Leveraging the Cloud for Risk Mitigation and Cost Containment

Session 3205September 13, 2016

Agenda

• Cloud Definition & Daily Usage

• Cloud to Reduce Risks and Costs

• Panel and Audience Discussion

Ray O’Hara CPPExecutive Vice President,

AS Solution International Services

Consulting and Investigations

AS Solution

30 Years Industry Experience

Risk and Vulnerability Expert

ASIS Chairman of the Board

ASIS President

ASIS PCB President

ASIS Chair of Investigation Council

Founder of The Alliance for

Enterprise Security Risk

Management

Gail Essen, CPP, PSPEnterprise Integrated Security

Golden Valley, MN

Security Plans

Risk, Threat, Site Assessments

Strategic Execution

Business Valuation

Honeywell

Americas West

25 Years / Last 10 in Enterprise Security

Owned WBE, MBE, DBE Business

Board Certified (ASIS International)

Certified Protection Professional

Physical Security Professional

Chair ASIS WIS Council (Global)

Chair ASIS Certification Committee (MN)

Adjunct Instructor – CPP Review Course

CVI (Chemical-Terrorism Vulnerability

Information)

Joined Honeywell June 2015

Tim McCreightMSc. CPP CISSP CISADirector – Advisory Services

Vancouver, BC

Executive Advisory Services

Enterprise Security Programs

Global Security Consulting

CISO Consultation Services

Above Security

A Hitachi Group Company

35 Years IT/Physical Security

Board Certified (ASIS International)

Certified Protection Professional

CISSP = (ISC)2

CISA = ISACA

Chair ASIS Information Technology

Security Council (Global)

MSc. Security & Risk Management

Joined Above Security – March 2016

What is a Cloud• Webster’s definition as a noun

1. a visible mass of condensed water vapor floating in the atmosphere, typically high above the ground.

2. a state or cause of gloom, suspicion, trouble, or worry.

Around the early 2000’s we came to know and

understand the third part of the Cloud definition3. a network of remote servers hosted on the Internet and used

to store, manage, and process data in place of local servers

or personal computers.

Copyright©2016 Honeywell

Personal Use of the Cloud

Fitness Bands

Mapping Software

There’s an APP for thatCopyright©2016 Honeywell

Copyright©2016 Honeywell

Business Challenges

1. Cost Containment

2. Compliance

3. Capacity – Matching facility demands

4. Customers – Improving user experience

5. ROI - Leveraging investments for maximum value

Copyright©2016 Honeywell

Access Control Example

Copyright©2016 Honeywell

In a Breach

identifying where the kill switch

Is, regardless if the breach occurred On the

logical or physical side.

Copyright©2016 Honeywell

Technology Convergence

Copyright©2016 Honeywell

Impact of Cloud Security – User Needs

Copyright©2016 Honeywell

WorkshopRisk Mitigation Impact

VMS

StorageData Center

Single

Point of

Control

Compliance

Cost Impact

Heating &

Cooling

of the room

Equipment

Maintenance

Other Use of

the space

HR & Legal Impact

Use of the App

on a Personal

Phone

What if I

turn off the

App

Can the Company

see my personal

content

Does this create

vulnerabilities for the

companyCopyright©2016 Honeywell