Learning Marketplace

Achieving the gold standard for cloud service providers - CSA STAR Certification

BSI, in partnership with the Cloud Security Alliance (CSA) developed a third party certification scheme for cloud security called STAR certification. The scheme incorporates the requirements of ISO/IEC 27001, along with the cloud specific CSA Cloud Controls Matrix (CCM). STAR certification provides a maturity rating to indicate how well organizations comply with the CCM and assesses the organization's capability and complexities as well.

This new scheme assists businesses with the adoption of cloud services by promoting greater transparency and allowing cloud service providers (CSPs) to furnish their customers and stakeholders with the confidence that the necessary controls are in place to secure data they hold.

Building a successful management system that meets the rigor of CSA STAR Certification is a journey, not a destination. Cirrity, a channel focused cloud provider with locations throughout the continental United States, is the first CSP in the United States to be certified to CSA STAR. Cirrity is a channel-focused cloud provider delivering to partners and customers a secure and readily available platform to achieve the advantages of cloud computing. Cirrity is an example of an organization meeting its challenges head-on.

This case study webinar featuring Dan Timko, Cirrity's President & CTO, will detail Cirrity's journey to STAR Certification. Dan will share his best practices and information that could help improve your own organization's journey to building a management system that meets and maintains the requirements of STAR Certification.

Who should attend?

  • Anyone associated with managing, evaluating or using Cloud Service Providers
  • Management Representatives
  • Risk Managers
  • CIOs
  • CISOs

Learning objectives:

  • Understand the structure and requirements of CSA STAR Certification
  • Understand the certification road map taken by a successful cloud service provider
  • Be introduced to implementation best practices
  • Lessons learned and pit falls to avoid


John DiMaria is the ISO Product Manager for BSI Group America Inc. He has 28 years of successful experience in Management System Development, including Information Systems, and Quality Assurance. John is responsible for overseeing, product roll-out, and client/sales education. He is a product spokesperson for BSI Group America, Inc. regarding all product standards covering Risk, Quality, Sustainability and Regulatory Compliance.

Dan Timko is Cirrity's President and Chief Technology Officer. Dan brings more than 15 years of information technology and information security industry experience to Cirrity and is focused on designing, creating and maintaining a resilient cloud environment for customers and partners with high security and regulatory compliance requirements.