Our Customers Win Because We Know How To

CyberZephyr at Cloud Security Summit 2012 in Frankfurt

May 10, 2012

Frankfurt, AG - CyberZephyr joined the more than 250 global leaders from 27 EU member countries and others in a comprehensive two-day meeting with cybersecurity stakeholders around the world. “Is a “FedRAMP-like” certification process needed in the EU Cloud?” “Should organizations have better Continuous Monitoring guidance for cloud implementations?” These questions were debated at the Cloud Security Summit, 2012 hosted by CSA, ENISA, ISACA & CASED. The event has been billed as the only European Cloud Security Summit of its type.

“This conference was enlightening. I believe Europe has made a bold and unified move toward very prescriptive risk management guidance for organizations working with CSP’s (Cloud Service Providers).” said Debbie Taylor Moore, of CyberZephyr. Moore referenced ENISA’s Procure Secure” guidance for monitoring security service levels of IaaS (Infrastructure as a Service) providers. “The guidance acknowledges that individuals in companies, who may have been in roles solely focused on technology implementation, now need to quickly pivot and master acquisition, negotiation and the establishment of metrics and parameters to achieve satisfaction and optimal levels of security with their chosen cloud provider.”

Notably, Carl Christian Buhr, of the European Commission, discussed the European Cloud Strategy document due to be released in the summer and the prospect of a European cloud security provider certification process. He reassured the group, “This is not about a European Super Cloud”. “Unlike the US Federal government and its FedRAMP certification process, the EC does not foresee any European mandatory certification schema, but does encourage support of a market-driven, bottoms-up approach, more of a voluntary scheme for security certification of cloud computing services and providers.” He said.

This was presumably music to the ears of cloud services and providers who are skeptical over the need for major regulation in this area. “The market is efficient, those who serve the market well, will be rewarded. Those CSP’s who are attacked and breached will simply not have customers”, offered an attendee from Ireland.

Additional topics for discussion were forensics, encryption, mobile cloud computing, legal and privacy rights and standards. The event featured keynote speakers from every corner of the world and thought leaders in the areas of data privacy, policy, standards and cloud computing platforms. “I would encourage organizations to embrace the global perspective of both cyber and cloud and improve their knowledge and understanding of standards being developed in other parts of the world. The boundaries we once considered important, simply don’t exist anymore.”                                                                       

 #####

About CyberZephyr CyberZephyr is a unique management consulting firm focused on connecting the very best worldwide expertise, technology and personnel to the cyber challenges of the U.S. Federal Government. CyberZephyr is a team of seasoned professionals in the disciplines of Cybersecurity, Information Assurance, Business Development, Operations, Finance, Marketing, Federal Cyber Policy, Contracting and Information Technology. Each partner and affiliate has 20+ years in the field achieving hands-on experience and results. CyberZephyr clients are federal agencies, investment and R& D firms, and micro-businesses, large, multinational corporations in the Continental U.S., Canada, Europe and Australia.

“Our customers win because we know how to”

About CyberZephyr

CyberZephyr is a unique management consulting firm focused on connecting the very best worldwide expertise, technology and personnel to the cybersecurity challenges of the U.S. Federal Government.

CyberZephyr is a team of seasoned professionals in the disciplines of Cybersecurity Operations, Information Assurance, Technology, Policy, Business Development and Finance. Each partner and affiliate has 20+ years of experience in the field, achieving successful results for clients.

CyberZephyr clients are global corporations, government, R& D institutions, private equity firms and early-stage ventures in North America, Europe and Australia,

Our Customers Win Because We Know How To

CONTACT: PublicRelations@CyberZephyr.com