US (Denver)
• +1 719 359 4580 US
• +1 669 444 9171 US
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 846 9805 8581

Find your local number: https://cloudsecurityalliance.zoom.us/u/ky31wUhG2
View Event

Jun

20

Thu, June 20, 9:00am - 10:00am
International Standards Council Monthly Meeting
See details
Agenda will be issued through the ISC Circle community Monday prior


Tyler Messa is inviting you to a scheduled Zoom meeting.

Topic: ISC Monthly Meeting
Time: May 16, 2024 08:00 AM Mountain Time (US and Canada)
        Every month on the Third Thu, until Dec 19, 2024, 8 occurrence(s)
        May 16, 2024 08:00 AM
        Jun 20, 2024 08:00 AM
        Jul 18, 2024 08:00 AM
        Aug 15, 2024 08:00 AM
        Sep 19, 2024 08:00 AM
        Oct 17, 2024 08:00 AM
        Nov 21, 2024 08:00 AM
        Dec 19, 2024 08:00 AM

Please download and import the following iCalendar (.ics) files to your calendar system.

Monthly: https://cloudsecurityalliance.zoom.us/meeting/tZArfuGoqzMvEtUYIl9j7nZtccoY4cydap7T/ics?icsToken=98tyKuGsqDIiGtGdtRGGRpwIBIr4WfTwmFxYj7dopTbpWioEbDniNeFNC-Z8CdzR

Join Zoom Meeting
https://cloudsecurityalliance.zoom.us/j/84698058581

Meeting ID: 846 9805 8581

---

One tap mobile
+17207072699,,84698058581# US (Denver)
+17193594580,,84698058581# US

---

Dial by your location
• +1 720 707 2699 US (Denver)
• +1 719 359 4580 US
• +1 669 444 9171 US
• +1 253 205 0468 US
• +1 253 215 8782 US (Tacoma)
• +1 346 248 7799 US (Houston)
• +1 564 217 2000 US
• +1 646 558 8656 US (New York)
• +1 646 931 3860 US
• +1 689 278 1000 US
• +1 301 715 8592 US (Washington DC)
• +1 305 224 1968 US
• +1 309 205 3325 US
• +1 312 626 6799 US (Chicago)
• +1 360 209 5623 US
• +1 386 347 5053 US
• +1 507 473 4847 US

Meeting ID: 846 9805 8581

Find your local number: https://cloudsecurityalliance.zoom.us/u/ky31wUhG2
View Event

Open Peer Reviews

Peer reviews allow security professionals from around the world to provide feedback on CSA research before it is published.

Learn how to participate in a peer review here.

Information Technology Governance, Risk, and Compliance in Healthcare v2

Open Until: 04/26/2024

Cloud GRC is an effective means for organizations to gather important risk data, validate compliance, and report results. O...

Participate in peer review

Lenses and Processes - CCSK v5 Study Guide

Open Until: 04/28/2024

Lenses represent distinct perspectives through which we analyze and understand cloud security challenges, while processes e...

Participate in peer review

Enterprise Authority To Operate (EATO) Controls Framework

Open Until: 05/12/2024

The Enterprise Authority To Operate (EATO) working group is opening their Controls Framework for open peer review.<...

Participate in peer review