Aegon's Internal Cloud Broker

Size: px
Start display at page:

Download "Aegon's Internal Cloud Broker"

Transcription

1 Aegon's Internal Cloud Broker Cloud FS Americas Metropolitan West, NYC July 21, 2015 John Linn

2 Aegon at a glance Focus History Rating About Aegon Life insurance, pensions & asset management Dating back 170 years AA- financial strength rating Countries Employees Present in over 20 countries across the world Around 28,000 employees As per March 31, 2015 Underlying earnings before tax in 2014 Revenue-generating investments Paid out in claims and benefits in 2014 Our results EUR 1.9 billion EUR 638 billion EUR 34 billion 2 As per March 31, 2015

3 Navigating Opposing Forces Opportunities: Next-gen technologies provide a competitive advantage Easy, low cost entry (rent versus own) Scalable, flexible, and ubiquitous Interest in integrating Cloud services with on premise Constraints: Cloudy Thinking Money, Security, All or Nothing Efforts trapped in isolation Downside danger of service provider termination or lock-in Regulatory compliance 3

4 Hurdles Taxes Risk Assessment Adopting Common Global Solutions & Local Regulators Right to Audit Contracts Data Sovereignty Data Protection Directive Business Continuity Data Privacy Security Standards $ Cloud Hangover Cloud Provider Selection Governing the Ungovernable You must be THIS TALL To Ride This Ride 4

5 Emerging Needs Workload consulting Identification of total cost of ownership (TCO) and quantifying benefits Cloud services register of approved Cloud services Common third-party risk management process to identify blockers early Operational support Workload Deployment Definition Identifying a Cloud Use Case Selection Vendor Comparison and Decision Deployment Development, Integration, and Portability Management Aggregation, Portal & Billing Customization, and Runtime Support 5

6 Third Party Risk Management Framework Plans, Metrics, Risk Classification, and Governance Due Diligence (including resiliency and critical fourth parties) & third party selection Contract negotiation Roles and responsibilities for oversight and relationship management Documentation and reporting Ongoing monitoring Termination, including contingency plans Procurement Process Independent Review (assessment to determine process alignment with strategy and risk management effectiveness) 6

7 Clarification Through RASCI R Who is Responsible? The person who has to do it A Who is Accountable? The final decision maker S Who is Supporting? Resources allocated to responsible to help carry out the task C Who is Consulted? Persons requiring two way communication before a decision I Who is Informed? The person kept up-to-date or told after a decision 7

8 Exit Ongoing Monitoring Example: Ongoing Monitoring of Third Party Business Unit (BU) - 1st Line Functional Roles Risk 2nd Line Cloud Broker Outputs RASCI Business Owner Management C-Level Project Team 3rd party Relationship Manager Subject Mater Experts Design Authority Procurement Legal Compliance Information Security Chief Risk Officer (CRO) Operational Risk Management Mgrs Local Operational Risk Committees Global Risk Cloud Consulting Cloud Design and Build Cloud Run Global Procurement Deliverable Artifact / Outcome Third Party Outsourcing Monitoring Ongoing Monitoring Periodically monitor costs, performance, and ability to comply with contract, legal requirements, third party resiliency and financial I A/R C C C C I R health, and critical fourth parties Report on design & effectiveness of internal controls with third party I A/R I I I R Report on risks with third party I A/R I I C/I R Should arrangement be terminated? A R C C C I R Invoke contingency plan / exit strategy C A/R R R S C I R Terminate arrangement C A/R R R I I R RASCI Assignments shown in Red are only applicable when the solution chosen is a cloud offering. Begin Monitor costs, performance, contract compliance, legal requirements, third party resiliency and financial health, and critical fourth parties Report on internal controls effectiveness Report on risks with third party Terminate arrangement? No Yes 8 Invoke contingency plan / exit strategy Terminate arrangement End

9 Cloud Broker Services Business Unit Shadow IT Business Unit Solution Architects Cloud Brokering Cloud Consulting Cloud Design and Construction Cloud Operations 9 Central go-to team for business units and other global stakeholders for Cloud services Provides assurance new Cloud capabilities adhere to policies and requirements Ensures Cloud capabilities align with business and technical requirements by leveraging existing processes Define reference architecture and service blueprints (for example, integration layers) Engineer and implement automated platforms and solutions Plan and manage projects Provide configuration change, release and deployment management Test, validate and evaluate services Operate and monitor services and components Provide capacity, availability and service level management Perform incident and problem management Provide request fulfilment Maintain Cloud and Automation infrastructure Oversee and manage automated processes (patching, compliance, etc.)

