SlideShare a Scribd company logo

2022-09-13 kreuzwerker Atlassian - Navigating GDPR and BaFin in the Cloud.pdf

kreuzwerker GmbH
kreuzwerker GmbH

This document provides guidance on GDPR and BaFin compliance for organizations considering moving work management tools to Atlassian Cloud. It outlines key GDPR goals and requirements, such as data protection and user consent. It also discusses BaFin guidance for outsourcing to cloud services. The document reviews Atlassian Cloud's compliance measures, including data processing agreements and data residency controls. It notes some additional assessment areas and documents organizations should reference. Overall, the document indicates GDPR and BaFin compliance is achievable for most use cases when utilizing Atlassian Cloud's default security and privacy controls.

Technology
1 of 66
Download to read offline
SASCHA WISWEDEL | PRE-SALES SOLUTIONS ENGINEER Atlassian Enterprise Cloud
Unlock new ways of working Practices People Tools
Unleash the potential OUR MISSION of every team
SOLUTIONS EXPERIENCE DATA INFRASTRUCTURE EXTENSIBILITY WORK MANAGEMENT NEW SOLUTIONS ITSM AGILE & DEVOPS COLLABORATION CONNECTION ANALYTICS AUTOMATION ADMIN COMPLIANCE THE ATLASSIAN PLATFORM
PROVEN & EXPERIENCED Jira Software Bitbucket Jira Align Opsgenie Statuspage Confluence Trello Innovation, unleashed by Cloud Jira Work Management Jira for Business Teams Jira Product Discovery Product idea and decision management BETA Atlas Dynamic status reporting BETA Halp Conversational ticketing Compass Engineering inventory management BETA INNOVATIVE & FUTURISTIC (“POINT A” PROGRAM) Atlassian Analytics Business Intelligence (chartio acquisition) EAP Atlassian’s R&D focus: strategic, integrated, extensible
Atlassian Cloud Today’s topics Premium Plan Enterprise Plan
TIME TO VALUE Move fast, accelerate time to value and speed to market ROI Refocus resources and investments to maximize your business ROI INNOVATION Future-proof your strategy & tools with continuous innovation REVENUE PROFIT GROWTH Why Atlassian Cloud?
ATLASSIAN PREMIUM
STORAGE GUARANTEED 99.9% availability No more file size or limits 24x7 dedicated support SLA UNLIMITED PREMIUM SUPPORT CLOUD PREMIUM IS BACKED BY
Scale with Premium JIRA SOFTWARE CONFLUENCE SCALING TEAMS Advanced roadmaps Automation Capacity planning Analytics Team Calendars Automation External collaboration SCALING ADMINS Automation Archive projects Archive pages Bulk space permissions Advanced permissions SCALING ORGANIZATIONS IP allowlisting Sandbox Release Tracks COMING SOON COMING SOON
Some need more
INTRODUCING… CLOUD ENTERPRISE atlassian.com/enterprise-cloud Jira Software CLOUD ENTERPRISE Confluence CLOUD ENTERPRISE Jira Service Management CLOUD ENTERPRISE
Global Scale and Reliability Enterprise-grade Security & Compliance Apps and Extensibility Cloud Enterprise Value Powerful Governance Controls
SECURITY & COMPLIANCE
Security features for everyone SAML Single Sign-on (SSO) User lifecycle management with SCIM Organization Audit Logs Shadow IT insights Nested groups flattening Selective user claim External User Security COMING SOON COMING SOON Encryption at rest & in transit Data Residency Mobile Device Management (MDM) Secure Application Tunneling 🆕 Improved backup and restore Data Residency for apps COMING SOON COMING SOON 💡Included with Enterprise
Atlassian Enterprise Plan adds Governance Multiple Identity Providers in Atlassian Access User activity audit log 🆕
Atlassian Enterprise Plan adds Compliance * COMING SOON
Atlassian Enterprise Plan adds Security Bring your own Key Data Leakage Protection COMING SOON FUTURE
Atlassian Enterprise Plan adds Analytics & Data Lake Atlassian Data Lake Atlassian Analytics Data Warehouse BI tools (eg. Tableau and Power BI) COMING SOON COMING SOON
99.95% CLOUD ENTERPRISE SLA
PHONE SUPPORT DEDICATED 24/7 SUPPORT 30 MIN IRT FOR CRITICAL ISSUES ENTERPRISE SUPPORT
Cloud scale per site Maximum number of users (per Cloud site) 0 12000 24000 36000 48000 60000 2018 2019 2020 2021 2022 2023 50.000 35.000 20.000 10.000 5.000 2.000
ORGANIZATIONAL AUTONOMY DATA SEGREGATION ENVIRONMENT CUSTOMIZATION UNLIMITED SITES
Scale globally with unlimited sites Cloud Enterprise Centralized user licensing - pay for user once and grant access to multiple instances Acquisitions Business Units Security Corporate Regions Centralized Admin Console - Manage users, products, security policies, insights and billing Customize instances with marketplace apps based on team needs
MINIMUM REQUIREMENTS FOR ENTERPRISE OR 801+ users 201+ agents 501+ users 51+ agents 👀 Financial Services Special
Cloud Trust Center Migration Partners Cloud loyalty discount Cloud migration support Resources, tools, offers, and support to guide your journey MIGRATION PROGRAM
Assess Jour (guided) Journey to cloud Plan Launch Test Optimize MIGRATE Prep
Migration Assistant App Helps assessing apps and migrating core content from Server to Cloud Migration Manager Dedicated team to help you assess and plan your migration Solution Partners Help you with the hand-on-keyboard work before, during and after the migration Migration Center Resources, best practices & migration tools for every stage of the migration journey. Migration Helpers
atlassian.com/roadmap/cloud
Next up: Daniel Meisen
Appendix
New: Secure Application Tunnels Connect Cloud with on-prem without opening your fi rewall
User management — centralized
Non-operation (Business can not work) Maintenance windows Outages/Disruptions Holistic view on Cost Advantages Risk Attacks Data breaches Security vulnerabilities Operation Hardware Software Support Licenses Maintenance Covered, maintenance-free and included in Atlassian Cloud
Annex: FinServ
European Union/EEA Germany specific Cloud Compliance for Financial Services customers
Audit rights On-site audits and flow-down audit rights over material sub-outsourcers (i.e., AWS) Cooperation Commitment to cooperate with regulators Oversight rights Enhanced record-keeping and notifications in case of a breach Continuity of service In the event of bankruptcy and after termination Included with the Financial Services Addendum
Eligibility requirements Cloud Enterprise Plan > 500 users minimum No other editions qualify for this addendum or compliance Operate in the EU From regional to multinational banks with presence within EEA Product Scope Only the above products apply
Your Cloud Pilot Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
Shareholder & Co-CEO Atlassian Expert by Heart Atlassian Certified Instructor Atlassian Certified Professional User since Jira 2.0 EAP & Confluence 1.0 2 Daniel Meisen
Moving to a cloud future, together… 3 - Guidance on GDPR - Guidance on BaFin - Atlassian Cloud compliance - Guidance on your compliance Journey to Cloud
4 Journey to Cloud
5 Guidance on GDPR © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
6 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud Status Quo GDPR ? Disclaimer: The following statements have been carefully reviewed. I am not a laywer and this is not legal advice. This advice is general in nature and not to be taken as personal / professional advice TL;DR: NAL; TINLA
