Powered By Cloud 2009-02-03

•

0 gefällt mir•448 views

KirkWylie

Unintended Regulatory Consequences and the Cloud

Technologie

Nobody Says You Can’t
Use Cloud Computing
• Regulators don’t talk about the Cloud
• Regulators about what you must do
• You must protect client data
• You must protect against fraud
• You must complete computations in time

Auditors Interprets
Rules
• Auditors (internal and external) ensure
compliance with regulations
• They follow best practice guides
• Violating guides requires strong IT
leadership
• You can do it, but your CIO better have a
lot of political capital built up!

Best Practice Guides
Don’t Understand
Cloud Computing

Example: Client Data
• Applies to client or counterparty data
• Could use S3 to store and EC2 to process
• Best Practice is that your data never leave
your premise
• And you audit all access internally
• And your data centre is completely
secure
• What about extrusion?

Example: Risk Runs

• BASEL limits set by overnight risk runs
• Risk runs must complete by a given time, or
you can’t trade
• What if it turns out Amazon IS ﬁnite?
• What if the market explodes at once?

Example: Fraud

• Must prevent nefarious teams from
injecting P&L related code
• Must audit all injection vectors
• How can you do that in the cloud?

Conclusion
• Regulations don’t directly limit Cloud use
• FSA doesn’t understand Virtualization
• Interpretation of regulations implicitly
restrict cloud use
• Until compliance and audit teams
understand new best practices, adoption
will be limited

Weitere ähnliche Inhalte

Andere mochten auch

Online Reputation

Ed Wohlfahrt

Rechtssicheres E-Mail-Marketing 2013

Connected-Blog

This month’s Smart Sense Newsletter features an interview with Terry Gold, VP of Sales North America for idOnDemand. In the interview, Terry discussed several topics, including: - How does idOnDemand keep up with and contain identity fraud? - What identification solutions does idOnDemand offer? - Who is the end-user of idOnDemand’s products and what benefits do they receive? - Could smart cards become obsolete in the near future? - What is the next big thing we can expect from idOnDemand? Follow idOD on Twitter: http://twitter.com/idondemand http://www.idondemand.com http://www.identive-group.com

idOnDemand | Article | Looking For An ID Solution? Get It From idOnDemand!

Identive

NFC Forum Compliance Program Overview

NFC Forum

How Social Data boosts Conversion

Datentreiber

An algorithm for decomposition coordination of large scale convex programmimg...

Dr Talaat Refaat

How to build and manage a superior customer experience leading to a better bo...

Christoph Spengler

Identive | Press Release | Identive Group Announces Preliminary First Quarter...

Identive

Kompetenz-Häppchen Nr. 03 zu Effizienz in der HR von Thomas Eggert

Competence Books

Appetizer Corporate Design

Hauke Sann

Die Schlüsselergebnisse des Deutschen Vertriebsbarometers 2016 (1. Halbjahr) veröffentlicht aktuell das Sales & Marketing Department der Ruhr Universität- Bochum. Die Ergebnisse basieren auf Aussagen von insgesamt 613 Führungskräften. Ziel der Studie ist es zu untersuchen, inwiefern die Vertriebslage in Unternehmen die gesamtwirtschaftliche Entwicklung vorhersagen kann. Darüber hinaus dient die Studie als Stimmungsbarometer für den Vertrieb in Deutschland. Dem Vertrieb soll dadurch auch eine stärkere Stimme in der medialen Öffentlichkeit gegeben werden. Der Vertriebsklima -Index berücksichtigt folgende Punkte: Freude im Vertrieb zu arbeiten Identifikation mit dem Beruf Wahrnehmung von Vertriebsmitarbeiter Stresslevel von Vertriebsmitarbeitern 80% der Mitarbeiter im Vertrieb geben an, dass Sie sich stark mit ihrem Beruf identifizieren können. Hohe Identifikation und Motivation sind im Vertrieb das Aund O: MIt variabler Vergütung und Zielvereinbarungen können Unternehmen Vertriebsaktivitäten steuern und Vertriebsmitarbeiter motivieren.

