SlideShare a Scribd company logo

Cloud security expo 2017

S
shittusoft

Many routes are leading to the Cloud; But we need more transparency.

Technology
1 of 19
Download to read offline
1 Many Routes to the Cloud but More Transparency Needed Shittu O. Shittu Cyber Security Assurance & Innovation Centre (CSAIC)
2 | Cloud Security Expo – March 2017
3 Disclaimer The views and opinions expressed in this presentation are those of the presenter and do not necessarily reflect the position of any subsidiary of Barclays Bank PLC.
Some Parallels between Flying and Cloud Computing
5 Infrastructure as a Service Runway Airport Terminals Parking Lot
6 Platform as a Service Airline Global Distribution Systems (GDS) Reservation Systems Departure Control System
7 Software as a Service Aircraft as a Service (Leasing) Pilots, Cabin Crews, Engineers as a Service Cabin Crews as a Service
8 Ready for Take Off?! But … first things first
9 Flight Planning • What is the end-to-end route? • What are the alternatives? • Jurisdictions? • Regulations? • Regional Conflicts? • Airspaces? • Flight Manifest
10 Push Back Yes! it is manual… What can’t the “aircraft" do by itself? - Risk Management FG16/5: Guidance for firms outsourcing to the ‘cloud’ and other third party IT services - FCA Guidelines on Outsourcing Risk Management to financial institutions (FIs) – New section on cloud computing - MAS …use of engine thrust near terminals is restricted due to the possibility of jet blast damage.
11 Taxiing • Safest time to abort • Preparing for Take Off! • Security checks completed • Service provider assurance completed • Residual Risks known • Satisfy regulators (especially for material outsourcing)moves on the ground following the yellow lines, to avoid any collision with the surrounding buildings, vehicles or other aircrafts
12 Take Off • Dangerous Time to Abort • Transition to Flying • Cloud migration begins • Migration speed under control • Residual risks accepted • Monitoring of emerging risks begins aircraft goes through a transition from moving along the ground (taxiing) to flying in the air
13 The Climb • Lift of Wings • Force must exceed aircraft weight • Leverage automation • Use policy enforcement technologies • Manage policy administration (centrally) aircraft has to climb to a certain altitude (typically 30,000 ft or 10 km) before it can cruise at this altitude in a safe and economic way
14 Cruise • Optimum performance • Travel at cleared flight speed • Continuous comms with ATC • Adjustments to flight plan • Agility and economy of scale • Adapt security controls • But.. How do you control what you can’t see? level portion of aircraft travel where flight is most fuel efficient
15 Air Traffic Control - Visibility is key CASB Security Gateways CSA STARWatch 3rd Party Risk Scoring • Service provider security • Supply chain security • 4th Party Concentration risks • Security of service objects • Data security
16 Emerging Trends
17 CSA FSSP Cloud Security Alliance Financial Services Stakeholders Platform • Regional (EU, APAC, Americas) and global mechanisms for security and privacy compliance • Global best practices and de-facto standards for incident management and information sharing • Technical solutions that can improve the security capabilities of the financial sectors • Recommendations addressed to policy makers and regulators • Awareness and educational materials addressed to regulators, financial service risk/security/compliance/audit officers, and cloud service providers
18 Descent and Landing • Dangerous time to abort • Standard landing procedures • Not many cloud adopters have made it this far • Never wait till end of contract to have an exit strategy
19 Questions Many Routes to the Cloud, More Visibility Needed You can’t protect what you can’t see You can’t respond to what you don’t know Shittu O. Shittu Cyber Security Assurance & Innovation Centre (CSAIC)

Recommended

Principles of FAA NextGen and the Impact on Global Airport Operations
Principles of FAA NextGen and the Impact on Global Airport OperationsPrinciples of FAA NextGen and the Impact on Global Airport Operations
Principles of FAA NextGen and the Impact on Global Airport OperationsLockheed-Martin
 
Modernization of airports through smart IT- Lv sridhar
Modernization of airports through smart IT- Lv sridharModernization of airports through smart IT- Lv sridhar
Modernization of airports through smart IT- Lv sridharSITA
 
