Networking – Awareness – Education – Certification

Area Downloads

`
  1. CSA Italy

  2. CSA Global

  3. AGID

  4. Governo Italiano

  5. Norme ISO/IEC

  6. ENISA

  7. UNIONE EUROPEA

  8. ETSI

  9. GARANTE PRIVACY

  10. US DoD (DISA)

CSA Italy

  • Statuto,pdf,Download
  • CSA Chapter Code of Ethics, Download
  • Informativa Privacy,html,view
    Informativa Cookie,html,view
  • Regolamento Comitato Scientifico, pdf, Download
  • Manifesto CISO Cloud, pdf, Download
  • Traduzione in italiano della “Cloud Security Guidance Ver. 2.1” (2011), pdf, Download
  • Documento di ricerca 2012 “Portabilità Interoperabilità Sicurezza Applicativa”, pdf, Download
  • Ebook Ricerca 2012 “Portabilità Interoperabilità Sicurezza Applicativa”, epub, Download
  • Documento di Ricerca 2012 Studio “Standard Contrattuali per il Cloud Computing”, pdf (ITA), Download
  • Documento di Ricerca 2012 Studio “Standard Contrattuali per il Cloud Computing”, pdf (ENG), Download
  • Traduzione in italiano del documento ENISA “Cloud Computing Benefits Risks and Recommandations for Information Security” (2012), pdf, Download
  • Traduzione in Inglese del Rapporto Clusit “ICT Security in Italy 2013”, pdf (ENG), Download
  • Documento di Ricerca 2013 “Data Breach: panoramica degli aspetti normativi ed ottica Cloud”, pdf, Download
  • Documento di Ricerca 2013 “BYOD: a next step forward for the IT revolution started with Cloud”, pdf (EN), Download
  • Documento di Ricerca 2014 “Responsabilità degli enti per i delitti informatici e trattamento illecito di dati in contesto Cloud Services”, pdf (IT), Download
  • Documento di Ricerca 2014 “CSA CCM v3.0 con SEZIONE Legge 231”, xls (ENG), Download
  • Documento di Ricerca 2015 “Servizi di pagamento via internet: il contesto normativo italiano per gli aspetti di sicurezza dei dati ed ipotesi di mapping rispetto ai controlli CSA CCM”, pdf (IT), Download
  • Documento di Ricerca 2020 – “Principi di sicurezza applicabili ai Cloud Computing Services: GDPR, Direttiva NIS e PSD2 a confronto”, pdf, Download

CSA Global

  • Tutte le Ricerche (+60 pubblicazioni),pdf, Download
  • WEBINAR (Brightalk),streaming, Collegati

AGID (Agenzia per l’Italia Digitale)

Governo Italiano

Norme ISO/IEC

  • Information technology — Security techniques — Information security management systems — Requirements, html, ISO/IEC 27001
  • Information technology — Security techniques — Code of practice for information security controls, html, ISO/IEC 27002
  • ISO/IEC 27018:2019 Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
  • ISO/IEC 27017:2015 Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services
  • ISO/IEC 27701:2019 Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines
  • Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors, html, ISO/IEC 27018
  • Information technology — Security techniques — Information security in supplier relationships — Part 1: Overview and concepts, html,ISO/IEC 27036-1
  • Information technology — Security techniques — Information security in supplier relationships — Part 2: Requirements,html, ISO/IEC 27036-2
  • Information technology — Security techniques — Information security in supplier relationships — Part 3: Guidelines for information and communication technology supply chain security,html,ISO/IEC 27036-3
  • Information technology — Security techniques — Information security for supplier relationships — Part 4: Guidelines for security of cloud services, html, ISO/IEC 27036-4

ENISA

  • Cloud Security Guidance for SMEs (2015), pdf, Download
  • Cloud computing risk assessment (2009), pdf, Download
    Assurance framework for cloud computing (2009),pdf,Download
  • Critical Cloud Computing-A CIIP perspective on cloud computing services (2013), pdf, Download
  • Procure Secure: A guide to monitoring of security service levels in cloud contracts (2012), pdf, Download
  • Incident Reporting for Cloud Computing (2013), pdf, Download
  • Survey and analysis of security parameters in cloud SLAs across the European public sector (2011), pdf, Download
  • Security and Resilience in Governemental Clouds (2011), pdf, Download
  • Good practice guide for Governmental clouds (2013), pdf, Download
  • Security framework for Governmental Clouds (2014), pdf, Download
  • Cloud Computing Certification (2015), pdf, Download

UNIONE EUROPEA

  • REGOLAMENTO (UE) 2019/881 DEL PARLAMENTO EUROPEO E DEL CONSIGLIO del 17 aprile 2019 relativo all’ENISA, l’Agenzia dell’Unione europea per la cibersicurezza, e alla certificazione della cibersicurezza per le tecnologie dell’informazione e della comunicazione, e che abroga il regolamento (UE) n. 526/2013 («regolamento sulla cibersicurezza»)
  • EU Cloud Strategy (2012), pdf, Download
  • Unleashing the Potential of Cloud Computing in Europe (2012), pdf, Download
  • Trusted Cloud Europe (2014), pdf, Download
  • Sfruttare il potenziale del cloud computing in Europa (2012), pdf, Download

ETSI

  • Cloud Computing Standards (2013), pdf, Download

Garante per la protezione dei dati personali

  • GDPR – Testo del Regolamento UE 2016/679 (19.9.2018) 
  • CLOUD COMPUTING – Proteggere i dati per non cadere dalle nuvole (2012), pdf, Download
  • Working Party 196 Parere 05/2012 sul cloud computing (2012), pdf, Download
  • Parere del Garante sullo schema di ‘Linee-guida per il Disaster Recovery delle pubbliche amministrazioni’ – 4 luglio 2013, pdf, Download
  • Resolution on Cloud Computing – 34th International Conference of Data Protection and Privacy (2012), pdf, Download

DISA (Defence Information Systems Agency – USA)