PDF - Cloud Security Alliance
@RSA // San Francisco // April 20 www.cloudsecurityalliance.org www.cloudsecurityalliance.org Credential Theft Credential theft was involved in 85% of cyber attacks (Verizon Data Breach Report 2015) In Hackathon #3 we're giving the name/password to Bob Flore's account on a file server protected by a SDP gateway The first Hackathon participant to successfully access the file server using Bob's "stolen" credentials (which we will give to you) will get $10,000 www.HackSDP.com SDP Experts at the CSA Booth #2621, 12-1pm Tuesday-Thursday www.cloudsecurityalliance.org Cloud Controls Matrix & CAIQ as a SaaS tool Manage cloud assessments and compliance with CSA best practices Manipulate CCM & CAIQ in a database format Beta opens this week: www.cloudsecurityalliance.org/star/watch STAR Watch demo at the CSA Booth #2621 Monday 5:30-6:30pm Tuesday 11:30-12pm Wednesday 4-5pm Thursday 11:30-12pm www.cloudsecurityalliance.org Tuesday - PLI Center, 685 Market Street 9:00 Cloud Data Governance Working Group 10:15 IoT Working Group 11:30 CSA Cyber Incident Sharing Center Initiative: Overview & Pilot Discussion (Lunch provided by CSA) 1:15 Big Data Working Group 3:45 CCM/CAIQ/Cloud Brokerage/Enterprise Architecture www.cloudsecurityalliance.org Wednesday - EMC Offices: 250 Montgomery Street (4th Floor) Russian Hill Conference Room 9:00 Mobile Application Security Testing Kick – off Meeting 10:00 Open Certification Framework 11:30 Quantum – Safe Security Working Group 12:30 Subject Matter Expert Council 2:00 International Standardization Council 4:00 Virtualization Working Group www.cloudsecurityalliance.org Cloud CISC: Developing a framework for cloud incident sharing Learn from the lessons & challenges of CloudCERT Anonymization and removal of attribution from incidents a key concept Standards for incident sharing and an operational system Tuesday 11:30am at PLI Center, 685 Market Street (lunch served) www.cloudsecurityalliance.org Authored by Brian Honan, Raj Samani & Jim Reavis (a little) Tuesday 3-4pm at CSA Booth #2621 Wednesday 11-11:30am at RSA Bookstore www.cloudsecurityalliance.org @RSA // San Francisco // April 20 www.cloudsecurityalliance.org Cloud Without Borders: Paving the Way for Global Security and Privacy Presenting: Philippe Courtot Chairman & CEO, Qualys www.cloudsecurityalliance.org Future Crimes: Why Cyber Was Only the Beginning: Presenting: Marc Goodman Global Security Advisor & Futurist www.cloudsecurityalliance.org www.cloudsecurityalliance.org Moderator: Jim Reavis, CEO,CSA Panelists: Sol Cates, CSO, Vormetric Jay Chaudhry, Chief Executive Officer and Founder, Zscaler John DiMaria, ISO Product Manager, British Standards Institution Rehan Jalil, President and CEO, Elastica Krishna Narayanaswamy, Chief Scientist, Netskope Chenxi Wang, VP of Cloud Security & Strategy, CipherCloud www.cloudsecurityalliance.org 1. 2. 3. 4. 5. Data Security Navigating Global Trust Issues Shadow IT Advanced Attacks & Cyber Conflicts Provider Visibility & Translating Enterprise Requirements into the Cloud www.cloudsecurityalliance.org Presenting: Brigadier General (Ret.) Nadav Zafrir, Cyber and Intelligence Expert Former Commander of Israel Defense Forces (IDF) Technology & Intelligence Unit (8200) Founder of the IDF Cyber Command. www.cloudsecurityalliance.org Addressing the Cloud Security Challenge A Practitioner’s Experience Presenting: Jim Routh CISO Aetna, Inc. Rajiv Gupta CEO Skyhigh Networks www.cloudsecurityalliance.org Moderator: Jim Reavis, CEO, Cloud Security Alliance Panelists: Chad Woolf, Global Risk and Compliance Leader for Amazon Web Services Jerry Cochran, Principal Security Engineering Manager, Microsoft Office 365 Eran Feigenbaum, Director of Security, Google for Work, Google Patrick Heim, Head of Trust & Security, Dropbox Brian Kelly, Chief Security Officer, Rackspace www.cloudsecurityalliance.org www.cloudsecurityalliance.org Credential Theft Credential theft was involved in 85% of cyber attacks (Verizon Data Breach Report 2015) In Hackathon #3 we're giving the name/password to Bob Flore's account on a file server protected by a SDP gateway The first Hackathon participant to successfully access the file server using Bob's "stolen" credentials (which we will give to you) will get $10,000 www.HackSDP.com SDP Experts at the CSA Booth #2621, 12-1pm Tuesday-Thursday www.cloudsecurityalliance.org SAML Gatewa IdP Client y Crypto IP’s SDP Controller SD P SDP Gateways Web-based File Server www.cloudsecurityalliance.org Cloud Controls Matrix & CAIQ as a SaaS tool Manage cloud assessments and compliance with CSA best practices Manipulate CCM & CAIQ in a database format Beta opens this week: www.cloudsecurityalliance.org/star/watch STAR Watch demo at the CSA Booth #2621 Monday 5:30-6:30pm Tuesday 11:30-12pm Wednesday 4-5pm Thursday 11:30-12pm www.cloudsecurityalliance.org Tuesday - PLI Center, 685 Market Street 9:00 Cloud Data Governance Working Group 10:15 IoT Working Group 11:30 CSA Cyber Incident Sharing Center Initiative: Overview & Pilot Discussion (Lunch provided by CSA) 1:15 Big Data Working Group 3:45 CCM/CAIQ/Cloud Brokerage/Enterprise Architecture www.cloudsecurityalliance.org Wednesday - EMC Offices: 250 Montgomery Street (4th Floor) Russian Hill Conference Room 9:00 Mobile Application Security Testing Kick – off Meeting 10:00 Open Certification Framework 11:30 Quantum – Safe Security Working Group 12:30 Subject Matter Expert Council 2:00 International Standardization Council 4:00 Virtualization Working Group www.cloudsecurityalliance.org Cloud CISC: Developing a framework for cloud incident sharing Learn from the lessons & challenges of CloudCERT Anonymization and removal of attribution from incidents a key concept Standards for incident sharing and an operational system Tuesday 11:30am at PLI Center, 685 Market Street (lunch served) www.cloudsecurityalliance.org Authored by Brian Honan, Raj Samani & Jim Reavis (a little) Tuesday 3-4pm at CSA Booth #2621 Wednesday 11-11:30am at RSA Bookstore www.cloudsecurityalliance.org www.cloudsecurityalliance.org
© Copyright 2024