10 Upcoming events Questions? May June Annual General Meeting of Shareholders The Hague May 20, 2015 JP Morgan insurance conference London June 2, 2015 Goldman Sachs conference London June 15,

Applying Business Architecture to the Cloud

Applying Business Architecture to the Cloud Applying Business Architecture to the Cloud Mike Rosen, Chief Scientist Mike.Rosen@ WiltonConsultingGroup.com Michael Rosen Agenda n What do we mean by the cloud? n Sample architecture and cloud support

More information

Architecting the Cloud

Architecting the Cloud Architecting the Cloud Sumanth Tarigopula Director, India Center, Best Shore Applications Services 2011Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without

More information

On Premise Vs Cloud: Selection Approach & Implementation Strategies

On Premise Vs Cloud: Selection Approach & Implementation Strategies On Premise Vs Cloud: Selection Approach & Implementation Strategies Session ID#:10143 Prepared by: Praveen Kumar Practice Manager AST Corporation @Praveenk74 REMINDER Check in on the COLLABORATE mobile

More information

Office of the Government Chief Information Officer The Government of the Hong Kong Special Administrative Region

Office of the Government Chief Information Officer The Government of the Hong Kong Special Administrative Region Office of the Government Chief Information Officer The Government of the Hong Kong Special Administrative Region 1 1) Government Cloud Journey 2) Government Clouds 3) Way Forward 2 1. Government Cloud

More information

Cloud Business Value. Francis Magann Senior Customer Solutions Architect. 20 th April 2011

Cloud Business Value. Francis Magann Senior Customer Solutions Architect. 20 th April 2011 Cloud Business Value Francis Magann Senior Customer Solutions Architect 20 th April 2011 Cloud is real Some as High as 40% 71% met or exceeded expectations 24% Experienced Cost Savings 73% use private

More information

The CIPM certification is comprised of two domains: Privacy Program Governance (I) and Privacy Program Operational Life Cycle (II).

The CIPM certification is comprised of two domains: Privacy Program Governance (I) and Privacy Program Operational Life Cycle (II). Page 1 of 7 The CIPM certification is comprised of two domains: Privacy Program Governance (I) and Privacy Program Operational Life Cycle (II). Domain I provides a solid foundation for the governance of

More information

Domain 1 The Process of Auditing Information Systems

Domain 1 The Process of Auditing Information Systems Certified Information Systems Auditor (CISA ) Certification Course Description Our 5-day ISACA Certified Information Systems Auditor (CISA) training course equips information professionals with the knowledge

More information

Vendor Risk Management Financial Organizations

Vendor Risk Management Financial Organizations Webinar Series Vendor Risk Management Financial Organizations Bob Justus Chief Security Officer Allgress Randy Potts Managing Consultant FishNet Security Bob Justus Chief Security Officer, Allgress Current

More information

Italy. EY s Global Information Security Survey 2013

Italy. EY s Global Information Security Survey 2013 Italy EY s Global Information Security Survey 2013 EY s Global Information Security Survey 2013 This year s survey our 16th edition captures the responses of 1,909 C-suite and senior level IT and information

More information

Clinical Trials in the Cloud: A New Paradigm?

Clinical Trials in the Cloud: A New Paradigm? Marc Desgrousilliers CTO at Clinovo Clinical Trials in the Cloud: A New Paradigm? Marc Desgrousilliers CTO at Clinovo What is a Cloud? (1 of 3) "Cloud computing is a model for enabling convenient, on-demand

More information

maximum Control through 2 lines Cloud Service Brokering

maximum Control through 2 lines Cloud Service Brokering Infrastructure Services the way we see it Cover Next-Gen title Cloud: Helvetica Choice thin, and 30-33 maximum Control through 2 lines Cloud Service Brokering Cloud 2.0 is about more than cost savings.

More information

A new era of PaaS. ericsson White paper Uen 284 23-3263 February 2015

A new era of PaaS. ericsson White paper Uen 284 23-3263 February 2015 ericsson White paper Uen 284 23-3263 February 2015 A new era of PaaS speed and safety for the hybrid cloud This white paper presents the benefits for operators and large enterprises of adopting a policydriven

More information

The Push and Pull of the Cloud. TPI Cloud Computing Overview. April 5 th 2011

The Push and Pull of the Cloud. TPI Cloud Computing Overview. April 5 th 2011 0 The Push and Pull of the Cloud. TPI Cloud Computing Overview April 5 th 2011. No part of this document may be reproduced in any form or by any electronic or mechanical Copyright means, 2011 Technology

More information

The Keys to the Cloud: The Essentials of Cloud Contracting

The Keys to the Cloud: The Essentials of Cloud Contracting The Keys to the Cloud: The Essentials of Cloud Contracting September 30, 2014 Bert Kaminski Assistant General Counsel, Oracle North America Ken Adler Partner, Loeb & Loeb LLP Akiba Stern Partner, Loeb

More information

Maximize potential with services Efficient managed reconciliation service

Maximize potential with services Efficient managed reconciliation service RECONCILIATION IntelliMatch Operational Control services Optimize. PRODUCT SHEET Maximize potential with services Efficient managed reconciliation service Overview At its best, technology provides financial

More information

Considerations for firms thinking of using third-party technology (off-the-shelf) banking solutions

Considerations for firms thinking of using third-party technology (off-the-shelf) banking solutions Financial Conduct Authority Considerations for firms thinking of using third-party technology (off-the-shelf) banking solutions Introduction 1. A firm has many choices when designing its operating model

