Session
Automated Mapping for Security Compliance
There are several security standards, guidelines and controls from different agencies such as NIST, DISA, GDPR and OWASP. It becomes a daunting task to go through all the security guidelines and controls to meet compliance. Development teams, production owners and security groups often have to complete duplicate responses when demonstrating adherence to security compliance.
General security compliance for remote hosting services (HIPAA / ISO / SOC / NIST / HITRUST) that needs to be met and an overview of the compliance roadmap will be presented.
Since there is overlap in the guidelines from the various security agencies, mapping them to common tasks helps operational efficiency and effectively show compliance.
A machine learning approach will be demonstrated to show how the mapping can be made easier for the security controls from different agencies. A consistent mapping with less human errors and a tool to facilitate grouping of related controls for security practitioners will be presented.
This technique can be applied to different document corpuses and examples from HITRUST, ASVS, STIGs and NIST will be demonstrated.
Proven statistical methods with NLP and innovative ways to perform concept search, score, rank, boost, group, relate and map raw documents will also be presented.
Satish Swargam
Lead Security Architect
Overland Park, Kansas, United States
Links
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top