With more than 40 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From operating facilities, data centers and offices in 16 countries, DTCC, through its subsidiaries, automates, centralizes and standardizes the processing of financial transactions, mitigating risk, increasing transparency and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm simplifies the complexities of clearing, settlement, asset servicing, data management and information services across asset classes, bringing increased security and soundness to the financial markets. In 2016, DTCC’s subsidiaries processed securities transactions valued at more than U.S. $1.5 quadrillion. Its depository provides custody and asset servicing for securities issues from over 130 countries and territories valued at U.S. $49.2 trillion. DTCC’s Global Trade Repository maintains approximately 40 million open OTC positions per week and processes over one billion messages per month. To learn more, visit us at www.dtcc.com or connect with us on LinkedIn, Twitter, YouTube and Facebook.
Google's cloud computing solutions allow you to dramatically lower IT costs, increase productivity and increase security. Google Apps is an enterprise-ready suite of applications that includes Gmail, Google Calendar, Google Docs and Spreadsheets, Google Sites, and Google Video. Google Postini services make on-premise email systems more secure, compliant and productive by blocking spam and other intrusions before they reach email networks, and by providing encryption and archiving to help meet compliance requirements. For more information, please visit http://www.google.com/apps/intl/en/business/index.html
Huawei is a leading global ICT solutions provider. Through our dedication to customer-centric innovation and strong partnerships, we have established end-to-end capabilities and strengths across the carrier networks, enterprise, consumer, and cloud computing fields. We are committed to creating maximum value for telecom carriers, enterprises and consumers by providing competitive ICT solutions and services. Our products and solutions have been deployed in over 170 countries and regions, serving more than one third of the world's population. Huawei's vision is to enrich life through communication. By leveraging our experience and expertise in the ICT sector, we help bridge the digital divide by providing opportunities to enjoy broadband services, regardless of geographic location. Contributing to the sustainable development of society, the economy, and the environment, Huawei creates green solutions that enable customers to reduce power consumption, carbon emissions, and resource costs.
IBM offers end-to-end solutions that enable you to take a business-driven and holistic approach to securing your cloud computing environment. IBM's capabilities empower you to dynamically monitor and quantify security risks, enabling you to better: - understand threats and vulnerabilities in terms of business impact - respond to security events with security controls that optimize business results - prioritize and balance your security investments. Through world-class solutions that address risk across all aspects of your business, IBM is able to help you create an intelligent infrastructure that drives down costs, is secure, and is just as dynamic as today's business climate. IBM's cloud security solutions build on the strong foundation of the IBM security framework to extend these benefits from traditional IT environments to cloud computing environments.
Microsoft provides the most comprehensive approach to cloud computing, so that you can harness the full power of the cloud on your terms. Whether in your datacenter, with a service provider, or from a Microsoft’ datacenter and whether in a private cloud using HyperV™, a public cloud with Windows Azure™, or software as a service environment with Office365 Microsoft provides the flexibility and control to consume IT as a service in a way that best meets your unique business needs. Visit www.microsoft.com/cloud to find out more.
Netskope is the cloud app analytics and policy company. Only Netskope eliminates the catch-22 between being agile and being secure and compliant by providing complete visibility and enforcing sophisticated policies in cloud apps. Netskope performs deep analytics and lets decision-makers create policies in a few clicks that protect corporate data and optimize cloud app usage in real-time and at scale. With Netskope, people get their favorite cloud apps and the business can move fast, with confidence. Netskope is headquartered in Los Altos, California. Visit us at www.netskope.com and follow us on Twitter @Netskope.
OneTrust is the #1 fastest growing and most widely used technology platform to help organizations be more trusted, and operationalize privacy, security, data governance, and compliance programs. More than 6,000 customers, including half of the Fortune 500, use OneTrust to build integrated programs that comply with the CCPA, GDPR, LGPD, PDPA, ISO27001 and hundreds of the world’s privacy and security laws.
The OneTrust platform is backed by 100 patents and powered by the OneTrust Athena™ AI and robotic automation engine. Our offerings include
OneTrust Privacy Management Software; OneTrust PreferenceChoice™ consent and preference management; OneTrust Vendorpedia™ third-party risk exchange; OneTrust GRC integrated risk management; OneTrust Ethics compliance and ethics; OneTrust DataGuidance™ regulatory research; OneTrust DataDiscovery™ AI-powered discovery and classification software; and OneTrust DataGovernance governance and metadata management .