More information

ITIL Roles Descriptions

ITIL Roles Descriptions ITIL Roles s Role Process Liaison Incident Analyst Operations Assurance Analyst Infrastructure Solution Architect Problem Manager Problem Owner Change Manager Change Owner CAB Member Release Analyst Test

More information

Achieve Economic Synergies by Managing Your Human Capital In The Cloud

Achieve Economic Synergies by Managing Your Human Capital In The Cloud Achieve Economic Synergies by Managing Your Human Capital In The Cloud By Orblogic, March 12, 2014 KEY POINTS TO CONSIDER C LOUD S OLUTIONS A RE P RACTICAL AND E ASY TO I MPLEMENT Time to market and rapid

More information

Planning a Successful Cloud Strategy Identify existing assets, assess your business needs, and develop a technical and business plan for your cloud

Planning a Successful Cloud Strategy Identify existing assets, assess your business needs, and develop a technical and business plan for your cloud SOLUTION WHITE PAPER Planning a Successful Cloud Strategy Identify existing assets, assess your business needs, and develop a technical and business plan for your cloud Table of Contents Executive Summary

More information

SaaS the new normal. Service-now.com, Terry Brown

SaaS the new normal. Service-now.com, Terry Brown SaaS the new normal Service-now.com, Terry Brown Discussion Points Undeniable evolution What is SaaS? How can you benefit from SaaS Creating an ITSM solution at John Maneely Company Business drivers affecting

More information

Integrating Project Management and Service Management

Integrating Project Management and Service Management Integrating Project and Integrating Project and By Reg Lo with contributions from Michael Robinson. 1 Introduction Project has become a well recognized management discipline within IT. is also becoming

More information

Cloud Security Who do you trust?

Cloud Security Who do you trust? Thought Leadership White Paper Cloud Computing Cloud Security Who do you trust? Nick Coleman, IBM Cloud Security Leader Martin Borrett, IBM Lead Security Architect 2 Cloud Security Who do you trust? Cloud

More information

HYBRID CLOUDS DEFINING A SUSTAINABLE STRATEGY DR. RAGHU P. PUSHPAKATH KRISHNAKUMAR GOPINATHAN SACHIN KANOTH MADAKKARA

HYBRID CLOUDS DEFINING A SUSTAINABLE STRATEGY DR. RAGHU P. PUSHPAKATH KRISHNAKUMAR GOPINATHAN SACHIN KANOTH MADAKKARA HYBRID CLOUDS DEFINING A SUSTAINABLE STRATEGY DR. RAGHU P. PUSHPAKATH KRISHNAKUMAR GOPINATHAN SACHIN KANOTH MADAKKARA Executive Summary While a number of organizations are gaining experience and increased

More information

RFP Attachment C Classifications

RFP Attachment C Classifications RFP 1. Applications IT Architect Analyzes and designs the architecture for software applications and enhancements, including the appropriate application of frameworks and design patterns and the interrelationships

More information

Strategies for assessing cloud security

Strategies for assessing cloud security IBM Global Technology Services Thought Leadership White Paper November 2010 Strategies for assessing cloud security 2 Securing the cloud: from strategy development to ongoing assessment Executive summary

More information

Accenture Cloud Platform Unlocks Agility and Control

Accenture Cloud Platform Unlocks Agility and Control Accenture Cloud Platform Unlocks Agility and Control 2 Accenture Cloud Platform Unlocks Agility and Control The Accenture Cloud Platform is at the heart of today s leading-edge, enterprise cloud solutions.

More information

Fast IT: Accelerate Your Business

Fast IT: Accelerate Your Business Fast IT: Accelerate Your Business with Cisco Powered Infrastructure as a Service (IaaS) www.cisco.com/go/ciscopowered 1 Fast IT Delivers Value The value of IT is measured by the value it delivers to business.

More information

Cloud Development Manager Like Tweet 0

Cloud Development Manager Like Tweet 0 1 of 9 Contact Info. Feedback. Sitemap Advanced Search Home Job Roles Competencies Courses Readiness Kit FAQ Partners NICF Overview Events News Sign In HOME > JOB ROLES > SEARCH JOB ROLE > JOB DETAIL Cloud

More information

EXIN.Passguide.EX0-001.v2014-10-25.by.SAM.424q. Exam Code: EX0-001. Exam Name: ITIL Foundation (syllabus 2011) Exam

EXIN.Passguide.EX0-001.v2014-10-25.by.SAM.424q. Exam Code: EX0-001. Exam Name: ITIL Foundation (syllabus 2011) Exam EXIN.Passguide.EX0-001.v2014-10-25.by.SAM.424q Number: EX0-001 Passing Score: 800 Time Limit: 120 min File Version: 24.5 http://www.gratisexam.com/ Exam Code: EX0-001 Exam Name: ITIL Foundation (syllabus

