2022 Cloud Implementation and Security Conference

The ISACA Greater Washington DC (GWDC) is proud to host the Cloud Implementation and Security virtual conference. This conference is part of our monthly events and is centered around the introduction of Cloud auditing, security in the Cloud, implementing Cloud Center of Excellence, and introduction to the latest Cloud audit certification.

Cloud security and enablement professionals, IT advisory or audit professionals, business executives, cybersecurity professionals, students or professionals interested in learning more about cloud in the public sector space should attend this conference.

Registration closed on September 21, 2022 @ 5pm. Participants can use the link below to access CPE Certificates and the feedback survey. Instructions on how to access these resources are located on the Access Your CPE Certificate page.

View Registration Site

 

Conference Details

Agenda

8:30 – 9:30 Cloud Security Overview and Best Practices

Presenter: Don Mann (Arctic Wolf)

This presentation will provide an overview of Cloud Security. We will discuss some of the unique considerations of Cloud Security when moving from on-premises. We will review some core best practices and some consumable tips on how to evaluate or improve your cloud security.

 

9:30 – 10:30 Introduction to the Certificate of Cloud Auditing Knowledge (CCAK)

Presenter: Sushila Nair (NTT DATA)

The Certificate of Cloud Auditing Knowledge (CCAK) is the first-ever, technical, vendor-neutral credential for cloud auditing. This certificate fills a gap in the industry for competent technical professionals who can help organizations mitigate risks and optimize ROI in the cloud.

 

10:30 – 11:30 Implementation of Cloud Center of Excellence

Presenter: Aimee Bechtle (Amazon Web Services)

Cloud Centers of Excellence (CCoE) are critical to successful, sustained cloud adoptions at-scale. In this talk Aimee Bechtle will describe why and when a CCoE is needed and the mechanisms that maximize and amplify a cloud adoption.

 

11:30 – 12:30 The Problem of Siloed Identities for Security and Compliance

Presenter: Garret Grajek (YouAttest)

This presentation will overview how a proper access review should be conducted including the challenges and best practices to tying the “Siloed Resources” to the IS0R (identity store of record). The key is to map identified siloed resources to the DEFINED and managed:groups/roles” in the ISoR.

 

Presenters

Don Mann
Senior Systems Engineer, Arctic Wolf

Don has been in the IT industry for over 25 years. He worked as an IT professional in the USAF as well as biotech, and then spent time consulting with customers at a technology reseller. Most recently he spent the last 3 years working for Amazon Web Services before joining Arctic Wolf, a security operations cloud provider.

 

Sushila Nair
Vice President, Security Portfolio @ NTT DATA Services, NTT DATA, Inc.
CISSP CISM CRISC CISA

Sushila Nair specializes in cybersecurity, risk, and audit services. Sushila Nair is the Vice President of the Greater Washington, D.C. ISACA Chapter and has presented at CACS, BrightTALK, Seguruinfo and many other international events.  She has taught several review courses, including the CCAK review course, for the GWDC chapter and ISACA Global. 

 

Aimee Bechtle
Solutions Architecture Leader , Amazon Web Services

Aimee leads AWS Solutions Architecture for Enterprise Engaged customers in the Mid-Atlantic and Carolinas. Her experience is in leading large organizations to adopt agile, DevOps, product and the public cloud. She specializes in building high performing product teams using modern application architectures and technical practices. Aimee has been at AWS since December of 2020. Prior to joining AWS Aimee spent 16 years as a Software Systems Engineer at The MITRE Corporation, 4 years leading DevOps transformations and cloud adoption at Capital One, and 1 year as the Head of DevOps and Cloud Centers of Excellence at S&P Global in the Market Intelligence division. Aimee has her B.S. in Management Science – Decision Support Systems from Virginia Tech and a M.S. in Systems Engineering from Johns Hopkins University. She lives in Vienna, VA with her husband, four children and two dogs.

 

Garret Grajek
Chief Executive Officer, YouAttest
CEH, CISSP

Garret Grajek is a certified security engineer and product builder. Garret has 25+ years of IT Security product creation. He has 13 U.S. patents for information security products (focus: Application SSO, 2FA, Identity Assurance, Continuous Authentication, AI and Blockchain). Garret has specialized in creating secureIT products for markets in the Financial, Health Care, Federal, State, Education and other regulated arenas. Products Garret has created resulted in multiple awards, Gartner ranking, and sold to over 500 customers resulting in $200M+ in revenue.

 

Additional Details

Virtual Event Information

• This event will be presented through Zoom.  The instructor will send an email with the zoom link prior to the event.
• Prior to the event, participants must install the Zoom app on their respective devices. Participants using the web-based Zoom or calling via the phone may not be entitled to CPE credits.
• Participants must respond to all the poll questions via the Zoom polling feature or chat log in order to receive NASBA CPE credits.
• The ISACA Greater Washington, D.C. Chapter will not be responsible for the participant’s inability to respond to the polls

 

Registration Questions

If you have any registration questions about this event, please contact the chapter using the Registration Contact Form.

If you have CPE questions after the event has concluded, please contact the chapter using the CPE Contact Form.

 

Cancellation and Refund Policy

Cancellation and refund for advance registrations is allowed if cancellations are submitted through the registration system. Refunds vary depending on the date of cancellation. See ISACA GWDC Event Policies for details.

If ISACA GWDC cancels the event, all registrants will be notified as soon as possible through email at the email address provided during registration. Full refunds will be provided.

 

Complaint Policy

The GWDC welcomes your comments, complaints, suggestions, questions, and other feedback concerning our website information and services. All complaints should be submitted through the Registration Contact Form.

 

CPE Information

Earn up to 4 Continuing Professional Education (CPE) credit in the area of Information Technology. The ISACA® Greater Washington, D.C. Chapter is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org.

 

CPE Distribution and Evaluation Survey

CPEs will be distributed via e-mail along with the event evaluation survey after the completion of the event. Attendees must be present for the full event to receive full CPE credit.

 

CPE-Related Details

• Learning Objective: After this conference, attendees will have a better understanding of the the process of implementing Cloud Center of Excellence and securing and audit Cloud environment in their organization.
• Prerequisites: None
• Advance Preparation: None
• Program Knowledge Level: Basic
• Delivery Method:  Group Internet Based
• Field of Study:  Information Technology – Technical