International Journal of Web Applications Leila Regina Techio, Mehran Misaghi 7 2 2015 http://www.dline.info/ijwa/fulltext/v7n2/v7n2_3.pdf Cloud computing is considered a paradigm both technology and business. Its widespread adoption is an increasingly effective trend. However, the lack of quality metrics and audit of services offered in the cloud slows its use, and it stimulates the increase in focused discussions with the adaptation of existing standards in management services for cloud services offered. This article describes the CSRA Model, that is A Cloud Service Risk Assessment Model following interoperability standards, risk management and audit of cloud IT services. Aims to present that is possible to assess the life cycle of services offered in the cloud in the technical dimensions of usability, good practices, economic viability and management of information security risks, based on existing standards and best practice. It highlighted the risk management, through a combination of consequence and likelihood of risk events, based on ISO / IEC 27005: 2011 and ISO / IEC 27017: 5th WD, 2013 and the use of Bayesian Networks in the evaluation the likelihood and relationship between several simultaneous events.