Find out what's inside the November 2020 edition of the Journal & download a free copy of this month's featured article
As many organization are going digital as part of digital transformation strategy, businesses and organizations need to be more strategic with their security controls. Market forces continue to push organization to rapid and comprehensive digital transformation, accelerating the use of technologies such as the cloud and agile and increasing exposure to the many inherent security issues.
According to IDC, the pandemic has impacted the long-term cloud strategy of many organizations, causing an accelerated move to cloud. Due to the sudden shift and adoption of going digital and work from anywhere due to COVID-19 pandemic (the new normal), businesses have had a short time to reflect and reassess their cloud strategy, how security fits in the picture and how they can ensure that remote workers and their devices are protected and have the security they need to keep their organizations safe and comply with compliance requirements and regulations. As more than half the global economy turns digital by 2023, a new species of enterprise will be required to compete and thrive. IDC 2020 predictions show that enterprises will prepare for the digitized economy by accelerating investments in key technologies and new operating models to become hyper speed, hyperscaled, and hyperconnected organizations.
With more assets and data moving to the cloud, cybercriminals are geared up and equipped to target the organizations moving their critical data to cloud. We will discuss lessons learnt from 2020 and top tips to reduce your attack surface in the cloud and future-proof your cloud security strategy for 2021 so you are well prepared and have cloud security as your top priority for 2021.
A strong cloud security and Governance strategy will help ensure organizations can take advantage of cloud environment benefits at the same time ensure that the attack surface is reduced and have the risk appetite and mitigation strategy well planned for cloud risks.
Some of the Top tips that are key to be considered and will be discussed are:
1. Cloud security shared responsibility requirements understanding
2. Cloud Governance
3. Relook and reassess your cloud architecture, associated cloud risks and compliance requirements
4. Upskill your cybersecurity team to learn cloud security skills and re-assess your hiring strategy
5. Container Security
6. Security Automation in cloud
Betty Burke has served MN-ISSA as the President for the past five years. Betty has over twenty years’ experience in Information Technology and Information Security in positions of progressive responsibility and technical expertise. She has worked on information security planning, developing and delivering security programs. She is respected as a decision-maker and creative problem solver with demonstrated ability to achieve desired results while maintaining effective team cooperation. She has worked with several security regulations and standards including HIPAA, ISO17799, COBIT, Payment Card Industry Standard, NIST Standards and IRS Publication 1075. Betty currently works for the State of Minnesota leading the GRC team. Betty is CISSP and CISA certified.
Malini Rao – Global Head of Cybersecurity & GRC Operations
With more than two decades of experience in cybersecurity, Malini Rao brings in extensive experience and expertise working globally for Fortune 500 clients in various areas of cybersecurity such as Cyber Defense, application security, cloud security, DevSecOps, security operations, governance, risk and compliance management, cyber risk management, IOT security and identity and access management.
Malini has managed large multimillion dollar projects and large teams globally. She has rich experience working in various industry verticals like financial services, healthcare, information technology services, retail, consumer goods, energy as well as for oil and gas industry clients. She has taken up challenging roles and worked up her way through the corporate ladder with both hands on and leadership roles as a program manager, CISO, Head of Cybersecurity operations and as global practice head in the various roles she has taken on over the years. Ms Rao is also a global women in cybersecurity influencer and board member of women in cybersecurity community. She has received many recognitions and awards for her contributions as cybersecurity influencer and mentor. Malini Rao is a CISSP, CISM, C|CISO certified security professional and an international speaker
ISSA Webinars and Conference series cover all the continuing education credits to maintain your cyber security certifications. (CPEs, CEUs, ECE, etc). Each hour is equal to one continuing education credit. Certificates of completion are available upon request after completion. For instructions, click here.