Back in 2017, EU-SEC carried out a survey and analysis of the certification and standardisation landscape to inform the project’s work on cloud security and compliance. That survey highlighted a number of issues in the ICT market in Europe, such as lack of trust and transparency, confusion around compliance and assurance gaps. This supported EU-SEC’s approach to create a framework which would assist cloud stakeholders navigating this complex and confusing field.
The project’s two innovations, EU-SEC Multi-Party Recognition Framework (MPRF) and the EU-SEC Continuous Auditing Certification (CABC) are now mature, and interested parties are invited to look at the How To Guidelines to find out more.
In order to ensure the framework remains relevant, the project is inviting cloud stakeholders to complete a short survey on the certification and standardisation landscape. The valuable contribution of auditors, standard owners and cloud service providers to this survey will provide EU-SEC with an updated understanding of existing practices and feed into the development of the framework. The survey, which closes Nov. 28, can be found here.
Thank you for your input!