In his report, Alexandr Padurin, Head of Presale Management Group, Presale Architect at Security Vision, will examine whether it is possible to design an IS architecture in such a way that assessment is performed automatically, what to look out for and what pitfalls there are.
"Most organisations are in one way or another required to undergo compliance assessment as per the requirements of various regulations and in most cases it is a complex bureaucratic process involving questionnaires, spreadsheets and reports. In my presentation I will explain:
- What the classic conformity assessment process looks like using one of the most common standards as an example;
- Why an up-to-date and well-developed asset model is important in this process;
- How much of this process is helped by automating information asset configuration scanners and why this is not enough;
- What typical classes of solutions that are present in a comprehensive information security system can provide additional information in assessing compliance and how to automate the collection of such information;
- What part of the requirements cannot be assessed automatically and what approaches are available to minimise the effort required to assess these requirements;
- What are the peculiarities when building this process in holdings or in organisations with a large number of subsidiaries and affiliates", - commented Alexander.
Alexandr Padurin's report will take place on 22 May in Turing Hall 12.