Oracle Cloud is not only the lowest cost and most automated, but it's the industry's broadest and most integrated cloud, with deployment options ranging from the public cloud to your data center. Oracle Cloud offers best-in-class services across Software as a Service (SaaS), Data as a Service (DaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). Oracle Cloud helps organizations drive innovation and business transformation by increasing agility and reducing IT complexity.
Qualys®, Inc. is the leading provider of on demand IT security risk and compliance management solutions delivered as a service. Qualys Software-as-a-Service solutions are deployed in a matter of hours anywhere in the world, providing customers an immediate and continuous view of their security and compliance postures. The QualysGuard® service is used today by more than 3,500 organizations in 85 countries, including 40 of the Fortune Global 100 and performs more than 200 million IP audits per year. Qualys has the largest vulnerability management deployment in the world at a Fortune Global 50 company. Qualys has established strategic agreements with leading managed service providers and consulting organizations including BT, Etisalat, Fujitsu, IBM, I(TS)2, LAC, NTT, SecureWorks, Symantec, Tata Communications and TELUS.
Wiz is the world's fastest-growing cybersecurity company and serves over 10% of the Fortune 500. Founded by the team that led Microsoft Azure's Cloud Security Group, its agent-less technology provides complete coverage of a company's multi-cloud environment in minutes, identifies hidden vulnerabilities and exposures, and surfaces real attack vectors. Wiz has offices in Tel Aviv, New York, Denver, and Palo Alto, and has raised $350 million from top-tier investors including Sequoia Capital, Index Ventures, Salesforce Ventures, Advent International, and Blackstone Growth. For more information, visit www.wiz.io.
Through a multi-tenant, globally-deployed infrastructure, Zscaler enforces business policy, mitigates risk, and provides twice the functionality at a fraction of the cost of current solutions. It enables organizations to provide the right access to the right users, from any place and on any device—while empowering the end-user with a rich Internet experience.
All Corporate Members
Saba delivers a cloud-based intelligent talent management solution used by leading organizations worldwide to hire, develop, engage and inspire their people. With machine learning at its core, Saba Cloud offers proactive, personalized recommendations on candidates, connections and content to help employees and businesses lead and succeed. It is purpose-built on a highly scalable platform that exceeds industry security and reliability standards. Saba has more than 31 million users and 2,200 customers across 195 countries and 37 languages. Learn more about intelligent talent management at www.saba.com.
SafeBase helps B2B SaaS companies close enterprise deals faster by streamlining the security assessment process.
Safe-T® (www.safe-t.com), a wholly owned subsidiary of Safe-T Group Ltd. (TASE: SAFE), is a leading provider of software-defined access solutions which mitigate attacks on enterprises’ business-critical services and sensitive data. Safe-T solves the data access challenge by masking data at the perimeter, keeping information assets safe and limiting access only to authorized and intended entities in hybrid cloud environments.
Safe-T enhances operational productivity, efficiency, security, and compliance by protecting organizations from data exfiltration, leakage, malware, ransomware, and fraud. With Safe-T’s patented, multi-layer software-defined access, financial services, healthcare, utility companies and governments are able to secure their data, services, and networks from internal and external data threats.
Safe-T operates in North America, APAC, Africa, Europe, and Israel.
Salesforce is the world’s #1 customer relationship management (CRM) platform. Our cloud-based applications for sales, service, marketing, and more don’t require IT experts to set up or manage — simply log in and start connecting to customers in a whole new way.
Samsung SDS was founded in 1985 as the ICT arm of the Samsung Group. Our solutions have been leading the digital transformation and innovation of our clients for over 30 years across a wide range of industries. Samsung SDS combines industrial know-how with intelligent security solutions to provide the best and most optimized solutions and services for customers. Get a full suite of cloud services 24/7, including risk monitoring, hacking attack detection based on Samsung TI (Threat Intelligence), AI-based risk analytics. Enjoy the benefits of our expertise and professional experience in the same level as on-premise and on cloud as well.
Sangfor Technologies, a manufacturer of Cloud Computing and network security solutions including Third Generation HCI (Hyper Converge Infrastructure), Complete VDI solution, IAM (Internet Access Management), WAN optimization, converged Security Solution(NGAF), SD-WAN and Application delivery controller(application layer load balance) solution, sells its products mainly to midsize enterprises.