More information

IFMA Facility Management Learning System - Table of Contents

IFMA Facility Management Learning System - Table of Contents Competency: Communication Chapter 1: Communication Fundamentals o Topic 1: The Nature of Communication o Topic 2: Effective and Efficient Communication o Topic 3: Cross-Cultural Communication o Topic 4:

More information

White Paper Achieving GLBA Compliance through Security Information Management. White Paper / GLBA

White Paper Achieving GLBA Compliance through Security Information Management. White Paper / GLBA White Paper Achieving GLBA Compliance through Security Information Management White Paper / GLBA Contents Executive Summary... 1 Introduction: Brief Overview of GLBA... 1 The GLBA Challenge: Securing Financial

More information

How does IBM deliver cloud security? An IBM paper covering SmartCloud Services 1

How does IBM deliver cloud security? An IBM paper covering SmartCloud Services 1 How does IBM deliver cloud security? An IBM paper covering SmartCloud Services 1 2 How does IBM deliver cloud security? Contents 2 Introduction 3 Cloud governance 3 Security governance, risk management

More information

Ironside Group Rational Solutions

Ironside Group Rational Solutions Ironside Group Rational Solutions IBM Cloud Orchestrator Accelerate the pace of your business innovation Richard Thomas IBM Cloud Management Platforms thomas1@us.ibm.com IBM Cloud Orchestrator Business

More information

WHITE PAPER IT SERVICE MANAGEMENT IT SERVICE DESIGN 101

WHITE PAPER IT SERVICE MANAGEMENT IT SERVICE DESIGN 101 WHITE PAPER IT SERVICE MANAGEMENT IT SERVICE DESIGN 101 Prepared by: Phillip Bailey, Service Management Consultant Steve Ingall, Head of Service Management Consultancy 60 Lombard Street London EC3V 9EA

More information

Privacy Governance and Compliance Framework Accountability

Privacy Governance and Compliance Framework Accountability Privacy Governance and Framework Accountability Agenda Global Data Protection and Privacy (DPP) Organization Structure Privacy The 3 Lines of Defense (LOD) Model: Overview Privacy The 3 Lines of Defense

More information

Roles within ITIL V3. Contents

Roles within ITIL V3. Contents Roles within ITIL V3 Roles are employed in order to define responsibilities. In particular, they are used to assign Process Owners to the various ITIL V3 processes, and to illustrate responsibilities for

More information

Cloud, Beyond the Hype

Cloud, Beyond the Hype Cloud, Beyond the Hype Let s think through our Journey to Cloud Christian Verstraete Chief Technologist Cloud Application Transformation Belnet Networking Conference October 23 rd, 2014 Agenda Migrating

More information

CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs

CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs Eric Simmon January 28 th, 2014 BACKGROUND Federal Cloud Computing Strategy Efficiency improvements will shift resources towards higher-value

More information

112 BSIMM Activities at a Glance

112 BSIMM Activities at a Glance 112 BSIMM Activities at a Glance (Red indicates most observed BSIMM activity in that practice) 6 Level 1 Activities Governance Strategy & Metrics (SM) Publish process (roles, responsibilities, plan), evolve

More information

Information Technology

Information Technology Information Technology Information Technology Session Structure Board of director actions Significant and emerging IT risks Practical questions Resources Compensating Controls at the Directorate Level

More information

CHOOSING THE RIGHT CLOUD COMPUTING SOLUTION FOR YOU

CHOOSING THE RIGHT CLOUD COMPUTING SOLUTION FOR YOU CHOOSING THE RIGHT CLOUD COMPUTING SOLUTION FOR YOU ABSTRACT Dan Smedescu This article provides an introduction to cloud computing and choosing a vendor. The first part includes definitions and service

More information

Becoming a Cloud Services Broker. Neelam Chakrabarty Sr. Product Marketing Manager, HP SW Cloud Products, HP April 17, 2013

Becoming a Cloud Services Broker. Neelam Chakrabarty Sr. Product Marketing Manager, HP SW Cloud Products, HP April 17, 2013 Becoming a Cloud Services Broker Neelam Chakrabarty Sr. Product Marketing Manager, HP SW Cloud Products, HP April 17, 2013 Hybrid delivery for the future Traditional IT Evolving current state Future Information

More information

Services Providers. Ivan Soto

Services Providers. Ivan Soto SOP s for Managing Application Services Providers Ivan Soto Learning Objectives At the end of this session we will have covered: Types of Managed Services Outsourcing process Quality expectations for Managed

More information

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab Qing.Liu@chi.frb.org

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab Qing.Liu@chi.frb.org Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab Qing.Liu@chi.frb.org 1 Disclaimers This presentation provides education on Cloud Computing and its security

More information

Managing Public Cloud Workloads

Managing Public Cloud Workloads Managing Public Cloud Workloads CHALLENGES AND BEST PRACTICES Page 1 of 10 Large companies are shifting more aggressively to the public cloud today for running a variety of production applications at scale.

