Using the SOGP and CCM for Multi-Cloud Security

In this session, we will demonstrate how the cross reference can help security practitioners leverage the two resources to deploy effective controls over their multi-cloud environments. Join Benoit Heynderickx (ISF) and Lefteris Skoutaris (CSA) on the 18th April 2023 to learn: - what is the CSA CCM, and the importance of cloud controls - how SOGP can be used by focusing on those controls that are mapped to CSA CCM - how to utilise the mapping to determine gaps within your cloud environments and where both the SOGP and the CSA CCM can be used to resolve these gaps. Speakers: Benoit Heynderickx - Principal Analyst, ISF Benoit is a Principal Analyst at the ISF specialising in supply chain, cloud security and quantitative risk analysis. As an experienced information security professional, he has a wealth of knowledge and practical experience implementing large scale information security and risk programmes such as ISMS, SOX IT Compliance, and third-party risk assurance programmes. Benoit holds security certifications from ISACA and the CSA, as well as an MSc in Information Security and Risk from City, University of London. Benoit is also a Full Member of the Chartered Institute of Information Security. Lefteris Skoutaris - Program Manager, Cloud Security Alliance (CSA) Lefteris has been working as a security analyst for the Cloud Security Alliance (CSA) over the past 5 years and is currently managing CSA’s Cloud Controls Matrix (CCM) Working Group (WG) and CCM V4.0 program development activities. Mr. Skoutaris has previously worked at the European Space Agency (ESA) and European Organization for Network and Information Security (ENISA). He has been substantially contributing to cyber and cloud security related projects on research, architecture and frameworks development.