ControlCase CEO Speaks on Cloud Security at MasterCard Global Risk Leadership Conference

Discussed key points on how to keep sensitive information secure as organizations move to the cloud.

Berlin, Germany – October 2015

ControlCase, a leading global provider of Compliance as a Service (CaaS), Certifications, and IT Governance, Risk and Compliance (GRC) software, is a proud sponsor of the 2015 MasterCard Global Risk Leadership Conference, international events that invite payment industry leaders in the fraud and risk fields to collaborate on key safety and security issues impacting the industry. In this year’s pre-session in Berlin, Kishor Vaswani, CEO of ControlCase, spoke on the topic of PCI Compliance and cloud security.

In his presentation, Vaswani outlined the main advantages of moving to the cloud, including scalability and the ability to lower costs. According to Vaswani, both organizations and service providers have a responsibility to not only ensure information security but also to achieve and maintain compliance. He covered topics such as Segmentation in the Cloud, Intrusion Detection, Application Security and Firewalls in the Cloud. Key takeaways from the presentation include:

• Organizations’ responsibility to ensure their cloud providers are compliant as infrastructure providers, not just as merchants

• The need to ensure (through Report on Compliance) that all PCI requirements are covered in scope, with the exception of requirements 3, 4 and 6

• Segmentation on a cloud-computing infrastructure must provide an equivalent level of isolation as that achievable through physical network separation

“Security and compliance are equally important when it comes to the protection of sensitive data,” said Vaswani. “Compliance sets the minimum bar for security, but organizations should strive to exceed that minimum level in order to protect data appropriately. Through the use of smart technologies, ControlCase leverages the full depth of its security expertise from across the globe to provide a fully-hosted cloud solution for secure and simplified compliance with PCI DSS, HIPAA, ISO 27001/2 and other regulations and standards.”

For more information on ControlCase compliance products and services, please contact Kimberly Simon at ksimon@controlcase.com

About ControlCase
ControlCase is a global provider of Compliance as a Service (CaaS), Enterprise Software and Services. Our offerings enable clients to effectively manage their IT Governance, Risk Management and Compliance Management (IT GRCM or GRC) efforts.
Headquartered in the United States, with locations in North America, Europe, Asia Pacific and the Middle East, ControlCase focuses on providing and developing services, software products, hardware appliances and managed solutions that focus on compliance regulations and standards; including PCI DSS, SOC1, SOC2, SSAE16, PIPEDA, ISO 27001/2, FERC/NERC, Sarbanes Oxley (SOX), GLBA, HIPAA/HITRUST, CoBIT, BITS FISAP SIG/AUP and EI3PA.

For more information, please visit the company website at www.controlcase.com