- About SIM
- SIM Connect Live
- Join SIM
|Migrating Applications to The Cloud; Security and Compliance Considerations|
|Group HomeGroup PagesDirectory & Features|
Wednesday, February 18, 2015
The adoption, often by groups other than Central IT, of 3rd party applications delivered through the cloud as Software as a Service (SaaS) applications and the use of primarily outsourced, yet scalable, VM-centric Infrastructure as a Service (IaaS) environments were the first wave. This wave was about utilizing “born in the cloud” services and/or “lifting and shifting” low criticality applications. What is next?
The next wave will bring us to the tipping point in cloud utilization through the re-architecture and re-building of applications to take advantage of the real power of the cloud…Platform as a Service (PaaS). Once potential candidate applications for PaaS have been discovered and assessed, the task of migration begins. It can be a slow, tedious and complex process, particularly related to Security and IT Compliance.
This session will offer IT executives’ insight into streamlining and managing this process, along with a case study, particularly around Security and Identity & Access Management (S/IAM) controls, cloud configuration monitoring and IT compliance in a Cloud-First world. We will explore how the acceleration of PaaS offerings and the rapid adoption of DevOps are coming together to challenge tomorrow’s CIOs and CISOs.
Presenter – Norm Barber
Norm Barber is a 35-year veteran of the IT industry beginning his career as an IT Manager responsible for manufacturing and distribution systems in traditional IT organizations. Over the arc of his career he has participated in the transition of IT from the distributed processing era, through client-server and on to the use of cloud and mobile technologies.
Currently serving as Managing Director at UnifyCloud LLC, a cloud-focused consultancy specializing in S/IAM controls and compliance, Norm previously held consulting management positions with PwC, KPMG and Andersen Worldwide where he was a Partner and Global Services Director for the Security & Privacy practice. He has served as Microsoft’s Strategic Security Advisor for the US Financial Services sector and Principal Program Manager for the Customer & Partner Engineering Group within the Azure Identity & Security engineering division at Microsoft.
He has held CISSP and CISM certifications and has served on the Technology Committee of the Institute of Internal Auditors. He is a member of the Cloud Security Alliance (CSA) Seattle Chapter, the Information Systems Audit and Control Association (ISACA) for IT auditors, and has been a frequent speaker on S/IAM topics and the Cloud.
SIM Women Leadership Summit