Security SIG: Are clouds secure? security, privacy and compliance in clouds



  • I'm pleased to invite you to the upcoming joint SDForum SIG on Cloud Security, co-hosted by the Cloud Services and Security SIG's.  We're fortunate to have the person who wrote the book on Cloud Security and Privacy*, Subra Kumaraswamy, to cover security and privacy issues raised by our transition to the cloud.

    Please note the NEW DATE AND PLACE:  We will be meeting at 6:30 pm on Monday, Dec 7th, at the Symantec vCafe in Mountain View.  For more information, please see: or

    We hope to see you there!

    * Yes, he literally wrote the book:


    Topic: Are clouds secure ? security, privacy and compliance in clouds

    Cloud computing has emerged as a popular way for corporations to save money that would otherwise go into their IT infrastructure. However, along with the promise of cloud computing there has also been considerable skepticism about the type and extent of security and privacy that these services provide.

    This session will address issues that affect any organization preparing to use cloud computing as an option. The authors of Cloud Security and Privacy address the security challenges, the steps you need to take to ensure your web applications are secure and your data is safe, and regulatory issues such as audit and compliance.  With few details about such concerns provided to date, the obvious question to information security practitioners is, "what do those concerns really mean to organizations?" This talk will review the SPI delivery model (software-as-a-service – SaaS, platform-as-a-service – PaaS, and infrastructure-as-a-service – IaaS) and methodically explore security, privacy and compliance in public clouds offerings:

    The speakers will also discuss privacy, audit, and compliance implications of the security provided by public clouds. Additionally, we will discuss security-as-a-service – that is, security delivered as a service through the cloud (as opposed to the security of other services (i.e., SaaS, PaaS, and IaaS) provided by cloud service providers).

    Speaker: Subra Kumaraswamy CISSP

    Subra Kumaraswamy has more than 18 years of  engineering and management experience encompassing Information Security, Internet and Ecommerce Technologies.  He is currently leading a Security Access Mgmt  program in the IT Security office at Sun. Subra's past roles include IT Architect, Software Engineer, Security Consultant at  Accenture, Netscape, Lycos and Sun.  In his spare time Subra tries to get his hands dirty with emerging technologies including cloud computing to understand the security and privacy implications for users and enterprises. Subra has a Masters degree in Computer Engineering from Clemson University.

    Symantec vCafe
    350 Ellis Street
    Mountain View, CA 94043

    6:30pm - 7:00pm - Registration
    7:00pm - 8:30pm - Presentation


    $15 at the door for non-SDForum members
    No charge for SDForum members