In the past year, cloud computing began the shift from a ‘nice to have’ to a ‘need to understand’ technology, as the promises of cost efficiencies and agility have begun to bear fruit for organizations adopting this approach.
As such, our collective responsibility to good governance, compliance, managing risks and providing assurance to our customers grows even stronger. We are all keenly aware of these problems, and with the next phase of adoption, we must be able to address them. The second annual Cloud Security Alliance Congress, will provide practical solutions for managing the transition to the cloud, and implementing security as a key component, rather than an afterthought, of this transition. It will provide insight into models and architectures, the controls and real ‘nuts and bolts’ of what must be done to secure cloud computing. Our speakers’ roster and confirmed attendees represent the key thought leaders and stakeholders shaping cloud security. On November 16 & 17, 2011 Orlando will be the epicenter of the very real movement to secure the cloud. Please join us.

+ Assessing Your Organization’s Readiness for Cloud Services
+ Cryptographic Enforcement of Multi-Tenancy
+ Security Policy and Privacy Requirements
+ Requirements for PaaS and SaaS Logging in a Multi-Tenant Environment
+ Architecting and Building a Secure Virtual Infrastructure and Private Cloud
+ Security Fight Club: When CISOs and Service Providers Go to the Mat
+ Implementation of the CloudAudit Protocol
+ e-Discovery 2.0 In the Cloud

Keynotes Speakers:
Arthur W. Coviello, Jr., Executive Chairman, RSA, The Security Division of EMC

Christofer Hoff, Founder CloudAudit.org and Founding Member Cloud Security Alliance

Vivek Kundra, United States Chief Information Officer (Invited)

Wake-Up Sessions
Thursday, November 17; 8:00 AM – 8:45 AM

Is Your Data Safer in Google’s Cloud?
Eran Feigenbaum, Director of Security, Google Apps
Google Apps is one of the fastest growing cloud computing applications. Over 3 million businesses store their critical data in Google Apps and thousands more sign up every day. Are they crazy? Or have they embraced the inevitable? This session will detail how the Google addresses the various security and privacy concerns organizations have when moving to the Google Cloud. Come to this session to learn more about the physical and logical security features of Google Apps and decide for yourself if your data would be safer in Google’s cloud.

Building a Unified Security Model Across Cloud Traffic
Vikas Jain, Director of Cloud Security, Intel
As enterprises fully embrace the cloud, the primary traffic channels of email, web and identity authentication begin to proliferate beyond the firewall to mobile and off-premise private cloud platforms. This traffic crosses security layers each requiring a unique set of security capabilities to address identity federation, application API security, threat protection and data loss prevention. Commonly, this requires deployment of multiple vendor products coupled with expensive professional services. McAfee and Intel have assembled a better approach based on a modular cloud security platform. During this session learn how customers are using this approach to create a consistent, repeatable security model for interactions with the cloud.

Previewing the RSA Cloud Trust Authority
Nirav Mehta, Director, Strategy Office, Virtualization & Cloud, RSA
Early this year, RSA announced its Cloud Trust Authority – a set of cloud-based offerings that enable an efficient model for achieving security and trust for organizations leveraging public cloud services or building community clouds. In this session, Mr. Mehta will preview the first offerings that deliver on the vision. Specific challenges in achieving secure access, data confidentiality and transparency will be discussed and solutions presented.

Interested in exhibiting or sponsoring?
Contact: Paul Moschella, Sponsorship & Exhibit Sales, or