Studienergebnisse vertriebsklima-Index

FABIS Sales Solutions GmbH & Co. KG

Mobile Convention Amsterdam 2015 - MEF/ Wirecard - Jack Harris

Mobile Convention Amsterdam 2015

250 Diapositivas

Martii15

Technische Innovationen vs. Erfüllung erforderter IT-Sicherheit?

Torben Haagh

Andere mochten auch (14)

Online Reputation

Rechtssicheres E-Mail-Marketing 2013

idOnDemand | Article | Looking For An ID Solution? Get It From idOnDemand!

NFC Forum Compliance Program Overview

How Social Data boosts Conversion

An algorithm for decomposition coordination of large scale convex programmimg...

How to build and manage a superior customer experience leading to a better bo...

Identive | Press Release | Identive Group Announces Preliminary First Quarter...

Kompetenz-Häppchen Nr. 03 zu Effizienz in der HR von Thomas Eggert

Appetizer Corporate Design

Studienergebnisse vertriebsklima-Index

Mobile Convention Amsterdam 2015 - MEF/ Wirecard - Jack Harris

250 Diapositivas

Technische Innovationen vs. Erfüllung erforderter IT-Sicherheit?

Kürzlich hochgeladen

In the thrilling conclusion to 2023, ransomware groups had a banner year, really outdoing themselves in the "make everyone's life miserable" department. LockBit 3.0 took gold in the hacking olympics, followed by the plucky upstarts Clop and ALPHV/BlackCat. Apparently, 48% of organizations were feeling left out and decided to get in on the cyber attack action. Business services won the "most likely to get digitally mugged" award, with education and retail nipping at their heels. Hackers expanded their repertoire beyond boring old encryption to the much more exciting world of extortion. The US, UK and Canada took top honors in the "countries most likely to pay up" category. Bitcoins were the currency of choice for discerning hackers, because who doesn't love untraceable money?

Ransomware_Q4_2023. The report. [EN].pdf

Overkill Security

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

ICT role in 21st century education and its challenges

rafiqahmad00786416

The action of the next cyber saga takes place in the mystical lands of the Asia-Pacific region, where the main characters began their digital activities in the middle of 2021 and qualitatively strengthened it in 2022. Corporate espionage, document theft, audio recordings, and data leaks from messaging platforms were all a matter of one day for Dark Pink. Their geographical focus may have started in the Asia-Pacific region, but their ambitions knew no bounds, targeting a European government ministry in a bold move to expand their portfolio. Their victim profile was as diverse as a UN meeting, targeting military organizations, government agencies, and even a religious organization. Because discrimination is not a fashionable agenda. In the world of cybercrime, they serve as a reminder that sometimes the most serious threats come in the most unassuming packages with a pink bow.

Cyberprint. Dark Pink Apt Group [EN].pdf

Overkill Security

💥 You’re lucky! We’ve found two different (lead) developers that are willing to share their valuable lessons learned about using UiPath Document Understanding! Based on recent implementations in appealing use cases at Partou and SPIE. Don’t expect fancy videos or slide decks, but real and practical experiences that will help you with your own implementations. 📕 Topics that will be addressed: • Training the ML-model by humans: do or don't? • Rule-based versus AI extractors • Tips for finding use cases • How to start 👨‍🏫👨‍💻 Speakers: o Dion Morskieft, RPA Product Owner @Partou o Jack Klein-Schiphorst, Automation Developer @Tacstone Technology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

UiPathCommunity

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the deployment of external web forms using Jotform for Bonterra Impact Management. This solution can be customized to your organization’s needs and deployed to support the common use cases below: - Intake and consent - Assessments - Surveys - Applications - Program registration Interested in deploying web form automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Jeffrey Haguewood

