7:30-8:00AM Registration and Breakfast – (Breakfast Sponsored by Centrify Corporation)
8:00-8:05AM WSTA Introductions – Thomas Doughty, VP-Corporate Information
Security Officer, Prudential Financial and WSTA Secretary
8:05-8:50AM Keynote -- “The Global Technology Economy: The Technology Economics of the "Cloud"
Dr. Howard A. Rubin, CEO and Founder, Rubin Worldwide
Gartner Senior Advisor, MIT CISR Associate
Just as technology intensity has increased in our personal lives over the past few decades, business (and government) is impacted by the same phenomenon. Whether we are in a growth economy or a global recession, the number of computational cycles, amount of data, and technology options needed by an organization keeps rising. This is just one of the key patterns we must learn to recognize and master to be successful in today's global technology economy.
Using "technology economics" as a backdrop for his discussion, Dr. Rubin will explore and discuss the role and promise of "Cloud" to enable organizations to become the "masters" of their technology economics instead of being "victims". Drawing data from his benchmark studies on technology growth, costs, and performance, Dr. Rubin will vividly illustrate why the time is right for "Cloud" -- why and how organizations need to go beyond riding the wave of Moore's law to attain needed business outcomes with technology.
8:50-9:15AM Premier Speaking Sponsor: “Security Strategy Mitigates Risk and Enables Compliance in Utilizing Cloud Services”
Gail Coury, CISA, CISSP, CISM, Vice President, Risk Management, Oracle Cloud Services
Concerns regarding potential exposure of sensitive customer, employee, competitive, and financial information is slowing some organizations’ adoption of cloud services. Gail Coury will present data and insights around the growing threats and regulatory burdens facing business and IT leaders, and how companies can leverage a mature and focused cloud security strategy for their benefit.
Gail will discuss the approach Oracle takes regarding:
· Security organization, standards, processes, and technologies for layered defense in depth,
· Maintaining secure configurations, and
· Enabling compliance with such regulatory requirements as Payment Card Industry (PCI), Health Insurance Portability and Accountability Act (HIPAA), and National Institute of Standards and Technology (NIST) for government entities.
This information builds the business case for gaining the benefits of cloud solutions while addressing the need for higher security levels. Gail will include a couple of case studies of current Financial Services customers and their implementations to provide examples of successful use of cloud services.
9:15-9:40AM “Data Center Evolution To Cloud Services”
Jim Gerrity, Director, Global Industry Marketing, Ciena
The massive installed base of IT infrastructure and processes in the financial industry means that cloud adoption will be evolutionary rather than revolutionary. Financial Services IT organizations are looking for greater efficiencies and have begun the process of virtualizing storage and server platforms. Another step is providing better data protection through next generation data center architectures using high speed networking between active/active data centers. This session will discuss these evolutionary steps Financial Services is taking to modernize the data center, and how these key data center architecture changes can lead to implementing cloud solutions.
9:40-10:05AM “Securing Cloud Hosted Servers”
Carson Sweet, CEO, CloudPassage
Cloud computing is one of the most disruptive new technologies since the Internet. One of the fastest-growing sectors of cloud computing is Infrastructure-as-a-Service (IaaS). Cloud-based IaaS offers tremendous scalability, flexibility and speed in deploying information processing compute resources. Security and compliance remain major challenges to adoption of public cloud infrastructure hosting. Technical differences in public cloud environments render many established security models and controls inoperable. In this session, Carson Sweet will discuss why security and compliance is different in the cloud, outline a model for securing cloud-based hosting environments and explain best practices for implementing this model.
10:05-10:30AM Break and Demo Area Visit (Break Sponsored by Internap)
10:30-10:55AM “Securing the Financial Services Cloud in an Infrastructure-as-a-Service World”
Govind Rangasamy, Director of Product Management, Eucalyptus Systems
Financial services IT is experiencing huge data center transformations where infrastructure is delivered as an on-demand service using private, public and hybrid clouds.
But the key question for financial services IT is how secure are these transformations. Will Infrastructure-as-a-Service satisfy PCI-DSS, CMR, FFIEC and other data security compliance needs? What are the options for data encryption in IaaS clouds? And how can organizations balance stricter workload latency requirements with security compliance needs while simultaneously transforming to a more efficient cloud operating model?
Learn how to deliver a well-balanced approach to creating and managing IaaS infrastructure, orchestrating and governing infrastructure resources transparently, and securing private infrastructure resources while satisfying application workload latency needs in the cloud. You'll walk away with a clear roadmap for how to take advantage of IaaS cloud computing.
10:55-11:20AM “Changing Role of IT - Leveraging Secure Cloud Deployments”
Andrew Dimmick, Global Cloud Strategist, HP
To stay ahead of the needs of the business, technology must be delivered as a service at the speed of the business. IT executives are asked to usher their business towards new levels of innovation and capability, securely. Most have started their journey to Cloud computing but doubts linger on how to best:
- Transform legacy IT environments
- Build and Automate the deployment of cloud services
- Consume new cloud services
- Manage and Secure the entire service portfolio
In this session, Drew Dimmick will discuss the importance of hybrid delivery and best practices on managing seamlessly service delivery securely from public, private and traditional IT sources.
11:20-11:45AM “Game Changer: Cloud Computing”
Brian M. Maouad, CEO, Advance2000
If you ask ten people in the room what is Cloud Computing and its impact on business you will probably get ten different answers. This presentation is geared primarily to the “C-Level Executive” and will discuss the types of Clouds, industry trends, predictions, technology and financial impact on business, risks, differentiators, ROI, case studies, practical adoption and issues around end-user acceptance.
11:45-12:10PM "Everything old is new again: Risk, Compliance, and Complexity."
Joshua McKenty, CEO, Piston Cloud Computing, Inc.
Chief Architect, NASA Nebula & Co-founder, OpenStack
With the rise of cloud computing, new risks and security concerns have taken center stage for today's IT managers. Yet, the greatest single threat to security in the financial sector remains what it has always been: the insider attack.
Joshua McKenty, the chief architect of the first FISMA-certified cloud environment, will walk through lessons learned in years of designing, deploying and operating private cloud for NASA and the White House. Expect to leave with an appreciation for the role that complexity plays in risk management, an understanding of how the new CloudAudit standard can assist in achieving regulatory compliance, and a nuanced viewpoint on the forgotten pillar of IT security.
12:10PM Seminar Concludes
Agenda and Times Subject to Change