WS3Cloud Computing Security and RiskLatest Best practice Guidance

No ratings

Presented at EuroCACSISRM 2012 by

Michael Small

Vernon Poole

Looking for practical advice and guidance on security and risk in the cloud? This full day workshop will provide insights into todays current cloud providers offerings with respect to security and risk requirements. Attendees will build on their knowledge of practical guidance from The Cloud Security Alliance and ENISA and will also dive into emerging guidance from the BMIS methodology, COBIT 5 and ISO27017. Attendees will learn what areas a CISM, CISA or CRISC need to address using a comprehensive approach covering security/risks; data protection/privacy; technology controls; and governance requirements need to be specified. Recognise how the BMIS methodology can be used to provide the perfect platform to your approach. Using practical workshop scenarios to ensure that whether you operate in the public or private sector, you fully address the many questions and assurance that you require answeringthese scenarios will utilise guidance from COBIT 5 (including RACI charts) and IT Risk; ISO27017; Cloud Security Alliance/ENISA latest guidance. Join this highly participative workshop including a range of exercises and group discussions around a number of case-studies presented by two expert presenters who have covered most continents and deployed best practice guidance from ISACA; Cloud Security Alliance; ENISA; and ISO Community. After completing this workshop, you will be able to: Fully understand the security protocols required in venturing into the cloud Challenge their cloud provider to ensure that best practice security & risk requirements; data protection & privacy requirements; and finally the technology control requirements are fully addressed Ensure that the detailed service delivery arrangements and third party requirements are fully accounted for at the start of the contract negotiations Provide guidance within their organisation concerning the information security governance requirements to be agreed by the Board & Senior Management`