Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cyber Security and how to safeguard data in the ‘Cloud’ Claire Jacques 21 April 2016.

Published byMichael Evans Modified over 7 years ago

Similar presentations

Presentation on theme: "Cyber Security and how to safeguard data in the ‘Cloud’ Claire Jacques 21 April 2016."— Presentation transcript:

1 Cyber Security and how to safeguard data in the ‘Cloud’ Claire Jacques 21 April 2016

2 Cyber Security Risk Cyber risk increasing at unprecedented rate Cyber attacks Criminal State sponsored Hacktivism Insider

3 Cyber Security – legal framework UK Government Cyber Strategy – Cyber Essentials Legal Framework Data Protection Act 1998  “Appropriate technical and organisational measures”  Data Security breaches – ICO Fines EU General Data Protection Regulation

4 Cyber Security – managing cyber risks Best practice steps Risk assessment across the whole business Understand EU-wide legal/regulatory obligations and adopt government cyber security recommendations Disaster recovery and business continuity Employees - security policies and procedures, promote risk management and incident reporting, training and monitoring Check insurance cover (specific cyber insurance) Ensure obligations to meet cyber security measures are passed on in supplier contracts

5 Typical Cloud Contract “Take it as it is” Ability for the supplier to unilaterally vary the scope of services and associated policies Right for supplier to terminate or suspend provision of services on short notice Limited (if any) warranties Little (if any) coverage for IP infringement claim Very low limits of liability Limited service levels, no associated service credits or termination rights

6 The Customer fights back! 1.Data loss and data liability 2.Service Levels 3.Security requirements 4.Lock in and exit 5.Data migration, deletion and return 6.Unilateral service changes 7.Intellectual property rights

7 Checklist for cloud customers Is the infrastructure multi-layered and, if so, in what way? Where will your data be processed (including storage/replication)? Who controls the critical infrastructure (and from where)? How easily can third parties get access to your data? What happens if the cloud provider / their provider goes bust? How easily could you move your data to another cloud service (or back to your own systems) and how long would it take?

8 Any Questions? Claire Jacques Senior Associate Commercial/IT – Business Services BrookStreet des Roches LLP 01235 836643 07805 819854 Claire.jacques@bsdr.com

Download ppt "Cyber Security and how to safeguard data in the ‘Cloud’ Claire Jacques 21 April 2016."

Similar presentations

The University of Sydney © 2003 Commercialising Research and Protecting Intellectual Property Kevin W L Croft Deputy Director Business Liaison Office Kevin.

The University of Sydney © 2003 Commercialising Research and Protecting Intellectual Property Kevin W L Croft Deputy Director Business Liaison Office Kevin.
Insurance in the Cloud Ben Hunter, Canadian Underwriting Specialist Technology Insurance Specialty Chubb Insurance Company of Canada.

Insurance in the Cloud Ben Hunter, Canadian Underwriting Specialist Technology Insurance Specialty Chubb Insurance Company of Canada.
CYBER & Product Liability & Professional Indemnity

CYBER & Product Liability & Professional Indemnity
SEMINAR NAIC/ASSAL/SVS REGULATION & SUPERVISION OF MARKET CONDUCT © 2014 National Association of Insurance Commissioners Overview and Purpose of Market.

SEMINAR NAIC/ASSAL/SVS REGULATION & SUPERVISION OF MARKET CONDUCT © 2014 National Association of Insurance Commissioners Overview and Purpose of Market.
3Kites Consulting/Kemp IT Law Breakfast Seminar Law Firms and the Cloud: Balancing Benefits and Risks London, 10 September 2014 Contracting for the Cloud:

3Kites Consulting/Kemp IT Law Breakfast Seminar Law Firms and the Cloud: Balancing Benefits and Risks London, 10 September 2014 Contracting for the Cloud:
The Gathering Cloud computing - Legal considerations David Goodbrand, Partner 28 February 2013 Aberdeen Edinburgh Glasgow.

The Gathering Cloud computing - Legal considerations David Goodbrand, Partner 28 February 2013 Aberdeen Edinburgh Glasgow.
IS BIG DATA GIVING YOU A BIG HEADACHE? Risk Reduction - Transactional, International and Liability Issues Oregon State Bar Corporate Counsel Section Fall.

IS BIG DATA GIVING YOU A BIG HEADACHE? Risk Reduction - Transactional, International and Liability Issues Oregon State Bar Corporate Counsel Section Fall.
Section 34.2 Handling Business Risks

Section 34.2 Handling Business Risks
Recent Trends and Insurance Considerations March 2015

Recent Trends and Insurance Considerations March 2015
Information Security Policies Larry Conrad September 29, 2009.

Information Security Policies Larry Conrad September 29, 2009.
3rd Party Risk Categorization Process

3rd Party Risk Categorization Process
Session 3 – Information Security Policies

Session 3 – Information Security Policies
Safe Working Practices - Contents

Safe Working Practices - Contents
Managing Risk in Cloud Computing Contracts Henry Ward and Todd Taylor April 30, 2015.

Managing Risk in Cloud Computing Contracts Henry Ward and Todd Taylor April 30, 2015.
Software License Agreement Negotiation 101 Ray Hsu, C.P.M. Assistant Director, Procurement Services University of Washington.

Software License Agreement Negotiation 101 Ray Hsu, C.P.M. Assistant Director, Procurement Services University of Washington.
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.

Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.
Outsourcing Louis P. Piergeti VP, IIROC March 29, 2011.

Outsourcing Louis P. Piergeti VP, IIROC March 29, 2011.
WHAT EVERY RISK MANAGER NEEDS TO KNOW ABOUT DATA SECURITY RIMS Rocky Mountain Chapter Meeting Thursday, July 25, 2013 11:30 am – 12:30 pm.

WHAT EVERY RISK MANAGER NEEDS TO KNOW ABOUT DATA SECURITY RIMS Rocky Mountain Chapter Meeting Thursday, July 25, :30 am – 12:30 pm.
Finance and Governance Workshop Data Protection and Information Management 10 June 2014.

Finance and Governance Workshop Data Protection and Information Management 10 June 2014.
Computer Science and Engineering 1 Cloud ComputingSecurity.

Computer Science and Engineering 1 Cloud ComputingSecurity.

Similar presentations

Ads by Google