×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world



About Us Leadership Principles Testimonials

Solutions

Secure Your Organization


Secure Specific Platforms


U.S. State, Local, Tribal & Territorial Governments


View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities



CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

Secure Your Organization


Learn


Filter by Topic


View All Resources  
CIS Logo Show Search Expand Menu

Speeding SaaS Cybersecurity Policy to Implementation

March 3, 2021 | 1:00 pm EST

About this Webinar:

As enterprises rapidly adopt SaaS applications, blind spots have developed as traditional security policies, controls guidance, and tools don't provide the benchmarks or visibility IT and security teams need to protect them. While some have looked at cloud access security broker (CASB) solutions to fill the need, these solutions only broker the access based on the perimeter and don't provide a continuous, holistic approach into risk and compliance.

In this webinar, CIS will discuss the importance of SaaS security and the value provided by security guidelines like the CIS Benchmarks, consensus-developed secure configuration guidelines for hardening operating systems, servers, cloud environments, and more. Qualys will introduce SaaS Detection and Response (SaaSDR), which allows IT administrators to manage their critical SaaS security and validate policy against the CIS Benchmarks for Google Workspace, Microsoft Office 365, Salesforce.com, and Zoom.

What attendees will be learning:

CIS experts will cover:

  • Balancing trust and risk when using SaaS applications
  • Securing critical workflows within an expanding boundary of responsibility
  • Creating policy assurance with consensus-based security best practices
  • How automated monitoring brings policy to life

Qualys experts will demo how SaaSDR addresses:

  • User and device visibility
  • Data exposure monitoring
  • Application data insights for risk assessment
  • Continuous security posture & compliance monitoring

Speakers

Adam Montville
Chief Product Architect, Center for Internet Security (CIS)

Adam Montville is Chief Architect for Security Best Practices at CIS, where he helps lead a diverse team responsible for developing products and services supporting information security best practices and automation. Adam brings more than two decades of information security experience to his team, and actively participates in several standards organizations, including the Internet Engineering Task Force, OASIS, and the Center for Threat-Informed Defense. He also serves as a member of the Project Governing Board for the Open Cybersecurity Alliance. Adam began his career in the Information Security Laboratory of Oregon State University, his alma mater, working on cryptographic primitives and algorithms. He has held a variety of technical and executive-level IT and security positions in both the public and private sectors, including the Department of Defense.

Shailesh Athalye
VP of Product & Engineering, Compliance Solutions, Qualys Inc.

As a VP of Product & Engineering for Compliance solutions, Shailesh Athalye heads the product research, vision and engineering strategies for compliance products of Qualys including Policy Compliance, Configuration Management, File Integrity Monitoring, and SaaS Detection & Response. With over 17 years of experience in the fields of IT solutions, GRC and information security research, he is a driving force for creating innovative product capabilities to address risk, configuration and compliance management use cases. Before joining Qualys in 2012, Shailesh held senior-level positions focusing on security research for Symantec IRM and Compliance business units.