The CSA which is a non-profit organization focused on advancing the security of the cloud regularly updates the CCM to ensure it incorporates the latest industry-accepted security standards like ISO27001/2. Members like Cordero work with cloud users, advisers and service providers to identify the latest trends in the industry to ensure they're reflected in the CCM.
Customers can see the full list of CCM specifications by downloading the PDF version here (it requires users to register with the CSA). The CSA also has its STAR Registry, which is a version of the CCM in a questionnaire format that providers can fill out that is posted on the CSA website. A listing of responses given by providers is in the CSA's STAR Registry for consumers to compare various cloud providers.
Sign up for CIO Asia eNewsletters.