For more information on our events policy, see https://isaca-gwdc.org/event-policies/
- This event has passed.
Cloud Computing Conference 2019
September 18, 2019 @ 8:00 am - 4:30 pm EDTGWDC Members: $105, Other ISACA Members: $135, Non-ISACA Member: $150
Cloud computing is changing at a rapid pace. According to Gartner, cloud services revenue will increase from $214 billion in 2019 to $331 billion in 2022. In June 2019, federal agencies have been required to accelerate its adoption of cloud-based solutions.
This conference will enable participants to learn about the latest trends in cloud computing. Learn from leaders in the public and private sector as they share to you their insights from cloud implementation to its security.
- Multi-cloud environment is becoming a requirement for organizations - Presented by Chezian Sivagnanam, Chief Enterprise Architect at National Science Foundation (NSF)
Cloud has become an essential tool for organizations. Today one cloud solution doesn’t meet all the organizational needs, forcing multi-cloud a requirement. In this session, Chezian will provide an overview of National Science Foundation's (NSF) multi-cloud landscape, architecture and the implementation that meets agency's demands.
2. Protect Cloud Data from Prying Eyes! - Presented by Dr. Sarbari Gupta, CEO and Founder at Electrosoft Services
With the explosion of data being created, gathered and shared on a daily basis, the cloud has become the preferred storage location for much of this data. Cryptography can be used to protect the confidentiality of user/business data from other users, other businesses as well as privileged cloud administrators. However, the keys themselves need protection throughout their lifecycle since they represent the collective value of all of the data they protect. We describe key management design choices for protecting cloud data and relate them to the reasons why users and businesses store data in the cloud; we discuss the challenges of managing keys to protect cloud data and effective strategies for using cryptographic keys within the cloud.
3. Financial Considerations for Moving to the Cloud Environment - Presented by Scott Vachal, Chief Executive at Soter Cloud Solutions
Any business decision of moving to the cloud will involve financial analysis to determine the best solution. Consideration must be given to operational costs of staying on-premise verse moving to the cloud or a hyperconverged environment. Each alternative off-premise solution should be weighed to identify the best fit for the needs and budget of the entity. This discussion will focus on the features of each option and the associated costs.
4. Cloud Computing and Governance, Risk and Compliance (GRC) - Presented by Sanjiev Chattopadhya, Chief of Product Security at Blackboard, Inc.
Cloud computing presents new opportunities and challenges across all domains of cybersecurity. This session presents best practices and trends for Governance, Risk, and Compliance (GRC) in cloud computing, and the limitations of classical frameworks like NIST 800, FedRAMP, SOC2 and ISO 27k in the cloud computing realm. We will discuss topics like automated compliance and DevSecOps practices.
5. Northern Virginia Community College Partners with Industry and the Armed Forces to Build the Technology Workforce of the Future - Presented by Dr. Chad Knights, Provost of Information and Engineering Technologies (IET) at Northern Virginia Community College (NOVA)
Northern Virginia Community College (NOVA) has recently partnered with several industry leaders and branches of the armed forces to build industry-aligned programs that target the most in-demand skills needed within Northern Virginia’s technology workforce. Recent examples of this include NOVA’s collaboration with Amazon Web Services that in Fall 2018 lead to the launch of arguably the first Cloud Computing degree in the nation. Following up on this in Fall of 2019, NOVA partnered with the United States Marine Corps to launch the first data intelligence/data analytics course of study in the Virginia Community College System. This session will cover NOVA’s innovative technology program offerings, some non-tradition training methods and NOVA’s development of a tech talent pipeline for Northern Virginia. In addition to seeing how NOVA can support your workforce needs, we welcome opportunities to identify new partnerships to build upon.
