Notes from Monday's Call & Call for Volunteers
48 views
Skip to first unread message
Doug Barbin
Jan 14, 2011, 8:33:01 PM1/14/11
to CloudAudit
All,
Monday's call was short due to several, including Hoff travelling.
Attendees:
- Doug Barbin
- Yo Delmar
- Bill Nair
- Ray Kaplan
Main topic of discussion was the compliance paks. Our mandate is the
have the compliance paks updated for the CSA meeting at the RSA
conference on Monday February 14th.
So far we have volunteers for 3 of the 5 (current) standards in the
paks. However we need volunteers to take on the following:
- NIST 800-53
- HIPAA/HITRUST -
- Shared Assessments/BITS
- GAPP
For a detailed description of what is required see the Standards Wiki
- https://sites.google.com/a/cloudaudit.org/wiki/working-groups/standards.
In addition to the process steps I have also included links to the
working versions of the compliance paks within Google Docs.
The steps are fairly straight forward. Please e-mail me at
dba...@gmail.com if you would like to volunteer for a standard and I
will grant you write access to the work space for the respective
standard.
Otherwise, next call is Monday at 10am PST / 1pm EST. Same call
details as always.
Have a great weekend!
Best Regards,
Doug
Monday's call was short due to several, including Hoff travelling.
Attendees:
- Doug Barbin
- Yo Delmar
- Bill Nair
- Ray Kaplan
Main topic of discussion was the compliance paks. Our mandate is the
have the compliance paks updated for the CSA meeting at the RSA
conference on Monday February 14th.
So far we have volunteers for 3 of the 5 (current) standards in the
paks. However we need volunteers to take on the following:
- NIST 800-53
- HIPAA/HITRUST -
- Shared Assessments/BITS
- GAPP
For a detailed description of what is required see the Standards Wiki
- https://sites.google.com/a/cloudaudit.org/wiki/working-groups/standards.
In addition to the process steps I have also included links to the
working versions of the compliance paks within Google Docs.
The steps are fairly straight forward. Please e-mail me at
dba...@gmail.com if you would like to volunteer for a standard and I
will grant you write access to the work space for the respective
standard.
Otherwise, next call is Monday at 10am PST / 1pm EST. Same call
details as always.
Have a great weekend!
Best Regards,
Doug
Rizwan Ahmad (Ryu taichi)
Jan 15, 2011, 12:31:50 AM1/15/11
to cloud...@googlegroups.com
dear Barbin,
send me nist, currently I am doing review of nzism with nist 800-53
versace
Feb 6, 2011, 12:14:15 PM2/6/11
to CloudAudit
Doug -
I'm happy to do the work on the BITS Shared Assessment pack. Send me
a note at mver...@idc.com, and put a few cycles in next week. Hope
to see you at RSA.
Mike
On Jan 14, 8:33 pm, Doug Barbin <dbar...@gmail.com> wrote:
> All,
>
> Monday's call was short due to several, including Hoff travelling.
> Attendees:
> - Doug Barbin
> - Yo Delmar
> - Bill Nair
> - Ray Kaplan
>
> Main topic of discussion was the compliance paks. Our mandate is the
> have the compliance paks updated for the CSA meeting at the RSA
> conference on Monday February 14th.
>
> So far we have volunteers for 3 of the 5 (current) standards in the
> paks. However we need volunteers to take on the following:
> - NIST 800-53
> - HIPAA/HITRUST -
> - Shared Assessments/BITS
> - GAPP
>
> For a detailed description of what is required see the Standards Wiki
> -https://sites.google.com/a/cloudaudit.org/wiki/working-groups/standards.
I'm happy to do the work on the BITS Shared Assessment pack. Send me
a note at mver...@idc.com, and put a few cycles in next week. Hope
to see you at RSA.
Mike
On Jan 14, 8:33 pm, Doug Barbin <dbar...@gmail.com> wrote:
> All,
>
> Monday's call was short due to several, including Hoff travelling.
> Attendees:
> - Doug Barbin
> - Yo Delmar
> - Bill Nair
> - Ray Kaplan
>
> Main topic of discussion was the compliance paks. Our mandate is the
> have the compliance paks updated for the CSA meeting at the RSA
> conference on Monday February 14th.