Established in 2000, Sangfor Technologies has over 60,000 clients and over 4000 employees worldwide (2017). Sangfor has 68 branches, including branches in the US, UK, UAE, Italy, Pakistan, South Africa, Germany, Malaysia, Thailand, Indonesia, Singapore, Philippines, Vietnam, Myanmar, South Korea, Hong Kong and Chin
Beijing Sansec Technology Development Co.,Ltd. is a company focusing on encryption based information security solutions. Sansec is a member of the National Cryptography Standardization Technical Committee, and has participated the formulation of more than 10 standards. Sansec’s cryptographic products, such as PCI-E attached HSM(Hardware Security Module), financial HSM, Network attached HSM, encrypted storage gateway, key management systems, have got a large market share in China. With the rapid development of cloud computing, Sansec have developed high performance PCIE-HSM that supports virtualization, Cloud HSM/Cloud Cryptographic Services platform, encrypting gateway/middleware that supports various data types, etc. These products can be integrated to provide protections for the whole life cycle of the data in cloud. We believe cryptographic based security technology will be more and more important for cloud computing. We will provide customized encryption solutions for the cloud applications, and we are transforming into a cloud security service provider. Sansec's logo is in the attachment in ai format.
Sauce Labs is the company enterprises trust to deliver digital confidence. More than 3 billion tests have been run on the Sauce Labs Continuous Testing Cloud, the most comprehensive and trusted testing platform in the world. Sauce Labs delivers a 360-degree view of a customer’s application experience, helping businesses improve the quality of their user experience by ensuring that web and mobile applications look, function, and perform exactly as they should on every browser, OS, and device, every single time. Sauce Labs enables organizations to increase revenue and grow their digital business by creating new routes to market, protecting their brand from the risks of a poor user experience, and delivering better products to market, faster. For more info or to sign up for a free trial, visit http://saucelabs.com.
Saviynt is the industry-leading provider of Cloud Security and Identity Governance solutions. Saviynt provides enterprises with best-in-class governance across applications, data and infrastructure in a single, seamless platform for Cloud (Office 365, AWS, Azure, Salesforce, Workday) and Enterprise (SAP, Oracle EBS). Saviynt is pioneering Identity 3.0 by integrating advanced risk analytics and intelligence with fine-grained privilege management.
Schellman & Company, LLC
Schellman & Company, LLC HQ
4010 W Boy Scout Boulevard, Suite 600
Tampa, FL 33607
Telephone: 1.866.254.0000 Outside of the United States, please dial: +1.973.854.4684
We are setting the pace and blazing new trails. We are the only company in the world capable of providing our clients the rare opportunity to achieve multiple compliance objectives through a single independent assessor — using experienced teams dedicated to delivering the highest quality.
For more information visit www.schellman.com
Scratchpad is the fastest way to update Salesforce, take sales notes, and stay on top of your pipeline and daily to-dos.
Secberus is an adaptable Cloud Governance Security Platform for your dynamic cloud. Manage your cloud security, development, compliance, operations and financial strategy with our cloud governance platform--embedded with CAPA and CARTA frameworks. Secberus enables you to assess, respond, adapt, and prevent cloud risk at enterprise scale.
SecureCloudDB provides critical security tooling for public cloud database users. With pre-built security rules, proprietary scoring, automated alerting, activity monitoring, and intuitive dashboards, SecureCloudDB enables users to confidently assess and improve their database security posture.
Description: SecureIQLab is fundamentally a cloud security validation lab which was born primarily to help enterprises and organizations bridge the cloud security gap that exists between the current analyst and testing firms. The way we do it is by specializing in assessing and validating a multitude of threat-facing cybersecurity and cloud security solutions tailored to enterprises or market interests. The testing methodologies that we develop use our proprietary validation framework and our patent pending cloud security threat based Intellectual Property.
One of biggest challenges has been the inability to measure the actual cost of insecurity; ideally, this calculation maps the enterprise workflow, the attacker path, the implemented reference architecture, and most importantly the drift between actual and implemented reference architecture over time due to different underlying factors. As a consequence, mapping enterprise-specific use-cases with operational risk metrics reliably is a challenge
SecureLink specializes in the design, implementation and support of the most innovative and reliable networking, security, storage, server and virtualization solutions. Our know-how, passion and expertise result in satisfied clients, sustained growth and recognition from the leading vendors in the marketplace.
Our focus and experience in Managed Security Services provide security and continuity to safely enable businesses to grow.
Since our inception in 2003 we became the leading specialist in Europe. SecureLink Group now almost has about 625 employees spread over several locations in Belgium, The Netherlands, Germany, Denmark, Sweden, Norway and the UK.
For more information, please visit our website www.securelink.net
SecureSky delivers a complete portfolio of cloud security solutions to help organizations secure their cloud infrastructure. Utilizing proprietary, cloud-native, and third-party technologies, Secure Sky solutions meet the security, compliance, and cost requirements of today’s dynamic enterprises.
