Jay Heiser is a VP analyst and the Chief of Research for the ITL Security and Risk Management team. Mr. Heiser's recent areas of research include cloud security, SaaS governance, and digital business risks. His most recent research examines the international implications of the public cloud computing business model.
Mr. Heiser's background includes several software product management roles involving encryption, secure messaging, antivirus and secure UNIX software. As a consultant, he has performed security assessments for major corporations, multinational internet service providers and the US Department of Defense, as well as writing information security policies for both UBS and Credit Suisse. Co-author of the book "Computer Forensics: Incident Response Fundamentals," he was a columnist for Information Security magazine for 10 years.
Associate Director, Group Information Security
International Network Services/Lucent Technologies
The Santa Cruz Operation
Cloud Computing (retired)
Security of the Cloud
M.B.A., International Management, Thunderbird School of Global Management (ASU), Glendale, Arizona
B.A., College of Wooster, Ohio (studied computer science, religion and German; awarded honors on senior thesis, a computer-assisted analysis of an ancient document)
Certified Information System Security Professional
1How to assess security and compliance risks of cloud computing
2Policy, process and product strategies to control public cloud risks
3How can we govern the use of SaaS?
4How can we ensure that IaaS is being applied securely?
5What should be in our cloud security strategy?