Using the SOGP and CCM for Multi-Cloud Security

Presented by

Benoit Heynderickx - Principal Analyst, ISF, and Lefteris Skoutaris - Program Manager, CSA

About this talk

In this session, we will demonstrate how the cross reference can help security practitioners leverage the two resources to deploy effective controls over their multi-cloud environments. Join Benoit Heynderickx (ISF) and Lefteris Skoutaris (CSA) on the 18th April 2023 to learn: - what is the CSA CCM, and the importance of cloud controls - how SOGP can be used by focusing on those controls that are mapped to CSA CCM - how to utilise the mapping to determine gaps within your cloud environments and where both the SOGP and the CSA CCM can be used to resolve these gaps. Speakers: Benoit Heynderickx - Principal Analyst, ISF Benoit is a Principal Analyst at the ISF specialising in supply chain, cloud security and quantitative risk analysis. As an experienced information security professional, he has a wealth of knowledge and practical experience implementing large scale information security and risk programmes such as ISMS, SOX IT Compliance, and third-party risk assurance programmes. Benoit holds security certifications from ISACA and the CSA, as well as an MSc in Information Security and Risk from City, University of London. Benoit is also a Full Member of the Chartered Institute of Information Security. Lefteris Skoutaris - Program Manager, Cloud Security Alliance (CSA) Lefteris has been working as a security analyst for the Cloud Security Alliance (CSA) over the past 5 years and is currently managing CSA’s Cloud Controls Matrix (CCM) Working Group (WG) and CCM V4.0 program development activities. Mr. Skoutaris has previously worked at the European Space Agency (ESA) and European Organization for Network and Information Security (ENISA). He has been substantially contributing to cyber and cloud security related projects on research, architecture and frameworks development.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (110)
Subscribers (22182)
Steve Durbin, Chief Executive of the ISF and ISF analysts will present the ISF webinar series: "In pursuit of the secure organisation..." We will be sharing thought leadership and practical guidance drawn from ISF Members, which include many of the world’s leading Fortune and Forbes listed organisations) on how to address cyber, information security and risk management issues facing businesses and their security teams. 1. Emerging Cyber Threats (ISF Threat Horizon annual series) 2. The role of the CEO and business leaders in cyber security 3. Being a successful CISO 4. Cyber-attack trends 5. Critical Asset Management 6. Data breach prevention 7. Supply chain 8. Insider Threat and the role of the end user