Cloud Computing Security: Security Strategies for Cloud Service Providers and Their Customers

This evening event is part of IBF Media's Technology Series on Cloud Computing. A panel of senior technologists will focus on trends and technologies in cloud security and discuss how organizations can effectively secure their critical data in the cloud. This program discuss the pros and cons of the security framework for the cloud and its effectiveness in protecting enterprise data.

In the last few years cloud computing has grown from being a promising business concept to one of the fastest growing segments of the IT industry. Now, recession-hit companies are increasingly realising that simply by tapping into the cloud they can gain fast access to best-of-breed business applications or drastically boost their infrastructure resources, all at negligible cost. But as more and more information on individuals and companies is placed in the cloud, concerns are beginning to grow about just how safe an environment it is. In this discussion the speakers evaluate the following with regard to cloud security:

1. Every breached security system was once thought infallible.

2. Understanding the risks of cloud computing.

3. How cloud hosting companies have approached security.

4. Local law and jurisdiction where data is held.

5. Best practice for companies in the cloud.

6. What are some of the best ways of securing information in the cloud and how can customers and cloud companies implement these in their cloud offering to protect the client's data.

Virtualization and cloud computing haven't eroded the online security of most companies, analysts say. But they may be contributing to situations in which IT-service customers leave themselves vulnerable to attack because they assume their cloud provider is taking care of security. "Security and cloud hosting are two separate things, but the cost of entry is so low, and often so simple, that customers may not do as much due diligence as they should to find out who's responsible for security," says Erza Gottheil, an analyst who covers server issues for Technology Business Research. Placement of responsibility for security in cloud computing arrangements is so ill-defined that Gartner felt it was necessary to list access to information about how a cloud service works and a service level agreement spelling out customer expectations and requirements in a report released recently. In March, research from the Cloud Security Alliance listed customer ignorance of security practices and service providers' refusal to give information to relieve it among the seven top security risks in cloud computing. According to the Cloud Security Alliance's research, cloud projects and the risks they entail may be "complicated by the fact that cloud deployments are driven by anticipated benefits, [and] by groups who may lose track of the security ramifications." The nature of the cloud computing business means many customers or potential customers have no idea how exposed they really are when they put a website or other corporate application on someone else's hardware, says Josh Corman, analyst for The 451 Group. Most cloud and website hosting customers assume their provider is responsible for keeping their site safe even though that's not always the case.

This event presents and discusses one of the key challenges of cloud computing, which is securing a company's valuable information. One of the fundamental issues facing CIO and technology professionals today is if they deploy the cloud how do they a secure their applications and information. The panel will be composed of luminaries from the technology industry, successful venture investors from the Indian venture capital world as well as IT professionals from companies in India that are facing the security challenges head on and competing in this space to win customers.

Agenda :

6:30pm-7:00pm   Registration, Cocktails & Networking

7:00pm-9:00pm   Program Discussion

9:00pm-9:15pm   Q&A Session

9:15pm-10:00pm   Networking & Dinner

Venue

ITC Grand Central Hotel

287, Dr. BabasahebAmbedkar Road

Parel Mumbai 400 012

Registration Site : http://www.meraevents.com/event/Capital-Connection-Technology-Series-Mumbai

List of speakers :

Bikram Barman: Senior Engineering Manager, Products @ RSA, the Security Division of EMC

“Bikram Barman is a seasoned technology and security professional with over 14 years of experience. He is currently a Senior Engineering Manager at RSA, The Security Division of EMC leading products and solutions engineering teams focused on Virtualization & Cloud Security. He has been a key contributor to Cloud Security Alliance Guidelines (Virtualization Security in the Cloud). He has also made several contributions as a speaker and writer on Virtualization & Cloud Security.”

Raman Srinivasan:Manger HP -India Software Operations.

Raman Srinivasan currently a Manager with HP-India Software Operations and have over 18 years industry experience in the IT industry in various capacities - R&D products development manager, architect as well managing a major account with a Services organization

Out of total experience of 18+ years in the industry, has been with HP for over 12 years in US and India and have worked on enterprise servers (Tandem/NonStop), middleware(J2EE), Databases and networking and security domains. Prior to that he have worked with Tata Consultancy Services for about 6 years and worked on developing the National Stock Exchange trading software(NEAT), and also leveraging the same for Bangalore Stock Exchange(BgSe) in the early-mid 90’s. I have also worked at NASD, the data-center for NASDAQ in Rockville, MD, USA.

He has a Masters degree in Electrical Communication Engineering from the Indian Institute of Science, Bangalore - 1993

Nitin Khanapurkar : Executive Director with the Advisory practice, KPMG in India

Nitin Khanapurkar is an Executive Director with the Advisory practice, KPMG in India. He has over 20 years of work experience spanning 4 continents, in the field of Business, IT and Risk Consulting. His earlier experience has been with leading organizations including Deloitte and Arthur Andersen. He has worked with private and public agencies including the Reserve Bank of India, Mumbai Police and BMC.

His areas of focus include Business Strategy, Business Continuity Management and emerging technologies like Cloud Computing. He is a well known speaker and has authored several publications on the subjects of Cloud Computing, BCM and Physical Security.

Nitin plays several roles as part of his professional responsibilities. These include:

* Member of KPMG Global Cloud Computing Steering Committee

* Managing Committee member of Computer Society of India (CSI)

* Co-Chairman of IT & Security Committee, Indian Merchants Chambers (IMC)

* India Representative, The Business Continuity Institute, UK and Accredited BCI Trainer

* Director of Cloud Security Alliance, Mumbai Chapter

Nitin is a Chartered Accountant, Certified Information Systems Security Professional ('CISSP'), Certified Information Systems Auditor ('CISA'), Certified Information Systems Manager ('CISM') and Member of Business Continuity Institute of UK ('MBCI').

YourStory is a partner for this event.