1 00:00:00,0 --> 00:00:00,0 hi everyone I'm eileena armstrong 2 00:00:00,0 --> 00:00:00,0 president of the cloud security alliance 3 00:00:00,0 --> 00:00:00,0 and it is 4 00:00:00,0 --> 00:00:00,0 my pleasure to welcome you to our season summit 5 00:00:00,0 --> 00:00:00,0 at the rsa conference 6 00:00:00,0 --> 00:00:00,0 many of you may know that each year we hold 7 00:00:00,0 --> 00:00:00,0 an event at rsa 8 00:00:00,0 --> 00:00:00,0 and typically we really dedicated to all things 9 00:00:00,0 --> 00:00:00,0 cloud security cloud security 10 00:00:00,0 --> 00:00:00,0 this year we're doing that 11 00:00:00,0 --> 00:00:00,0 but we're concentrating 12 00:00:00,0 --> 00:00:00,0 on the c suite particularly the c so 13 00:00:00,0 --> 00:00:00,0 and there are a couple of reasons 14 00:00:00,0 --> 00:00:00,0 we've decided to dedicate our time at rsa too 15 00:00:00,0 --> 00:00:00,0 so summit and helping you to 16 00:00:00,0 --> 00:00:00,0 learn about strategies that you could apply 17 00:00:00,0 --> 00:00:00,0 in your own enterprises 18 00:00:00,0 --> 00:00:00,0 and so to kick this event off 19 00:00:00,0 --> 00:00:00,0 I wanted to share with you 20 00:00:00,0 --> 00:00:00,0 some of the reasons why 21 00:00:00,0 --> 00:00:00,0 we're doing that this year 22 00:00:00,0 --> 00:00:00,0 so obviously 23 00:00:00,0 --> 00:00:00,0 when it comes to our current situation right now 24 00:00:00,0 --> 00:00:00,0 cloud is most assuredly the top priority 25 00:00:00,0 --> 00:00:00,0 and before we get into 26 00:00:00,0 --> 00:00:00,0 all of the reasons why that is 27 00:00:00,0 --> 00:00:00,0 and many of which I'm sure you're quite aware 28 00:00:00,0 --> 00:00:00,0 we're going to 29 00:00:00,0 --> 00:00:00,0 talk a little bit I'd like to talk a little bit about 30 00:00:00,0 --> 00:00:00,0 the cloud security alliance and how 31 00:00:00,0 --> 00:00:00,0 what we've been doing over the last 32 00:00:00,0 --> 00:00:00,0 12 years just to reappoint you to 33 00:00:00,0 --> 00:00:00,0 with some of our products 34 00:00:00,0 --> 00:00:00,0 and then talk about some 35 00:00:00,0 --> 00:00:00,0 initiatives that were undertaking 36 00:00:00,0 --> 00:00:00,0 right now so 37 00:00:00,0 --> 00:00:00,0 obviously we've been around 38 00:00:00,0 --> 00:00:00,0 for many many years 39 00:00:00,0 --> 00:00:00,0 we we started our organization 12 years ago 40 00:00:00,0 --> 00:00:00,0 and we've been dedicated to helping 41 00:00:00,0 --> 00:00:00,0 organizations 42 00:00:00,0 --> 00:00:00,0 different types of entities 43 00:00:00,0 --> 00:00:00,0 of all sizes 44 00:00:00,0 --> 00:00:00,0 securing helping them to secure their cloud 45 00:00:00,0 --> 00:00:00,0 obviously given the 46 00:00:00,0 --> 00:00:00,0 breadth of our product offerings 47 00:00:00,0 --> 00:00:00,0 we really have been able to position ourselves 48 00:00:00,0 --> 00:00:00,0 as a non profit 49 00:00:00,0 --> 00:00:00,0 in this way of being unquestioned 50 00:00:00,0 --> 00:00:00,0 and certainly vendor neutral 51 00:00:00,0 --> 00:00:00,0 in addition to having this war chest 52 00:00:00,0 --> 00:00:00,0 of intellectual property 53 00:00:00,0 --> 00:00:00,0 which I kind of point out here 54 00:00:00,0 --> 00:00:00,0 we're known for other things as well 55 00:00:00,0 --> 00:00:00,0 so obviously many of you are part of our membership 56 00:00:00,0 --> 00:00:00,0 we offer corporate memberships whereby we really help 57 00:00:00,0 --> 00:00:00,0 and support our member organizations with developing 58 00:00:00,0 --> 00:00:00,0 and sort of progressing their cloud strategies 59 00:00:00,0 --> 00:00:00,0 ensuring that they're keeping in 60 00:00:00,0 --> 00:00:00,0 mind things like 61 00:00:00,0 --> 00:00:00,0 governance privacy security compliance issues 62 00:00:00,0 --> 00:00:00,0 we also offer 63 00:00:00,0 --> 00:00:00,0 a bevy of events just like this one 64 00:00:00,0 --> 00:00:00,0 for the last year of course just 65 00:00:00,0 --> 00:00:00,0 as many of you have been doing we're doing 66 00:00:00,0 --> 00:00:00,0 a lot of our events moline 67 00:00:00,0 --> 00:00:00,0 so we have our series of cloud whites events 68 00:00:00,0 --> 00:00:00,0 and then we have some live events 69 00:00:00,0 --> 00:00:00,0 we are looking to hold our 70 00:00:00,0 --> 00:00:00,0 live September event this fall 71 00:00:00,0 --> 00:00:00,0 and I'll talk more about that 72 00:00:00,0 --> 00:00:00,0 as we move