Starting: May 25, 2018 When? Unified rules for all EU countries What? GDPR Definition GDPR European Union General Data Protection Regulation © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
Protection Protect personal data & strengthen privacy rights of EU individuals Control Give users control over their data Goals of EU’s General Data Protection Regulation GOALS © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
Protection Protect personal data & strengthen privacy rights of EU individuals Control Give users control over their data Goals of EU’s General Data Protection Regulation GOALS https://time.com/6146178/meta-facebook-eu-withdraw-data/
Protection Protect personal data & strengthen privacy rights of EU individuals Control Give users control over their data Goals of EU’s General Data Protection Regulation GOALS https://about.fb.com/news/2022/02/meta-is-absolutely-not-threatening-to-leave-europe/
Who is affected by GDPR? All businesses collecting or holding personal data on EU citizens. No matter where they reside! © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
Name Address Phone Bank / Credit cards Email address IP address Cookies Online identifiers … Personal Data Biometric data Genetic data Health data Race, Gender, Religion, … Sensitive Data Types of Personal & Private Data © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
GDPR Non-Compliance - Penalties & Fines If your data is breached: GDPR FINES You must report it within 72 hours OR Face a fine up to 20M € or 4% global turnover © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
GDPR Non-Compliance - Penalties & Fines If your data is breached: GDPR FINES You must report it within 72 hours OR Face a fine up to 20M € or 4% global turnover https://www.enforcementtracker.com/
Assess GDPR Compliance Analyze what you collect & where is data stored. (cookies, tracking pixels, emails, names, addresses…) 1 Check if the time you store personal data is relevant. If not, remove data. 2 Inform your clients how they can modify or delete their data. (special mailing, Privacy Policy webpage) 3 Monitor who has access to personal data. 4 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
Primer on GDPR SaaS assessments - Assess data flows - is there any data exported outside the EU – lawfulness, purpose limitation and ensure data minimization. - Adequacy decisions exist for certain countries (i.e. Switzerland, Canada, United Kingdom, …) but not for all (USA: Schrems II) - Decide if a data protections impact assessment (DPIA) is required required - depends on your specific use case (Art. 35 Abs. 4 DS- GVO) - Perform a Transfer Impact Assessment (TIA) – Guidance provided by Atlassian1 - Ensure up-to date DPA including “new” SCCs – grace period expires on Dec 27th, 20222 16 1 h"ps://www.atlassian.com/legal/data-transfer-impact-assessment 2 h"ps://www.atlassian.com/legal/data-processing-addendum
17 Guidance on BaFin © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
BaFin – Guidance on Outsourcing to Cloud Services - Additional requirements for all non-differentiated outsourcing according to the KAGB (Scope, Audit-Rights supervised company / supervised authorities, right to issue instructions, data security / protection, … - Chapter V) - Quick Tip: Guidance1 of the BaFin (together with Deutsche Bundesbank) in cooperation EIOPA, EBA, SSM and other national supervisory authorities - Covers outsourcing of materials and items to the Public Cloud (and private/community/hybrid) as IaaS, PaaS or SaaS. - Supervised company (you?!) are requested to have a documented process covering all relevant steps to outsource to a cloud provider. 18 1 https:/ /www.bafin.de/SharedDocs/Downloads/EN/Merkblatt/BA/dl_181108_orientierungshilfe_zu_auslagerungen_an_cloud_anbieter_ba_en.html?nn=9866146
BaFin – Guidance on Outsourcing to Cloud Services - Review your use-case in regards to supervisory law if a case of outsourcing exists and whether its to be qualified as material - when in doubt assume outsourcing - Perform a risk analysis covering all relevant aspects of outsourcing (type, scope, complexity, risk) - Review and map all Chapter V (Contractual terms in the case of (material) outsourcing) requirements to the Atlassian contractual vehicles1 19 1 https://www.atlassian.com/trust/compliance/resources/bafin/bafin-guidance
20 Atlassian Cloud Compliance © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
GDPR Compliance: Status Quo - Updated Standard DPA provided by Atlassian ✔ - Includes „Standard Contract Clauses“ (SCC) ✔ - Data subjects ✔ - Categories of data ✔ - Purpose of processing ✔ - Subprocessors, duties based on Art. 32-36 ✔ 21 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
GDPR Compliance: All well then? - Data protection by default - Data residency controls ✔ - Content locked per realm (EU, US, Global) - Data privacy management - Incident / response management 22 Additional information available through additional documents © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
GDPR Compliance: Relevant documents - Data Processing Addendum https://www.atlassian.com/de/legal/data-processing-addendum - Cloud Terms of Service https://www.atlassian.com/legal/cloud-terms-of-service - Privacy Policy https://www.atlassian.com/legal/privacy-policy - Certification / Compliance https://www.atlassian.com/trust/compliance - Atlassian Common Controls Framework https://www.atlassian.com/trust/compliance/common-controls-framework - Manage Data Residency https://support.atlassian.com/security-and-access-policies/docs/understand-data- residency-and-realms/ - Vendor Security Risks https://www.atlassian.com/trust/security/vendor-security-risk-response 23 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
GDPR: Additional Aspects - Data Residency Controls: What Primary- & Secondary data is available per region (= “Realm Pinning”) - Access restrictions: „IP Allowlisting“ vs. VPN - Varying support for different products (Trello, Jira Align / OpsGenie / StatusPage) - Third party apps – You might need indivdual DPAs - Forge „hosted by Atlassian” – Compliance in line with core products (Jira / Confluence) 24 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
Product Content in Realm https://support.atlassian.com/security-and-access-policies/docs/understand-data-residency-and-realms/ 25
Summary - Atlassian has invested a lot in its native Cloud and offers a wide selection of Cloud plans - GDPR compliance can be assumed based new SCCs / TIA / BCRs – indivdual assessment is required - Utilizing additional documentation, guidance (BaFin, TIA) and certification a GDPR and BaFIN-compliant use is achievable - Risk-assessment (data protection impact assessment) can be simplified with Data Residency Controls implemented in Cloud Standard / Premium / Enterprise and Apps - Follow the transparency reports: https://www.atlassian.com/trust/privacy/transparency-report 26 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
27 Questions? © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
kreuzwerker GmbH Ritterstr. 12-14 10969 Berlin www.kreuzwerker.de Fon +49 30 609 838 80 Fax +49 30 609 838 899 Thank you ! atlassian@kreuzwerker.de

