6th Annual Conference. June 04, 2014. San Francisco

Panel: Cloud Security and Compliance for the Enterprise

Session Details

Date: June 4th 2014
Time: 13:50
Location: Emerald Ballroom

Session Abstract

There is still much speculation around the security and privacy implications of applications in the cloud. With speculation comes fear, and with fear come misinformation and myths. This panel session will address many of these myths and uncertainties about apps in the cloud. It will provide guidance for how businesses can evaluate cloud vendors from a security and privacy perspective, and will offer a glimpse into best practices to protects the data and the privacy of your users.
Core topics to be addressed:
- Centralized cloud governance model;
- Achieving service availability with higher security at a lower cost level;
- How security is built-in in cloud services;
- Enabling data integrity, privacy and security for integrations;
- Adopting cloud standards
- Security and protection of IP and sensitive data in the cloud;
- Enforcing data constraints on residency and privacy;
- Making data available in reliable and secure way;
- Getting high performance, while preserving security
- Using big data to mitigate advanced persistent threats;
- Solutions for cross firewall collaboration.

Speakers:

Jacob West is chief technology officer for Enterprise Security Products (ESP) at HP. In this role, West helps to architect the security roadmap for the ESP portfolio and leads HP Security Research (HPSR), which drives innovation with research publications, threat briefings, and actionable security intelligence.
Prior to this role, West served as chief technology officer for Fortify products and leader of Software Security Research within HP ESP. West has spent more than a decade developing, delivering, and monetizing innovative security solutions, beginning with static analysis research at the University of California, Berkeley and as an early security researcher at Fortify prior to its acquisition by HP.
A world-recognized expert on software security, West co-authored the book, “Secure Programming with Static Analysis” with colleague and Fortify founder, Brian Chess, in 2007. Today, the book remains the only comprehensive guide to how developers can use static analysis to avoid the most prevalent and dangerous vulnerabilities in code.
West is co-author of the Building Security in Maturity Model and is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon and OWASP. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California.

Eran Feigenbaum, Director of Security, Google Apps
As Director of Security for Google Enterprise, Eran defines and implements security strategy for Google Apps. Prior to joining Google in 2007,

Eran was the U.S. Chief Information Security Officer for PricewaterhouseCoopers (PwC).

Earlier, Eran spent several years designing and implementing high-performance cryptosystems for electronic commerce solutions for Fortune 1000 clients and government agencies.

He holds a bachelor’s degree in electrical and computer engineering from the University of California at Irvine, and an MBA from Pepperdine University.

Eric Tan, PwC Director, Assurance Technology Center of Excellence, Silicon Valley Eric is an assurance director based out of PwC's Silicon Valley Technology Center of Excellence. He has significant experience successfully helping technology compliance organizations manage risk and compliance over their technology projects and information governance, risk and compliance solutions. Eric is a lead director within PwC's Cloud Assurance practice. His responsibilities includes assisting companies with compliance, security and privacy issues related to cloud services and performing attestation services to cloud service providers. He is a key contributor to the firm's strategy, point of view and thought leadership on cloud computing. Eric's experience includes developing IT strategic plans, leading large-scale system implementation assessments, performing risk and security diagnostics; and implementation of compliance and control solutions. His experience specific to cloud computing includes developing internal controls for a cloud ERP company, leading a Salesforce.com CRM assessment, conducting cloud vendor assessments and helping a financial services firm determine their Infrastructure as a Service (IaaS ) strategy. Google, eBay, LinkedIn, Tibco, Akamai, Novell, Genzyme, Biogen, Thermo Fisher Scientific are among the many clients he has served. He is a regular speaker at ISACA events and served as a keynote speaker and panelist on various conferences including the recent He is a regular keynote speaker and panelist at topical events and conferences, including the recent 2013 Global Institute of Internal Audit Conference, 2012 Edison Electric Institute Conference, Cloud Connect 2011 and UP 2011 Cloud Computing Conference in Silicon Valley.

David Linthicum, Research Analyst, Gigaom Research
David (Dave) S. Linthicum is an internationally recognized industry expert and thought leader, and the author and coauthor of 13 books on computing, including the best-selling “Enterprise Application Integration” (Addison Wesley). Dave keynotes at many leading technology conferences on cloud computing, SOA, Enterprise Application Integration, and enterprise architecture, and has appeared on a number of TV and radio shows as a computing expert. Dave’s latest book is “Cloud Computing and SOA Convergence in Your Enterprise, a Step-by-Step Approach.”Dave is an internationally recognized industry expert and thought leader, and the author and coauthor of 13 books on computing, including the best-selling “Enterprise Application Integration” (Addison Wesley). Dave keynotes at many leading technology conferences on cloud computing, SOA, Enterprise Application Integration, and enterprise architecture, and has appeared on a number of TV and radio shows as a computing expert. Dave’s latest book is “Cloud Computing and SOA Convergence in Your Enterprise, a Step-by-Step Approach.”

Speaker

(Moderator) Eric Tan, Director , PwC LLP
*

Cloud Slam Sponsors

Stay Connected

Announcements, changes and promotions. Get important updates about Cloud Slam. Sign Up

Educational Hub

Cloud Slam provides year-round, world-class education, news and insight for computational scientists, engineers, developers and IT managers. Stay sharp on all that you need to know to advance your career and company. Learn More

Conference Registration

Eventbrite - UP 2012 Cloud Computing Conference

Testimonials