SecurityScorecard helps enterprises gain operational command of their security posture and the security posture of their third-parties through continuous, non-intrusive monitoring. The company’s approach to security focuses on identifying vulnerabilities from an outside perspective, the same way a hacker would. SecurityScorecard’s proprietary SaaS platform offers an unmatched breadth and depth of critical data points including a broad range of risk categories such as Application Security, Malware, Patching Cadence, Network Security, Hacker Chatter, Social Engineering, and Leaked Information. In addition, SecurityScorecard’s Atlas questionnaire and evidence exchange platform enables faster, more insightful questionnaire completion and leverages SecurityScorecard analytics to drive more accurate and effective due diligence processes.
To receive a free email with your company’s current score, please visit: instant.securityscorecard.com
Sekure is the first cloud-native data classification and governance solution provider for the modern cloud-collaboration platforms such as G Suite. Native to the cloud, Sekure automatically classifies data in the cloud, provides visibility on data compliance and rapidly detects data loss, leaks, insider threats, as well as speeds up overall incident response – all without lengthy deployments, complex policy management or blocking employee productivity. With Sekure, your team can protect sensitive data from accidental or unintentional leaks while fostering an open and collaborative culture for employees. Please visit www.sekurecloud.com for more information.
ServiceNow is changing the way people work.
With a service‑orientation toward the activities, tasks and processes that make up day‑to‑day work life, we help the modern enterprise operate faster and be more scalable than ever before. Customers use our service model to define, structure and automate the flow of work, removing dependencies on email and spreadsheets to transform the delivery and management of services for the enterprise. ServiceNow enables service management for every department in the enterprise including customer service, IT, human resources, facilities, field service and more. We deliver a ‘lights‑out, light‑speed’ experience through our enterprise cloud – built to manage everything as a service.
To find out how, visit www.servicenow.com.
The global leader in talent innovation, SHL help organizations and their leaders address the most pressing talent priorities by providing an unparalleled view of their workforce. Our unrivalled assessment service, benchmark data, extensive and analytic technology enable companies to influence genuine organizational change and drive tangible business outcomes from having the right people in the right roles at the right time.
Shujinko is an automated cloud compliance SaaS solution that simplifies audit preparation and readiness for enterprise customers. Shujinko’s software streamlines the complex, manual, and costly process required for companies to successfully prepare and pass a SOC 2 audit. Shujinko’s extensible platform will soon support PCI DSS and other security and compliance standards going forward.
Shujinko’s flagship tool, AuditX, translates complex SOC 2 requirements and controls into easily understandable tasks for engineers, resulting in simple, organized, and faster audits. AuditX systematically steps companies through audit preparedness, automates evidence collection, and tracks progress and overall audit readiness to ensure critical dates are hit. Customers can achieve SOC 2 Type 1 compliance in days or weeks versus months, save thousands of people hours and dollars, and free up scarce engineering resources to focus on critical business priorities. AuditX also ensures that achieving SOC 2 Type 2 compliance is done right and that audits go smoothly and quickly. AuditX is designed for companies with environments deployed in AWS, Azure, GCP, or on-premises.
Shujinko is a Seattle-based company founded in 2018 by cloud security and compliance experts Scott Schwan and Matt Wells. With decades of combined firsthand experience across more than 50 audits and 100 environments at companies such as Starbucks and CardFree, they deeply understand the pain,
complexity, and antiquated processes required to achieve and maintain compliance.
Shyft is a rapidly growing cloud provider of mobile workforce management solutions for shift workers.
SilkRoad Technology is a software and services platform helps our clients attract, retain and align people to their business. Our solutions start with Global Client Services to provide strategic HR and business expertise. SilkRoad Technology then designs secure solutions tailored to business requirements at scale for global companies. We deliver personalized experiences for employees to drive engagement across the employment lifecycle and enable measurable and better business outcomes.
Skyhigh Networks, the world’s leading Cloud Access Security Broker (CASB), enables enterprises to safely adopt SaaS, PaaS and IaaS cloud services, while meeting their security, compliance and governance requirements. With more than 600 enterprise customers globally, Skyhigh provides organizations the visibility and management for all their cloud services, including enforcement of data loss prevention policies; detecting and preventing internal and external threats; encrypting data with customer-controlled keys; and implementing access-control policies.
SkySilk Cloud Services
SkySilk Cloud Services is a boutique-style cloud service provider offering simple, scalable, and affordable cloud computing solutions.
The SkySilk Cloud Platform offers simple, affordable, and robust VPS deployment. Through the use of open-source software such as Proxmox VE, Ceph Storage, and LXC Virtualized Containers among others, SkySilk takes the initial legwork out of server setup and system administration so users can spend more energy towards innovation while saving costs on cloud infrastructure.
