Day 2 - 29 November 2018

Developing Cloud Security Solutions

Gartner predicts that over $75 billion will be spent worldwide on infrastructure protection and security services in 2018.  As cloud computing takes a forefront for both consumer and enterprise computing, development of cloud security solutions is due to make up a large proportion of that spending.  With so much data now being stored in the cloud, the need for secure infrastructure is imperative.  Hear from industry professionals about how to develop robust solutions and strategies, plus how the future of cloud security will utilise technologies from AI and Machine Learning to Blockchain.

09:30AM

Craig Matsumoto

Senior Analyst

451 Research

Associated Talks:

09:50AM - Day 2

View Fireside Chat: National Cybersecurity Strategy at the DHS

09:30AM - Day 2

View Developing cloud security solutions: Chair’s welcome and opening comments

View Full Info

Developing cloud security solutions: Chair’s welcome and opening comments

. Craig Matsumoto, Senior Analyst, 451 Research
Hide Details
More Details

09:50AM

Hala Furst

Director, Cybersecurity and Innovation

U.S. Department of Homeland Security

Associated Talks:

09:50AM - Day 2

View Fireside Chat: National Cybersecurity Strategy at the DHS

View Full Info

Craig Matsumoto

Senior Analyst

451 Research

Associated Talks:

09:50AM - Day 2

View Fireside Chat: National Cybersecurity Strategy at the DHS

09:30AM - Day 2

View Developing cloud security solutions: Chair’s welcome and opening comments

View Full Info

Fireside Chat: National Cybersecurity Strategy at the DHS

A one on one discussion with Director for Cybersecurity & Innovation covering:

  • The recently released National Cybersecurity Strategy and DHS Cybersecurity Strategy, and what implementation means for industry.
  • The Department’s risk-based posture towards cybersecurity threats
  • Best practices and resources for businesses of any size

Plus an opportunity to ask your questions.

. Hala Furst, Director, Cybersecurity and Innovation, U.S. Department of Homeland Security
. Craig Matsumoto, Senior Analyst, 451 Research
Hide Details
More Details

10:20AM

Khelan Bhatt

Global Director, Security Architecture

Anheuser-Busch InBev

Associated Talks:

10:20AM - Day 2

View Keynote: Developing an effective cloud cyber security solution

View Full Info

Keynote: Developing an effective cloud cyber security solution

. Khelan Bhatt, Global Director, Security Architecture, Anheuser-Busch InBev
Hide Details
More Details

10:50AM

Craig Matsumoto

Senior Analyst

451 Research

Associated Talks:

09:50AM - Day 2

View Fireside Chat: National Cybersecurity Strategy at the DHS

09:30AM - Day 2

View Developing cloud security solutions: Chair’s welcome and opening comments

View Full Info

Jake Margolis

CISO

Metropolitan Water District of Southern California

Associated Talks:

02:30PM - Day 1

View Developing your Cybersecurity Procurement Strategy

10:50AM - Day 2

View Panel: Am I using the cloud securely?

View Full Info

Sam Fuller

Director of Strategy & Solutions Marketing, Digital Networking

NXP Semiconductor

Associated Talks:

10:50AM - Day 2

View Panel: Am I using the cloud securely?

09:50AM - Day 2

View IoT Innovation: Connectivity

View Full Info

Panel: Am I using the cloud securely?

  • Examining the current state of cloud security vs traditional IT systems
  • How do organisation develop cloud strategies that are secure, and account for data storage?
  • What innovations are there, and what more do we need to see to counter emerging threats in the next five years?
Moderator: . Craig Matsumoto, Senior Analyst, 451 Research
. Jake Margolis, CISO, Metropolitan Water District of Southern California
. Sam Fuller, Director of Strategy & Solutions Marketing, Digital Networking, NXP Semiconductor
Hide Details
More Details

11:30AM

Networking Break

12:10PM

It’s not you, it’s me: How the shared responsibility model for cloud security still slips through

Security in the cloud is – and always has been – a two-way street defined as the vendor being responsible for security ‘of’ the cloud – software and hardware – while the customer is responsible for security ‘in’ the cloud – data, OS, identity and access management, and so forth. So why do companies still struggle?

