SIGS Special Interest Group
2nd Cloud Security Forum

Save the DateClick on the .ics file to save the date

Target Audience Cloud/Cloud Security Professionals
CIO’s, CISO, IT Manager, Security Officer, Security Architects and Engineers – all from end customer side who are interested in Cloud Security

From Consultancies and Resellers/ Integrators are only technical peoples (which are involved in this topic in their daily job) allowed to take part – max. one participant per company. Vendors and people with a Sales/Marketing role are not authorized as participants.

CPE Credits Earn 4 CPE (Continuing Professional Education) for attending this SIGS forum. Please request a confirmation.
Location Hilton Zurich Airport Hotel
Hohenbuehlstrasse 10
8152 Opfikon-Glattbrugg

There are a lot of free park places available.
Train: railway station Zurich Airport – take the hotel shuttle

Date of Event 19th of March 2019
Further planned date for 2019: 23rd of May, 12th of September, 19th of November 2019
Language English
Participation Costs Fr. 55.— per participants
Organization, presentations, beverages and apéro riche included



1:30 – 2:00 pm Registration & Coffee
2:00 – 2:30 pm Michael Hoos, Cloud Security Alliance

Governance and Cloud
Trust and contracts are not sufficient when using clouds for business. Who is responsible for my data – cloud provider or cloud user? How are regulative requirements and laws like the cloud act influencing the governance? What is important for IT leaders to expand their Governance models into the cloud? How to achieve the balance between protection measures, usability and compliance.

2:30 – 3:00 pm Baltisar Oswald, Software Architect bei SBB

Governance und Compliance in einem Mulitcloud Umfeld (in Deutsch)
Private und Public Cloud sind in den letzten Jahren immer populärer geworden. Die Frage für die SBB IT als zentrale IT-Organisation ist nicht ob wir Cloud wollen, sondern wie und warum eine zentrale IT auch im Cloud Zeitalter relevant bleibt. Das Business beschützen ist ein Punkt wo eine zentrale IT-Organisation der Firma einen Mehrwert liefern kann. Beschützen ist nicht viel anders als die alt bekannte Governance und Compliance.

3:00 – 3:30 pm Neil Thacker, CISO EMEA & DPO at Netskope

A CISOs view of cloud and why it will revolutionize the security stack
The cloud has been a significant disruptor to businesses around the world. The ongoing digital transformation of businesses has led to many choosing a cloud-first strategy that has resulted in security teams needing to review and adapt their controls to move closer to the cloud. With SaaS, PaaS and IaaS now becoming the new normal for service offerings what does this mean for the current security stack and how will security architectures change in the next few years.

This talk will highlight the current activities and mindset of a practising CISO who is building a cloud-first strategy now and for a cloud-only future.

The talk will focus on:

  • Visibility into cloud services while assessing new risks
  • Securing data at rest and in-motion within cloud services
  • Meeting compliance and governance requirements with a cloud-first strategy
3:30 – 4:15 pm Break
4:15 – 6:00 pm Workshop I (strategic sessions/talks)
by Rolf Becker, CISO Strategic Change at UBS AG

Squaring up Cloud Adoption and Information Security in a tightly regulated environment
Data protection regulation in Europe and Switzerland is particularly strong on banks and the Financial Industry. With the introduction of EU GDPR and its Swiss correspondent regulation, this applies far more widespread.

The drive for Cloud Adoption to achieve cost and scalability benefits must be balanced very well with a strong Information Security governance accompanying architecture and design, to enable business benefits sustainably.

4:15 – 6:30 pm Workshop II (technical sessions/talks)
by Giulio Faini, Cybersecurity Architect at Kudelski Security

Security & Cloud: what’s the right recipe?
Building a comprehensive Cloud security architecture – taking in consideration technology, people and processes aspects – may uncover some unexpected challenges. This interactive workshop aims to provide the audience with some key security use-cases and lessons-learnt in the AWS Public Cloud environment, which can be also extended to other Public Cloud providers.


The Sponsor of this event is:

Main Sponsor Co-Sponsor


This is a ‘must attend’ event for all security professionals! We are confident that the relationships you develop here will prove to be crucial to your continuing success.

Register here!

With the registration for this event you accept, that SIGS may use the data entered for its own purposes and may share to use it with its event partners and event sponsors of this platform. In addition, we share the contacts as well with the community itself.