Recommended

Cybersecurity Risks for Businesses
Cybersecurity Risks for BusinessesCybersecurity Risks for Businesses
Cybersecurity Risks for BusinessesAlex Rudie
 
Cloud and Data Privacy
Cloud and Data PrivacyCloud and Data Privacy
Cloud and Data PrivacyMaganathin Veeraragaloo
 
EDGY introduction webinar
EDGY introduction webinarEDGY introduction webinar
EDGY introduction webinarIntersection Group
 
What is Enterprise Architecture?
What is Enterprise Architecture?What is Enterprise Architecture?
What is Enterprise Architecture?Brett Colbert
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGoutama Bachtiar
 
Capability Webinar January 2022
Capability Webinar January 2022Capability Webinar January 2022
Capability Webinar January 2022Intersection Group
 
NIST Cybersecurity Framework Intro for ISACA Richmond Chapter
NIST Cybersecurity Framework Intro for ISACA Richmond ChapterNIST Cybersecurity Framework Intro for ISACA Richmond Chapter
NIST Cybersecurity Framework Intro for ISACA Richmond ChapterTuan Phan
 
Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...
Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...
Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...Resolver Inc.
 

Recommended

Cybersecurity Risks for Businesses
Cybersecurity Risks for BusinessesCybersecurity Risks for Businesses
Cybersecurity Risks for BusinessesAlex Rudie
 
Cloud and Data Privacy
Cloud and Data PrivacyCloud and Data Privacy
Cloud and Data PrivacyMaganathin Veeraragaloo
 
EDGY introduction webinar
EDGY introduction webinarEDGY introduction webinar
EDGY introduction webinarIntersection Group
 
What is Enterprise Architecture?
What is Enterprise Architecture?What is Enterprise Architecture?
What is Enterprise Architecture?Brett Colbert
 
Governance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGovernance and Management of Enterprise IT with COBIT 5 Framework
Governance and Management of Enterprise IT with COBIT 5 FrameworkGoutama Bachtiar
 
Capability Webinar January 2022
Capability Webinar January 2022Capability Webinar January 2022
Capability Webinar January 2022Intersection Group
 
NIST Cybersecurity Framework Intro for ISACA Richmond Chapter
NIST Cybersecurity Framework Intro for ISACA Richmond ChapterNIST Cybersecurity Framework Intro for ISACA Richmond Chapter
NIST Cybersecurity Framework Intro for ISACA Richmond ChapterTuan Phan
 
Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...
Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...
Why You Should Prioritize Third Party Risk Management (TPRM) in Today's Marke...Resolver Inc.
 
Link Users to Your Specific Page in a Mobile App With Deeplinks
Link Users to Your Specific Page in a Mobile App With DeeplinksLink Users to Your Specific Page in a Mobile App With Deeplinks
Link Users to Your Specific Page in a Mobile App With DeeplinksOutSystems
 
Security models for security architecture
Security models for security architectureSecurity models for security architecture
Security models for security architectureVladimir Jirasek
 
ISO 27005 Risk Assessment
ISO 27005 Risk AssessmentISO 27005 Risk Assessment
ISO 27005 Risk AssessmentSmart Assessment
 
FSI_Third Party Risk Management_Deloitte PoV
FSI_Third Party Risk Management_Deloitte PoVFSI_Third Party Risk Management_Deloitte PoV
FSI_Third Party Risk Management_Deloitte PoVFrederic Girardeau-Montaut
 
20161021 JS Cybersecurity Service Proposal
20161021 JS Cybersecurity Service Proposal20161021 JS Cybersecurity Service Proposal
20161021 JS Cybersecurity Service ProposalCarl Bradley Pate
 
Mastering Information Technology Risk Management
Mastering Information Technology Risk ManagementMastering Information Technology Risk Management
Mastering Information Technology Risk ManagementGoutama Bachtiar
 
Enterprise Risk Management PowerPoint Presentation Slides
Enterprise Risk Management PowerPoint Presentation Slides Enterprise Risk Management PowerPoint Presentation Slides
Enterprise Risk Management PowerPoint Presentation Slides SlideTeam
 
Understanding Your Attack Surface and Detecting & Mitigating External Threats
Understanding Your Attack Surface and Detecting & Mitigating External ThreatsUnderstanding Your Attack Surface and Detecting & Mitigating External Threats
Understanding Your Attack Surface and Detecting & Mitigating External ThreatsUlf Mattsson
 
Balbix-New-CISO-Board-Deck.pptx
Balbix-New-CISO-Board-Deck.pptxBalbix-New-CISO-Board-Deck.pptx
Balbix-New-CISO-Board-Deck.pptxjjvdneut
 
CobiT Foundation Free Training
CobiT Foundation Free TrainingCobiT Foundation Free Training
CobiT Foundation Free TrainingEnterpriseGRC Solutions, Inc.
 
Using Your Growth Model to Drive Smarter High Tempo Testing
Using Your Growth Model to Drive Smarter High Tempo TestingUsing Your Growth Model to Drive Smarter High Tempo Testing
Using Your Growth Model to Drive Smarter High Tempo TestingSean Ellis
 
Enterprise Security Architecture
Enterprise Security ArchitectureEnterprise Security Architecture
Enterprise Security ArchitectureKris Kimmerle
 
EA Report.pdf
EA Report.pdfEA Report.pdf
EA Report.pdfDrShekharTankhiwale
 
Vite, Workshop Slides (Frontend Masters)
Vite, Workshop Slides (Frontend Masters)Vite, Workshop Slides (Frontend Masters)
Vite, Workshop Slides (Frontend Masters)Steve Kinney
 
IT Performance Measurement using IT Governance Metric
IT Performance Measurement using IT Governance MetricIT Performance Measurement using IT Governance Metric
IT Performance Measurement using IT Governance MetricPECB
 
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 ruleWalk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 ruleEnterpriseGRC Solutions, Inc.
 
