The goal of CloudAudit is to provide a common interface and namespace that allows enterprises who are interested in streamlining their audit processes (cloud or otherwise) as well as cloud computing providers to automate the Audit, Assertion, Assessment, and Assurance of their infrastructure (IaaS), platform (PaaS), and application (SaaS) environments and allow authorized consumers of their services to do likewise via an open, extensible and secure interface and methodology.

CloudAudit is a volunteer cross-industry effort from the best minds and talent in Cloud, networking, security, audit, assurance and architecture backgrounds.

The CloudAudit Working group was officially launched in January 2010 and has the participation of many of the largest cloud computing providers, integrators and consultants.

You can find out more about CloudAudit by visiting the Forums and participating in our working group call (see Forum & WG Calls menu above.)


CloudAudit:  Automated Audit, Assertion, Assessment, and Assurance

As of October 2010, CloudAudit is officially under the auspices of the Cloud Security Alliance!

Check out the Cloud Security Alliance GRC Stack of which GRC is a component: