SaaS Security Certification (SOC2, ISO-270001 etc) Best Practices - online workshop
Wednesday 30 September 2020, 10:00am - 12:00pm
This workshop consists of three parts.
The first part explores different certifications (ISO27001/27701, SOC1/2/3 et al) and their importance/applicability to SaaS companies.
The second part goes into the details of certification requirements for SaaS companies, how to use them to attract new customers and grow your business.
Part three builds on top of the first two and takes a deep dive into how you can reduce, and in some cases avoid, certification costs and time taken to certify. We will discuss case studies to show how to reduce the scope of the certifications and use internal resources as much as possible. The last few minutes can be taken to answer the questions as well as run a quiz to test the grasp of the attendees.
Cost: Free
Limited to 20 attendees
Trainer: Krishna Pasumarthi
Trainer Bio:
Krishna Pasumarthi is an expert in Information Risk and Cyber security domains with more than 18 years of experience. Krishna is an MBA along with certifications like Certified in Risk and Information Systems Control (CRISC) and Certified Data Privacy Solutions Engineer (CDPSE) from ISACA. He has worked with clients across industries like technology (SaaS providers/ Data centre providers etc.), BFSI, FMCG, and transport.
His experience spans across multiple assurance areas including SoX 404, SSAE 18 (erstwhile SSAE 16 & SAS 70), ISAE 3402, ISAE 3000, ISO 27001, GDPR. He had been a trusted advisor for many SaaS (cloud-based) providers in the UK, US, India, and New Zealand for their assurance and security requirements.
He has helped many Small and Medium Enterprises (SMEs) through their journey in achieving required compliance, be it SOC1, SOC2, PCI DSS, ISO 27001, CPS 234 or others. He has also presented on Information Risk management and Cyber Security across many forums including the Institute of Internal Auditors, Waikato in New Zealand.