forward 73 00:00:00,0 --> 00:00:00,0 but in the meantime 74 00:00:00,0 --> 00:00:00,0 I shouldn't forget our chapters 75 00:00:00,0 --> 00:00:00,0 so in addition to corporate membership 76 00:00:00,0 --> 00:00:00,0 we have individuals who participate in very 77 00:00:00,0 --> 00:00:00,0 since sundry chapters 78 00:00:00,0 --> 00:00:00,0 north america 79 00:00:00,0 --> 00:00:00,0 amia apac all the regions in which we play 80 00:00:00,0 --> 00:00:00,0 some role we have 81 00:00:00,0 --> 00:00:00,0 you know team members placed in these 82 00:00:00,0 --> 00:00:00,0 various regions 83 00:00:00,0 --> 00:00:00,0 so 84 00:00:00,0 --> 00:00:00,0 we want to make sure that we're covering those as well 85 00:00:00,0 --> 00:00:00,0 so there are a few ways that 86 00:00:00,0 --> 00:00:00,0 you and your organizations can work with us 87 00:00:00,0 --> 00:00:00,0 in addition to 88 00:00:00,0 --> 00:00:00,0 the different types of membership and the events 89 00:00:00,0 --> 00:00:00,0 our research team is absolutely indefatigable in 90 00:00:00,0 --> 00:00:00,0 releasing 91 00:00:00,0 --> 00:00:00,0 countless research assets throughout the year 92 00:00:00,0 --> 00:00:00,0 so they look at 93 00:00:00,0 --> 00:00:00,0 all of the challenges 94 00:00:00,0 --> 00:00:00,0 that we're all facing today when it comes to the cloud 95 00:00:00,0 --> 00:00:00,0 but then they 96 00:00:00,0 --> 00:00:00,0 also make sure that they're staying ahead of the curve 97 00:00:00,0 --> 00:00:00,0 and looking at any kind of technological 98 00:00:00,0 --> 00:00:00,0 developments that could impact you and 99 00:00:00,0 --> 00:00:00,0 your cloud ecosystems 100 00:00:00,0 --> 00:00:00,0 of course training and certificates 101 00:00:00,0 --> 00:00:00,0 our training and certificate program is huge 102 00:00:00,0 --> 00:00:00,0 we launched with our 103 00:00:00,0 --> 00:00:00,0 certificate of cloud security knowledge 104 00:00:00,0 --> 00:00:00,0 back in the day 105 00:00:00,0 --> 00:00:00,0 and that's going gain busters of course 106 00:00:00,0 --> 00:00:00,0 because there is this need for 107 00:00:00,0 --> 00:00:00,0 professionals to have 108 00:00:00,0 --> 00:00:00,0 a very strong dedicated cloud security knowledge 109 00:00:00,0 --> 00:00:00,0 but recently in partnership with osaka 110 00:00:00,0 --> 00:00:00,0 we also launched our 111 00:00:00,0 --> 00:00:00,0 certificate of cloud audit knowledge 112 00:00:00,0 --> 00:00:00,0 just to make sure that we're 113 00:00:00,0 --> 00:00:00,0 you know capturing that whole cycle of 114 00:00:00,0 --> 00:00:00,0 securing and protecting cloud environments 115 00:00:00,0 --> 00:00:00,0 and of course the data all of that ip 116 00:00:00,0 --> 00:00:00,0 that one can find in those 117 00:00:00,0 --> 00:00:00,0 different infrastructures or ecosystems 118 00:00:00,0 --> 00:00:00,0 and of course then we have our cloud controls matrix 119 00:00:00,0 --> 00:00:00,0 we just released this year version 4 120 00:00:00,0 --> 00:00:00,0 and that really shows all of these 121 00:00:00,0 --> 00:00:00,0 security controls and requirements 122 00:00:00,0 --> 00:00:00,0 you need to pay attention to 123 00:00:00,0 --> 00:00:00,0 when it comes to your 124 00:00:00,0 --> 00:00:00,0 migrating workloads to the cloud and working with your 125 00:00:00,0 --> 00:00:00,0 cloud vendors 126 00:00:00,0 --> 00:00:00,0 our consensus assessment initiative questionnaire 127 00:00:00,0 --> 00:00:00,0 or cake is undergoing 128 00:00:00,0 --> 00:00:00,0 update as well 129 00:00:00,0 --> 00:00:00,0 so if you're interested in learning more about that 130 00:00:00,0 --> 00:00:00,0 you can go to our website 131 00:00:00,0 --> 00:00:00,0 but basically that really helps cloud consumers 132 00:00:00,0 --> 00:00:00,0 as well as auditors 133 00:00:00,0 --> 00:00:00,0 ask questions of their providers 134 00:00:00,0 --> 00:00:00,0 to ensure that they are in compliance with the 135 00:00:00,0 --> 00:00:00,0 cloud controls matrix they're really dedicating 136 00:00:00,0 --> 00:00:00,0 themselves to 137 00:00:00,0 --> 00:00:00,0 ensuring that they're 138 00:00:00,0 --> 00:00:00,0 mindful of all of the security requirements 139 00:00:00,0 --> 00:00:00,0 when it comes to cloud environments and migrating those 140 00:00:00,0 --> 00:00:00,0 critical workloads to the cloud 141 00:00:00,0 --> 00:00:00,0 our star registry 142 00:00:00,0 --> 00:00:00,0 which is our security