Cross post to this Meetup since we'll be talking about cloud computing (SaaS & IaaS) and security. The original meetup is available at the AWS Meetup page. http://www.meetup.com/AWS-UG-San-Diego
Our guest speaker is John Studarus John has been running the technical risk group for an international pharmaceutical. This includes performing risk assessments of the various cloud based SaaS providers. He is going to talk about security problems he’s run into using cloud based SaaS providers in the pharma space.
Check John out on LinkedIn, too.
Healthcare has always been a heavy regulated and compliance driven industry making it difficult for new technologies (such as cloud) to penetrate. Government regulations including Code of Federal Regulations Title 21 (CFR 21) and the Health Insurance Portability and Accountability Act (HIPAA) all have to be taken into account when migrating these functions into the cloud.
This session will present some of the pitfalls and stumbling blocks cloud based solutions run into when breaking into this regulated field. We'll be using eight years of experience conducing IT risk and security assessments in the pharmaceutical space to show what works and what trips up cloud (SaaS & PaaS) service providers when providing solutions in this space.
How do I scrub protected data from a cloud when a customer leaves? What requirements are there to segment customers from each other in a SaaS solution? What digital signature solutions can I use? Can I co-mingle customer’s data within backups? How much notice do I need to provide before changing software functionality? We'll answer these questions and others for you.
In town this August? Want to hear about the HIPAA hurdles from an expert? Come to hear, share and learn. Audience participation in the Q&A is always encouraged.