NREN cloud managers are invited to the second joint EUNIS-GÉANT Workshop
This two-hour online workshop will address how GDPR regulations (Schrems-2) change and impact cloud services delivery and security. The focus of the workshop will be on practical approaches, tools and policies to deal with legislative and security aspects concerning cloud service delivery.
Friday April 1 2022
10:00-12:00 CET
Preliminary programme
10.00 Welcome and opening
Bas Cordewener
10.05 Brief update on EUNIS & GEANT cloud groups collaborating
Denise Dittrich (EUNIS) and Maria Ristkok (GEANT)
10.10 “Getting to know each other” (break-out groups)
Exchange & discuss the main security issues concerning the cloud right now and steps taken concerning Schrems
Schrems-2
10.20 Schrems-2 Changing regulations, practical issues, possible approaches
Magdalena Rzaca (GÉANT GDPR & IPR legal advisor)
10.40 Schrems-2 Q&A, discussion and poll
Tools
10.50 Schrems Checklist
Garvan McFeeley (HEAnet, GÉANT Cloud Team)
11.05 Cloud security checklists for institutions
Slavko Gajin (University of Belgrade, GÉANT Cloud Team)
Cloud & Security Risk Assessment
11.15 Cloud & Security Risk assessments and management
Christian Fötinger (HS Augsburg, Germany)
11.25 GEANT data classification sheet for risk assessment
Slavko Gajin (University of Belgrade, GÉANT Cloud Team)
11:35 Example licensing Microsoft M365 risk assessment
Denise Dittrich (RWTH Aachen University, Germany)
11.45 Cloud & Security Risk, Q&A, discussion and poll
Have you done a risk assessment concerning a cloud service before?
11.55 Wrap-up and close
EUNIS is the European University Information Systems organization whose aim is to assist their members develop their IT landscape by sharing experiences and working together.