Join the ISACA Middle Tennessee Chapter for a presentation on Cloud (Microsoft 365 and Azure) Security Best Practice Assessment on Thursday, March 22, 2023 from 11:00AM - 12:30PM CST.
Event Summary:
If your company is like many organizations, you already have an investment in cloud services such as Microsoft 365 and Azure. Learn how to leverage CIS Benchmark standards to dramatically increase your security posture in the cloud. Find out what security and compliance solutions Microsoft bundles into license levels you already own and determine the right approach to remediate deficiencies in controls and license types.
Many organizations are simply not aware of all the functionality included in the different licensing SKUs for which they are already subscribed to. In typical Microsoft fashion, licensing in M365 is confusing. We will walk through common licensing options both at the Business & Enterprise levels. We will dig into the security and compliance functionality at the various license levels and talk through real world options to bring new security controls into the environment by choosing the right licenses for the organization.
We will walk through the methodology of a CIS Benchmark assessment utilizing the latest version. CIS does miss a few things though! I have another 10 best practice controls to add to the assessment. We will wrap up with a demonstration of the custom workplan documents I will provide all attendees.
If you have questions before the meeting, please send them to Programs Director, Aaron Smith (programs@isacanashville.org).
Speakers:
Don Baham
Don is a business-focused Chief Information Security Officer and Security Technologist with 20+ years of experience in enterprise technology, with over 10 of those years in information security. In his current role as Chief Information Security Officer at Germantown Technologies, Don oversees Information Security, Privacy, and IT Risk & Compliance, prioritizing investments that strengthen defenses, achieve compliance, increase cybersecurity maturity, and reduce risk.
Don earned a Bachelor of Science degree from Western Governors University and several industry certifications including EC-Council Certified Chief Information Security Officer (CCISO), ISC2 Certified Information Systems Security Professional (CISSP), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Data Privacy Solutions Engineer (CDPSE), as well as a handful of Microsoft and CompTIA certs. Don is also an accredited trainer with APMG International for the CISA Certification and CSX Fundamentals Certificate programs.
Don is actively involved in the information security community and currently serves on the board of the local ISACA and ISSA chapters.
Date/Time: Thursday, March 22, 2023 from 11:00AM - 12:30PM CST
Location/Delivery: The presentation will be in the Meeting Room at the John P. Holt Brentwood Public Library. The address is: 8109 Concord Rd, Brentwood, TN 37027. NOTE: This event is not a Brentwood Library program.
Lunch will be provided from 11:00AM - 11:30AM CST and the presentation will begin promptly at 11:30AM CST.
Prerequisites: None
Program Field of Study: Information Technology
Program Level: Basic/Beginner
CPE Credits & Field of Study: Up to 1 hour of credit will be issued.
The Middle Tennessee Chapter of ISACA is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.NASBARegistry.org.
past_events