Cloud Data Governance Working Group
Introduction to the Cloud Data Governance Working Group
The mission of this group is to design a universal set of principles and map these to emerging technologies and techniques for ensuring the privacy, confidentiality, availability, integrity and security of data across private and public clouds.
Download the Cloud Data Governance Working Group Charter
Working Group Scope and Responsibilities
Propose a data governance framework to ensure the privacy, availability, integrity and overall security of data in different cloud models. These will feed into the GRC stack and can be implemented as controls across the CAIQ, CCM and STAR
Develop thought leadership materials to promote CSA¹s leadership across the spheres of data privacy, data protection and data governance.
Work on harmonizing data privacy regulations to a set of data protection principles that can help cloud consuming organizations and cloud service providers meet new data privacy requirements in a more efficient and proactive manner
Cloud Data Governance Working Group Leadership
Cloud Data Governance Co-chairs
Deepayan Chanda is a GIAC Certified Intrusion Analyst, Computer Hacking Forensics Investigator and Certified Ethical Hacker with 20+ years of experience in the IT and Defense sectors, 16+ years specifically in Cyber, Web, Application and Cloud Security. He holds strong experience in Skills and technologies related to Security Operations Centers, Anti-Malware Operations, Penetration Testing, Vulnerability Assessment, Web Application Security, Network Traffic Analysis, Security Incident response, Security Event Analysis and Log Analysis. He has successfully executed many design and implementation of large-scale Security Information and Event Management (“SIEM”) solutions. Apart from all of these his passion and expertise also extends towards Threat Intelligence, Advanced Threat Analysis, Information Security, Designing Security Operations Centers, Security Event Analysis & Incident Response, Security Information and Event Management (“SIEM”).
His is currently working with Cisco Systems (India) as a Technical Leader (Cloud Security), and he has also worked with Accenture India PVT Ltd., Product and Offering Development, McAfee India Private Ltd. (INTEL), Symantec Software Solutions India Pvt. Ltd..
Chris is currently the Sr. Manager of Security and Compliance at Okta, a leading Cloud Identity and Access Management provider, where he is responsible for corporate compliance, application assessment, and responding to customer security inquiries. He also leads the Cloud Security Alliance Data Governance Working Group. Prior to Okta, Chris spent 6 years leading the adoption of Cloud Technologies at LinkedIn, helping them grow from 350 to over 6,800 employees. He started his career designing, developing, and delivering content management, system administration, and messaging solutions for customers such as Nestle, Cisco, AMD, Telus, and the US Department of Defense.
When not setting policy, Chris is an active member of the Northern California ski community, where he volunteers with the Tahoe Backcountry Ski Patrol performing search & rescue, and teaching ski mountaineering & outdoor survival.
Cloud Data Governance Working Group Initiatives
Please contact Cloud Data Governance Working Group Leadership for more information.
JOIN WORKING GROUP
Connect with Us
Cloud Data Governance Working Group Downloads
The purpose of this survey was to capture the current state of data governance and data security capabilities offered by leading cloud service providers in the industry. The results of this survey are intended to be used for guidance and research conducted by CSA and its affiliates.
Release Date: November 16, 2011
The purpose of this survey is to capture the current state of data governance and data security capabilities offered by leading cloud service providers in the industry. The results of this survey will be aggregated and used for guidance and research conducted by CSA and its affiliates.
Release Date: August 01, 2011