trust assurance and risk registry 143 00:00:00,0 --> 00:00:00,0 really helps companies find providers 144 00:00:00,0 --> 00:00:00,0 who are taking security seriously 145 00:00:00,0 --> 00:00:00,0 they are 146 00:00:00,0 --> 00:00:00,0 at the right level of 147 00:00:00,0 --> 00:00:00,0 security and data privacy 148 00:00:00,0 --> 00:00:00,0 for your organization 149 00:00:00,0 --> 00:00:00,0 so you can always check that star registry out to see 150 00:00:00,0 --> 00:00:00,0 what organizations have placed 151 00:00:00,0 --> 00:00:00,0 have met certain requirements to be listed 152 00:00:00,0 --> 00:00:00,0 but in association with that 153 00:00:00,0 --> 00:00:00,0 we've also recently launched our 154 00:00:00,0 --> 00:00:00,0 trusted cloud provider trust mark 155 00:00:00,0 --> 00:00:00,0 and that really is a 156 00:00:00,0 --> 00:00:00,0 recognition I should say it's really a recognition of 157 00:00:00,0 --> 00:00:00,0 how cloud providers 158 00:00:00,0 --> 00:00:00,0 are really demonstrating their commitment to 159 00:00:00,0 --> 00:00:00,0 having and 160 00:00:00,0 --> 00:00:00,0 maintaining a holistic 161 00:00:00,0 --> 00:00:00,0 security program 162 00:00:00,0 --> 00:00:00,0 when it comes to their offerings 163 00:00:00,0 --> 00:00:00,0 and so in our star registry 164 00:00:00,0 --> 00:00:00,0 you'll see that trust mark that recognition 165 00:00:00,0 --> 00:00:00,0 by those organizations that have met that and with 166 00:00:00,0 --> 00:00:00,0 our launch of our 167 00:00:00,0 --> 00:00:00,0 trusted cloud provider trust mark 168 00:00:00,0 --> 00:00:00,0 we also announced our first cohort 169 00:00:00,0 --> 00:00:00,0 of cloud providers who have met the requirements to 170 00:00:00,0 --> 00:00:00,0 hold that that trust mark so definitely check that out 171 00:00:00,0 --> 00:00:00,0 obviously we do a heck of a lot more 172 00:00:00,0 --> 00:00:00,0 and we've just 173 00:00:00,0 --> 00:00:00,0 cloud security and cloud 174 00:00:00,0 --> 00:00:00,0 we've released just tons of emp 175 00:00:00,0 --> 00:00:00,0 and worked with any number of entities 176 00:00:00,0 --> 00:00:00,0 missed other government organizations 177 00:00:00,0 --> 00:00:00,0 in europe and apac to 178 00:00:00,0 --> 00:00:00,0 really just protect this overarching 179 00:00:00,0 --> 00:00:00,0 infrastructure on which we're all now relying 180 00:00:00,0 --> 00:00:00,0 and we've done that in a way 181 00:00:00,0 --> 00:00:00,0 where we've released a lot of technical 182 00:00:00,0 --> 00:00:00,0 and operational information 183 00:00:00,0 --> 00:00:00,0 and guidance but now we want to ensure that we're also 184 00:00:00,0 --> 00:00:00,0 tackling that strategic level 185 00:00:00,0 --> 00:00:00,0 to really arm the sea suite particularly seesaws 186 00:00:00,0 --> 00:00:00,0 with information that can help them 187 00:00:00,0 --> 00:00:00,0 kind of oversee 188 00:00:00,0 --> 00:00:00,0 and evolve their cloud security programs 189 00:00:00,0 --> 00:00:00,0 and maintain their cloud ecosystems 190 00:00:00,0 --> 00:00:00,0 so 191 00:00:00,0 --> 00:00:00,0 one of the reasons of course that we're looking to 192 00:00:00,0 --> 00:00:00,0 have this initiative is 193 00:00:00,0 --> 00:00:00,0 because cloud has become the primary business model 194 00:00:00,0 --> 00:00:00,0 for most organizations 195 00:00:00,0 --> 00:00:00,0 and I'm sure that's a point on which we all can agree 196 00:00:00,0 --> 00:00:00,0 and as a result of that 197 00:00:00,0 --> 00:00:00,0 cloud has become 198 00:00:00,0 --> 00:00:00,0 the 199 00:00:00,0 --> 00:00:00,0 priority the top priority for most organizations now 200 00:00:00,0 --> 00:00:00,0 and one could definitely surmise 201 00:00:00,0 --> 00:00:00,0 that not only is it the top priority now 202 00:00:00,0 --> 00:00:00,0 but it's probably going to be right up there 203 00:00:00,0 --> 00:00:00,0 on the list that to do list 204 00:00:00,0 --> 00:00:00,0 for a mighty long time to come 205 00:00:00,0 --> 00:00:00,0 so it only makes sense that 206 00:00:00,0 --> 00:00:00,0 given our history and given where 207 00:00:00,0 --> 00:00:00,0 the 208 00:00:00,0 --> 00:00:00,0 the businesses are 209 00:00:00,0 --> 00:00:00,0 and really relying on 210 00:00:00,0 --> 00:00:00,0 all of these different types of cloud providers 211 00:00:00,0 --> 00:00:00,0 and migrating so many of their workloads to 212 00:00:00,0 --> 00:00:00,0 the cloud