6. The Future of FedRAMP - Presented by Brian Conrad, Program Manager for Cybersecurity, GSA FedRAMP
Federal security policy requires all systems to be authorized based on risk. FedRAMP standardizes the process for cloud, providing a do once, use many framework for security package reuse. The FedRAMP PMO promotes the adoption of secure cloud services across the federal government by providing a standardized approach to security and risk assessment. For the future of the program, FedRAMP is currently focusing on four key future areas: tailored security, OSCAL for security documentation, integrating robotics process automation, and reciprocity across markets.
7. The State of Cloud Security: A Panel Discussion - Moderated by Sushila Nair, Senior Director at NTT Data Services
- Zeal Somani, Security & Compliance Specialist at Google Cloud
- Juanita Koipillai, CEO at Waverly Labs
- Jody Scott, Director of Sales Engineering at Aporeto
Who should attend?
MEET THE PRESENTERS
Chief Enterprise Architect of the National Science Foundation
The technology steward at the National Science Foundation (NSF), Chezian Sivagnanam is its Chief Enterprise Architect where he advises the Chief Information Officer in planning and coordination of information technology vision, strategy, architecture and innovation management. Chezian has more than 23 years of experience in information technology including enterprise architecture, solution architecture, information technology transformation, enterprise modernization, cloud computing and emerging technologies. Chezian is a PMP, CSPO and ITIL V3, and holds certifications in COBT 5, Oracle, and Sun.
Dr. Sarbari Gupta
Founder and President of Electrosoft Services
Dr. Sarbari Gupta has been active in the information security industry for over twenty years. She has broad base of knowledge and experience in the areas of cybersecurity, identity management and security solutions. She holds a PhD degree in Electrical Engineering and the CISSP and CISA certifications. Dr. Gupta has authored over twenty technical papers/presentations in refereed conferences and journals, and holds four patents in areas of cryptography. She has co-authored several NIST Special Publications in the areas of Electronic Authentication, Security Configuration Management, and Mobile Credentials.
Client Executive of Soter Cloud Solutions
Scott Vachal applies his more than 30 years of financial, managerial, and cyber security experience to assist mid-sized companies transition to the cloud environment. Financial analysis has been a primary thread through his career. Mr. Vachal consulted for such companies as AT&T, Dun & Bradstreet, after obtaining his MBA in Quantitative Studies and Masters in Management of Secure Information Systems. Mr. Vachal created, built, and sold Meridian Cyber Defense, which provided IT and cyber security support to the SMB market. He currently is a Client Executive for Soter Cloud Solutions.
Chief of Product Security at Blackboard, Inc.
Mr. Sanjiev Chattopadhya has been in the IT Security industry for almost 25 years. His past clients include Fortune 100 companies (Coca Cola, American Express, and Anthem BCBS) and US federal agencies (DHS, TSA and VA). He has served in a variety of roles, including CISO, Security Architect, Agile Evangelist, and GRC consultant. He is currently serving as the Chief of Product Security at Blackboard Inc., where he is leading FedRAMP and ISO compliance for its flagship product. He certified as a CISSP, CGEIT, and CRISC.
Dr. Chad Knights
Provost of Information and Engineering Technologies (IET) at Northern Virginia Community College (NOVA)
Dr. Chad Knights is the Provost of Information and Engineering Technologies (IET) at Northern Virginia Community College (NOVA), the largest public educational institution in Virginia. He is a strategic problem-solver who is passionate about serving the needs of both students and the business community through the creation of innovative industry-aligned degree programs. In the last year, Dr. Knights has spearheaded the creation of three new emerging technology degree programs at NOVA, which include one of the first Cloud Computing degrees in the nation. Knowing that not all students will look to immediately enter the workforce, Chad has worked with university partners to develop applied transfer degree opportunities that break away from the traditional academic model.
