The Cloud Security Alliance Australia is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing in Australia , and provide education on the uses of Cloud Computing to help service providers and customers be secure in the Cloud.

CSA Australia both promotes the promise of the Cloud and ensures it delivers on that promise with education and development of standards for cloud and cloud security protocols.

As part of CSA’s Australia oriented focus, CSA Australia will actively promote the CCSK and CCAK (assurance) program to support a workforce with appropriate skills and know-how to protect businesses and the cloud computing business model.

Key Areas of Interest for the chapter include regional considerations, as particular to Australian states and territories, for:

  • Legal, Jurisdiction, Data Sovereignty, and Privacy Issues
  • Standards, Compliance, and Audit
  • Australian Financial Sector Regulations
  • Australian Critical Infrastructure
  • Australian Consumer use of cloud services

CSA Australia provides forums for our Members to network, share ideas and research, as well as educational opportunities through seminars and local branch meetings that feature presentations by industry experts about Cloud issues, security, and technology. CSA will establish:

  • Branch meetings in major cities to promote cloud security awareness and skills;
  • Opportunities for input into CSA research;
  • Opportunities for input into Australian and ISO/IEC Cloud Computing standards development; and
  • An annual cloud security summit – 1 day in November 2022, 2 days in 2023.



The issues and opportunities of cloud computing gained considerable notice in 2008 within the information security community. At the ISSA CISO Forum in Las Vegas, in November of 2008, the concept of the Cloud Security Alliance was born. Following a presentation of emerging trends by Jim Reavis that included a call for action for securing cloud computing, Reavis and Nils Puhlmann outlined the initial mission and strategy of the CSA. A series of organizational meetings with industry leaders in early December 2008 formalized the founding of the CSA.

Our outreach to the information security community to create our initial work product for the 2009 RSA Conference resulted in dozens of volunteers to research, author, edit and review our first white paper.