SABSA white paper
SABSA white paperSABSA white paper
SABSA white paperSABSAcourses
 
SOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSplunk
 
Cybersecurity Risk Quantification
Cybersecurity Risk QuantificationCybersecurity Risk Quantification
Cybersecurity Risk QuantificationMatthew Karnas
 
Risk Identification Process PowerPoint Presentation Slides
Risk Identification Process PowerPoint Presentation SlidesRisk Identification Process PowerPoint Presentation Slides
Risk Identification Process PowerPoint Presentation SlidesSlideTeam
 
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...Veritas Technologies LLC
 
Migrations leader workshop 11.19
Migrations leader workshop 11.19Migrations leader workshop 11.19
Migrations leader workshop 11.19Cassie Mayes
 

More Related Content

What's hot

Link Users to Your Specific Page in a Mobile App With Deeplinks
Link Users to Your Specific Page in a Mobile App With DeeplinksLink Users to Your Specific Page in a Mobile App With Deeplinks
Link Users to Your Specific Page in a Mobile App With DeeplinksOutSystems
 
Security models for security architecture
Security models for security architectureSecurity models for security architecture
Security models for security architectureVladimir Jirasek
 
20161021 JS Cybersecurity Service Proposal
20161021 JS Cybersecurity Service Proposal20161021 JS Cybersecurity Service Proposal
20161021 JS Cybersecurity Service ProposalCarl Bradley Pate
 
Mastering Information Technology Risk Management
Mastering Information Technology Risk ManagementMastering Information Technology Risk Management
Mastering Information Technology Risk ManagementGoutama Bachtiar
 
Enterprise Risk Management PowerPoint Presentation Slides
Enterprise Risk Management PowerPoint Presentation Slides Enterprise Risk Management PowerPoint Presentation Slides
Enterprise Risk Management PowerPoint Presentation Slides SlideTeam
 
Understanding Your Attack Surface and Detecting & Mitigating External Threats
Understanding Your Attack Surface and Detecting & Mitigating External ThreatsUnderstanding Your Attack Surface and Detecting & Mitigating External Threats
Understanding Your Attack Surface and Detecting & Mitigating External ThreatsUlf Mattsson
 
Balbix-New-CISO-Board-Deck.pptx
Balbix-New-CISO-Board-Deck.pptxBalbix-New-CISO-Board-Deck.pptx
Balbix-New-CISO-Board-Deck.pptxjjvdneut
 
Using Your Growth Model to Drive Smarter High Tempo Testing
Using Your Growth Model to Drive Smarter High Tempo TestingUsing Your Growth Model to Drive Smarter High Tempo Testing
Using Your Growth Model to Drive Smarter High Tempo TestingSean Ellis
 
Enterprise Security Architecture
Enterprise Security ArchitectureEnterprise Security Architecture
Enterprise Security ArchitectureKris Kimmerle
 
Vite, Workshop Slides (Frontend Masters)
Vite, Workshop Slides (Frontend Masters)Vite, Workshop Slides (Frontend Masters)
Vite, Workshop Slides (Frontend Masters)Steve Kinney
 
IT Performance Measurement using IT Governance Metric
IT Performance Measurement using IT Governance MetricIT Performance Measurement using IT Governance Metric
IT Performance Measurement using IT Governance MetricPECB
 
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 ruleWalk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 ruleEnterpriseGRC Solutions, Inc.
 
SOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSplunk
 
Cybersecurity Risk Quantification
Cybersecurity Risk QuantificationCybersecurity Risk Quantification
Cybersecurity Risk QuantificationMatthew Karnas
 
Risk Identification Process PowerPoint Presentation Slides
Risk Identification Process PowerPoint Presentation SlidesRisk Identification Process PowerPoint Presentation Slides
Risk Identification Process PowerPoint Presentation SlidesSlideTeam
 

What's hot (20)

Link Users to Your Specific Page in a Mobile App With Deeplinks
Link Users to Your Specific Page in a Mobile App With DeeplinksLink Users to Your Specific Page in a Mobile App With Deeplinks
Link Users to Your Specific Page in a Mobile App With Deeplinks
 
Security models for security architecture
Security models for security architectureSecurity models for security architecture
Security models for security architecture
 
ISO 27005 Risk Assessment
ISO 27005 Risk AssessmentISO 27005 Risk Assessment
ISO 27005 Risk Assessment
 
FSI_Third Party Risk Management_Deloitte PoV
FSI_Third Party Risk Management_Deloitte PoVFSI_Third Party Risk Management_Deloitte PoV
FSI_Third Party Risk Management_Deloitte PoV
 
20161021 JS Cybersecurity Service Proposal
20161021 JS Cybersecurity Service Proposal20161021 JS Cybersecurity Service Proposal
20161021 JS Cybersecurity Service Proposal
 
Mastering Information Technology Risk Management
Mastering Information Technology Risk ManagementMastering Information Technology Risk Management
Mastering Information Technology Risk Management
 
Enterprise Risk Management PowerPoint Presentation Slides
Enterprise Risk Management PowerPoint Presentation Slides Enterprise Risk Management PowerPoint Presentation Slides
Enterprise Risk Management PowerPoint Presentation Slides
 
Understanding Your Attack Surface and Detecting & Mitigating External Threats
Understanding Your Attack Surface and Detecting & Mitigating External ThreatsUnderstanding Your Attack Surface and Detecting & Mitigating External Threats
Understanding Your Attack Surface and Detecting & Mitigating External Threats
 
Balbix-New-CISO-Board-Deck.pptx
Balbix-New-CISO-Board-Deck.pptxBalbix-New-CISO-Board-Deck.pptx
Balbix-New-CISO-Board-Deck.pptx
 
CobiT Foundation Free Training
CobiT Foundation Free TrainingCobiT Foundation Free Training
CobiT Foundation Free Training
 
Using Your Growth Model to Drive Smarter High Tempo Testing
Using Your Growth Model to Drive Smarter High Tempo TestingUsing Your Growth Model to Drive Smarter High Tempo Testing
Using Your Growth Model to Drive Smarter High Tempo Testing
 
Enterprise Security Architecture
Enterprise Security ArchitectureEnterprise Security Architecture
Enterprise Security Architecture
 
EA Report.pdf
EA Report.pdfEA Report.pdf
EA Report.pdf
 
Vite, Workshop Slides (Frontend Masters)
Vite, Workshop Slides (Frontend Masters)Vite, Workshop Slides (Frontend Masters)
Vite, Workshop Slides (Frontend Masters)
 
IT Performance Measurement using IT Governance Metric
IT Performance Measurement using IT Governance MetricIT Performance Measurement using IT Governance Metric
IT Performance Measurement using IT Governance Metric
 
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 ruleWalk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
Walk This Way: CIS CSC and NIST CSF is the 80 in the 80/20 rule
 
