Slideshow

In pictures: ISACA One Day Summit

10 Photos Zennith Geisler (CSO Online)

This year's theme was "Technology on the Move".

  • Anthony Wong, President of the Australian Computer Society (ACS) discussed Legal aspects of Cloud Computing, namely compliance, data retention, industry requirements, service levels and performance, and cross-border jurisdiction. He explained the misconception that any compliance issues relating to data stored in the cloud is the cloud provider's responsibility, "the obligation still rests with you as the person who outsourced the service of the cloud." He also raised the issue of how important it is to be aware of where servers are located and whether providers can change the country of server locations without any notice. "If something happens, the first thing you need to ask is 'what law of which country applies to that problem?'"

  • "Every organisation will have some things that they are happy to take the risk of the public cloud, and they want the cost savings of scale," Kingsley said. That might include some forms of hosted email, productivity applications and social networking.

  • Michael Blythe, Chief Economist at the Commonwealth Bank of Australia (CBA), kicked off the summit with an in-depth look at today's economic landscape and the challenges we are currently facing. Described by CBA CEO Ralph Norris as the company's resident optimist, Blythe confessed "It's been harder and harder to sustain that optimism given everything that's been happening in Australia and of course overseas in recent times."

  • Covering a broad range of topics from housing, unemployment, and mining to the risks of a new global recession and financial contagion from European economies, Blythe concluded that Australia is in a better position, which, comparatively, "other economies can only dream about." Living up to his reputation as resident optimist, he left the audience on a positive note with the results of a Commonwealth Bank research project that compared sporting results to the economy and invited the audience to use the chart to decide who we should barrack for in 2012.

  • The topic of security and data recovery responsibility continued into the panel discussion, with all panelists in agreement that the notion you can transfer responsibility for your data by storing it in the cloud is a big misconception. Ken Doughty, Senior Manager, Governance & Transformation at OnePath Australia on Three Lines of Defence related to Risk Governance said "If you say you are transferring the risk, you're not, you still own the risk." Anthony Wong reiterated that "legally you have the risk so you can't transfer it."

  • Keith Price, Director & Principal Consultant at Black Swan Consulting who spoke about Advanced Persistent Threats (APT) earlier in the day suggested: "The marketing team that's going after Gen X and Gen Y are sending different messages than the marketing team that are actually going after business executives because those are totally different messages that we would hear at a business-executive level so it's interesting how we have a discrepancy between the marketing approaches."

  • Between sessions at the One Day Summit, attendees enjoyed refreshments and lunch while taking the opportunity to network with other industry professionals as well as sponsors of the summit, Ethos Corporation recruitment, CSO magazine and ICTA Sri Lanka.

  • ISACA Sydney presented the 4th annual One Day Summit on Tuesday October 25, 2011 at the Hilton Hotel in Sydney. This year, the theme was "Technology on the Move" which focussed on mobility and cloud computing as well as IT governance, change management, risk management and Advanced Persistent Threats. Following the keynote presentation and individual speakers, a panel was held to broaden the discussion.

  • Director of Information Security at RSM Bird Cameron, Jo Stewart-Rattray broached the subject of Gargling Governance with Confidence, concentrating on organisations duty of care and need to clearly inform employees of procedures relating to the reputation and protection of the company. Asking the audience "How many organisations in this room allow Facebook access at work?" she continued to say that it is important to ensure there is a statement which outlines employee responsibilities, such as individuals being held accountable "for the reputation of the organisation online, just as it is in spoken word" - a practise implemented at RSM Bird Cameron.

  • Speaking on two of the most hyped topics in IT, Mobility and the Cloud, Deloitte's head of Enterprise Risk Services Dean Kingsley gave attendees self-proclaimed "skeptic's view" which he describes as "someone who is wiling to believe but wants proof." Kingsley addressed the risks involved for organisations adopting a hybrid cloud model, which he predicts will become the eventual reality while private clouds are less mature, the public cloud will generally be inappropriate for enterprise applications.

Show Comments