Cloud Security Alliance

The Difference Between HITRUST and the National Institute of Standards and Technology (NIST)

Compare HITRUST and NIST: certifiable healthcare framework vs flexible industry guidance. Learn which fits your organization.
Cloud Security Alliance

Introducing Cognitive Degradation Resilience (CDR): A Framework for Safeguarding Agentic AI Systems from Systemic Collapse

A layered resilience framework to safeguard agentic AI from progressive cognitive degradation and systemic collapse.
Cloud Security Alliance

Rethinking AI Security: Every Interaction is About Identity

Explores identity as the core of AI security, reframing risk around who interacts with AI and outlining an identity-driven ...
Cloud Security Alliance

What is GenAI Runtime Defense (GARD)?

As GenAI systems become more complex, the need to protect them is increasingly urgent. Learn what GenAI runtime defense (GARD ...
Cloud Security Alliance

How to Secure Hypervisors for NIST 800-171 Compliance: Addressing the Virtualization Blind Spot

Practical guidance for securing hypervisors to meet NIST 800-171, covering access controls, continuous monitoring, and ...
Cloud Security Alliance

Streamlining Cloud Compliance Audits Using AI and Automation

With AI and automation, compliance becomes an ongoing, intelligent process that protects your business without exhausting the auditors and employees.
Cloud Security Alliance

Download Resource

The AI Controls Matrix (AICM) is a framework of vendor-agnostic controls (policies, procedures, and technical measures) that are essential for developing, implementing, and operating AI technologies ...