Panorays Partners with the Cloud Security Alliance to Deliver Comprehensive Visibility into SaaS and Cloud Providers
Companies can now customize and automate the assessment of cloud security controls with speed and ease of use
Panorays, a rapidly growing provider of automated third-party security lifecycle management, has announced that they are partnering with the Cloud Security Alliance (CSA) to be a licensed distributor of the CSA’s Consensus Assessment Initiative Questionnaire (CAIQ).
Panorays CTO Demi Ben-Ari explains, “Panorays’ unique 360-degree rating approach offers cloud provider consumers full visibility into the security posture of their providers. Consumers can assess their providers using CAIQ while continuously monitoring the provider’s attack surface. The combination of the questionnaire approach together with an understanding of uncovered security gaps provides customers with actionable information regarding the risk that a provider poses.”
The Panorays partnership with the Cloud Security Alliance enables companies to quickly and easily ascertain if their cloud provider complies with standard security regulations. Panorays’ customers further gain through a context-based CAIQ, customized to the relationship of Panorays and the provider so that only regulations or frameworks relevant to the relationship are asked. Onboarding third parties through CAIQ is done automatically so customers can send, track and evaluate their cloud providers.
Recommended AI News: Sysdig Provides the First Cloud-Scale Prometheus Monitoring Offering
“We’re proud to have Panorays take an active role within our cloud community. With Panorays’ dedication to assessing other cloud and SaaS providers, we can continue to build a secure ecosystem,” said Jim Reavis, CEO, Cloud Security Alliance. “CSA consumers will benefit from Panorays’ innovative approach to accelerate cloud adoption.”
The CAIQ assessments provide a set of questions for a cloud provider to ascertain its compliance with the Cloud Controls Matrix (CCM). The CCM is a baseline set of security controls that is based on accepted security standards, regulations and controls framework, such as ISO 27001/27002, ISACA COBIT, PCI, NIST, Jericho Forum and NERC CIP.
Recommended AI News: Aparavi Announces Its Data Intelligence and Automation Platform