Minimising information security risks across our multi-Cloud estate

Wednesday 2nd December 2020 – 10:00 (GMT)

Spending on cloud services is surging, as companies shift more applications online – via multiple cloud providers – to cope with extended lockdowns, social distancing and other restrictions. 

But, more cloud providers means more risk, with each provider bringing its own specific risks.  There’s no way around that.  Even the tools provided to minimize risk increases the complexity as the number of vetted providers increases.

In this short webinar, we discuss how organisations can minimize their security risks across their multi-Cloud estate; how and where the lines need to be drawn in the shared responsibility model, and how to take consistent and well-informed decisions about vendors and services that match your organisation’s risk profile.

Further, we’ll look at the challenge of Shadow IT in the Cloud.  Shadow IT had always been a challenge, but Shadow IT in the Cloud is far more risky, even if these apps and services are “getting business done”.  Security needs to be a business enabler, so should you lead the push-back against non-vetted Cloud apps and services?  And, if so, how?


10:00 – 10:05

Host's Welcome


10:05 – 10:30

Panel discussion

Minimising information security risks across our multi-Cloud estate

  • Shared responsibility model – is it our usage that brings the greatest risk? What strategies can we follow to avoid the chaos of undefined responsibilities between us and our providers?
  • “Shadow-IT” in the Cloud. Should we lead the push-back against non-vetted tools, apps and services?  If so, how?  If not, how will we ever know what’s happening in our environment?
  • What’s the best way of developing a consistent organisation view of cloud risks to make well-informed decisions about vendors and services?
  • Using a risk framework for measuring multi-cloud risk – how can we measure the risk appetite of our organisation?
  • Legal, compliance and data protection – How we are asked to protect data might not be how our users actually protect data.

Adrian Ahmed, Head of ICT & CISO, Ornua

Ross Spelman, Cloud Security Alliance Irish Chapter Lead & Director – Cyber Risk Services, EY

TBC, Check Point

10:30 – 10:45



TBC, Check Point




Adrian Ahmed
Adrian AhmedHead of ICT & CISO, Ornua
Read More
Adnan Ahmed is the Head of ICT and CISO for Ornua. Prior to joining Ornua, Adnan held senior technical leadership positions in companies such as Kerry Group, Version 1, PM Centrix and Storm technologies.
Ross Spelman
Ross SpelmanCloud Security Alliance Irish Chapter Lead, & Director - Cyber Risk Services, EY
Read More
Cyber Security Director - Strategic Information Technology and Cyber Security Leader with extensive experience in people, process and technology driven problem-solving across a variety of sectors. Excellent leadership experience within a variety of multinational organisations. Significant management and project experience consulting across a wide range of professional functions at all levels from senior management to executive level. With strong strategic, operation, resource and change management skills as well as a proven track record of managing both people and projects. Expertise in the areas of Cyber Security, Data Governance, Cloud Security and Managed Security Services.

Check Point

Check Point Software Technologies Ltd. (www.checkpoint.com ) is a leading provider of cyber security solutions to governments and corporate enterprises globally. Its solutions protect customers from 5th generation cyber-attacks with an industry leading catch rate of malware, ransomware and other types of attacks. Check Point offers multilevel security architecture, “Infinity” Total Protection with Gen V advanced threat prevention, which defends enterprises’ cloud, network and mobile device held information.