CSA Israel event: Deep dive into cloud security operations

CSA Israel event: Deep dive into cloud security operations

Conference | English

Monday, June 26^th, 2023

08:30-13:00

- ANU Museum - Bnei Zion hall

About

As cloud adoption grows, there is a growing need to mature our cloud operation methodologies.

In our CSA event at Cyber Week, we will explore the different aspects of cloud operations and bring expert speakers who will provide the latest insights on this important topic.

Agenda

08:30-09:00

Gathering & registration

09:00-09:10

Opening remarks

Moshe Ferber , Chairman , Cloud Security Alliance, Israel Chapter

09:10-09:30

Continuous Assurance for Cloud Computing: Why, What and How

Daniele Catteddu , Chief Technology Officer , Cloud Security Alliance

09:30-10:30

Cloud operations: focus on cloud-secops

Moderator - Ofer Maor , CTO , Mitiga

Tehila Shneider , Director of Engineering , Elastic

Tali Shemer , National Programs Director , Israeli National Cyber Directorate

Yifat Aharon Bar Zev , SecOps Lead and GRC Manager , Next Insurance

Noam Perel , Director of Technical Success , Laminar

As the cloud becomes the prime location for most of organizations’ workloads and data, more and more traditional security operations are moving to the cloud. In this session we will elaborate on how cloud is changing traditional operational models and creating new methodologies.

10:30-11:10

Cloud operations: cloud as the new corporate IT

Moderator - Gidi Farkash , President of the (ISC)2 Israel Chapter

Shimri Vachter , SASE Product Specialist , Cloudfare

Sharon Halperin , Head of Information Security and IT , HoneyBook

Tzach Horowitz , CEO , CyProtect.io ; CISO , Saltmine.com

A big part of traditional IT operations is now moving to the cloud. This involves everything from identity, email, collaboration, document management and IT services operations. In this session we will cover the challenges of IT services in the cloud and provide the latest insights.

11:10-11:30

Coffee break

11:30-12:15

Cloud operations: focus on devsecops

Moderator - Oz Avenstein , CISO , Vintage Investment Partners

Bar Hofesh , Co-Founder & CTO , Bright Security

Liran Sheinbox , CISO , Playtika

Eitan Satmary , VP Security , Melio

In order to create resilient applications, developers along with operation and security professionals need to work together. The goal of devsecops methodologies is to set the guidelines for this joint effort. In this session we dive into devsecops practices and discuss the challenges and opportunities.

12:15-13:00

Compliance operations: Is compliance a risk?

Moderator - Shahar Geiger Maor , CISO , Dario Health

Naama Matarasso , Security and Compliance Lead , Google Cloud

Dikla Saad Ramot , CISO , AppsFlyer

Inbar Ben-Tsion Regerman , CISO, Adv., Head of Cybersecurity Privacy Consulting , EY Israel Advanced Security Center

Iris Chen , CISO , First International Bank of Israel

A significant aspect of cloud security operations involves adhering to various laws, regulations, and standards. However, there are instances where conflicts arise between security and compliance requirements. Compliance-oriented organizations may prioritize "checking a box." In this panel discussion, we will explore the positive and negative impacts of compliance on security management. We will present real-life dilemmas and propose solutions that meet regulatory needs while addressing the risk-driven nature of security. Additionally, a compliance-driven approach can allocate more resources and prioritize security projects that may otherwise struggle to fit into the company's plan. During this panel, we will delve into the diverse effects of compliance on security management, providing practical dilemmas and suggesting resolutions.