ECSO invites all stakeholders to join the upcoming webinar titled “Actions Beyond Words: Automating Audits for Streamlined Cybersecurity Compliance in Europe”, taking place on 23 April 2025, from 15:00 to 17:30 CEST.
ABOUT THE WEBINAR
The efforts and resources required to fulfil security compliance requirements today are overwhelming. Whether you are a private corporation striving to comply with national and foreign laws or your suppliers’ contractual clauses, a government agency monitoring your suppliers, or a supervisory authority overseeing market entities, the compliance process is demanding. Over time, processes, procedures, and teams have been established to manage these compliance tasks. However, organisations continue to struggle, and even those with substantial budgets and IT resources are faced with the scale and complexity involved.
The interplay of different policies and regulations and the need for products and systems to be compliant to different standards makes the task of conformity assessment even harder. Another challenging aspect is the management of the vulnerabilities and the potential impact on the compliance process during the lifecycle of products, services and systems.
But it doesn’t have to be this way. In the era of cloud-native software and AI, it is inconceivable to conduct audits using manual data inputs in dedicated software, spreadsheets, or, in the worst cases, tracing paper. Europe’s digital infrastructure, and its hundreds of thousands of organisations, cannot be secured in this manner.
WHAT IS OSCAL?
A standardised, data-centric framework that can be applied to an information system for documenting and assessing its security controls. An important goal of OSCAL is to transition from a text-based and manual approach (using word processors or spreadsheets) to a set of standardised, machine-readable formats.
AGENDA
- 15:00 – 15:10 – Beginning – Opening Remarks – ECSO
- 15:10 – 15:50 – Continuous Proactive Security with OSCAL: Going Beyond ‘Shift Left’ – Michaela Iorga, Supervisory Computer Engineer, Secure Systems and Applications Group, National Institute of Standards and Technology (NIST)
- 15:50 – 16:10 – Build with OSCAL: Use-cases for adoption and beyond – Fritz Kunstler, Principal Security Engineer, Amazon Web Services (AWS)
- 16:10 – 16:30 – OSCAL and European Cybersecurity Public Policy – Policy Analysis and Outreach Stream, ECSO
- 16:30 – 17:00 – Cobalt and DOSS: EU Projects Supporting Automated Compliance – Antonio Skarmeta, Full Professor, and Sara Nieves Matheu Garcia, Assistant Professor, University of Murcia
- 17:00 – 17:30 – Open Discussion – Moderated by ECSO
- 17:30 – 17:35 – Closing Remarks
WHY ATTEND?
- Gain Insights into the growing need for automated compliance solutions and how OSCAL can alleviate the burdens of manual auditing.
- Learn about the benefits of transitioning to machine-readable, data-centric frameworks for compliance.
- Understand the role of European stakeholders in adopting and further developing practices to streamline cybersecurity and compliance processes.
- Collaborate and strategise with industry leaders to define actionable steps that Europe can take to stay ahead in the cybersecurity space.
REGISTRATION
This webinar is open to all interested parties, and registration is required to attend.