SABSA white paper
SABSA white paperSABSA white paper
SABSA white paper
 
SOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security WebinarSOC, Amore Mio! | Security Webinar
SOC, Amore Mio! | Security Webinar
 
Cybersecurity Risk Quantification
Cybersecurity Risk QuantificationCybersecurity Risk Quantification
Cybersecurity Risk Quantification
 
Risk Identification Process PowerPoint Presentation Slides
Risk Identification Process PowerPoint Presentation SlidesRisk Identification Process PowerPoint Presentation Slides
Risk Identification Process PowerPoint Presentation Slides
 

Similar to 2022-09-13 kreuzwerker Atlassian - Navigating GDPR and BaFin in the Cloud.pdf

Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...Veritas Technologies LLC
 
Migrations leader workshop 11.19
Migrations leader workshop 11.19Migrations leader workshop 11.19
Migrations leader workshop 11.19Cassie Mayes
 
Avner Algom - Cloud is the new world economy
Avner Algom - Cloud is the new world economyAvner Algom - Cloud is the new world economy
Avner Algom - Cloud is the new world economyAvner Algom
 
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...Enterprise Management Associates
 
Charting a path to the cloud final
Charting a path to the cloud finalCharting a path to the cloud final
Charting a path to the cloud finalScott Clinton
 
Eliminating the Multi-Cloud Noise with Razor Technology and OpsRamp
Eliminating the Multi-Cloud Noise with Razor Technology and OpsRampEliminating the Multi-Cloud Noise with Razor Technology and OpsRamp
Eliminating the Multi-Cloud Noise with Razor Technology and OpsRampOpsRamp
 
Digital Transformation: Empowering People to Adapt to the Cloud
Digital Transformation: Empowering People to Adapt to the CloudDigital Transformation: Empowering People to Adapt to the Cloud
Digital Transformation: Empowering People to Adapt to the CloudAmazon Web Services
 
Tableau reseller partner in Albania Bilytica Best business Intelligence compa...
Tableau reseller partner in Albania Bilytica Best business Intelligence compa...Tableau reseller partner in Albania Bilytica Best business Intelligence compa...
Tableau reseller partner in Albania Bilytica Best business Intelligence compa...Carie John
 
Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...
Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...
Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...Carie John
 
Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp...
Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp... Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp...
Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp...Carie John
 
Tableau reseller partner in Armenia Bilytica Best business Intelligence comp...
Tableau reseller partner in Armenia Bilytica Best business Intelligence comp... Tableau reseller partner in Armenia Bilytica Best business Intelligence comp...
Tableau reseller partner in Armenia Bilytica Best business Intelligence comp...Carie John
 
Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...
Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...
Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...Carie John
 
TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...
TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...
TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...Carie John
 
Tableau reseller partner in Angola Bilytica Best business Intelligence compan...
Tableau reseller partner in Angola Bilytica Best business Intelligence compan...Tableau reseller partner in Angola Bilytica Best business Intelligence compan...
Tableau reseller partner in Angola Bilytica Best business Intelligence compan...Carie John
 
Tableau reseller partner in Qatar Bilytica Best business Intelligence company...
Tableau reseller partner in Qatar Bilytica Best business Intelligence company...Tableau reseller partner in Qatar Bilytica Best business Intelligence company...
Tableau reseller partner in Qatar Bilytica Best business Intelligence company...Carie John
 
Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...
Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...
Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...Carie John
 
Tableau reseller partner in Austria Bilytica Best business Intelligence compa...
Tableau reseller partner in Austria Bilytica Best business Intelligence compa...Tableau reseller partner in Austria Bilytica Best business Intelligence compa...
Tableau reseller partner in Austria Bilytica Best business Intelligence compa...Carie John
 

Similar to 2022-09-13 kreuzwerker Atlassian - Navigating GDPR and BaFin in the Cloud.pdf (20)

Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
Mike Palmer of Veritas: Debunking the myths of multi-cloud to achieve 360 Dat...
 
Migrations leader workshop 11.19
Migrations leader workshop 11.19Migrations leader workshop 11.19
Migrations leader workshop 11.19
 
Avner Algom - Cloud is the new world economy
Avner Algom - Cloud is the new world economyAvner Algom - Cloud is the new world economy
Avner Algom - Cloud is the new world economy
 
Hybrid Cloud Strategy for Big Data and Analytics
Hybrid Cloud Strategy for Big Data and Analytics Hybrid Cloud Strategy for Big Data and Analytics
Hybrid Cloud Strategy for Big Data and Analytics
 
VSD Paris 2018 - Présentation Finale
VSD Paris 2018 - Présentation FinaleVSD Paris 2018 - Présentation Finale
VSD Paris 2018 - Présentation Finale
 
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
How Analytics Optimize Migration to Amazon Web Services, Microsoft Azure and ...
 
Security & Compliance
Security & ComplianceSecurity & Compliance
Security & Compliance
 
Charting a path to the cloud final
Charting a path to the cloud finalCharting a path to the cloud final
Charting a path to the cloud final
 
Eliminating the Multi-Cloud Noise with Razor Technology and OpsRamp
Eliminating the Multi-Cloud Noise with Razor Technology and OpsRampEliminating the Multi-Cloud Noise with Razor Technology and OpsRamp
Eliminating the Multi-Cloud Noise with Razor Technology and OpsRamp
 
Digital Transformation: Empowering People to Adapt to the Cloud
Digital Transformation: Empowering People to Adapt to the CloudDigital Transformation: Empowering People to Adapt to the Cloud
Digital Transformation: Empowering People to Adapt to the Cloud
 
Tableau reseller partner in Albania Bilytica Best business Intelligence compa...
Tableau reseller partner in Albania Bilytica Best business Intelligence compa...Tableau reseller partner in Albania Bilytica Best business Intelligence compa...
Tableau reseller partner in Albania Bilytica Best business Intelligence compa...
 
Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...
Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...
Tableau reseller partner in Belarus Bilytica Best business Intelligence Compa...
 
Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp...
Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp... Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp...
Tableau reseller partner in Belgium Bilytica Best business Intelligence Comp...
 
Tableau reseller partner in Armenia Bilytica Best business Intelligence comp...
Tableau reseller partner in Armenia Bilytica Best business Intelligence comp... Tableau reseller partner in Armenia Bilytica Best business Intelligence comp...
Tableau reseller partner in Armenia Bilytica Best business Intelligence comp...
 
Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...
Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...
Tableau reseller partner in Andorra Bilytica Best business Intelligence compa...
 
TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...
TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...
TTableau reseller partner in Benin Bilytica Best business Intelligence Compa...
 