More information

Hybrid Cloud Mini Roundtable. April 17, 2013. Expect Excellence. www.divihn.com

Hybrid Cloud Mini Roundtable. April 17, 2013. Expect Excellence. www.divihn.com Hybrid Cloud Mini Roundtable April 17, 2013 Expect Excellence www.divihn.com Today s Agenda What to expect today Introductions Plus, why are you here this evening? What is Hybrid Cloud? Why Hybrid Cloud?

More information

COMMUNIQUE. Information Technology (IT) Governance Guidance

COMMUNIQUE. Information Technology (IT) Governance Guidance COMMUNIQUE 14-COM-002 July 14, 2014 Information Technology (IT) Governance Guidance The Credit Union Prudential Supervisors Association (CUPSA) has established an IT Risk Working Group to focus on IT governance

More information

Seeing Though the Clouds

Seeing Though the Clouds Seeing Though the Clouds A PM Primer on Cloud Computing and Security NIH Project Management Community Meeting Mark L Silverman Are You Smarter Than a 5 Year Old? 1 Cloud First Policy Cloud First When evaluating

More information

IBM Cloud Security Draft for Discussion September 12, 2011. 2011 IBM Corporation

IBM Cloud Security Draft for Discussion September 12, 2011. 2011 IBM Corporation IBM Cloud Security Draft for Discussion September 12, 2011 IBM Point of View: Cloud can be made secure for business As with most new technology paradigms, security concerns surrounding cloud computing

More information

Blue Fire Thames Court 1 Victoria Street Windsor SL4 1YB enquiries@bluefire-uk.com www.bluefire-uk.com

Blue Fire Thames Court 1 Victoria Street Windsor SL4 1YB enquiries@bluefire-uk.com www.bluefire-uk.com Blue Fire Thames Court 1 Victoria Street Windsor SL4 1YB enquiries@bluefire-uk.com www.bluefire-uk.com 1 1. Service Description Blue Fire is a Digital and IT Practice focused on supplying individuals and

More information

Pharma CloudAdoption. and Qualification Trends

Pharma CloudAdoption. and Qualification Trends Pharma CloudAdoption and Qualification Trends OurCloudExperience Numerous implementations of EDMS systems with external hosting for smaller life science clients Development of qualification strategy for

More information

IT Vendor Due Diligence. Jennifer McGill CIA, CISA, CGEIT IT Audit Director Carolinas HealthCare System December 9, 2014

IT Vendor Due Diligence. Jennifer McGill CIA, CISA, CGEIT IT Audit Director Carolinas HealthCare System December 9, 2014 IT Vendor Due Diligence Jennifer McGill CIA, CISA, CGEIT IT Audit Director Carolinas HealthCare System December 9, 2014 Carolinas HealthCare System (CHS) Second largest not-for-profit healthcare system

More information

Public Cloud and Managed Communications Services: Right Time, Right Place?

Public Cloud and Managed Communications Services: Right Time, Right Place? : Right Time, Right Place? Market Advisory Report Ashok Kumar Director, Custom Research December, 2013 Current Analysis (www.currentanalysis.com) Washington, D.C. Paris, France Phone: +1 703 404 9200;

More information

ITIL by Test-king. Exam code: ITIL-F. Exam name: ITIL Foundation. Version 15.0

ITIL by Test-king. Exam code: ITIL-F. Exam name: ITIL Foundation. Version 15.0 ITIL by Test-king Number: ITIL-F Passing Score: 800 Time Limit: 120 min File Version: 15.0 Sections 1. Service Management as a practice 2. The Service Lifecycle 3. Generic concepts and definitions 4. Key

More information

Using MSBA as the Foundation for SOA

Using MSBA as the Foundation for SOA SOA Challenges Why is Business Architecture Important What is MSBA Using MSBA as the Foundation for SOA SOA in context 1 SOA holds out enormous promise to revitalise the business value of IT... but early

More information

Information Security Program CHARTER

Information Security Program CHARTER State of Louisiana Information Security Program CHARTER Date Published: 12, 09, 2015 Contents Executive Sponsors... 3 Program Owner... 3 Introduction... 4 Statewide Information Security Strategy... 4 Information

More information

REDUCE COSTS & STAY CURRENT WITH ISO. A Guide to Modernizing Rating, & Benefiting from ISO Electronic Rating Content (ERC) www.valuemomentum.