Space has no limits – Why investments in space are a unique opportunity
Space has no limits – Why investments in space are a unique opportunitySpace has no limits – Why investments in space are a unique opportunity
Space has no limits – Why investments in space are a unique opportunityJohann Richard
 
SECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali Mirchandani
SECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali MirchandaniSECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali Mirchandani
SECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali MirchandaniALIAS Network
 
Flight Data Monitoring
Flight Data MonitoringFlight Data Monitoring
Flight Data MonitoringFAA Safety Team Central Florida
 
Stuart lester
Stuart lesterStuart lester
Stuart lesterBoilerhouse Communications
 
HFDM Best Practices Document_V1.1
HFDM Best Practices Document_V1.1HFDM Best Practices Document_V1.1
HFDM Best Practices Document_V1.1Mike Pilgrim
 
THE MILITARY PERSPECTIVE ON RPAS by Giuseppe Marani
THE MILITARY PERSPECTIVE ON RPAS by Giuseppe MaraniTHE MILITARY PERSPECTIVE ON RPAS by Giuseppe Marani
THE MILITARY PERSPECTIVE ON RPAS by Giuseppe MaraniALIAS Network
 

Recommended

Principles of FAA NextGen and the Impact on Global Airport Operations
Principles of FAA NextGen and the Impact on Global Airport OperationsPrinciples of FAA NextGen and the Impact on Global Airport Operations
Principles of FAA NextGen and the Impact on Global Airport OperationsLockheed-Martin
 
Modernization of airports through smart IT- Lv sridhar
Modernization of airports through smart IT- Lv sridharModernization of airports through smart IT- Lv sridhar
Modernization of airports through smart IT- Lv sridharSITA
 
Space has no limits – Why investments in space are a unique opportunity
Space has no limits – Why investments in space are a unique opportunitySpace has no limits – Why investments in space are a unique opportunity
Space has no limits – Why investments in space are a unique opportunityJohann Richard
 
SECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali Mirchandani
SECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali MirchandaniSECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali Mirchandani
SECURE DATA CLOUD PROJECT: LEGAL CHALLENGES by Vaishali MirchandaniALIAS Network
 
Flight Data Monitoring
Flight Data MonitoringFlight Data Monitoring
Flight Data MonitoringFAA Safety Team Central Florida
 
Stuart lester
Stuart lesterStuart lester
Stuart lesterBoilerhouse Communications
 
HFDM Best Practices Document_V1.1
HFDM Best Practices Document_V1.1HFDM Best Practices Document_V1.1
HFDM Best Practices Document_V1.1Mike Pilgrim
 
THE MILITARY PERSPECTIVE ON RPAS by Giuseppe Marani
THE MILITARY PERSPECTIVE ON RPAS by Giuseppe MaraniTHE MILITARY PERSPECTIVE ON RPAS by Giuseppe Marani
THE MILITARY PERSPECTIVE ON RPAS by Giuseppe MaraniALIAS Network
 
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)PMI-Montréal
 
A-CDM
A-CDMA-CDM
A-CDMGrafic.guru
 
SGD 2016 - Introduction
SGD 2016 - IntroductionSGD 2016 - Introduction
SGD 2016 - IntroductionSESAR Joint Undertaking
 
Simplified vehicle ops
Simplified vehicle opsSimplified vehicle ops
Simplified vehicle opsJanakaBiyanwala
 
Airport Collaborative Decision Making
Airport Collaborative Decision Making Airport Collaborative Decision Making
Airport Collaborative Decision Making Grafic.guru
 
Presentation on Digital Transformation of Airports GALF Dubai May 2016
Presentation on Digital Transformation of Airports GALF Dubai May 2016Presentation on Digital Transformation of Airports GALF Dubai May 2016
Presentation on Digital Transformation of Airports GALF Dubai May 2016diogenisp
 