that csa 213 00:00:00,0 --> 00:00:00,0 connects pesos 214 00:00:00,0 --> 00:00:00,0 and other sea level executives 215 00:00:00,0 --> 00:00:00,0 more tightly with one another 216 00:00:00,0 --> 00:00:00,0 but also that we're connecting the sea suite 217 00:00:00,0 --> 00:00:00,0 to 218 00:00:00,0 --> 00:00:00,0 other organizations 219 00:00:00,0 --> 00:00:00,0 and the wider industry so we want to be 220 00:00:00,0 --> 00:00:00,0 we want to be sure that we're 221 00:00:00,0 --> 00:00:00,0 enabling the sea suite to 222 00:00:00,0 --> 00:00:00,0 very closely partner with their providers 223 00:00:00,0 --> 00:00:00,0 ensuring that the solutions on which they're relying 224 00:00:00,0 --> 00:00:00,0 are really headed 225 00:00:00,0 --> 00:00:00,0 in the right direction and meeting their needs 226 00:00:00,0 --> 00:00:00,0 and we want to make sure too that 227 00:00:00,0 --> 00:00:00,0 the sea suite is 228 00:00:00,0 --> 00:00:00,0 working closely with any of those bodies that 229 00:00:00,0 --> 00:00:00,0 implement standards 230 00:00:00,0 --> 00:00:00,0 or requirements or even legislation 231 00:00:00,0 --> 00:00:00,0 that could impact how their 232 00:00:00,0 --> 00:00:00,0 working and 233 00:00:00,0 --> 00:00:00,0 how they're relying 234 00:00:00,0 --> 00:00:00,0 on the cloud so 235 00:00:00,0 --> 00:00:00,0 we're looking to launch what I have here 236 00:00:00,0 --> 00:00:00,0 sea sweet initiative and we're calling it our csa 6 237 00:00:00,0 --> 00:00:00,0 trust and it's going to be based on three pillars 238 00:00:00,0 --> 00:00:00,0 where we will establish a very strong robust 239 00:00:00,0 --> 00:00:00,0 trusted community of 240 00:00:00,0 --> 00:00:00,0 sea level executives 241 00:00:00,0 --> 00:00:00,0 again primarily focusing on season 242 00:00:00,0 --> 00:00:00,0 but engaging with all of the other 243 00:00:00,0 --> 00:00:00,0 stakeholders in an organization 244 00:00:00,0 --> 00:00:00,0 that has a vested interest in ensuring that their 245 00:00:00,0 --> 00:00:00,0 cloud journeys that digital transformation 246 00:00:00,0 --> 00:00:00,0 that all these organizations are undertaking 247 00:00:00,0 --> 00:00:00,0 is on point and solidly managed 248 00:00:00,0 --> 00:00:00,0 from there we 249 00:00:00,0 --> 00:00:00,0 obviously will make sure that this 250 00:00:00,0 --> 00:00:00,0 trusted community of professionals and leaders 251 00:00:00,0 --> 00:00:00,0 in the industry 252 00:00:00,0 --> 00:00:00,0 really establishes a strong collective voice 253 00:00:00,0 --> 00:00:00,0 and we want that voice to be extremely influential 254 00:00:00,0 --> 00:00:00,0 influential on one another 255 00:00:00,0 --> 00:00:00,0 and in their respective organizations influential 256 00:00:00,0 --> 00:00:00,0 with the 257 00:00:00,0 --> 00:00:00,0 provider the vendor community making sure that 258 00:00:00,0 --> 00:00:00,0 the providers are really 259 00:00:00,0 --> 00:00:00,0 meeting the needs of the sea suite 260 00:00:00,0 --> 00:00:00,0 and the organizations they serve 261 00:00:00,0 --> 00:00:00,0 and then of course 262 00:00:00,0 --> 00:00:00,0 like I said the wider industry 263 00:00:00,0 --> 00:00:00,0 we already have been working with 264 00:00:00,0 --> 00:00:00,0 any number of government agencies 265 00:00:00,0 --> 00:00:00,0 nest etc but 266 00:00:00,0 --> 00:00:00,0 if as cloud has evolved 267 00:00:00,0 --> 00:00:00,0 no doubt there could be future legislation 268 00:00:00,0 --> 00:00:00,0 so we want to make sure 269 00:00:00,0 --> 00:00:00,0 that our seasons 270 00:00:00,0 --> 00:00:00,0 and us we have that voice that influential voice 271 00:00:00,0 --> 00:00:00,0 to ensure whatever 272 00:00:00,0 --> 00:00:00,0 is getting discussed and possibly passed is really 273 00:00:00,0 --> 00:00:00,0 solid and helpful 274 00:00:00,0 --> 00:00:00,0 rather than causing any kind of impediments or 275 00:00:00,0 --> 00:00:00,0 challenges additional challenges 276 00:00:00,0 --> 00:00:00,0 for seasons and their sea level partners 277 00:00:00,0 --> 00:00:00,0 it's not like you guys don't have enough 278 00:00:00,0 --> 00:00:00,0 challenges as it is 279 00:00:00,0 --> 00:00:00,0 so one of the 280 00:00:00,0 --> 00:00:00,0 things I wanted to do very quickly is kind of 281 00:00:00,0 --> 00:00:00,0 take a look back 282 00:00:00,0 --> 00:00:00,0 and see where we were last year so co hit 283 00:00:00,0 --> 00:00:00,0 and even if