REDUCE COSTS & STAY CURRENT WITH ISO. A Guide to Modernizing Rating, & Benefiting from ISO Electronic Rating Content (ERC) www.valuemomentum. REDUCE COSTS & STAY CURRENT WITH ISO A Guide to Modernizing Rating, & Benefiting from ISO Electronic Rating Content (ERC) www.valuemomentum.com 1 Table Of Content A Guide To Modernizing Rating, & Benefiting

More information

Cloud Computing. Bringing the Cloud into Focus

Cloud Computing. Bringing the Cloud into Focus Cloud Computing Bringing the Cloud into Focus November 2011 Introduction Ken Cochrane CEO, IT/NET Partner, KPGM Performance and Technology National co-leader IT Advisory Services KPMG Andrew Brewin Vice

More information

Stepping Through the Info Security Program. Jennifer Bayuk, CISA, CISM

Stepping Through the Info Security Program. Jennifer Bayuk, CISA, CISM Stepping Through the Info Security Program Jennifer Bayuk, CISA, CISM Infosec Program How to: compose an InfoSec Program cement a relationship between InfoSec program and IT Governance design roles and

More information

John Essner, CISO Office of Information Technology State of New Jersey

John Essner, CISO Office of Information Technology State of New Jersey John Essner, CISO Office of Information Technology State of New Jersey http://csrc.nist.gov/publications/nistpubs/800-144/sp800-144.pdf Governance Compliance Trust Architecture Identity and Access Management

More information

Bank of Israel. 1. Background. In recent years, cloud. environmentally. from. aspects in. these. 2. Applicability. Directive ). 3.

Bank of Israel. 1. Background. In recent years, cloud. environmentally. from. aspects in. these. 2. Applicability. Directive ). 3. Bank of Israel Supervisor of Banks Jerusalem, 12 Tammuz 5775 June 29, 2015 15LM2087 To: The Banking Corporations Attn: Chief Executive Officer Re: Risk management in a cloud computing environment 1. Background

More information

Balancing the Outsourcing Equation

Balancing the Outsourcing Equation Whitepaper Balancing the Outsourcing Equation A Blueprint on how to obtain the benefits of outsourcing without the risks. 2013 Blueprint Software Systems Inc. All rights reserved Executive Summary This

More information

Cybersecurity in the States 2012: Priorities, Issues and Trends

Cybersecurity in the States 2012: Priorities, Issues and Trends Cybersecurity in the States 2012: Priorities, Issues and Trends Commission on Maryland Cyber Security and Innovation June 8, 2012 Pam Walker, Director of Government Affairs National Association of State

More information

Approach to Information Security Architecture. Kaapro Kanto Chief Architect, Security and Privacy TeliaSonera

Approach to Information Security Architecture. Kaapro Kanto Chief Architect, Security and Privacy TeliaSonera Approach to Information Security Architecture Kaapro Kanto Chief Architect, Security and Privacy TeliaSonera About TeliaSonera TeliaSonera provides network access and telecommunication services that help

More information

Information security controls. Briefing for clients on Experian information security controls

Information security controls. Briefing for clients on Experian information security controls Information security controls Briefing for clients on Experian information security controls Introduction Security sits at the core of Experian s operations. The vast majority of modern organisations face

More information

IT Best Practices Audit TCS offers a wide range of IT Best Practices Audit content covering 15 subjects and over 2200 topics, including:

IT Best Practices Audit TCS offers a wide range of IT Best Practices Audit content covering 15 subjects and over 2200 topics, including: IT Best Practices Audit TCS offers a wide range of IT Best Practices Audit content covering 15 subjects and over 2200 topics, including: 1. IT Cost Containment 84 topics 2. Cloud Computing Readiness 225

More information

IBM 000-281 EXAM QUESTIONS & ANSWERS

IBM 000-281 EXAM QUESTIONS & ANSWERS IBM 000-281 EXAM QUESTIONS & ANSWERS Number: 000-281 Passing Score: 800 Time Limit: 120 min File Version: 58.8 http://www.gratisexam.com/ IBM 000-281 EXAM QUESTIONS & ANSWERS Exam Name: Foundations of

More information

BMC Software Cloud Service Lifecycle

BMC Software Cloud Service Lifecycle BMC Software Cloud Service Lifecycle Riyadh, 15th May 2012 Dominic Wellington, Cloud & DCA Marketing Manager EMEA m dominic_wellington@bmc.com O +39 340 8165717 t @dwellington 1 To Achieve Success, Manage

More information

Private Clouds Can Be Complicated: The Challenges of Building and Operating a Microsoft Private Cloud

Private Clouds Can Be Complicated: The Challenges of Building and Operating a Microsoft Private Cloud Private Clouds Can Be Complicated: The Challenges of Building and Operating a Microsoft Private Cloud Tony Bradley Microsoft MVP, CISSP-ISSAP Principal Analyst, Bradley Strategy Group The connected, mobile

More information

CLOUD MIGRATION STRATEGIES

CLOUD MIGRATION STRATEGIES CLOUD MIGRATION STRATEGIES Faculty Contributor: Dr. Rahul De Student Contributors: Mayur Agrawal, Sudheender S Abstract This article identifies the common challenges that typical IT managers face while

More information

Validating Enterprise Systems: A Practical Guide

Validating Enterprise Systems: A Practical Guide Table of Contents Validating Enterprise Systems: A Practical Guide Foreword 1 Introduction The Need for Guidance on Compliant Enterprise Systems What is an Enterprise System The Need to Validate Enterprise

More information

Building an effective stay back team to gain maximum value from an outsourcing agreement

Building an effective stay back team to gain maximum value from an outsourcing agreement WHITE PAPER Building an effective stay back team to gain maximum value from an outsourcing agreement How to define its role, determine its size and assess the skills required 1 cgi.com 2015 CGI GROUP INC.