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)ICARUS2020.aero
 
SATCE Presentation for WATS 2016 Goodman
SATCE Presentation for WATS 2016 GoodmanSATCE Presentation for WATS 2016 Goodman
SATCE Presentation for WATS 2016 GoodmanJeremy Goodman
 
Egan Patrick Rcapa Usa
Egan Patrick Rcapa UsaEgan Patrick Rcapa Usa
Egan Patrick Rcapa Usapatrickegan
 
INFORM-Measuring and Monitoring Aircraft Turn Operations v3
INFORM-Measuring and Monitoring Aircraft Turn Operations v3INFORM-Measuring and Monitoring Aircraft Turn Operations v3
INFORM-Measuring and Monitoring Aircraft Turn Operations v3David Foster
 
AI in AVATION.pptx
AI in AVATION.pptxAI in AVATION.pptx
AI in AVATION.pptxSnehaTelag
 
Keynote Predictive Maintenance in Aviation
Keynote Predictive Maintenance in Aviation Keynote Predictive Maintenance in Aviation
Keynote Predictive Maintenance in Aviation Sander De Bree
 
Economic impact of ground handling industry
Economic impact of ground handling industryEconomic impact of ground handling industry
Economic impact of ground handling industryBrendan Korman
 
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge ManagementACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge ManagementSegun Alayande
 
Driving Efficiency with Splunk Cloud at Gatwick Airport
Driving Efficiency with Splunk Cloud at Gatwick AirportDriving Efficiency with Splunk Cloud at Gatwick Airport
Driving Efficiency with Splunk Cloud at Gatwick AirportSplunk
 
Airline Network Planning And Simulation
Airline Network Planning And Simulation Airline Network Planning And Simulation
Airline Network Planning And Simulation Inna Stelin
 
Nextgen
NextgenNextgen
NextgenMichele Thomas
 
Applications of operations research in the airline industry
Applications of operations research in the airline industryApplications of operations research in the airline industry
Applications of operations research in the airline industryAjitNavi1
 
BritishAirways-CS-FINAL
BritishAirways-CS-FINALBritishAirways-CS-FINAL
BritishAirways-CS-FINALNicolas Mallison
 
How Bluemix Helps NASA Innovate
How Bluemix Helps NASA InnovateHow Bluemix Helps NASA Innovate
How Bluemix Helps NASA InnovateIBM
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 

More Related Content

Similar to Cloud security expo 2017

The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)PMI-Montréal
 
Airport Collaborative Decision Making
Airport Collaborative Decision Making Airport Collaborative Decision Making
Airport Collaborative Decision Making Grafic.guru
 
Presentation on Digital Transformation of Airports GALF Dubai May 2016
Presentation on Digital Transformation of Airports GALF Dubai May 2016Presentation on Digital Transformation of Airports GALF Dubai May 2016
Presentation on Digital Transformation of Airports GALF Dubai May 2016diogenisp
 
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)ICARUS2020.aero
 
SATCE Presentation for WATS 2016 Goodman
SATCE Presentation for WATS 2016 GoodmanSATCE Presentation for WATS 2016 Goodman
SATCE Presentation for WATS 2016 GoodmanJeremy Goodman
 
Egan Patrick Rcapa Usa
Egan Patrick Rcapa UsaEgan Patrick Rcapa Usa
Egan Patrick Rcapa Usapatrickegan
 
INFORM-Measuring and Monitoring Aircraft Turn Operations v3
INFORM-Measuring and Monitoring Aircraft Turn Operations v3INFORM-Measuring and Monitoring Aircraft Turn Operations v3
INFORM-Measuring and Monitoring Aircraft Turn Operations v3David Foster
 
AI in AVATION.pptx
AI in AVATION.pptxAI in AVATION.pptx
AI in AVATION.pptxSnehaTelag
 
Keynote Predictive Maintenance in Aviation
Keynote Predictive Maintenance in Aviation Keynote Predictive Maintenance in Aviation
Keynote Predictive Maintenance in Aviation Sander De Bree
 
Economic impact of ground handling industry
Economic impact of ground handling industryEconomic impact of ground handling industry
Economic impact of ground handling industryBrendan Korman
 
