About Sally Smoczynski Background in process improvement Consultant in Information Security, Service...
-
Upload
jeffrey-robinson -
Category
Documents
-
view
213 -
download
1
Transcript of About Sally Smoczynski Background in process improvement Consultant in Information Security, Service...
1
About Sally Smoczynski
• Background in process improvement• Consultant in Information Security, Service
Management and Business Continuity• Strong experience with implementing ISO standards
in above domains (ISO 27001, ISO 20000, PS-Prep)• Managing Partner @ Radian Compliance, LLC
Identifying a Risk Methodology to support
controls in Cloud Computing
3
Presentation Overview
Define Risk management Review Cloud computing Risks Relate back to Risk management process Closure
4
5
Cloud Computing
SAAS PAAS IAAS TAAS
Software as a Service
Platform as a Service
Infrastructure as a Service
Transparency as a Service
6
Risks in the cloud
• Data integrity• Recovery• Privacy • Legal issues in areas such as e-discovery, regulatory compliance,
and auditing• Secure data transfer• Secure software interfaces• Secure stored data• User access control• Data separation
7
8
Impa
ctVulnerability
Probability
9
Questions
10
Sally Smoczynski
Managing Partner,
Radian Compliance
630.728.7181