Yo Delmar, Vice President, GRC, MetricStream
Organizations struggle to gain visibility and control over risk and compliance in cloud environments - for implementations with sensitive information, the cost of monitoring risks may outweigh the benefits of moving workloads to hybrid or public cloud environments. CxOs are still on the hook from internal and external stakeholders to explain how risks are identified, managed and controlled, whether information resides on premise or in an external cloud. But cloud services supporting privacy, encryption and authentication are evolving rapidly – how can compliance and security leaders make critical decisions on when to make the move with so many moving parts? This session discusses various approaches to modeling key cloud-based risks and provides an adoption framework that can help in planning migration to various deployment models – private, public and hybrid.