Join us for the ISACA Chicago Chapter Meeting - March 2025
Topic: Zero Trust in Cloud Environments & The Blueprint for AI Governance
Title: Zero Trust in Cloud Environments
As cloud adoption accelerates, traditional perimeter-based security models are no longer sufficient to protect dynamic cloud environments. Zero Trust Architecture (ZTA) has emerged as a critical security approach, emphasizing continuous verification, least privilege access, and microsegmentation to minimize attack surfaces.
In this session, our speaker will provide practical, hands-on strategies for implementing Zero Trust in AWS, and Google Cloud Platform (GCP) by securing identities, enforcing strict access controls, and automating security policies.
Attendees will gain insights into real-world cloud attack scenarios and how Zero Trust mitigates unauthorized access and lateral movement. The talk will also feature a live demo, showcasing how to configure Zero Trust IAM policies, network segmentation, and automated compliance enforcement using cloud-native security tools and open-source frameworks.
By the end of this session, attendees will have a clear roadmap for building a Zero Trust cloud security model tailored to their infrastructure.
Key takeaways include
- Implementing identity-centric security with AWS IAM, Azure AD Conditional Access, and GCP BeyondCorp, enforcing least privilege with service mesh (Istio, Consul) and security groups, and leveraging policy-as-code frameworks like Open Policy Agent (OPA) and HashiCorp Sentinel to automate Zero Trust policies.
- The session will focus on practical, actionable steps rather than theoretical concepts, ensuring attendees leave with real-world techniques to enhance their cloud security posture.
Advait is a highly accomplished Senior Site Reliability Engineer with over 8+ years of experience in cloud computing, site reliability engineering, and cloud security domains. Holding a Master’s degree in Computer Science specializing in Software Engineering and Cloud Computing from DePaul University, Chicago, Advait has consistently demonstrated expertise in building scalable, secure, and cost-efficient systems on major cloud platforms such as AWS and Google Cloud Platform.
Currently at Broadcom, Advait spearheads developing and maintaining a globally distributed SaaS-based metrics monitoring and analytics platform. He leverages cutting-edge technologies such as Kubernetes, Docker, Terraform, Ansible, and Python. Advait has led initiatives to improve vulnerability management, compliance frameworks, and disaster recovery, significantly reducing security risks and operational costs. Beyond his professional role, Advait actively contributes to the tech community. He is a Conference Chair for the IEEE Chicago Section. He serves as a technical reviewer for leading technical publications and academic conferences, such as IEEE Transactions on Cloud Computing, the ACM Symposium on Applied Computing, Manning, and Packt book publications. An advocate for knowledge sharing, he has authored thought-provoking articles on Cloud Computing, Cloud Security, and Containerization for platforms like HackerNoon, The New Stack, DevOps.com and Security Boulevard.
__________________________
[Second Session @4:00 PM]
Title: From Theory to Trust: The Blueprint for AI Governance
AI Governance isn’t one-size-fits-all. The right approach depends on the type of AI system, the regulations, and the data that powers it. Yet, organizations are drowning in frameworks—many of which are vague, offering principles but no clear path to execution.
This session cuts through the complexity. You’ll walk away with a decision-tree blueprint to scope AI governance controls tailored to your business. Instead of abstract guidance, you’ll get practical, executable steps to implement AI governance today.
We’ll break down key frameworks like NIST AI RMF, the EU AI Act, and ISO 42001—minus the fluff. Expect a live demo of a governance tool, take-home resources for scaling AI compliance, and thought-provoking insights (with a side of wit). AI isn’t slowing down, and your governance strategy can’t afford to either. Join us and start building an AI governance solution that works for your organization today.
Chelsea is a business professional and consultant specializing in Information Security, Business Process Analysis, Data Analytics, Governance, Risk, and Compliance. She is passionate about helping organizations navigate the intricate challenges of modern cybersecurity, risk management, and regulatory compliance.
As a licensed CC, CPA, and CISA, Chelsea is dedicated to delivering excellence in service through innovative solutions and personalized guidance. Her mission is to empower businesses with the tools and strategies they need to strengthen their security programs and achieve sustainable success.
Chelsea’s extensive experience spans multiple industries, where she has led HITRUST Assessments, advised on SOC Reports, and evaluated compliance with NIST CSF and 800-53 frameworks. This diverse background gives her a broad perspective, enabling her to develop tailored solutions that address each organization’s security and compliance needs.
Beyond her consulting work, Chelsea is deeply committed to education and knowledge-sharing. She firmly believes that fostering a secure environment begins with equipping others to identify and mitigate cybersecurity risks. At the University of Tennessee, she has taught courses on IT Governance, IT Audit, Risk Management, Data Analytics, and Cybersecurity for Business, empowering the next generation of professionals with essential skills and insights.
In her most recent endeavors, Chelsea has expanded her impact through Fractional CISO roles and strategic partnerships with leading AI governance tools. These initiatives position her at the forefront of emerging technologies, where she helps businesses implement robust controls to navigate the evolving landscape of AI and cybersecurity.
__________________________
2 CPE credits will be earned by participating in this webinar.
Note: ISACA Members are requested to register with the same email ID as that in your ISACA profile for direct CPE uploads.
Click on the Register Now button below to participate in this event.
________________________