4th Annual Rail Cyber Security Summit
avatar for Geir Arild Engh-Hellesvik

Geir Arild Engh-Hellesvik

NSB Rail
Information Security and Privacy Specialist.

Operational security, incident handling and related management processes. What are the critical assets, how are they vulnerable and how to deal with incidents.

Analysis of operational implications/consequences of strategy, laws and regulations - what must be done and the cost. Aligning strategy and goals of security with business.

Information Security Management (ISO27001 ISMS) and Compliance (Privacy, PCI DSS etc.) IT audits, compliance reviews, security audits and security analysis.

I spend a lot of time studying and talking about security and compliance in Cloud Computing. Answering how and what business processes, systems and information that can be put into the cloud securely.

I co-authored a paper on Cloud Computing, available from www.isaca.org. I also contributed to the CSA Cloud Security Guidance document available at www.cloudsecurityalliance.org/guidance

Twitter Feed