CIS Critical Security Controls Mapping to Cloud Security Alliance Cloud Control Matrix
Published on May 18, 2021
This document describes the methodology used to map the CIS Critical Security Controls (CIS Controls) to the Cloud Security Alliance Cloud Control Matrix. The methodology used to create the mapping can be useful to anyone attempting to understand the relationships between the CIS Controls and CSA CCM.
As of June 23, 2025, the MS-ISAC has introduced a fee-based membership. Any potential reference to no-cost MS-ISAC services no longer applies.