Keynote 2: APIs in 2030: The Risk of Technological Sleepwalk Paolo Malinverno, Growth Advisor - The Business of Technology Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

apidays

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Zilliz

Angeliki Cooney has spent over twenty years at the forefront of the life sciences industry, working out of Wynantskill, NY. She is highly regarded for her dedication to advancing the development and accessibility of innovative treatments for chronic diseases, rare disorders, and cancer. Her professional journey has centered on strategic consulting for biopharmaceutical companies, facilitating digital transformation, enhancing omnichannel engagement, and refining strategic commercial practices. Angeliki's innovative contributions include pioneering several software-as-a-service (SaaS) products for the life sciences sector, earning her three patents. As the Senior Vice President of Life Sciences at Avenga, Angeliki orchestrated the firm's strategic entry into the U.S. market. Avenga, a renowned digital engineering and consulting firm, partners with significant entities in the pharmaceutical and biotechnology fields. Her leadership was instrumental in expanding Avenga's client base and establishing its presence in the competitive U.S. market.

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Angeliki Cooney

Corporate and higher education. Two industries that, in the past, have had a clear divide with very little crossover. The difference in goals, learning styles and objectives paved the way for differing learning technologies platforms to evolve. Now, those stark lines are blurring as both sides are discovering they have content that’s relevant to the other. Join Tammy Rutherford as she walks through the pros and cons of corporate and higher ed collaborating. And the challenges of these different technology platforms working together for a brighter future.

Corporate and higher education May webinar.pptx

Rustici Software

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

FWD Group - Insurer Innovation Award 2024

The Digital Insurer

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

AWS Community Day CPH - Three problems of Terraform

Andrey Devyatkin

Passkeys: Developing APIs to enable passwordless authentication Cody Salas, Sr Developer Advocate | Solutions Architect - Yubico Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...

apidays

Kürzlich hochgeladen (20)

Ransomware_Q4_2023. The report. [EN].pdf

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

2024: Domino Containers - The Next Step. News from the Domino Container commu...

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Axa Assurance Maroc - Insurer Innovation Award 2024

Artificial Intelligence Chap.5 : Uncertainty

ICT role in 21st century education and its challenges

Cyberprint. Dark Pink Apt Group [EN].pdf

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

AXA XL - Insurer Innovation Award Americas 2024

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...

Corporate and higher education May webinar.pptx

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

FWD Group - Insurer Innovation Award 2024

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

AWS Community Day CPH - Three problems of Terraform

Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...

Powered By Cloud 2009-02-03

1. Unintended Regulatory Consequences And The Cloud Kirk Wylie kirk@kirkwylie.com http://kirkwylie.blogspot.com 3 February, 2009 Powered By Cloud

2. Nobody Says You Can’t Use Cloud Computing • Regulators don’t talk about the Cloud • Regulators about what you must do • You must protect client data • You must protect against fraud • You must complete computations in time

3. Auditors Interprets Rules • Auditors (internal and external) ensure compliance with regulations • They follow best practice guides • Violating guides requires strong IT leadership • You can do it, but your CIO better have a lot of political capital built up!

4. Best Practice Guides Don’t Understand Cloud Computing

5. Example: Client Data • Applies to client or counterparty data • Could use S3 to store and EC2 to process • Best Practice is that your data never leave your premise • And you audit all access internally • And your data centre is completely secure • What about extrusion?

6. Example: Risk Runs • BASEL limits set by overnight risk runs • Risk runs must complete by a given time, or you can’t trade • What if it turns out Amazon IS ﬁnite? • What if the market explodes at once?

7. Example: Fraud • Must prevent nefarious teams from injecting P&L related code • Must audit all injection vectors • How can you do that in the cloud?

8. Conclusion • Regulations don’t directly limit Cloud use • FSA doesn’t understand Virtualization • Interpretation of regulations implicitly restrict cloud use • Until compliance and audit teams understand new best practices, adoption will be limited

Powered By Cloud 2009-02-03

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Andere mochten auch

Andere mochten auch (14)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

Powered By Cloud 2009-02-03