Automating Data Security measures in Cloud

Digital Transformation is leading to a growing trend in the adoption of cloud journey and multi-cloud strategy for the organizations. With workloads moving in the cloud, the concerns regarding data security and privacy have been the major focus areas for the organizations today.

Leading cloud providers illustrate on their websites the shared responsibility model for their users/customers where data security is the responsibility of cloud customer and not the cloud service provider. Whether you are going for IAAS, PAAS or SAAS, the data and security of data is the customer’s responsibility.

Also if you want to encrypt the data in the cloud, these CSP (Cloud Service Providers) natively support key management but the issue is that you don’t own the keys to the data. Owner of the keys is the cloud provider. That means CSP can look into your encrypted data which is not good and no organizations will want that.

Besides the above key issue there is other “functional” problem with using Cloud Service Provider (CSP) key management as mentioned below:

Encryption Key Visibility: CSPs portals provide limited visibility key management and access by their users and by the CSP privileged users.

Data Loss Risk: Insufficient authorization control or DR services to ensure keys are not accidentally or intentionally deleted.

Also when a request to delete cloud resource is made, this may not result in the true wiping of the data either because extra copies of data are stored but are not available or because the disk to be destroyed also stores data from other clients.

Attaining Compliance: Internal and external regulations require that encryption keys should be in control of cloud user than CSP.

Key Lifecycle Management: Native CSP key management services have limited ability to automate the lifecycle of keys, especially across multiple subscriptions.

A lot of manual interventions are there which is prone to human error and complications.

One of the major regulatory guidelines and security best practices call for “Decoupling of the encryption keys from data sets”. This means that Encryption Keys should always be segregated and separately managed from Application Owners in a certified Key management Solution (FIPs 140-2, level 3 above).

Above points are major reasons for organizations to consider a new approach and new controls being implemented while embarking on this cloud journey.

These new controls are:

Bring your own encryption (BYOE) – This gives you total control over securing your data in the cloud (for IAAS, PAAS scenarios).

Here you don’t use the native encryption technique provided by CSP but bring your own protection measures.

Bring your own Keys (BYOK) - All leading CSPs offers data at rest encryption and key management, but data protection mandates require that the keys are stored and managed by customers/users.

The CSP (cloud service providers) fulfil this requirement by enabling customer key control. This allows for creation, ownership, separation and control including revocation of encryption keys. This approach is called Bring your own key (BYOK).

Thales is a global leader in addressing the data security concerns for data on-premise and cloud and provides a single platform to discover, protect and control your sensitive data.

Trescon and Thales bring together a fireside chat session to discuss further with the eminent leaders from the industry on the above concern areas and way forward to this new multi-cloud trend.

Speakers

Bill Johnson

Founder and CEO,

TDi Technologies

Bill founded TDi Technologies to deliver 24/7/365 infrastructure management for mission critical government and corporate networks.

He is a recognized thought leader by such prestigious organizations as The SANS Technology Institute and the Software Security Institute – the first person to “sound the clarion call that we may be vulnerable to attacks via the baseboard management controller.”

Michael Dugent

Director, Technical Sales Engineering,

Nozomi Networks

Michael is a senior leader and one of the earliest employees of Nozomi Networks, and has a long background in ICS Cyber Security.

This includes 10 years with ICS Cyber Security startup Industrial Defender and leadership roles with Lockheed Martin’s commercial cyber security division focused on Industrial customers, and has delivered or managed hundreds cyber security projects in industrial environments.

At Nozomi, Michael spent several years building and leading the technical sales organization and now manages select critical accounts in EMEA.

Nick Haan

Field CTO,

Nozomi Networks

Nick has been working in industrial cyber security for more than 10 years now and holds a CISSP, CCSP, GICSP and GRID certification.

He has been involved in major projects world-wide for customers in the Oil and Gas, Utilities and Manufacturing space advising them how to enhance their cyber security according to standards like IEC61443, NIS and/or NERC-CIP.

Cal Jeffrey

GM, Partners,

Tempered Networks

Mr. Jeffrey has more than 30 years industry experience in network and cyber security.