some organizations were sort of on their 284 00:00:00,0 --> 00:00:00,0 digital transformation journeys 285 00:00:00,0 --> 00:00:00,0 certainly last year helped to 286 00:00:00,0 --> 00:00:00,0 usher the embrace of cloud even more intensely 287 00:00:00,0 --> 00:00:00,0 and what we can see from this particular survey 288 00:00:00,0 --> 00:00:00,0 is that at the time 289 00:00:00,0 --> 00:00:00,0 it was June you know we were all dealing with covet 290 00:00:00,0 --> 00:00:00,0 about 20 head six or more cloud providers 291 00:00:00,0 --> 00:00:00,0 a little over half or very much concerned about 292 00:00:00,0 --> 00:00:00,0 data confidentiality and privacy in public cloud 293 00:00:00,0 --> 00:00:00,0 they were adopting sass based delivering models 294 00:00:00,0 --> 00:00:00,0 in the meantime 295 00:00:00,0 --> 00:00:00,0 they were dealing with 296 00:00:00,0 --> 00:00:00,0 teams 297 00:00:00,0 --> 00:00:00,0 that lacked the cloud security knowledge they needed 298 00:00:00,0 --> 00:00:00,0 but now we jump ahead here 299 00:00:00,0 --> 00:00:00,0 and so in partnership with algol 300 00:00:00,0 --> 00:00:00,0 csa released a survey where we wanted to kind of assess 301 00:00:00,0 --> 00:00:00,0 the landscape and where organizations were now 302 00:00:00,0 --> 00:00:00,0 that we all had to kind of 303 00:00:00,0 --> 00:00:00,0 you know there are many organizations scrambling 304 00:00:00,0 --> 00:00:00,0 just pushing forward 305 00:00:00,0 --> 00:00:00,0 quite aggressively their digital transformations 306 00:00:00,0 --> 00:00:00,0 we had about 2 000 people or so 307 00:00:00,0 --> 00:00:00,0 it and it security leaders respond to this survey 308 00:00:00,0 --> 00:00:00,0 so more than 50 are running 41 309 00:00:00,0 --> 00:00:00,0 % or more of their workloads in a public cloud 310 00:00:00,0 --> 00:00:00,0 and that's up from 25 311 00:00:00,0 --> 00:00:00,0 63 expect to run 41 312 00:00:00,0 --> 00:00:00,0 or more of their workloads in a public cloud this year 313 00:00:00,0 --> 00:00:00,0 another 62 have a multi cloud strategy and 314 00:00:00,0 --> 00:00:00,0 27 % are using three 315 00:00:00,0 --> 00:00:00,0 or more public cloud platforms 316 00:00:00,0 --> 00:00:00,0 and then as far as the 317 00:00:00,0 --> 00:00:00,0 major cloud infrastructure providers 318 00:00:00,0 --> 00:00:00,0 the market shares pretty evenly split 319 00:00:00,0 --> 00:00:00,0 aws is the front runner 67 320 00:00:00,0 --> 00:00:00,0 and then you have the likes of azure and other 321 00:00:00,0 --> 00:00:00,0 coming in 322 00:00:00,0 --> 00:00:00,0 right behind 323 00:00:00,0 --> 00:00:00,0 the reasons that these organizations the respondents 324 00:00:00,0 --> 00:00:00,0 move to the cloud 325 00:00:00,0 --> 00:00:00,0 are all the usual suspects but reduce clouds 326 00:00:00,0 --> 00:00:00,0 increased agility elasticity improved up time 327 00:00:00,0 --> 00:00:00,0 and certainly the cloud has now been quite 328 00:00:00,0 --> 00:00:00,0 tried and true for organizations when it comes to 329 00:00:00,0 --> 00:00:00,0 their develops ops 330 00:00:00,0 --> 00:00:00,0 initiatives and on average respondents were meeting or 331 00:00:00,0 --> 00:00:00,0 found that their providers were meeting or exceeding 332 00:00:00,0 --> 00:00:00,0 these expectations 333 00:00:00,0 --> 00:00:00,0 as far as the cloud can 334 00:00:00,0 --> 00:00:00,0 security concerns for many other responses again 335 00:00:00,0 --> 00:00:00,0 I'm sure there are no surprises here 336 00:00:00,0 --> 00:00:00,0 some of the seesaws with whom we've been speaking 337 00:00:00,0 --> 00:00:00,0 as we looked to 338 00:00:00,0 --> 00:00:00,0 build a roadmap for our co trust program 339 00:00:00,0 --> 00:00:00,0 certainly found that compliance was a pretty 340 00:00:00,0 --> 00:00:00,0 high priority for them 341 00:00:00,0 --> 00:00:00,0 but 342 00:00:00,0 --> 00:00:00,0 according to this survey network security remain quite 343 00:00:00,0 --> 00:00:00,0 quite 344 00:00:00,0 --> 00:00:00,0 major a worry and then again we saw this 345 00:00:00,0 --> 00:00:00,0 idea that teams 346 00:00:00,0 --> 00:00:00,0 just lack that cloud security knowledge 347 00:00:00,0 --> 00:00:00,0 that specific cloud security knowledge 348 00:00:00,0 --> 00:00:00,0 that organizations are requiring and not only that 349 00:00:00,0 --> 00:00:00,0 but as you can see 350 00:00:00,0 --> 00:00:00,0 many felt that