This talk will address:

  • Examples of where shares responsibility model has been effective, and examples where it has failed.
  • Where does the vendors responsibility end and the customers start?
  • The role of standards and compliance to aiding share responsibility models.
Hide Details
More Details

12:40PM

Case Study: How machine learning is improving cloud security

  • Detecting threats before they happen
  • Securing organisations’ entire portfolio of cloud apps
  • How cloud providers, third-party vendors and users can all work together
  • The impact of machine learning on compliance
Hide Details
More Details

01:00PM

Bill Yue Chen

Chief Security Architect

Multinational Financial Services Company

Associated Talks:

01:00PM - Day 2

View How to build enterprise worthy cloud services

View Full Info

How to build enterprise worthy cloud services

. Bill Yue Chen, Chief Security Architect, Multinational Financial Services Company
Hide Details
More Details

01:30PM

Networking Break

02:40PM

Michael Sheppard

Manager, Application Security

Domino's

Associated Talks:

02:40PM - Day 2

View Keynote: Domino’s Delivery of a Faster Response was no Standard Order

03:10PM - Day 2

View Panel: How artificial intelligence and blockchain are the battlegrounds for the next security wars

View Full Info

Keynote: Domino’s Delivery of a Faster Response was no Standard Order

This talk presents Domino’s cutting-edge Automated Application Security Risk Engagement process leveraging integration between Atlassian Confluence and JIRA as well as highlights our custom Risk Form Handler which automatically creates and assigns Security Requirements Tickets in JIRA.   Lastly, we will present our Splunk ITSI Application Security KPI Dashboard illustrating our Domino’s E-Comm, Pulse and NGP Development Security Posture and related KPIs.

. Michael Sheppard, Manager, Application Security, Domino's
Hide Details
More Details

03:10PM

Abhi Dugar

Research Director, Network Infrastructure and IoT Security

IDC

View Full Info

Mark Jackson

Scientific Lead, Business Development

Cambridge Quantum Computing

Associated Talks:

03:10PM - Day 2

View Panel: How artificial intelligence and blockchain are the battlegrounds for the next security wars

View Full Info

Michael Sheppard

Manager, Application Security

Domino's

Associated Talks:

02:40PM - Day 2

View Keynote: Domino’s Delivery of a Faster Response was no Standard Order

03:10PM - Day 2

View Panel: How artificial intelligence and blockchain are the battlegrounds for the next security wars

View Full Info

Panel: How artificial intelligence and blockchain are the battlegrounds for the next security wars

  • Artificial intelligence, machine learning, and blockchain, are emerging tech cited as key in an increasingly complex security environment, but what challenges do these technologies pose?
  • Many key players are using security awareness and infrastructure is a key feature to differentiate themselves within the cloud wars, so how will this dictate how the market evolves?
  • As the hyperscalers are moving further up the stack to find the latest battleground – so who is going to come out on top?
  • Real life examples of where AI, ML and Blockchain are being utilised for security
Moderator: . Abhi Dugar, Research Director, Network Infrastructure and IoT Security, IDC
. Mark Jackson, Scientific Lead, Business Development, Cambridge Quantum Computing
. Michael Sheppard, Manager, Application Security, Domino's
Hide Details
More Details

03:50PM

Networking Break

04:10PM

Case Study: Serverless apps – vulnerabilities and security best practices

  • Serverless architectures will certainly impact the future of computing through its scalability and compatibility – but can it also impact traditional security methods?
  • The rise of serverless architectures and applications and its relationship with cloud
  • Exploring responsibility – the data centre and network vs. the application layer
  • Looking at common faults – injection flaws, authentication, insecure configuration and more
  • Key steps that can be taken to secure serverless apps
Hide Details
More Details

04:30PM

Best practices for Security Developers

  • How and when to integrate Identity Access Management (IAM) systems throughout development
  • Considering architectures and tools
  • What other aspects do you need to consider best practices for? Performance? Compliance? Testing?
Hide Details
More Details

05:00PM

Session Close