Tableau reseller partner in Angola Bilytica Best business Intelligence compan...
Tableau reseller partner in Angola Bilytica Best business Intelligence compan...Tableau reseller partner in Angola Bilytica Best business Intelligence compan...
Tableau reseller partner in Angola Bilytica Best business Intelligence compan...
 
Tableau reseller partner in Qatar Bilytica Best business Intelligence company...
Tableau reseller partner in Qatar Bilytica Best business Intelligence company...Tableau reseller partner in Qatar Bilytica Best business Intelligence company...
Tableau reseller partner in Qatar Bilytica Best business Intelligence company...
 
Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...
Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...
Tableau reseller partner in Bangladesh Bilytica Best business Intelligence Co...
 
Tableau reseller partner in Austria Bilytica Best business Intelligence compa...
Tableau reseller partner in Austria Bilytica Best business Intelligence compa...Tableau reseller partner in Austria Bilytica Best business Intelligence compa...
Tableau reseller partner in Austria Bilytica Best business Intelligence compa...
 

More from kreuzwerker GmbH

2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...
2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...
2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...kreuzwerker GmbH
 
AWS & kreuzwerker Startup Day Warsaw - 09.11.2023
AWS & kreuzwerker Startup Day Warsaw - 09.11.2023AWS & kreuzwerker Startup Day Warsaw - 09.11.2023
AWS & kreuzwerker Startup Day Warsaw - 09.11.2023kreuzwerker GmbH
 
Level Up Your Amazon OpenSearch Cluster in a Week
Level Up Your Amazon OpenSearch Cluster in a WeekLevel Up Your Amazon OpenSearch Cluster in a Week
Level Up Your Amazon OpenSearch Cluster in a Weekkreuzwerker GmbH
 
App Modernization with Kotlin.pdf
App Modernization with Kotlin.pdfApp Modernization with Kotlin.pdf
App Modernization with Kotlin.pdfkreuzwerker GmbH
 
kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...
kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...
kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...kreuzwerker GmbH
 
Making Serverless a Game Changer for you
Making Serverless a Game Changer for youMaking Serverless a Game Changer for you
Making Serverless a Game Changer for youkreuzwerker GmbH
 
The Testing Pyramid In a Serverless World.pdf
The Testing Pyramid In a Serverless World.pdfThe Testing Pyramid In a Serverless World.pdf
The Testing Pyramid In a Serverless World.pdfkreuzwerker GmbH
 
kreuzwerker FactSheet: Jira Work Management (English)
kreuzwerker FactSheet: Jira Work Management (English)kreuzwerker FactSheet: Jira Work Management (English)
kreuzwerker FactSheet: Jira Work Management (English)kreuzwerker GmbH
 
AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022
AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022
AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022kreuzwerker GmbH
 
Business Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdf
Business Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdfBusiness Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdf
Business Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdfkreuzwerker GmbH
 
kreuzwerker about prowler - make best practises best practises
kreuzwerker about prowler - make best practises best practiseskreuzwerker about prowler - make best practises best practises
kreuzwerker about prowler - make best practises best practiseskreuzwerker GmbH
 
Best friends forever! - Atlassian Cloud and the GDPR
Best friends forever! - Atlassian Cloud and the GDPRBest friends forever! - Atlassian Cloud and the GDPR
Best friends forever! - Atlassian Cloud and the GDPRkreuzwerker GmbH
 
Infrastructure under the magnifying glass
Infrastructure under the magnifying glassInfrastructure under the magnifying glass
Infrastructure under the magnifying glasskreuzwerker GmbH
 
Docker offshore - packaging applications for hard to reach datacenter
Docker offshore - packaging applications for hard to reach datacenterDocker offshore - packaging applications for hard to reach datacenter
Docker offshore - packaging applications for hard to reach datacenterkreuzwerker GmbH
 

More from kreuzwerker GmbH (17)

2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...
2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...
2024-02-29_Webinar_DORA_(Digital Operational Resilience Act) praxistauglich e...
 
AWS & kreuzwerker Startup Day Warsaw - 09.11.2023
AWS & kreuzwerker Startup Day Warsaw - 09.11.2023AWS & kreuzwerker Startup Day Warsaw - 09.11.2023
AWS & kreuzwerker Startup Day Warsaw - 09.11.2023
 
Level Up Your Amazon OpenSearch Cluster in a Week
Level Up Your Amazon OpenSearch Cluster in a WeekLevel Up Your Amazon OpenSearch Cluster in a Week
Level Up Your Amazon OpenSearch Cluster in a Week
 
App Modernization with Kotlin.pdf
App Modernization with Kotlin.pdfApp Modernization with Kotlin.pdf
App Modernization with Kotlin.pdf
 
kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...
kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...
kreuzwerker AWS Modernizing Legacy Operations with Containerized Solutions 20...
 
Making Serverless a Game Changer for you
Making Serverless a Game Changer for youMaking Serverless a Game Changer for you
Making Serverless a Game Changer for you
 
The Testing Pyramid In a Serverless World.pdf
The Testing Pyramid In a Serverless World.pdfThe Testing Pyramid In a Serverless World.pdf
The Testing Pyramid In a Serverless World.pdf
 
kreuzwerker FactSheet: Jira Work Management (English)
kreuzwerker FactSheet: Jira Work Management (English)kreuzwerker FactSheet: Jira Work Management (English)
kreuzwerker FactSheet: Jira Work Management (English)
 
AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022
AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022
AWS Immersion Day Zurich, kreuzwerker & AWS, 30. Mai 2022
 
Business Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdf
Business Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdfBusiness Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdf
Business Team Collaboration- Jira Work Management Webinar by kreuzwerker.pdf
 
kreuzwerker about prowler - make best practises best practises
kreuzwerker about prowler - make best practises best practiseskreuzwerker about prowler - make best practises best practises
kreuzwerker about prowler - make best practises best practises
 
Best friends forever! - Atlassian Cloud and the GDPR
Best friends forever! - Atlassian Cloud and the GDPRBest friends forever! - Atlassian Cloud and the GDPR
Best friends forever! - Atlassian Cloud and the GDPR
 
Infrastructure under the magnifying glass
Infrastructure under the magnifying glassInfrastructure under the magnifying glass
Infrastructure under the magnifying glass
 
Docker offshore
Docker offshoreDocker offshore
Docker offshore
 
Hands On Docker Workshop
Hands On Docker WorkshopHands On Docker Workshop
Hands On Docker Workshop
 
Docker Workshop
Docker WorkshopDocker Workshop
Docker Workshop
 
Docker offshore - packaging applications for hard to reach datacenter
Docker offshore - packaging applications for hard to reach datacenterDocker offshore - packaging applications for hard to reach datacenter
Docker offshore - packaging applications for hard to reach datacenter
 

