Upload File

cloudexpo 2015newyork: turning the corner on cloud data security governance

  • Home
  • Internet
  • CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance
15
Turning the Corner on Cloud Data Governance Evelyn de Souza Data Privacy and Compliance Leader, Cisco Systems Chair Cloud Security Alliance Data Governance Group June, 2015

Upload: evelyn-de-souza

Post on 11-Aug-2015

218 views

Category:

Internet


3 download

Report

Tags:

TRANSCRIPT

Page 1: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Turning the Corner on Cloud Data Governance

Evelyn de Souza Data Privacy and Compliance Leader, Cisco Systems Chair Cloud Security Alliance Data Governance Group June, 2015

Page 2: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

AGENDA

Why Cloud Data Governance

Data Types

Data Governance Models

Business-consumable Data Protection

Your Call to Action

Page 3: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Why Cloud Data Governance?

Page 4: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Cloud Data Governance Challenges

1.Data Protection (65%)

2. Security Management (42%)

3. Compliance (53%) 4. Data Governance (73%)

Is data safely protected while in motion, in use or stored in the cloud How is the availability of data in the cloud assured?

How are assurance levels effectively managed by the cloud provider Can I get a snapshot of the cloud provider’s security capabilities at any given time?

Can the cloud provider demonstrate that regulatory controls are implemented effectively and sustainably?

Who owns/accesses/edits/modifies my data in the cloud? Data does not equal a one-size fits all model How do you measure policy

Based upon informal survey with CISOs and InfoSec leaders from Dimension Data, Kloud, CSA Enterprise Council (43 InfoSec leaders worldwide from SP and Enterprise) and FSISAC Banking Leaders – NEED to set up User Focus Groups to hone in by segment and industry

Page 5: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Cloud is Not a Single Amorphous Model

Page 6: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

6

Trust Does Not Equal Compliance

Page 7: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Data is Not a One-Size-Fits All Model

Page 8: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Contextual Data Governance

Page 9: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Data Governance Milestones

KPIs and tools for measurements in

place

Sporadic data issues

communication

Standardized data definitions and rules

in place

Processes defined by individual technology functions

Standardized process per organization/

Processes are centralized, controlled and measured

Undefined data management

policies

Ad hoc processes / per data

management

AD HOC MANAGED DEFINED PROACTIVE OPTIMIZING Value driven

Quantitative management of

data

Real-time analysis and resolution

Continuous process improvements

– way of life

Page 10: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Establishing a Data Governance Board

Page 11: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

11

Making Data Protection Business

Consumable

Page 12: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

1

Exploring Toolsets for Cloud Data Governance

Steps

2 3 4

http://clouddataprotection.org/cert/

Page 13: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

13

CHAOS Theory for Building Beyond..

Page 14: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

•  Build an Executive Data Governance Board

•  Join the CSA Cloud Data Governance Working Group on LinkedIn or Join our Mailing List athttps://lists.cloudsecurityalliance.org/mailman/listinfo/datagovernance

•  Contribute your own data governance model and share with us at http://clouddataprotection.org/cert/

•  Continue the conversation – Twitter @e_desouza or email: [email protected]

Your Call to Action

Page 15: CloudExpo 2015NewYork: Turning The Corner on Cloud Data Security Governance

Keynote at CloudExpo and DevOps Summit 2014, Silicon Valley

TURNING THE CORNER DEPT. - Firm Feel · quick example, recent Jeep ... TURNING THE CORNER DEPT. MOPAR ACTION 51 AD Steering chuck and alignment ... guaranteed to have that smile wiped

Turning a corner

Turning the Corner on Crane Operator Safety

Turning the Corner on Mass Incarceration?moritzlaw.osu.edu/osjcl/Articles/Volume9_1/Cole.pdf27 Turning the Corner on Mass Incarceration? David Cole It is an old story by now. For the

Congress Online 2003: Turning the Corner on the Information Age

Anika Khan: Commercial Real Estate and Construction, Turning the Corner

Chris Swan's CloudExpo Europe presentation "Keeping control when moving applications to the cloud"

Turning the Corner: What It Takes to Build a Modern Data Warehouse

Turning the corner to progress - Nysanysanet.org/wp-content/uploads/NYSA_2012 _annual_report.pdf · Turning the corner to progress Annual Report. Mission Statement The mission of

Corner Turning with the Ignition & Growth Model A.K. Kapila and D.W. Schwendeman, RPI

India Manufacturing Barometer 2014 Turning The Corner

DevOps, PaaS and the Modern Enterprise CloudExpo Europe presentation by Diane Mueller

Turning The Corner?

The Ever Changing Cloud, CloudExpo 2012

Turning the Corner: From Cybersafety to Digital Citizenship

UShareSoft CloudExpo New York 2011

Turning the right Corner Ensuring Development Through A Low-carbon Transport Sector

Turning the Corner on Father Absence In Black America

Olivers Insights - US Housing Sector Turning the Corner

LXC – NextGen Virtualization for Cloud benefit realization (cloudexpo)

CloudExpo NY 2014: Moving Mission Critical Applications to the Cloud

India Manufacturing Barometer 2014 Turning the corner · India Manufacturing Barometer 2014 Turning the corner Contents The hard facts p4/Industry on an upturn p6/Future path: A mixed

CloudExpo NYC - Citrix Cloud Platforms Best Practices for Architecting Your Cloud Infrastructure

Chris Swan's CloudExpo Europe presentation "Waves of adoption for Network Function Virtualisation"

Automic devops CloudExpo NYC Dennis McGuire

Aviation 2020 Turning the corner

Lessons learned building clouds at CloudExpo West 2010

Turning the Corner to Quality: Policy Guidelines for Strengthening

ICONIC CORNER. ICONIC OPPORTUNITY. · ICONIC CORNER. ICONIC OPPORTUNITY. CONCEPTUAL RENDERING. TURNING THE CORNER The Corner at the Grove is an array of vibrant ... Wine Bar BROOKLYN

HIGH EXPLOSIVE CORNER TURNING …/67531/metadc695294/...t- ' HIGH EXPLOSIVE CORNER TURNING PERFORMANCE AND THE LANL MUSHROOM TEST L.G. Hill, W.L. Seitz, C.A. Forest, & H.H. Harry Los

Deals 2013 in Greece Turning the corner - PwC · Turning the corner June 2014 Deals 2013 in Greece . PwC PwC is a leader in mid cap M&A transactions 2 ... Saudi Arabia Greece TMT

TURNING THE CORNER TO QUALITY

Turning the Right Corner Ensuring Development through a Low-Carbon Transport Sector

Editor’s Corner In this Issue - Qajaq USA · Editor’s Corner Bobby Curtis ... Translations at ... turning green and the water is warming up,