Date

Day 2 – 25

th

November 2015 (Wednesday)

Session

Session 5: ‘Cyberlaw, Security and Privacy’

Time

16:00-16:20

Format

Individual Presentation

Topic

Managing Security in a Mobile/Cloud Environment

Speaker

Mr. Dale Johnstone

Senior System Manager (IT Security & Risk Management), The Hospital

Authority

Dale has over 30 years experience in information security/CISO roles involving

information assurance, information security management, risk management, corporate

governance, compliance and in the delivery of strategic information and technology

security advice on major initiatives and projects. For over 20 years Dale has and

continues to be the involved in the development of international standards for

information security and is presently the Vice Convenor of ISO/IEC JTC1 SC27 Working

Group 1 responsible for the development of the ISO/IEC 27000 family of standards.

Topic Abstract

Mobile devices are fast arriving and handling greater levels of sensitive information on

a escalating scale. The agility and fast pace of the mobile environment places many

new challenges on organisations to protect the confidentiality and integrity of both their

data and the data of their customers. In a less agile environment the implementation

of security policies and procedures in a large enterprise is more stable and long lasting.

With the increasing number of technology components, diversity of IT platforms and

distributed array of data storage locations, some of which is moving to an environment

not directly controlled by an organisation or its IT staff, the ability to satisfactorily apply

security controls in a risk managed manner needs to similarly adopt. This presentation

will look at some of the challenges faced by a large organisation in protecting its

sensitive data as mobile platforms continue to proliferate, and the steps being

undertaken to overcome these challenges.