Recently uploaded

Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 

Recently uploaded (20)

Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 

2022-09-13 kreuzwerker Atlassian - Navigating GDPR and BaFin in the Cloud.pdf

  • 1. SASCHA WISWEDEL | PRE-SALES SOLUTIONS ENGINEER Atlassian Enterprise Cloud
  • 2. Unlock new ways of working Practices People Tools
  • 3. Unleash the potential OUR MISSION of every team
  • 4. SOLUTIONS EXPERIENCE DATA INFRASTRUCTURE EXTENSIBILITY WORK MANAGEMENT NEW SOLUTIONS ITSM AGILE & DEVOPS COLLABORATION CONNECTION ANALYTICS AUTOMATION ADMIN COMPLIANCE THE ATLASSIAN PLATFORM
  • 5. PROVEN & EXPERIENCED Jira Software Bitbucket Jira Align Opsgenie Statuspage Confluence Trello Innovation, unleashed by Cloud Jira Work Management Jira for Business Teams Jira Product Discovery Product idea and decision management BETA Atlas Dynamic status reporting BETA Halp Conversational ticketing Compass Engineering inventory management BETA INNOVATIVE & FUTURISTIC (“POINT A” PROGRAM) Atlassian Analytics Business Intelligence (chartio acquisition) EAP Atlassian’s R&D focus: strategic, integrated, extensible
  • 7. TIME TO VALUE Move fast, accelerate time to value and speed to market ROI Refocus resources and investments to maximize your business ROI INNOVATION Future-proof your strategy & tools with continuous innovation REVENUE PROFIT GROWTH Why Atlassian Cloud?
  • 9. STORAGE GUARANTEED 99.9% availability No more file size or limits 24x7 dedicated support SLA UNLIMITED PREMIUM SUPPORT CLOUD PREMIUM IS BACKED BY
  • 10. Scale with Premium JIRA SOFTWARE CONFLUENCE SCALING TEAMS Advanced roadmaps Automation Capacity planning Analytics Team Calendars Automation External collaboration SCALING ADMINS Automation Archive projects Archive pages Bulk space permissions Advanced permissions SCALING ORGANIZATIONS IP allowlisting Sandbox Release Tracks COMING SOON COMING SOON
  • 13. Global Scale and Reliability Enterprise-grade Security & Compliance Apps and Extensibility Cloud Enterprise Value Powerful Governance Controls
  • 15. Security features for everyone SAML Single Sign-on (SSO) User lifecycle management with SCIM Organization Audit Logs Shadow IT insights Nested groups flattening Selective user claim External User Security COMING SOON COMING SOON Encryption at rest & in transit Data Residency Mobile Device Management (MDM) Secure Application Tunneling 🆕 Improved backup and restore Data Residency for apps COMING SOON COMING SOON 💡Included with Enterprise
  • 16. Atlassian Enterprise Plan adds Governance Multiple Identity Providers in Atlassian Access User activity audit log 🆕
  • 17. Atlassian Enterprise Plan adds Compliance * COMING SOON
  • 18. Atlassian Enterprise Plan adds Security Bring your own Key Data Leakage Protection COMING SOON FUTURE
  • 19. Atlassian Enterprise Plan adds Analytics & Data Lake Atlassian Data Lake Atlassian Analytics Data Warehouse BI tools (eg. Tableau and Power BI) COMING SOON COMING SOON
  • 21. PHONE SUPPORT DEDICATED 24/7 SUPPORT 30 MIN IRT FOR CRITICAL ISSUES ENTERPRISE SUPPORT
  • 22. Cloud scale per site Maximum number of users (per Cloud site) 0 12000 24000 36000 48000 60000 2018 2019 2020 2021 2022 2023 50.000 35.000 20.000 10.000 5.000 2.000
  • 24. Scale globally with unlimited sites Cloud Enterprise Centralized user licensing - pay for user once and grant access to multiple instances Acquisitions Business Units Security Corporate Regions Centralized Admin Console - Manage users, products, security policies, insights and billing Customize instances with marketplace apps based on team needs
  • 25. MINIMUM REQUIREMENTS FOR ENTERPRISE OR 801+ users 201+ agents 501+ users 51+ agents 👀 Financial Services Special
  • 26. Cloud Trust Center Migration Partners Cloud loyalty discount Cloud migration support Resources, tools, offers, and support to guide your journey MIGRATION PROGRAM
  • 27. Assess Jour (guided) Journey to cloud Plan Launch Test Optimize MIGRATE Prep
  • 28. Migration Assistant App Helps assessing apps and migrating core content from Server to Cloud Migration Manager Dedicated team to help you assess and plan your migration Solution Partners Help you with the hand-on-keyboard work before, during and after the migration Migration Center Resources, best practices & migration tools for every stage of the migration journey. Migration Helpers
  • 30. Next up: Daniel Meisen
  • 32. New: Secure Application Tunnels Connect Cloud with on-prem without opening your fi rewall
  • 33. User management — centralized
  • 34. Non-operation (Business can not work) Maintenance windows Outages/Disruptions Holistic view on Cost Advantages Risk Attacks Data breaches Security vulnerabilities Operation Hardware Software Support Licenses Maintenance Covered, maintenance-free and included in Atlassian Cloud
  • 36. European Union/EEA Germany specific Cloud Compliance for Financial Services customers
  • 37. Audit rights On-site audits and flow-down audit rights over material sub-outsourcers (i.e., AWS) Cooperation Commitment to cooperate with regulators Oversight rights Enhanced record-keeping and notifications in case of a breach Continuity of service In the event of bankruptcy and after termination Included with the Financial Services Addendum
  • 38. Eligibility requirements Cloud Enterprise Plan > 500 users minimum No other editions qualify for this addendum or compliance Operate in the EU From regional to multinational banks with presence within EEA Product Scope Only the above products apply
  • 39. Your Cloud Pilot Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 40. Shareholder & Co-CEO Atlassian Expert by Heart Atlassian Certified Instructor Atlassian Certified Professional User since Jira 2.0 EAP & Confluence 1.0 2 Daniel Meisen
  • 41. Moving to a cloud future, together… 3 - Guidance on GDPR - Guidance on BaFin - Atlassian Cloud compliance - Guidance on your compliance Journey to Cloud
  • 43. 5 Guidance on GDPR © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 44. 6 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud Status Quo GDPR ? Disclaimer: The following statements have been carefully reviewed. I am not a laywer and this is not legal advice. This advice is general in nature and not to be taken as personal / professional advice TL;DR: NAL; TINLA
  • 45. Starting: May 25, 2018 When? Unified rules for all EU countries What? GDPR Definition GDPR European Union General Data Protection Regulation © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 46. Protection Protect personal data & strengthen privacy rights of EU individuals Control Give users control over their data Goals of EU’s General Data Protection Regulation GOALS © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 47. Protection Protect personal data & strengthen privacy rights of EU individuals Control Give users control over their data Goals of EU’s General Data Protection Regulation GOALS https://time.com/6146178/meta-facebook-eu-withdraw-data/
