top of page

CRITICAL SAAS SIG

Aqua and Pink Summer Picture Postcard (1).png

What is the Critical SaaS SIG?

 

The Critical SaaS (CSaaS) SIG serves as a forum for CSaaS companies to collaborate on a collective defense strategy to improve the security and operational resiliency of their services and share intelligence information with the industry at large. It aims to increase the level of trust that customers can place in their organizations and the SaaS sector.  The CSaaS SIG enables companies who are essential to the internet to share cyber threat intelligence and effective security practices.  It also provides a framework for these companies to collaborate on future security issues.

SIG Membership

 

Members of the CSaaS SIG provide essential services that a vast array of critical infrastructure operators rely on for core operations. The following companies are founding members of the SIG.

Do You Know Who You Are Hiring.png

Do Your Know Who You Are Hiring? Spotting Fraudulent Job Seekers

The phenomenon of fraudulent workers continues to pose a serious and growing threat to organizations across the nation. These deceptive remote workers are often originating from adversary nations angling to infiltrate organizations where they can steal data that ultimately assist in funding their regimes. This report explores practices and steps companies can implement to defend themselves. From resume screening through onboarding the paper outlines key red flags to watch for and tactics you can use during each phase of making a new hire.

2024 Holiday Advisory

During the most festive time of year, it's easy to get distracted. But organizations must be careful to maintain their cyber defenses and stay vigilant even - and especially - through the holidays. The IT-ISAC CSaaS SIG recommends making your list and checking it twice to protect you from not-so-nice cyber threats with this advisory for the holiday season.

Shared Responisbility Paper

Understanding the Shared Responsibility Model is imperative for effectively securing your information in a critical SaaS (CSaaS) environment. In this collaboratively authored paper, the CSaaS SIG provides guidance and outlines questions to ask to ensure both providers and end users know their responsibilities.

Secure by Default Nov 2023 .png

Secure By Design Comments

The CSaaS SIG has collaboratively authored and submitted comments in response to CISA’s RFI on their recently published Secure by Design Whitepaper. The full comments can be viewed below.

CSaaS SIG Logo (1).png
ARE YOU USING MULTI-FACTOR AUTHENTICATION (MFA) (6).png
ServiceNow-Logo.png
Guidewire.png
zscaler-logo-og.png
Okta.png
Workday_Logo.png
Oracle-Logo.png
© 2025 by Information Technology-Information Sharing and Analysis Center.
X_Logo.png
  • YouTube
bottom of page