they did not have enough 351 00:00:00,0 --> 00:00:00,0 staff to actually address all of the cloud 352 00:00:00,0 --> 00:00:00,0 security concerns 353 00:00:00,0 --> 00:00:00,0 and then of course 354 00:00:00,0 --> 00:00:00,0 the 355 00:00:00,0 --> 00:00:00,0 migration of workloads to the cloud was a challenge 356 00:00:00,0 --> 00:00:00,0 the integration 357 00:00:00,0 --> 00:00:00,0 of these cloud ecosystems with the existing it 358 00:00:00,0 --> 00:00:00,0 infrastructure 359 00:00:00,0 --> 00:00:00,0 kind of an issue 360 00:00:00,0 --> 00:00:00,0 and you know some of the other 361 00:00:00,0 --> 00:00:00,0 smaller 362 00:00:00,0 --> 00:00:00,0 worries were things like cost and legal concerns 363 00:00:00,0 --> 00:00:00,0 and lack of visibility 364 00:00:00,0 --> 00:00:00,0 the teams managing 365 00:00:00,0 --> 00:00:00,0 the security and the public cloud no surprise here 366 00:00:00,0 --> 00:00:00,0 obviously there are those large organizations that 367 00:00:00,0 --> 00:00:00,0 had the luxury of a cloud team so we saw 18 368 00:00:00,0 --> 00:00:00,0 there but for most 369 00:00:00,0 --> 00:00:00,0 they turned to their 370 00:00:00,0 --> 00:00:00,0 security teams or their it teams to help 371 00:00:00,0 --> 00:00:00,0 you know to sort of 372 00:00:00,0 --> 00:00:00,0 lead the charge and managing security 373 00:00:00,0 --> 00:00:00,0 and there were a small number of respondents that 374 00:00:00,0 --> 00:00:00,0 depended on manage security service providers 375 00:00:00,0 --> 00:00:00,0 network teams etc 376 00:00:00,0 --> 00:00:00,0 so 377 00:00:00,0 --> 00:00:00,0 framing all of that 378 00:00:00,0 --> 00:00:00,0 seeing how 379 00:00:00,0 --> 00:00:00,0 co kind of ushered 380 00:00:00,0 --> 00:00:00,0 this 381 00:00:00,0 --> 00:00:00,0 embrace of cloud even more for some organizations 382 00:00:00,0 --> 00:00:00,0 although there are quite a bevy 383 00:00:00,0 --> 00:00:00,0 of companies that sense like 2012 were really 384 00:00:00,0 --> 00:00:00,0 pretty aggressive 385 00:00:00,0 --> 00:00:00,0 and migrating their workloads to the cloud 386 00:00:00,0 --> 00:00:00,0 it is obvious that cloud is the future 387 00:00:00,0 --> 00:00:00,0 and it is the business model that many organizations 388 00:00:00,0 --> 00:00:00,0 are relying on when it comes to 389 00:00:00,0 --> 00:00:00,0 you know 390 00:00:00,0 --> 00:00:00,0 just impairing their organizations with that computing 391 00:00:00,0 --> 00:00:00,0 power they need 392 00:00:00,0 --> 00:00:00,0 so the csa's co trust really will be all about 393 00:00:00,0 --> 00:00:00,0 seeking a common 394 00:00:00,0 --> 00:00:00,0 understanding and knowledge of cloud computing 395 00:00:00,0 --> 00:00:00,0 as well as 396 00:00:00,0 --> 00:00:00,0 help to evolve all of the solutions standards 397 00:00:00,0 --> 00:00:00,0 any kind of legislation 398 00:00:00,0 --> 00:00:00,0 that might come up 399 00:00:00,0 --> 00:00:00,0 to help meet the security challenges 400 00:00:00,0 --> 00:00:00,0 that are confronting all 401 00:00:00,0 --> 00:00:00,0 of the sea level stakeholders from the see 402 00:00:00,0 --> 00:00:00,0 so all the way up to the ceo and of course 403 00:00:00,0 --> 00:00:00,0 their 404 00:00:00,0 --> 00:00:00,0 their boards 405 00:00:00,0 --> 00:00:00,0 right now 406 00:00:00,0 --> 00:00:00,0 we are definitely in the midst of beginning the build 407 00:00:00,0 --> 00:00:00,0 so you can consider this announcement 408 00:00:00,0 --> 00:00:00,0 kind of a soft launch 409 00:00:00,0 --> 00:00:00,0 but we will be taking a phased approach 410 00:00:00,0 --> 00:00:00,0 and as I noted earlier 411 00:00:00,0 --> 00:00:00,0 we're definitely looking to have that strong community 412 00:00:00,0 --> 00:00:00,0 we'll be releasing tons of research guidance use cases 413 00:00:00,0 --> 00:00:00,0 you name it we'll see 414 00:00:00,0 --> 00:00:00,0 you know when we can go live again 415 00:00:00,0 --> 00:00:00,0 we look to have some hands on training 416 00:00:00,0 --> 00:00:00,0 some really inventive 417 00:00:00,0 --> 00:00:00,0 and useful discussion groups roundabouts etc 418 00:00:00,0 --> 00:00:00,0 we'll look to our current offerings 419 00:00:00,0 --> 00:00:00,0 and see what we can add on there 420 00:00:00,0 --> 00:00:00,0 and then of course when it comes to 421 00:00:00,0 --> 00:00:00,0 where we are and helping train 422 00:00:00,0 --> 00:00:00,0 and 423 00:00:00,0 --> 