More information

Perspectives on Moving to the Cloud Paradigm and the Need for Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory 7-11-2009

Perspectives on Moving to the Cloud Paradigm and the Need for Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory 7-11-2009 Perspectives on Moving to the Cloud Paradigm and the Need for Standards Peter Mell, Tim Grance NIST, Information Technology Laboratory 7-11-2009 2 NIST Cloud Computing Resources NIST Draft Definition of

More information

Seven Practical Steps to Help You Run Your On-Premise Cloud Like a Business. Whitepaper

Seven Practical Steps to Help You Run Your On-Premise Cloud Like a Business. Whitepaper Seven Practical Steps to Help You Run Your On-Premise Cloud Like a Business Whitepaper Think about it. When a product or service is free, the demand for it is potentially infinite. But, once that product

More information

OWASP Chapter Meeting June 2010. Presented by: Brayton Rider, SecureState Chief Architect

OWASP Chapter Meeting June 2010. Presented by: Brayton Rider, SecureState Chief Architect OWASP Chapter Meeting June 2010 Presented by: Brayton Rider, SecureState Chief Architect Agenda What is Cloud Computing? Cloud Service Models Cloud Deployment Models Cloud Computing Security Security Cloud

More information

ITIL. Lifecycle. www.alctraining.com.my. ITIL Intermediate: Continual Service Improvement. Service Strategy. Service Design. Service Transition

ITIL. Lifecycle. www.alctraining.com.my. ITIL Intermediate: Continual Service Improvement. Service Strategy. Service Design. Service Transition Take your ITIL skills to the next level ITIL Lifecycle ITIL Intermediate: Part of the complete ITIL Education Program Advance your career Add value to your organisation Gain credits towards ITIL Expert

More information

HSCIC IT Hosting Strategy

HSCIC IT Hosting Strategy HSCIC IT Strategy Author: Paul A. Rawson Version: 1.7 Date: 30 April 2014 Purpose 1. The purpose of this paper is to seek approval of the HSCIC IT Strategy. The Strategy and Policy sections set out and

More information

Question: 1 Which of the following should be the FIRST step in developing an information security plan?

Question: 1 Which of the following should be the FIRST step in developing an information security plan? 1 ISACA - CISM Certified Information Security Manager Exam Set: 1, INFORMATION SECURITY GOVERNANCE Question: 1 Which of the following should be the FIRST step in developing an information security plan?

More information

CRM for Real Estate Part 1: Why CRM?

CRM for Real Estate Part 1: Why CRM? CRM for Real Estate Anne Taylor Contents Introduction... 1 Typical Challenges for Real Estate... 2 How CRM can Help... 3 Conclusion... 6 Introduction Some Real Estate organizations are still asking why

More information

(Dev + Ops) ITSM = Calamity

(Dev + Ops) ITSM = Calamity (Dev + Ops) ITSM = Calamity Randy Steinberg RandyASteinberg@gmail.com DevOps Defined A cultural and professional movement that stresses communication, collaboration, and integration between software developers,

More information

Software as a Service: Uncertainties Revealed

Software as a Service: Uncertainties Revealed Software as a Service: Uncertainties Revealed Robert DeSisto Vice President and Distinguished Analyst Notes accompany this presentation. Please select Notes Page view. These materials can be reproduced

More information

ISEB MANAGER S CERTIFICATE IN ITIL INFRASTRUCTURE MANAGEMENT. Guidelines for candidates who are taking the ICT Infrastructure Examination

ISEB MANAGER S CERTIFICATE IN ITIL INFRASTRUCTURE MANAGEMENT. Guidelines for candidates who are taking the ICT Infrastructure Examination ISEB MANAGER S CERTIFICATE IN ITIL INFRASTRUCTURE MANAGEMENT Guidelines for candidates who are taking the ICT Infrastructure Examination This qualification is based on ITIL Infrastructure Management as

More information

WHITE PAPER THIRD PARTY MANAGEMENT: FUNDAMENTALS

WHITE PAPER THIRD PARTY MANAGEMENT: FUNDAMENTALS THIRD PARTY MANAGEMENT: FUNDAMENTALS by Linda Tuck Chapman Sponsored by Third Party Management Fundamentals Third Party Management isn t new, but its importance is growing in every industry and the financial

More information

The Next Generation of IT Management. Jason Andrew Vice President, Marketing & Communications

The Next Generation of IT Management. Jason Andrew Vice President, Marketing & Communications The Next Generation of IT Management Jason Andrew Vice President, Marketing & Communications BMC Has Outperformed the Market Growing Stock Price Over 130 Percent in 5 Years BMC +134% IBM +76% HP +50% NASDAQ

More information

Capacity Management for Cloud Computing

Capacity Management for Cloud Computing Capacity Management for Cloud Computing Chris Molloy Distinguished Engineer Member, IBM Academy of Technology October 2009 1 Is a cloud like touching an elephant? 2 Gartner defines cloud computing as a

