The Inner Circle

 View Only
Back to discussions
Expand all | Collapse all

Minutes of the Compliance Automation Revolution Stakeholder Meeting Thursday April 3rd, 2025

  • 1.  Minutes of the Compliance Automation Revolution Stakeholder Meeting Thursday April 3rd, 2025

    Posted Apr 03, 2025 03:17:00 PM
    Edited by Andy Ruth Apr 07, 2025 02:44:14 PM
    Attendees
    Name
    Organization  
    Name
    Organization
    Andy Ruth
    CSA
    Dominik Vleming
    CSA
    John DiMaria
    CSA
    Jeffry Westcott
    CSA
    Larry Hughes
    CSA
    Lefteris Skoutaris
    CSA
    Troy Leach
    CSA
    John Ringler
    FTI Consulting
    John Finizio
    Whistic
    Matteo Lucantonio  
    Deloitte
    Michaela Iorga
    NIST
    P. Subrahmanyam
    Stanford/CyberKnowledge  
    Ramesh Jadhav  
    OnStak
    Roberto Tanzi
    Deloitte
    Agenda:
    • Welcome and New Participant Intros
    • Updates and Reminders
    • Working Group 1 and 2
    • AOB (any other business)
    Summary:
    The meeting commenced with a welcome to all and review of the agenda, as there were no new participants. Action items were reviewed and Andy thanked those that have been able to send endorsements for publication on the CAR landing page. Andy then gave an update on progress on the draft documents for Working Groups 1 and 2, and the fun, lively conversation and progress made in the working sessions to complete the charter drafts. For updates and reminders, Andy reminded everyone that the CAR initiative will be announced as a press release at the RSA conference on April 29th. Everyone is encouraged to repost the announcement using their social media mechanisms to draw more visibility and interest to the program. Along with the press release will be a blog post signed by CSA with quotes from the initial founding members. There is an emphasis on this being the initial founding members as we expect others to join as founding members over the next several months. Since there were several questions for what a good endorsement might look like, Andy presented some guidance put together by CSA for what a good endorsement might include. A more in-depth discussion on the progress with the charters and how the working meeting will run was provided. Andy then covered the topic of co-chairs for the working groups. After RSA and approval of the charters, the groups will form through the nomination and voting for co-chairs for the groups. There was a brief discussion of the role and tasks involved with being a co-chair and everyone was encouraged to think about whether they might want to nominate themselves or someone else. The floor was opened for any other business, and as thee was none, the meeting was adjourned.
    Action Items:
    • All – please look for and repost the press release and blog post announcing the official launch of the CAR initiative on April 29th.
    • All – if you are interested in providing an endorsement that will be posted on the CAR landing page, please provide one to Andy ([email protected]). Please email Andy if you need any additional guidance and he can provide some along with examples.
    • All – please review and comment the current charter drafts for Working Group 1 (CAR-Regulatory-Analysis-Working-Group-Charter-Mar-2025.docx) and Working Group 2 (CAR-Controls-Catalog-Working-Group-Mar-2025.docx). If you are interested in joining the working session but do not have the meeting invite, please reach out to Andy. They are held each Tuesday.
    I'm providing a more streamlined version of the meeting minutes without all the additional detail after the action items. Please provide feedback on whether you prefer the additional detail or not.
    Kind regards,
    ------------------------------
    Andy Ruth
    Cloud Security Alliance
    [email protected]
    ------------------------------