FinCloud Fridays
Featured Episode
March FinCloud: AI in Financial Services for Defensive Security
The integration of Agentic AI and advanced machine learning (ML) in the financial services sector is redefining defensive security practices, enabling
organizations to strengthen their ability to respond to cyber threats and ensure regulatory compliance. Agentic AI, with its autonomous decision-maki
All episodes
Date
Navigating the new PCI DSS v4.x Requirements for Cloud Service Providers
Kandyce Young (PCI Security Standards Council), Ted Tanner (AWS), Jason Greaves (Global Payments Inc.), and Troy Leach (CSA).
The PCI DSS v4.x has some new requirements that go into effect March 31, 2025 and cloud service providers need to be aware and ready. Among the more
significant changes, the updated Appendix A1: Additional Requirements for Multi-Tenant Service Providers will require providers to demonstrate good
March FinCloud: AI in Financial Services for Defensive Security
Govindaraj Palanisamy, Enterprise Architect - Data, AI, and Innovation, Global Payments Inc.
The integration of Agentic AI and advanced machine learning (ML) in the financial services sector is redefining defensive security practices, enabling
organizations to strengthen their ability to respond to cyber threats and ensure regulatory compliance. Agentic AI, with its autonomous decision-maki
Building Resiliency: Strategies for Compliance and Operational Excellence
Christopher Steffen, Enterprise Management Associates; Alex Sharpe, Sharpe42; Rolf A. Becker, CSA Switzerland Chapter Co-Chair; Dr. Yonesy Núñez, DTCC
Resiliency is an increasingly important global business and compliance priority across different jurisdictions and business sectors, particularly financial
services and those considered to be critical infrastructure. This panel discussion will provide practical organizational and architectural guidance for lev
Mapping the Cloud Control Matrix (CCM) 4.0 to PCI DSS 4.0
Kerry Steele, Coalfire; Dan Stocker, Coalfire; Adam (Sully) Perella, Schellman; & Troy Leach CSA
Join us for an informative webinar as we delve into the recent release of the Cloud Control Matrix (CCM) version 4.0 by the Cloud Security Alliance (CSA) and
its mapping to the latest iteration of the Payment Card Industry Data Security Standard (PCI DSS) version 4.0. In this session, we will explore the intric
Bon Appetite: Determining Cyber Risk Appetite Pertinent to Cloud Computing
Matthew Tolbert, Senior Risk Specialist, Federal Reserve & Troy Leach, Chief Strategy Officer, Cloud Security Alliance
A well-defined cyber risk appetite is foundational to building any firm's information security program in alignment with a firm’s business objectives and
values. Yet guidance on what makes a cyber risk appetite effective--especially for firms that will significantly rely on cloud platforms--is arguably lacki
Securing Robotic Process Automation in Finance: Safe & Efficient Automation
Larry Whiteside Jr., Co-Founder and President, Cyversity and John DiMaria, CSA STAR Program Director
The finance industry is constantly evolving, driven by the need for increased operational efficiency, reduced costs, and improved accuracy. In this context,
Robotic Process Automation (RPA) has emerged as a transformative technology that enables organizations to automate repetitive and rule-based tas
ON2IT Zero Trust Implementation for Financial Institutions
John Kindervag, Senior Vice President of Cybersecurity Strategy, ON2IT and Erik Johnson Senior Research Analyst CSA
Join John Kindervag, Senior Vice President of Cybersecurity Strategy at ON2IT Group and esteemed Fellow and Founder of Zero Trust, as he delivers an
insightful webinar exclusively for the CSA Financial Services community. In this session, John will delve into the On2IT managed service Zero Trust imp
Empowering Cloud Security Professionals in Financial Services
Troy Leach, Cloud Security Alliance, John McDonald, Barclays and Jimmy Barber, Global Payments
As more of Financial Services migrates to cloud operations, managers must plan for ways to train up their technology workforce, supplement with industry
expertise where necessary and develop new strategies to adequately address a complex world of IT operations, security and regulated data. John Mc
CSP Perspective Working with Financial Services
John DiMaria, STAR Program Director, Cloud Security Alliance and Ronald Tse, Founder and CEO, Ribose
Cloud Service Providers (CSPs) are often the first line of defense regarding new technology. CSPs support various financial services companies, including
banks, insurance firms, asset managers, and investment funds. The role of a CSP is to provide the tools and infrastructure required to support these o
Best Practices for Effective Third-Party Management
Troy Leach, CSO, CSA; Brian Soby, CTO, AppOmni; Tom McAndrew, CEO, Coalfire; Vinay Patel, CISO, Finastra
Billions of financial transactions are routed digitally all over the world each day, requiring many third-party service providers to protect not only the
confidentiality and integrity of the information but also be able to clearly demonstrate to their cloud customers adherence to regulatory expectations.
Governance in the Cloud - Managing Data Regulation
John DiMaria, CSA; Claudia Rast, Butzel Long; and David Harris, Object Management Group (OMG)
Whether you noticed it or not, data governance is very much back on the agenda globally, from the European General Data Protection Regulation (GDPR), to
California's personal data and privacy law and everything in between. When doing business globally, the data chain of custody and associated respons
State of Cloud Security for Financial Services
Troy Leach, Chief Strategy Officer, CSA, John DiMaria, STAR Program Director, CSA, and Aly Farooqui, CRO, IBM Cloud
In this webinar, Cloud Security Alliance will discuss the growth of cloud services for banking, fintech, crypto exchanges and other organizations managing
financial data. Additionally, we’ll discuss CSA’s current efforts to work with industry on pilot programs and other projects to improve cloud migration, r