Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Contact Us
Terms and Conditions
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
Connect
The Inner Circle
Communities
Directory
Learn
Certificates & Trainings
Cloudbytes Webinars
Blog
Videos
Cloud Security
Zero Trust
Technology Maps
Cloud Security Map
Zero Trust Map
Engage
Volunteer
Opportunities
Events
Financial Services Industry
Research Working Groups
Private Community
View Only
Community Home
Discussion
100
Library
71
Events
0
Members
195
Back to discussions
Expand all
|
Collapse all
Financial Services Meeting - 4/27/22
1.
Financial Services Meeting - 4/27/22
0
Like
Alex Kaluza
Posted Apr 28, 2022 02:28:00 PM
|
view attached
Reply
Reply Privately
Options Dropdown
Financial Services Meeting - 4/27/22
CSA Updates and Chapter Events
- Spring/Summer 2022
Panel: Zero Trust Access
- April 28
th
RSA Conference 2022
- June 6
th
-9
th
SECtember 2022
- September 26
th
CCSK Digital Badge
-
In partnership with Credly, CSA will be providing digital badges to qualified holders of the CCSK v.3 and v.4.
Zero Trust Advancement Center
-
CSA's mission is to create research, training, professional credentialing and provide an online center for additional curated Zero Trust resources. These tools will enable enterprises to understand and implement Zero Trust principles into business planning, enterprise architectures and technology deployments.
CSA Peer Reviews and Surveys
Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure
- April 30
th
Top Threats Working Group Charter 2022
- May 1
st
Enterprise Architecture Working Group Charter 2022
- May 1
st
Serverless Computing Working Group Charter
- May 11
th
Zero Trust as a Security Philosophy
- May 12
th
Latest Research Releases
Guide to the IoT Controls Matrix v3
-
April 25
th
IoT Controls Matrix v3
- April 25
th
Getting Quantum Safe in 5 Slides
- April 19
th
C-Level Guidance to Securing Serverless Architectures
- April 19
th
Integrating SDP and DNS: Enhanced Zero Trust Policy Enforcement
- April 12
th
Financial Services Research in Development
Cloud Usage in the Financial Services Sector v2 (Draft)
Develop and review questions and answers that will be most useful for the the financial services cloud security industry.
Compare with previous cloud usage paper/survey from Spring 2020:
Cloud Usage in the Financial Services Sector
Homework question:
Take one or two formulate a survey question and suggest the answer choices/measures (see the prior format for ideas)
Domains / areas for next survey:
Data privacy/sharing:
GDPR / Schrems 2
Vendor risk assessments:
SaaS provider -> subcontractor to CSP
Encryption/key
Secrets (short lived etc) lifecycle management:
Compliance infra for SaaS/PaaS decentralized/centralized environments
Application / Ops:
end-to-end understanding/visibility, maturity, documentation (DevOps as a forcing function highlighting gaps in Application teams understanding and appreciation for Ops) / Incident Preparedness within Ops
Agile maturity:
how are orgs benchmarking their maturity within agile adoption
BCP:
region migration (e.g. in response to geo-political events): tension between availability zones vs region (particularly in context of SaaS providers)
SOC:
logging/visibility/response, level of integration with internal/3rd party SOCs
SaaS integration with SOC
- is it happening?
Lift and Shift Best Practices and Strategy (Draft)
Next Zoom Meeting:
May 25
th
8:00 AM PT
https://cloudsecurityalliance.zoom.us/j/94151107820
Agenda, guest speaker TBA
Cloud Usage in the Financial Services Sector v2 development
------------------------------
Alex Kaluza
Research Coordinator
Cloud Security Alliance
------------------------------
Attachment(s)
Financial Services 4_27_22.pptx
1.34 MB
1 version
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Privacy Notice
|
Terms & Conditions
Copyright 2022. All rights reserved.
Powered by Higher Logic