More information

WHO WE ARE 3/31/2016. Philip Chukwuma, CTO, Securely Yours LLC Jayne Suess, Senior Security Analyst, Erie Insurance

WHO WE ARE 3/31/2016. Philip Chukwuma, CTO, Securely Yours LLC Jayne Suess, Senior Security Analyst, Erie Insurance 3/31/2016 Philip Chukwuma, CTO, Securely Yours LLC Jayne Suess, Senior Security Analyst, Erie Insurance WHO WE ARE Philip Chukwuma CTO, Securely Yours, LLC philipchukwuma@securelyyoursllc.com Jayne Suess

More information

Designing and Implementing Cloud Governance: Cloud, and Cloud Governance, are Emerging Capabilities

Designing and Implementing Cloud Governance: Cloud, and Cloud Governance, are Emerging Capabilities Designing and Implementing Governance:, and Governance, are Emerging Capabilities Eric Marks President & CEO AgilePath Corporation emarks@agile-path.com Designing and Implementing Governance Governance

More information

Whitepaper. Managed Services in the 21 st century

Whitepaper. Managed Services in the 21 st century Whitepaper Managed Services in the 21 st century Managed Services in the 21 st century How to optimise cloud benefits and reduce costs with Hybrid Managed Services One of the great benefits of the cloud

More information

Alternatives to Legacy IT Systems: An Unbiased Look at the Current State of the Cloud Market

Alternatives to Legacy IT Systems: An Unbiased Look at the Current State of the Cloud Market Alternatives to Legacy IT Systems: An Unbiased Look at the Current State of the Cloud Market 2012 SAVVIS. All Rights Reserved. 1 Executive Summary There are a limited number of technologies which have

More information

CACI Cloud Consulting Services

CACI Cloud Consulting Services Index 1. Summary... 3 2. Services provided... 3 2.1. Advisory... 3 2.2. Strategy and Architecture... 4 2.3. Cloud Application Development... 7 2.4. Cloud Service Management... 8 3. Pricing... 10 Page 2

More information

I D C M A R K E T S P O T L I G H T. P r i va t e a n d H yb r i d C l o u d s E n a b l e New L e ve l s o f B u s i n e s s and IT Collaboration

I D C M A R K E T S P O T L I G H T. P r i va t e a n d H yb r i d C l o u d s E n a b l e New L e ve l s o f B u s i n e s s and IT Collaboration I D C M A R K E T S P O T L I G H T P r i va t e a n d H yb r i d C l o u d s E n a b l e New L e ve l s o f B u s i n e s s and IT Collaboration September 2013 Adapted from IDC Maturity Model: Cloud A

More information

IT Governance Regulatory. P.K.Patel AGM, MoF

IT Governance Regulatory. P.K.Patel AGM, MoF IT Governance Regulatory Perspective P.K.Patel AGM, MoF Agenda What is IT Governance? Aspects of IT Governance What banks should consider before implementing these aspects? What banks should do for implementation

More information

White paper Reaping Business Value from a Hybrid Cloud Strategy

White paper Reaping Business Value from a Hybrid Cloud Strategy White paper Fujitsu Hybrid Cloud Services White paper Reaping Business Value from a Hybrid Cloud Strategy How to embrace a hybrid cloud model to maximize the benefits of public and private cloud services

More information

Managed Services. Business Intelligence Solutions

Managed Services. Business Intelligence Solutions Managed Services Business Intelligence Solutions Business Intelligence Solutions provides an array of strategic technology services for life science companies and healthcare providers. Our Managed Services

More information

Information Security for Managers

Information Security for Managers Fiscal Year 2015 Information Security for Managers Introduction Information Security Overview Enterprise Performance Life Cycle Enterprise Performance Life Cycle and the Risk Management Framework Categorize

More information

QUALITY MANAGEMENT SYSTEM MANUAL

QUALITY MANAGEMENT SYSTEM MANUAL The online version of this document is controlled. Therefore, all printed versions of this document are unofficial copies. QUALITY MANAGEMENT SYSTEM MANUAL 6901 Charles Street Towson, Maryland 21204 Manual

More information

The Cloud-Enabled Enterprise Developing a Blueprint and Addressing Key Challenges

The Cloud-Enabled Enterprise Developing a Blueprint and Addressing Key Challenges WHITE PAPER The Cloud-Enabled Enterprise Developing a Blueprint and Addressing Key Challenges Cloud computing offers a significant opportunity for improved business outcomes through the delivery of innovative

More information

IBM asset management solutions White paper. Using IBM Maximo Asset Management to manage all assets for hospitals and healthcare organizations.

IBM asset management solutions White paper. Using IBM Maximo Asset Management to manage all assets for hospitals and healthcare organizations. IBM asset management solutions White paper Using IBM Maximo Asset Management to manage all assets for hospitals and healthcare organizations. September 2007 2 Contents 2 Executive summary 3 Introduction

More information