Skip to content
🧠 Hailey AI now auto-generates audit responses. See how →

Glossary definition: Cloud Controls Matrix (CCM) Domains

CCM Domains: Understanding Cloud Security Controls

A Cloud Controls Matrix (CCM) Domains is a set of security controls and associated security requirements that are used to ensure the security of cloud-based services, applications, and data. It is a collection of security controls that are designed to protect cloud-based services, applications, and data from unauthorized access, misuse, and loss. The CCM Domains provide a framework for organizations to evaluate the security posture of their cloud-based services, applications, and data, and to ensure that the security controls are implemented to meet the organization's security requirements. The CCM Domains are divided into four main areas: Identity and Access Management, Data Protection, Infrastructure Security, and Application Security. The Identity and Access Management Domain focuses on the security of user accounts and authentication, while the Data Protection Domain focuses on the security of the data stored in the cloud. The Infrastructure Security Domain focuses on the security of the cloud infrastructure, while the Application Security Domain focuses on the security of the applications running on the cloud. The CCM Domains provide organizations with a comprehensive security framework that can be used to ensure the security of their cloud-based services, applications, and data.