云安全联盟 (CSA) STAR Program has been developed as an assurance framework for cloud service providers (CSPs) and cloud service customers to assess the security of cloud-based services and solutions.

LBMC is an approved Certified STAR auditor, accredited by the CSA to perform STAR Level 2 第三方审计s to attest or certify CSPs against the STAR framework.  LBMC is also equipped to assist organizations with preparing for a STAR Level 1 self-assessment, or with assessing their cloud service providers against the CSA’s Cloud Controls Matrix.


的 CSA STAR Program is the most popular cloud security provider 认证 program, integrating a three-tiered provider assurance package of self-assessment, 第三方审计, 持续监测. STAR encompasses the key principles of transparency, 严格的审计, and harmonization of 标准 outlined in the Cloud Controls Matrix (CCM). By being listed on the CSA STAR注册 of cloud service providers, organizations can show current and potential customers their security and 合规 posture, 包括法规, 标准, 以及它们所遵循的框架. It can carry the benefit of reducing 合规 complexity and alleviating the burden of completing multiple customer security questionnaires.


的 云安全联盟 (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, 协会, 政府, and its corporate and individual members to offer cloud security-specific research, 教育, 认证, 活动和产品. CSA的活动, knowledge and extensive network benefit the entire community impacted by cloud — from providers and customers, 给政府, entrepreneurs and the assurance industry — and provide a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem.  CSA has developed the definitive best practices for the industry, such as the “Security Guidance for Critical Areas of Focus in Cloud Computing”, “云控制矩阵”, “Top Threats to Cloud Computing” and 50 other cloud security research artifacts. 欲知详情,请浏览网页 www.cloudsecurityalliance.org.

Why choose LBMC as your STAR 审计or?

  1. CSA STAR Level 2 Attestation is built upon a SOC 2 attest engagement. LBMC 网络安全’s audit professionals operate as part of LBMC, PC—a Top 40 US CPA firm. 我们提供 SOC服务 to clients across the country and ensure all attestation engagements are performed in accordance with the 标准 established by the American Institute of Certified Public Accountants.
  2. CSA STAR Level 2 Certification is built upon an ISO/IEC 27001:0213审核. LBMC认证服务, LLC is an accredited global ISO Certification Body with over 10 years’ experience in ISO audit and assessment. 审计s are conducted in accordance with ISO 17021-1, ISO / IEC 27006, and applicable accreditation guidelines.
  3. LBMC is as an approved CSA STAR auditor. Upon successful assessment completion, LBMC can submit organizations to be listed on the CSA STAR注册.



LBMC conducts SOC 2 attest engagements against the AICPA Trust Service Criteria in addition to the CSA Cloud Controls Matrix. STAR Registry attestation listings expire after one year unless updated.


LBMC认证服务, LLC conducts ISO 认证 and surveillance audits against the ISO/IEC 27001:2013 standard in addition to the CSA Cloud Controls Matrix. STAR Registry 认证 listings require annual audit and expire after three years unless updated.


LBMC assists the organization with establishing its STAR 合规 program, preparing for STAR Level 1 self-assessment, or conducting Cloud Controls Matrix assessments against cloud service providers.  Organizations benefit from LBMC advisory professionals’ cloud security and 合规 expertise to enhance their security, 合规, 供应商管理项目.


链接到画了 CSA STAR评估

画了 Hendrickson

股东 & 网络安全实践负责人

手机图标 电子邮件图标 纳什维尔
手机图标 电子邮件图标 纳什维尔
链接到斯图尔特 CSA STAR评估

斯图尔特 异常兴奋的


手机图标 电子邮件图标 纳什维尔
手机图标 电子邮件图标 纳什维尔