FedRAMP Program Manager for Cybersecurity
Brian Conrad joined the FedRAMP team in December 2018, bringing with him a wealth of technical knowledge and leadership experience. Prior to joining GSA, Brian served for 21 years in the United States Marine Corps, gaining experience in leadership, telecommunications/IT, government acquisition, and project management. At GSA, Brian leads efforts associated with formulating and facilitating FedRAMP’s overall strategic initiatives and future goals. Additionally, Brian works hand-in-hand with government and industry, developing an understanding of emerging technology and innovation. Finally, in the short term, Brian will be supporting Joint Authorization Board efforts by leading on-going assessment and authorization activities. Brian holds an M.S. in Information Technology Management from the U.S. Naval Postgraduate School, a B.A. in History with a minor in Economics from the University of Memphis, and various industry certifications.
Senior Director at NTT DATA Services
Sushila has worked as a Chief Information Security Officer for ten years and has twenty years’ experience in computing infrastructure, business and security. Sushila has consulted in many diverse areas including telecommunications, risk analysis, credit card fraud, and has served as a legal expert witness. She has worked with the insurance industry in Europe and America on methods of underwriting e-risk insurance based on ISO27001. She has published numerous articles in the computing press on risk and security, and has spoken at Segurinfo, Microsoft TechED, TechMentor, The Windows Show, FinSec and many other global technical events on diverse subjects ranging from managing risk to designing security baselines.
Security and Compliance Specialist at Google Cloud
Zeal Somani is a Security and Compliance Specialist within the Customer Engineering team at Google Cloud. At Google, Zeal helps customers migrate to the Google Cloud Platform by addressing their security and compliance requirements. Her focus is to make regulatory compliance cloud-native and resolve any blockers or friction when adopting GCP for running regulated workloads. Pre-Google, she was a PCI QSA where she assessed medium - large sized Retail and Banking firms. In her free time, she loves yoga, chai, and hikes!
Found and CEO of Waverly Labs
Juanita Koilpillai is Founder and CEO of Waverley Labs, a pioneer in software defined perimeters (SDP), Zero Trust and and digital risk reduction solutions. She has 30 years’ experience researching and developing systems in computer security, network management and real-time distributed software. She leads the open source software-defined perimeter (SDP) effort for ‘black’ apps in the cloud with the Cloud Security Alliance and is an active contributor to NIST leading the creation of a security risk index system for moving apps to the cloud (NIST 500-299). She was a key member of FEMA’s Enterprise Security Management Team and served as Principal Investigator for several DoD initiatives. She co-founded CyberWolf - an advanced automated attack warning system (now known as SEIMs) deployed by government and later acquired by Symantec.
Director of Sales and Engineering at Aporeto
Jody Scott has over 20 years of experience in Linux/UNIX Administration, Software Development, Network Engineering and Security. Currently Jody runs the Solutions Engineering team for Aporeto a Cloud/Container Security startup. Jody currently focuses on emerging (and securing) technologies such as Kubernetes, server-less functions and cloud native computing.
ISACA Members from Other Chapters: You will need to bring your ISACA Membership Card to the event to verify your ISACA Membership.
Presentations: Conference presentations will be included in the registrants' final event-related email message containing the CPE certificate and evaluation survey when permission is received from the presenter and their organization. In some cases, permission is not received.
Requests for Assistance: If you require assistance for an audio, visual, or other disability, please contact the Programs Director to discuss your needs, as soon as possible. We need as much advance notice as possible to determine whether requests can be accommodated. Thank You.
If you are unable to attend this event, you can cancel your registration. To receive a refund, all cancellations must be received by September 16, 2019. A $15 cancellation fee is charged.
To cancel, access your payment confirmation e-mail message and click the UNREGISTER link.
SPONSOR THIS EVENT
Earn up to 7 Continuing Professional Education (CPE) credits in the area of Specialized Knowledge. The ISACA® GWDC is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: http://www.learningmarket.org.
CPE Distribution and Evaluation Survey
CPE's will be distributed via e-mail along with the event evaluation survey by September 30, 2019. Attendees must be present the full day to receive full CPE credit.
- Prerequisites and Advance Preparation: N/A
- Program Knowledge Level: N/A
- Delivery Method: Live in person event