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge ManagementACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge ManagementSegun Alayande
 
Driving Efficiency with Splunk Cloud at Gatwick Airport
Driving Efficiency with Splunk Cloud at Gatwick AirportDriving Efficiency with Splunk Cloud at Gatwick Airport
Driving Efficiency with Splunk Cloud at Gatwick AirportSplunk
 
Airline Network Planning And Simulation
Airline Network Planning And Simulation Airline Network Planning And Simulation
Airline Network Planning And Simulation Inna Stelin
 
Applications of operations research in the airline industry
Applications of operations research in the airline industryApplications of operations research in the airline industry
Applications of operations research in the airline industryAjitNavi1
 
How Bluemix Helps NASA Innovate
How Bluemix Helps NASA InnovateHow Bluemix Helps NASA Innovate
How Bluemix Helps NASA InnovateIBM
 

Similar to Cloud security expo 2017 (20)

The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
The digital revolution comes to Aircraft Maintenance, Repair and Overhaul (MRO)
 
A-CDM
A-CDMA-CDM
A-CDM
 
SGD 2016 - Introduction
SGD 2016 - IntroductionSGD 2016 - Introduction
SGD 2016 - Introduction
 
Simplified vehicle ops
Simplified vehicle opsSimplified vehicle ops
Simplified vehicle ops
 
Airport Collaborative Decision Making
Airport Collaborative Decision Making Airport Collaborative Decision Making
Airport Collaborative Decision Making
 
Presentation on Digital Transformation of Airports GALF Dubai May 2016
Presentation on Digital Transformation of Airports GALF Dubai May 2016Presentation on Digital Transformation of Airports GALF Dubai May 2016
Presentation on Digital Transformation of Airports GALF Dubai May 2016
 
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
ICARUS @EASN 2019 - Industry 4.0 in Aeronautics Session (September 2019, Athens)
 
SATCE Presentation for WATS 2016 Goodman
SATCE Presentation for WATS 2016 GoodmanSATCE Presentation for WATS 2016 Goodman
SATCE Presentation for WATS 2016 Goodman
 
Egan Patrick Rcapa Usa
Egan Patrick Rcapa UsaEgan Patrick Rcapa Usa
Egan Patrick Rcapa Usa
 
INFORM-Measuring and Monitoring Aircraft Turn Operations v3
INFORM-Measuring and Monitoring Aircraft Turn Operations v3INFORM-Measuring and Monitoring Aircraft Turn Operations v3
INFORM-Measuring and Monitoring Aircraft Turn Operations v3
 
AI in AVATION.pptx
AI in AVATION.pptxAI in AVATION.pptx
AI in AVATION.pptx
 
Keynote Predictive Maintenance in Aviation
Keynote Predictive Maintenance in Aviation Keynote Predictive Maintenance in Aviation
Keynote Predictive Maintenance in Aviation
 
Economic impact of ground handling industry
Economic impact of ground handling industryEconomic impact of ground handling industry
Economic impact of ground handling industry
 
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge ManagementACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
ACI ACRIS Semantic Model. Airport Ecosystem Knowledge Management
 
Driving Efficiency with Splunk Cloud at Gatwick Airport
Driving Efficiency with Splunk Cloud at Gatwick AirportDriving Efficiency with Splunk Cloud at Gatwick Airport
Driving Efficiency with Splunk Cloud at Gatwick Airport
 
Airline Network Planning And Simulation
Airline Network Planning And Simulation Airline Network Planning And Simulation
Airline Network Planning And Simulation
 
Nextgen
NextgenNextgen
Nextgen
 
Applications of operations research in the airline industry
Applications of operations research in the airline industryApplications of operations research in the airline industry
Applications of operations research in the airline industry
 
BritishAirways-CS-FINAL
BritishAirways-CS-FINALBritishAirways-CS-FINAL
BritishAirways-CS-FINAL
 
How Bluemix Helps NASA Innovate
How Bluemix Helps NASA InnovateHow Bluemix Helps NASA Innovate
How Bluemix Helps NASA Innovate
 