SN Registrars (Holdings) Ltd is the UKAS Accredited certification body operating under the trading names SNR Certification, DAS Certification and QEC Certification. For more information and locations of our international offices please visit www.snregistrars.com or www.dascertification.com
As regional representatives of DAS Certification, The DAS SEE office combines many years of experience in ISO 27001 and ISO 20000-1 certification within the ICT sector and is the designated program leader for the STAR Certification scheme with contact details below: DAS SEE, agent of SN Registrars (Holdings) Ltd [email protected] www.dascertification.co.uk
Société Générale de Surveillance (SGS)
1 Place des Alpes P.O. Box 2152 Geneva, 1211 Switzerland
SGS Taiwan (East Asia HQ)
4F, No.125, Wu Kung Road, New Taipei Industrial District, New Taipei City, 24886 Taiwan (R.O.C.)
SGS has 1,400 offices serving over 120,000 clients certification services in 150 countries. To find the office closest to you visit: http://www.sgs.com/
Sophos makes IT security simple with next-generation solutions that protect networks, servers, and devices, wherever they are. Today, more than 100 million users in 150 countries and a global network of channel partners trust Sophos to deliver simple solutions to complex security challenges. Focused on innovation and backed by a global network of SophosLabs threat intelligence centers and industry-leading support, Sophos delivers solutions that are simple to deploy, maintain, and manage, enabling organizations to focus on performance and growth. Sophos - Security made simple.
Spanning Cloud Apps, the most trusted provider of SaaS backup and recovery, prevents data loss with automated backup and accurate restores for Google Apps and Salesforce.com. Spanning Backup is a powerful, reliable enterprise-grade solution trusted by thousands of businesses and educational institutions. Visit: www.spanning.com and follow @SpanningBackup.
Stacklet helps customers to be well managed in the cloud. As the developers behind the CNCF Cloud Custodian project we're building great products and great communities.
StatPro is a global provider of award winning portfolio analytics solutions for the investment community. The Group’s cloud-based platform provides vital analysis of portfolio performance, attribution, risk and compliance. This multi-asset class analytics platform helps StatPro’s clients increase assets under management, improve client service, meet tough regulations and reduce costs.
The Group’s integrated and global data coverage includes over 3.2 million securities such as equities, bonds, mutual funds, FX rates, futures, options, OTCs, sector classifications and much else besides. StatPro also covers most families of benchmarks including MSCI, FTSE, Russell, NASDAQ and the open source Freedom Index.
Swascan is the innovative Italian Cyber Security firm that owns a Cyber Security testing platform and a Cyber Security Research centre. With its cloud-based platform – the first of its kind completely in Cloud, SaaS and Pay for Use – Swascan can identify, analyze and solve Cyber Security vulnerabilities on assets ranging from Websites to entire factory networks. Our services ensure the technologic assessment required by GDPR and lead companies towards legislative compliance. The brilliance of its services, like Vulnerability Assessment, Network Scan, Penetration Test, Code Review, ISO & Compliance Management and Data Breach Incident Response has been recognized by organizations like ECSO and market leaders like CISCO.
Synack (www.synack.com), the most trusted crowdsourced security testing
platform, delivers smarter penetration testing for dynamic attack surfaces
on a continuous cadence. The company’s hacker-powered, AI-enabled pen test
provides access to the best worldwide talent, scalable and smart
technology, and insights that secure our nation's critical infrastructure
and leading brands and businesses.
Financial crime is a major cause of distress to both companies and individuals all over the world and Synectics Solutions is proud to have played a significant role in helping many of the world’s major financial institutions detect and prevent many types of financial crime. We offer expert, leading-edge, data-driven solutions and analysis services that empower these organisations to protect themselves and their customers from becoming victim to fraudsters and other financial criminals. We’ve led the technological revolution in and around collaborating and sharing data, and have also pioneered a range of machine learning, network visualisation and predictive analysis solutions that have enabled our clients’ to make informed decisions on a whole range of financial risk.
Sysdig is driving the secure DevOps movement, empowering organizations to confidently secure containers, Kubernetes, and cloud. With Sysdig, teams secure the build, detect and respond to threats, continuously validate cloud posture and compliance, and monitor performance. Sysdig is a SaaS platform, built on an open source stack that includes Falco and sysdig OSS, the open standards for runtime threat detection and response. Hundreds of companies rely on Sysdig for container and cloud security and visibility. Learn more at www.sysdig.com.