00:00:00,0 enable professionals to sit for these certificates 424 00:00:00,0 --> 00:00:00,0 cloud security and cloud audit knowledge 425 00:00:00,0 --> 00:00:00,0 we're very well positioned to 426 00:00:00,0 --> 00:00:00,0 offer even stronger 427 00:00:00,0 --> 00:00:00,0 products and solutions to support organizations support 428 00:00:00,0 --> 00:00:00,0 ciaos 429 00:00:00,0 --> 00:00:00,0 when they're looking to really build out their team 430 00:00:00,0 --> 00:00:00,0 so you can definitely expect us 431 00:00:00,0 --> 00:00:00,0 to help with mentoring hiring etc 432 00:00:00,0 --> 00:00:00,0 that's going to be key 433 00:00:00,0 --> 00:00:00,0 and of course 434 00:00:00,0 --> 00:00:00,0 there will be other benefits for our chapters 435 00:00:00,0 --> 00:00:00,0 and our members 436 00:00:00,0 --> 00:00:00,0 and certainly 437 00:00:00,0 --> 00:00:00,0 we expect that our current numbers and most assuredly 438 00:00:00,0 --> 00:00:00,0 our chapters who are like on the ground 439 00:00:00,0 --> 00:00:00,0 every day and some of them 440 00:00:00,0 --> 00:00:00,0 hold quite frequent events 441 00:00:00,0 --> 00:00:00,0 will really support and help us to roll out 442 00:00:00,0 --> 00:00:00,0 and enhance our road of 443 00:00:00,0 --> 00:00:00,0 offerings with our co trust as we move forward 444 00:00:00,0 --> 00:00:00,0 so for this particular 445 00:00:00,0 --> 00:00:00,0 presentation I wanted to 446 00:00:00,0 --> 00:00:00,0 talk to you very quickly we are 447 00:00:00,0 --> 00:00:00,0 having a call for participation 448 00:00:00,0 --> 00:00:00,0 and our co trust advisory council 449 00:00:00,0 --> 00:00:00,0 and that's really going to be 450 00:00:00,0 --> 00:00:00,0 the overarching body that will support 451 00:00:00,0 --> 00:00:00,0 my team and my efforts and 452 00:00:00,0 --> 00:00:00,0 launching different useful offerings 453 00:00:00,0 --> 00:00:00,0 and you know a support system 454 00:00:00,0 --> 00:00:00,0 that will really help our members and other 455 00:00:00,0 --> 00:00:00,0 members of that trusted community 456 00:00:00,0 --> 00:00:00,0 enhance and 457 00:00:00,0 --> 00:00:00,0 constantly update and manage their cloud strategies 458 00:00:00,0 --> 00:00:00,0 so if you're interested in that you can go to our 459 00:00:00,0 --> 00:00:00,0 website and you'll see information about how to 460 00:00:00,0 --> 00:00:00,0 voice your 461 00:00:00,0 --> 00:00:00,0 your desire to work with us there 462 00:00:00,0 --> 00:00:00,0 we're also going to establish a research working group 463 00:00:00,0 --> 00:00:00,0 we've already created a draft charter for that 464 00:00:00,0 --> 00:00:00,0 we'll look to 465 00:00:00,0 --> 00:00:00,0 seek out the participation formally after rsa 466 00:00:00,0 --> 00:00:00,0 however if you aren't interested you want to know more 467 00:00:00,0 --> 00:00:00,0 again definitely go to our site 468 00:00:00,0 --> 00:00:00,0 but by all means don't hesitate to contact me directly 469 00:00:00,0 --> 00:00:00,0 very shortly you'll see us 470 00:00:00,0 --> 00:00:00,0 release a pretty robust editorial calendar 471 00:00:00,0 --> 00:00:00,0 we've been working with our research team 472 00:00:00,0 --> 00:00:00,0 as well as our 473 00:00:00,0 --> 00:00:00,0 chief trust officer in residents 474 00:00:00,0 --> 00:00:00,0 pete kronos who is a former season 475 00:00:00,0 --> 00:00:00,0 build out a very strong calendar 476 00:00:00,0 --> 00:00:00,0 and I'll give you just a taste 477 00:00:00,0 --> 00:00:00,0 in a moment of some of the topics but it's 478 00:00:00,0 --> 00:00:00,0 you know we already have a huge one 479 00:00:00,0 --> 00:00:00,0 the rooms that were ready to release shortly 480 00:00:00,0 --> 00:00:00,0 well definitely 481 00:00:00,0 --> 00:00:00,0 you'll see some 482 00:00:00,0 --> 00:00:00,0 content offerings throughout the rest of this year 483 00:00:00,0 --> 00:00:00,0 as well as some moline and live events and 484 00:00:00,0 --> 00:00:00,0 speaking of live events 485 00:00:00,0 --> 00:00:00,0 we will be having our September events in value 486 00:00:00,0 --> 00:00:00,0 Washington in September 487 00:00:00,0 --> 00:00:00,0 so if you can attend 488 00:00:00,0 --> 00:00:00,0 and if your companies are allowing you to travel 489 00:00:00,0 --> 00:00:00,0 we definitely encourage you to 490 00:00:00,0 --> 00:00:00,0 take us up and hang out with us there will be having 491 00:00:00,0 --> 00:00:00,0 dedicated cso co trust 492 00:00:00,0 --> 00:00:00,0 happenings and you'll be hearing more about those 493 00:00:00,0 --> 00:00:00,0 shortly if you can please do a 10 map 494 00:00:00,0 --> 00:00:00,0 it's likely going to be a hybrid affair 495 00:00:00,0 --> 00:00:00,0 so there will be 496 00:00:00,0 --> 00:00:00,0 some online 497 00:00:00,0 --> 00:00:00,0 offerings associated with our September of n as well 498 00:00:00,0 --> 00:00:00,0 here is just a smattering of topics 499 00:00:00,0 --> 00:00:00,0 from our editorial calendar 500 00:00:00,0 --> 00:00:00,0 for our co that is underpinning our co trust 501 00:00:00,0 --> 00:00:00,0 initiative but again 502 00:00:00,0 --> 00:00:00,0 we've got so many topics now 503 00:00:00,0 --> 00:00:00,0 taking a look at the rest of the year 504 00:00:00,0 --> 00:00:00,0 we need to decide how we're going to narrow that down 505 00:00:00,0 --> 00:00:00,0 and so you'll see 506 00:00:00,0 --> 00:00:00,0 that formal list that will be subject to change 507 00:00:00,0 --> 00:00:00,0 as we bring on our advisory council members 508 00:00:00,0 --> 00:00:00,0 shortly from us 509 00:00:00,0 --> 00:00:00,0 so do hit up our website if you'd like to learn more 510 00:00:00,0 --> 00:00:00,0 about our new co trust 511 00:00:00,0 --> 00:00:00,0 we're very excited about it and we believe 512 00:00:00,0 --> 00:00:00,0 it's just going to be awesome 513 00:00:00,0 --> 00:00:00,0 I mean the intent here is that 514 00:00:00,0 --> 00:00:00,0 csa is going to do 515 00:00:00,0 --> 00:00:00,0 for ce and other sea level executives 516 00:00:00,0 --> 00:00:00,0 who are really spearheading and 517 00:00:00,0 --> 00:00:00,0 embarking whether they're spearheading now 518 00:00:00,0 --> 00:00:00,0 currently in the midst of it 519 00:00:00,0 --> 00:00:00,0 or embarking on the cloud journeys 520 00:00:00,0 --> 00:00:00,0 or digital transformations 521 00:00:00,0 --> 00:00:00,0 what we did for cloud security back in the day 522 00:00:00,0 --> 00:00:00,0 what we've been doing for cloud security these last 523 00:00:00,0 --> 00:00:00,0 12 years so we're very much excited 524 00:00:00,0 --> 00:00:00,0 we definitely want to hear from you 525 00:00:00,0 --> 00:00:00,0 if you have any questions 526 00:00:00,0 --> 00:00:00,0 if you'd like to talk the initiative down 527 00:00:00,0 --> 00:00:00,0 our co trust or any of our other offerings down 528 00:00:00,0 --> 00:00:00,0 don't hesitate 529 00:00:00,0 --> 00:00:00,0 to reach out to me 530 00:00:00,0 --> 00:00:00,0 I love setting up time to talk to members and 531 00:00:00,0 --> 00:00:00,0 industry industry folks we've had some really amazing 532 00:00:00,0 --> 00:00:00,0 and supportive conversations with 533 00:00:00,0 --> 00:00:00,0 many of our ceca friends over the last three months 534 00:00:00,0 --> 00:00:00,0 as we've been building out 535 00:00:00,0 --> 00:00:00,0 more and more this program so 536 00:00:00,0 --> 00:00:00,0 anytime you'd like to talk to me don't hesitate 537 00:00:00,0 --> 00:00:00,0 but in the meantime 538 00:00:00,0 --> 00:00:00,0 this peso summit 539 00:00:00,0 --> 00:00:00,0 we have a lineup of amazing 540 00:00:00,0 --> 00:00:00,0 experts who are ready to just share with you 541 00:00:00,0 --> 00:00:00,0 some 542 00:00:00,0 --> 00:00:00,0 their knowledge their experiences and most definitely 543 00:00:00,0 --> 00:00:00,0 you know some advice 544 00:00:00,0 --> 00:00:00,0 and some of the things that they've been doing to 545 00:00:00,0 --> 00:00:00,0 enhance their cloud 546 00:00:00,0 --> 00:00:00,0 strategies their cloud security strategies 547 00:00:00,0 --> 00:00:00,0 so don't leave 548 00:00:00,0 --> 00:00:00,0 please stay tuned for more from this 549 00:00:00,0 --> 00:00:00,0 wonderful lineup of experts and in the meantime 550 00:00:00,0 --> 00:00:00,0 thanks to all of our sponsors who have helped us to 551 00:00:00,0 --> 00:00:00,0 again 552 00:00:00,0 --> 00:00:00,0 have this wonderful event at rsa conference 553 00:00:00,0 --> 00:00:00,0 and of course thank you 554 00:00:00,0 --> 00:00:00,0 everyone for attending this is wonderful we really 555 00:00:00,0 --> 00:00:00,0 appreciate all of your support 556 00:00:00,0 --> 00:00:00,0 and we look forward to working with you more 557 00:00:00,0 --> 00:00:00,0 on our existing offerings but also 558 00:00:00,0 --> 00:00:00,0 with on our co trust so thank you everyone take care