Recently uploaded

Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your BudgetHyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your BudgetEnjoy Anytime
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraDeakin University
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphNeo4j
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2Hyundai Motor Group
 

Recently uploaded (20)

Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your BudgetHyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning era
 
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptxVulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2Next-generation AAM aircraft unveiled by Supernal, S-A2
Next-generation AAM aircraft unveiled by Supernal, S-A2
 

Cloud security expo 2017

  • 1. 1 Many Routes to the Cloud but More Transparency Needed Shittu O. Shittu Cyber Security Assurance & Innovation Centre (CSAIC)
  • 2. 2 | Cloud Security Expo – March 2017
  • 3. 3 Disclaimer The views and opinions expressed in this presentation are those of the presenter and do not necessarily reflect the position of any subsidiary of Barclays Bank PLC.
  • 4. Some Parallels between Flying and Cloud Computing
  • 5. 5 Infrastructure as a Service Runway Airport Terminals Parking Lot
  • 6. 6 Platform as a Service Airline Global Distribution Systems (GDS) Reservation Systems Departure Control System
  • 7. 7 Software as a Service Aircraft as a Service (Leasing) Pilots, Cabin Crews, Engineers as a Service Cabin Crews as a Service
  • 8. 8 Ready for Take Off?! But … first things first
  • 9. 9 Flight Planning • What is the end-to-end route? • What are the alternatives? • Jurisdictions? • Regulations? • Regional Conflicts? • Airspaces? • Flight Manifest
  • 10. 10 Push Back Yes! it is manual… What can’t the “aircraft" do by itself? - Risk Management FG16/5: Guidance for firms outsourcing to the ‘cloud’ and other third party IT services - FCA Guidelines on Outsourcing Risk Management to financial institutions (FIs) – New section on cloud computing - MAS …use of engine thrust near terminals is restricted due to the possibility of jet blast damage.
  • 11. 11 Taxiing • Safest time to abort • Preparing for Take Off! • Security checks completed • Service provider assurance completed • Residual Risks known • Satisfy regulators (especially for material outsourcing)moves on the ground following the yellow lines, to avoid any collision with the surrounding buildings, vehicles or other aircrafts
  • 12. 12 Take Off • Dangerous Time to Abort • Transition to Flying • Cloud migration begins • Migration speed under control • Residual risks accepted • Monitoring of emerging risks begins aircraft goes through a transition from moving along the ground (taxiing) to flying in the air
  • 13. 13 The Climb • Lift of Wings • Force must exceed aircraft weight • Leverage automation • Use policy enforcement technologies • Manage policy administration (centrally) aircraft has to climb to a certain altitude (typically 30,000 ft or 10 km) before it can cruise at this altitude in a safe and economic way
  • 14. 14 Cruise • Optimum performance • Travel at cleared flight speed • Continuous comms with ATC • Adjustments to flight plan • Agility and economy of scale • Adapt security controls • But.. How do you control what you can’t see? level portion of aircraft travel where flight is most fuel efficient
  • 15. 15 Air Traffic Control - Visibility is key CASB Security Gateways CSA STARWatch 3rd Party Risk Scoring • Service provider security • Supply chain security • 4th Party Concentration risks • Security of service objects • Data security
  • 17. 17 CSA FSSP Cloud Security Alliance Financial Services Stakeholders Platform • Regional (EU, APAC, Americas) and global mechanisms for security and privacy compliance • Global best practices and de-facto standards for incident management and information sharing • Technical solutions that can improve the security capabilities of the financial sectors • Recommendations addressed to policy makers and regulators • Awareness and educational materials addressed to regulators, financial service risk/security/compliance/audit officers, and cloud service providers
  • 18. 18 Descent and Landing • Dangerous time to abort • Standard landing procedures • Not many cloud adopters have made it this far • Never wait till end of contract to have an exit strategy
  • 19. 19 Questions Many Routes to the Cloud, More Visibility Needed You can’t protect what you can’t see You can’t respond to what you don’t know Shittu O. Shittu Cyber Security Assurance & Innovation Centre (CSAIC)