Guest:

• Zeal Somani, Security Solutions Manager @ Google Cloud, former PCI QSA

Topics:

• What are the usable recipes for thinking about compliance in the cloud?
• What regulations are more challenging for public cloud users?
• How do you see the client/provider responsibility split for compliance?
• What is this "shift left" for compliance?
• How do we educate auditors and regulators who insist on 1980s solutions to 2020s problems?
• What are the most popular mistakes and blind spots with trying to be compliant in the cloud?

Resources:

• Whitepaper "Risk governance of digital transformation: guide for risk, compliance & audit teams"