SIGS Special Interest Group
3rd Cloud Security Forum

Save the DateClick on the .ics file to save the date

Target Audience Cloud/Cloud Security Professionals
CIO’s, CISO, IT Manager, Security Officer, Security Architects and Engineers – all from end customer side who are interested in Cloud Security

From Consultancies and Resellers/ Integrators are only technical peoples (which are involved in this topic in their daily job) allowed to take part – max. one participant per company. Vendors and people with a Sales/Marketing role are not authorized as participants.

CPE Credits Earn 4 CPE (Continuing Professional Education) for attending this SIGS forum. Please request a confirmation.
Location Hilton Zurich Airport Hotel
Hohenbuehlstrasse 10
8152 Opfikon-Glattbrugg

There are a lot of free park places available.
Train: railway station Zurich Airport – take the hotel shuttle

Date of Event 23rd of May 2019
Further planned date for 2019: 12th of September, 19th of November 2019
Language English
Participation Costs Fr. 55.— per participants
Organization, presentations, beverages and apéro riche included



1:30 – 2:00 pm Registration & Coffee
2:00 – 2:30 pm Stephan Hug, Group IT Chief Architect at Credit Suisse
Stephan Hug is a Managing Director of Credit Suisse in the Finance Operations and IT division, based in Zurich. He is Group IT Chief Architect and Head IT Strategy & Architecture. In this role, Stephan is managing IT Architecture for the bank and is also driving IT Strategy and Innovation.

Stephan joined the bank in 1995 from Swiss Bank Corporation where he was a software engineer in the investment banking IT team. Since joining Credit Suisse, he has worked in various IT functions in Zurich, New York and London.

Stephan became Chief Architect in 2013. In 2015m he lead the transformation and merger of various IT security functions into Technology Security Services before taking on his current role at the beginning of 2016.

Cloud Journey in a large bank – Not a straightforward path
The journey to the cloud is, in theory, straightforward and full of benefits. At least that’s what the glossy brochures and sales staff while tell you. The devil is, as always, in the detail. There are not only the security concerns that are kind of obvious. There are processes, an existing estate, a cost base and many other things that influence the journey. Last but not least banks are heavily regulated and that needs to be considered as well. In the end it is more difficult than you initally think and takes longer than you think. But like a strenous hike to a mountain top it is a worthwhile journey.

2:30 – 3:00 pm Thomas Risch, Expert Security Engineer at Swiss Re Management Ltd.

Azure Security Controls – an approach to deal with developer’s wild west
With freedom comes responsibility. But developers need some support on security specific configuration. Swiss Re has established a setup based on open source tools that scans the Azure footprint of projects, reports into a central dashboard and escalates through standard mechanisms.

I will share some insights on drivers for the activity, what we implemented and how it supports our developer teams to remain secure.

3:00 – 3:30 pm Andreas Kessler, Software Specialist at Bank Vontobel AG

Proof of value with a network communication analytics platform applied to market making and risk management
In a proof of value we set out to assess, if and how a network communication analytics platform would help operating and developing applications for trading in financial markets. How would it help different teams in server infrastructure, network, storage, databases and applications to collaborate better and more efficiently? Are there other benefits of having a holistic view into our datacenters and can we even understand all that is going on? This talk is about sharing our experiences.

3:30 – 4:15 pm Break
4:15 – 6:00 pm Workshop I (strategic sessions/talks)
by Jason Card, Principal Solution Architect, ISPIN AG and Norbert Zehetner, former Network Engineer Expert at Raiffeisen GRZ IT Center GmbH

Don’t Let the Cloud Stop the Sun Shining
The journey to the cloud should not prevent the sun from shining! But what is necessary for this purpose? Why is Europe lagging behind the rest of the world on its way to the cloud? In our workshop we examine, what “cloud” and “cloud strategy” mean in real life and discuss with you classic misunderstandings, such as everything becomes cheaper, everything leads to the public cloud or staff reduction, etc. We’ll discuss the scope of cloud usage, especially outside of pure technology, and you’ll learn

  • why the cloud can also run in your own data center,
  • what and who are needed to make the right journey to cloud and arrive safely, and
  • how cloud strategy and digital transformation are linked

4:15 – 6:00 pm Workshop II (technical sessions/talks)
by Andrea Verri, Technical Solution Architect at Cisco Systems

Workload Visibility and Traceability in Action!
Today’s current security challenges are addressed by concepts like Zero Trust, application whitelisting and micro segmentation. In this session, we will explain with use cases how you can gain visibility inside your Data Center or any cloud and maintain a high level of security and flexibility at the same time. We would like to discuss your current Cloud Security challenges and how you can benefit immediately by using an holistic workload protection approach. You will learn

  • the ingredients of a successful Cloud Workload Protection strategy
  • how to identify security incidents faster, contain lateral movement, and reduce your attack surface
  • how you can address workload protection using holistic platform approach

    The Sponsor of this event is:

    Main Sponsor


    This is a ‘must attend’ event for all security professionals! We are confident that the relationships you develop here will prove to be crucial to your continuing success.

    Register here!

    With the registration for this event you accept, that SIGS may use the data entered for its own purposes and may share to use it with its event partners and event sponsors of this platform. In addition, we share the contacts as well with the community itself.