Panorays and CSA partner to deliver visibility into SaaS and cloud providers
Panorays are partnering with the Cloud Security Alliance (CSA) to be a licensed distributor of the CSA’s Consensus Assessment Initiative Questionnaire (CAIQ).
Panorays CTO Demi Ben-Ari explains, “Panorays’ unique 360-degree rating approach offers cloud provider consumers full visibility into the security posture of their providers.
Consumers can assess their providers using CAIQ while continuously monitoring the provider’s attack surface. The combination of the questionnaire approach together with an understanding of uncovered security gaps provides customers with actionable information regarding the risk that a provider poses.”
The Panorays partnership with the Cloud Security Alliance enables companies to quickly and easily ascertain if their cloud provider complies with standard security regulations. Panorays’ customers further gain through a context-based CAIQ, customized to the relationship of Panorays and the provider so that only regulations or frameworks relevant to the relationship are asked. Onboarding third parties through CAIQ is done automatically so customers can send, track and evaluate their cloud providers.
“We’re proud to have Panorays take an active role within our cloud community. With Panorays’ dedication to assessing other cloud and SaaS providers, we can continue to build a secure ecosystem,” said Jim Reavis, CEO, Cloud Security Alliance. “CSA consumers will benefit from Panorays’ innovative approach to accelerate cloud adoption.”
The CAIQ assessments provide a set of questions for a cloud provider to ascertain its compliance with the Cloud Controls Matrix (CCM). The CCM is a baseline set of security controls that is based on accepted security standards, regulations and controls framework, such as ISO 27001/27002, ISACA COBIT, PCI, NIST, Jericho Forum and NERC CIP.