>
> So far we have volunteers for 3 of the 5 (current) standards in the
> paks. However we need volunteers to take on the following:
> - NIST 800-53
> - HIPAA/HITRUST -
> - Shared Assessments/BITS
> - GAPP
>
> For a detailed description of what is required see the Standards Wiki
> In addition to the process steps I have also included links to the
> working versions of the compliance paks within Google Docs.
>
> The steps are fairly straight forward. Please e-mail me at
> dbar...@gmail.com if you would like to volunteer for a standard and I
> working versions of the compliance paks within Google Docs.
>
> The steps are fairly straight forward. Please e-mail me at
Rizwan Ahmad (Ryu taichi)
Feb 6, 2011, 7:21:44 PM2/6/11
to cloud...@googlegroups.com
send me NIST
Douglas Barbin
Feb 6, 2011, 7:45:03 PM2/6/11
to cloud...@googlegroups.com
Mike/Rizwan,
We're good thanks. All but one of the compliance paks are done. We had to have them done by now to do a final QC and convert to namespaces for release at the CSA meeting at RSA a week from tomorrow.
I'll send you both a copy later tonight if you want to help in the final review.
Best Regards,
Doug
Doug
Daniel Philpott
Feb 8, 2011, 8:34:32 AM2/8/11
to cloud...@googlegroups.com
I can help on NIST SP 800-53 as needed. Led the team on the last Cloud Control Matrix review of it.
Robert Beken
Feb 7, 2011, 2:09:25 PM2/7/11
to cloud...@googlegroups.com
Doug,
I'd like to be of assistance if possible as well.
Thanks,
Bob
I'd like to be of assistance if possible as well.
Thanks,
Bob
Eugene Luster
Feb 9, 2011, 10:22:17 AM2/9/11
to cloud...@googlegroups.com
Do you still need volunteers? If so , add my name please.--
v/r,
Eugene Luster
v/r,
Eugene Luster
Matthew Metheny
Feb 9, 2011, 12:19:31 PM2/9/11
to cloud...@googlegroups.com
Hi Doug,
I am available to support the QC effort and specifically the NIST
800-53 compliance pack.
Also, I would like to know if we can include on the next call the
possibility of addressing the roadmap for CloudAudit, and the
development of new compliance packs and updates/maintenance of
existing compliance packs.
Matthew Metheny, PMP, CISSP, CAP, CISA, CSSLP, CRISC, CCSK
I am available to support the QC effort and specifically the NIST
800-53 compliance pack.
Also, I would like to know if we can include on the next call the
possibility of addressing the roadmap for CloudAudit, and the
development of new compliance packs and updates/maintenance of
existing compliance packs.
Matthew Metheny, PMP, CISSP, CAP, CISA, CSSLP, CRISC, CCSK
Douglas Barbin
Feb 9, 2011, 1:10:55 PM2/9/11
to cloud...@googlegroups.com
Bob/Eugene,
Thank you. We're good for this round but will definitely reach out for the next revision.
Best Regards,
Doug
Doug
--
v/r,
Eugene Luster
Matt Metheny
Feb 9, 2011, 10:41:01 AM2/9/11
to cloud...@googlegroups.com
Hi Doug,
I am available to support the QC effort and specifically the NIST
800-53 compliance pack.
Also, I would like to know if we can include on the next call the
possibility of addressing the roadmap for CloudAudit, and the
development of new compliance packs and updates/maintenance of
existing compliance packs.
-Matt
Carlos Samaniego
Feb 10, 2011, 5:49:59 AM2/10/11
to cloud...@googlegroups.com, cloud...@googlegroups.com
Hi everyone, i am available to support the compliance, specifically ISO 27001.
Carlos Samaniego, CISSP, CISA, CISM
Enviado desde mi iPhone
James Blake
Feb 10, 2011, 2:45:31 PM2/10/11
to cloud...@googlegroups.com
Hi all
I'm also available to support any compliance efforts related to the ISO 27K standards.
Regards
James Blake
CISSP CISM CCSK ISO 27K Lead Auditor
Reply all
Reply to author
Forward
0 new messages