  • 48. Protection Protect personal data & strengthen privacy rights of EU individuals Control Give users control over their data Goals of EU’s General Data Protection Regulation GOALS https://about.fb.com/news/2022/02/meta-is-absolutely-not-threatening-to-leave-europe/
  • 49. Who is affected by GDPR? All businesses collecting or holding personal data on EU citizens. No matter where they reside! © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 50. Name Address Phone Bank / Credit cards Email address IP address Cookies Online identifiers … Personal Data Biometric data Genetic data Health data Race, Gender, Religion, … Sensitive Data Types of Personal & Private Data © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 51. GDPR Non-Compliance - Penalties & Fines If your data is breached: GDPR FINES You must report it within 72 hours OR Face a fine up to 20M € or 4% global turnover © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 52. GDPR Non-Compliance - Penalties & Fines If your data is breached: GDPR FINES You must report it within 72 hours OR Face a fine up to 20M € or 4% global turnover https://www.enforcementtracker.com/
  • 53. Assess GDPR Compliance Analyze what you collect & where is data stored. (cookies, tracking pixels, emails, names, addresses…) 1 Check if the time you store personal data is relevant. If not, remove data. 2 Inform your clients how they can modify or delete their data. (special mailing, Privacy Policy webpage) 3 Monitor who has access to personal data. 4 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 54. Primer on GDPR SaaS assessments - Assess data flows - is there any data exported outside the EU – lawfulness, purpose limitation and ensure data minimization. - Adequacy decisions exist for certain countries (i.e. Switzerland, Canada, United Kingdom, …) but not for all (USA: Schrems II) - Decide if a data protections impact assessment (DPIA) is required required - depends on your specific use case (Art. 35 Abs. 4 DS- GVO) - Perform a Transfer Impact Assessment (TIA) – Guidance provided by Atlassian1 - Ensure up-to date DPA including “new” SCCs – grace period expires on Dec 27th, 20222 16 1 h"ps://www.atlassian.com/legal/data-transfer-impact-assessment 2 h"ps://www.atlassian.com/legal/data-processing-addendum
  • 55. 17 Guidance on BaFin © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 56. BaFin – Guidance on Outsourcing to Cloud Services - Additional requirements for all non-differentiated outsourcing according to the KAGB (Scope, Audit-Rights supervised company / supervised authorities, right to issue instructions, data security / protection, … - Chapter V) - Quick Tip: Guidance1 of the BaFin (together with Deutsche Bundesbank) in cooperation EIOPA, EBA, SSM and other national supervisory authorities - Covers outsourcing of materials and items to the Public Cloud (and private/community/hybrid) as IaaS, PaaS or SaaS. - Supervised company (you?!) are requested to have a documented process covering all relevant steps to outsource to a cloud provider. 18 1 https:/ /www.bafin.de/SharedDocs/Downloads/EN/Merkblatt/BA/dl_181108_orientierungshilfe_zu_auslagerungen_an_cloud_anbieter_ba_en.html?nn=9866146
  • 57. BaFin – Guidance on Outsourcing to Cloud Services - Review your use-case in regards to supervisory law if a case of outsourcing exists and whether its to be qualified as material - when in doubt assume outsourcing - Perform a risk analysis covering all relevant aspects of outsourcing (type, scope, complexity, risk) - Review and map all Chapter V (Contractual terms in the case of (material) outsourcing) requirements to the Atlassian contractual vehicles1 19 1 https://www.atlassian.com/trust/compliance/resources/bafin/bafin-guidance
  • 58. 20 Atlassian Cloud Compliance © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 59. GDPR Compliance: Status Quo - Updated Standard DPA provided by Atlassian ✔ - Includes „Standard Contract Clauses“ (SCC) ✔ - Data subjects ✔ - Categories of data ✔ - Purpose of processing ✔ - Subprocessors, duties based on Art. 32-36 ✔ 21 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 60. GDPR Compliance: All well then? - Data protection by default - Data residency controls ✔ - Content locked per realm (EU, US, Global) - Data privacy management - Incident / response management 22 Additional information available through additional documents © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 61. GDPR Compliance: Relevant documents - Data Processing Addendum https://www.atlassian.com/de/legal/data-processing-addendum - Cloud Terms of Service https://www.atlassian.com/legal/cloud-terms-of-service - Privacy Policy https://www.atlassian.com/legal/privacy-policy - Certification / Compliance https://www.atlassian.com/trust/compliance - Atlassian Common Controls Framework https://www.atlassian.com/trust/compliance/common-controls-framework - Manage Data Residency https://support.atlassian.com/security-and-access-policies/docs/understand-data- residency-and-realms/ - Vendor Security Risks https://www.atlassian.com/trust/security/vendor-security-risk-response 23 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 62. GDPR: Additional Aspects - Data Residency Controls: What Primary- & Secondary data is available per region (= “Realm Pinning”) - Access restrictions: „IP Allowlisting“ vs. VPN - Varying support for different products (Trello, Jira Align / OpsGenie / StatusPage) - Third party apps – You might need indivdual DPAs - Forge „hosted by Atlassian” – Compliance in line with core products (Jira / Confluence) 24 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 63. Product Content in Realm https://support.atlassian.com/security-and-access-policies/docs/understand-data-residency-and-realms/ 25
  • 64. Summary - Atlassian has invested a lot in its native Cloud and offers a wide selection of Cloud plans - GDPR compliance can be assumed based new SCCs / TIA / BCRs – indivdual assessment is required - Utilizing additional documentation, guidance (BaFin, TIA) and certification a GDPR and BaFIN-compliant use is achievable - Risk-assessment (data protection impact assessment) can be simplified with Data Residency Controls implemented in Cloud Standard / Premium / Enterprise and Apps - Follow the transparency reports: https://www.atlassian.com/trust/privacy/transparency-report 26 © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 65. 27 Questions? © kreuzwerker, 2022 - Navigate GDPR-and BaFin Compliance of the Atlassian Cloud
  • 66. kreuzwerker GmbH Ritterstr. 12-14 10969 Berlin www.kreuzwerker.de Fon +49 30 609 838 80 Fax +49 30 609 838 899 Thank you ! atlassian@kreuzwerker.de