His career includes a background of Super Computing, Classified Network Design (US Navy Contracts) and Critical Infrastructure Security design for some of the leading US Energy and Financial companies.

Currently, he is responsible for Global Strategic Partner development and management.

Kris Voorspoels

Regional Technical Manager,

OWL Cyber Defense Solutions

Kris, based in Abu Dhabi, has been helping critical infrastructure and government clients to implement Data Diode and the more advanced Cross Domain Solutions.

This includes multi-vendor technology integration studies around OT-IT network and cyber security technologies.

He is actively Involved in various Oil and Gas, Utility, and Government integration projects.

Toby Weir-Jones

Chief Product Officer,

Bayshore Networks

Toby has spent the past 20 years working in enterprise security product management, systems engineering, and technical marketing functions across the managed security service, telephony, IoT, and industrial sectors.

He is a named inventor on eight patents and holds BA and MBA degrees from Cornell University in Ithaca, NY, and an MBA from Queen’s University in Kingston, Ontario, Canada.

Khalid Aljamed

MEA Regional Sales Director & Country Manager,

Nozomi Networks

Khalid is a technology expert who lead multiple product launches, built diversified cross functional teams, strategic business alliances and mega projects across the Middle East & Africa region throughout his 15 year career in the industry.

Khalid has a broad and diversified experience in multiple technical, channels and sales leadership roles throughout his career at Alcatel-Lucent, Cisco and currently at Nozomi Networks.

Mohammad Siraj

Regional Director – Middle East,

Oregon Systems

OT and IoT focused Cyber Security consultant with an extensive background and experience in Cyber Security business across multiple sectors, including Industrial Control Systems and IoT.

A strategic visionary and transformational leader with a constant focus on solving customer problems with ICS Cyber Security, OT & IT convergence and IIOT threats mitigation solutions.

A trusted adviser with assured value business outcomes.

Dr. Manu Nair

General Manager – MENA Region,

Oregon Systems

Dr. Manu has more than 18 years’ experience in Cyber Security and Critical infrastructure protection for Various sectors across GCC.

Dr Manu has extensive expertise in Technical Consultation, Presales, OT /IOT and IIOT Security Audits & Standards, Strategic selling, problem-solving, Cyber security mitigation solutions and OT – IT convergence.

Waqas Younas

Cyber Intelligence Specialist,

Oregon Systems

Waqas Younas (Triple CCIE, CEH Master, ECSA) is a licensed cyber security specialist with over 10 years of multi-vendor experience in threat identification, mitigation & compliance across various industries (Critical Infrastructure, Financial, O&G, Energy).

He has led multiple cyber security design and integration of various security product lines in OT/IOT/IIoT space.

He focus on strategic security, zero trust architecture and in depth controls which he combines with leadership and communication.

Nidhin Nandakumar

Cyber Security Expert & Technical Consultant,

Oregon Systems

Nidhin is a Cyber security & Networking Subject matter expert specialized in the OT/IT Cyber security & Data Center networking domain with over 10 years of demonstrated experience in the industry.

Having worked closely & maintaining a consistent track-record with premium Critical infrastructure clients in the region, Nidhin has a bright portfolio including Amazon, Facebook, JP-Morgan Chase, BT and More.

IAN SEARLE

VP Technical Sales & Data Services,

Secure Channels Inc

Ian has more than 20 years experience in network and security consulting with large and global enterprise clients. He has an extensive background in network, storage, and cybersecurity infrastructure and services across multiple sectors.

He has specialized experience in cryptography, encryption key exchange protocols, authentication and privileged access technologies, and database security. Ian’s current focus is on cybersecurity technology integration, data-in-motion and data-at-rest security, and cyberthreat risk mitigation.

The Importance of OT & IIoT cyber security and how OT/IT convergence offers more robust protection with an Architectural Approach.

Who Should Attend?

Job Titles:

Industries:

Speakers

OT/IoT Focused Cybersecurity Solution

About Oregon Systems

Register

SPEAKERS

AGENDA

VENUE

REGISTER