SlideShare a Scribd company logo

E discovery 2-cloud_v5

Download as PPT, PDF
S
scm24
TechnologyBusiness
1 of 33
e-Discovery 2.0: In the Cloud Wednesday, November 16, 2011 9:45 AM - 10:45 AM Steven C. Markey, MSIS, PMP, CISSP, CIPP, CISM, CISA, STS-EV, CCSK Founder/Principal, nControl, LLC; Adjunct Professor; President, Cloud Security Alliance – Delaware Valley Chapter (CSA-DelVal)
• Presentation Overview – Technology • Case Study 1: IN the Cloud • Case Study 2: FROM the Cloud • e-Discovery Cloud Benefits • e-Discovery Cloud Concerns • e-Discovery Cloud Solutions – Process • Electronic Discovery Reference Model (EDRM) • Information Governance Reference Model (IGRM)
• Technology
• Case Study 1: IN the Cloud – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned
• Case Study 1: IN the Cloud (Continued) – Background • A Fortune 1000 Financial Services Firm – Investment Management (PA) – Life Insurance (CT) – Annuities (IN) • Legacy Project: 2005/2006 • In-House, Mature IT Team – Drivers • Efficiency/GUI Availability • Compliance • Cost
• Case Study 1: IN the Cloud (Continued) – Technologies • Email: In-House Exchange/IXOS – Recently Transitioned from GroupWise in CT • Discovery: Zantaz (SaaS) – Limitations • De-Centralized Back Office (IT, Compliance, HR) – No Formal Records & Info Mgmt (RIM) Function/Role • Lack of Enterprise Project Mgmt Office (PMO) • Lack of Discovery Specialists
• Case Study 1: IN the Cloud (Continued) – Risks • Data Loss – Tape Conversion – Large Result-Set Delivery » CD-ROMs via Snail Mail » Hourly Vendor Processing Fee • Vendor Management: Contractual/SLA Omissions • Search/Result-Set False Positives/Negatives • BCP/DR: Datacom • Poor Usability • Scope Creep
• Case Study 1: IN the Cloud (Continued) – Lessons Learned • Schedule/Effort Underestimated – Uploading Email on Tape to Zantaz » Transitioned Legacy GroupWise Data to Exchange • Not Enough On-Site Training – Compliance, HR Not Technical • Discovery Support Resource Limitations – Budget Was Not There • Testing Plans – Incident Response – BCP/DR
• Case Study 2: FROM the Cloud – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned – Next Steps
• Case Study 2: FROM the Cloud (Continued) – Background • Financial Services SMB – Capital Management (PA) • Recent Project: 2010 • IT: Managed Service Provider/Operations, Director – Drivers • Cost • Compliance – Technologies • Email: Exchange Server ‘07/Online/BPOS/Office 365 • Discovery: Symantec Enterprise Vault (EV) v8.0/v9.0
• Case Study 2: FROM the Cloud (Continued) – Limitations • Budget • Skill-Sets • Resources – Risks • Software/System Interoperability • Vendor Management: Contractual/SLA Omissions • BCP/DR: Datacom • Legacy Email Availability • Scope Creep
• Case Study 2: FROM the Cloud (Continued) – Lessons Learned • Limited Cost Savings – On-Site Exchange Box for Journaling – Upgrade to EV v9.0 to Support Exchange 2010 • Exchange Journaling From the Cloud, Complicated • Leverage Interim Solution for BlackBerry Services – Shutdown BlackBerry Enterprise Server (BES) – Leverage AstraSync (Exchange ActiveSync)
• Case Study 2: FROM the Cloud (Continued) – Next Steps • Upgrade to EV v10.0 – Incorporate Social Media • Test BCP/DR e-Discovery Functionality • BlackBerry Office 365/BES Express – Looking at BES Balance (“Data Boxing”) • Reviewing Cloud e-Discovery SaaS Solutions – Symantec Enterprise Vault.cloud – Microsoft EOA/EHA
• e-Discovery Cloud Benefits – Generic (Across SPI Stack) – SaaS Specific – PaaS Specific – IaaS Specific
• e-Discovery Cloud Benefits (Continued) – Generic (Across SPI Stack) • Cost – More Quantifiable Return on Investment (ROI)….? – Total Cost of Ownership (TCO) Savings » Operating Expense versus Capital Expense » Variable Expense versus Fixed Expense • Core Competency Focus – Vendor Has Skill-Set » Configuration Management » Tie-In 3rd Party Products – Legal/Litigation Support – Cross-Platform Support
• e-Discovery Cloud Benefits (Continued) – Generic (Across SPI Stack) • Core Competency Focus – Processing » Retention » Disposition – Compliance Best Practices – System Criticality » Vendor/Provider Configuration Management » BCP/DR • Supports Distributed Enterprises – Distributed Parties (Internal/External Counsel, Plaintiffs) – Satisfy Different Jurisdictional Requirements » e.g. AWS Zones
• e-Discovery Cloud Benefits (Continued) – SaaS Specific • “Turn-Key” – PaaS/IaaS Specific • Flexibility – Tie-In Best Practices » EDRM » IGRM » Generally Accepted Privacy Principles, GAPP » Generally Accepted Recordkeeping Principles, GARP • Control – Configuration Management
• e-Discovery Cloud Concerns – Generic (Across SPI Stack) – SaaS Specific – PaaS/IaaS Specific
• e-Discovery Cloud Concerns (Continued) – Generic (Across SPI Stack) • Cost – Data Transfer – Storage – Third Party Connectors/Extra License for Journaling • Loss of Additional Functionality/Scalability/Features – PST Collectors – Additional Archival Artifacts/System Integration » File Share(s) » Content Management System (CMS: SharePoint, Quickr) » Mobile/PC Social Media » Mobile/PC Instant Messaging (IM) » Mobile/VoIP PBX: Phone Calls, Voicemail (VM), SMS/Texts
• e-Discovery Cloud Concerns (Continued) – Generic (Across SPI Stack) • Vendor Management – Viability/Long Term Market Prospects – Portability/Interoperability (“Lock-In”) – Vendor’s Vendors • BCP/DR • IAM – Federated Identities for Services/Users? » SAML » OAuth » OpenID » WS-Trust
• e-Discovery Cloud Concerns (Continued) – Generic (Across SPI Stack) • Privacy/Compliance Jurisdiction • Usability (GUI) • RIM – Conversion Effort/Project/Task » Platforms: GroupWise/Lotus/Squirrel Mail/Exchange » Hard-Copy Files: Optical Character Recognition (OCR) • Compatibility – May Force Upgrade • Incident Response – Vendor’s CompSec Incident Response Team (CSIRT) » Criminal Investigations
• e-Discovery Cloud Concerns (Continued)
• e-Discovery Cloud Concerns (Continued) – SaaS Specific • AppSec • RIM – Classification – Retention – PaaS/IaaS Specific • Skill-Set • Control – Multi-Tenancy • Cost Effectiveness – Volume/Block-Level Storage
• e-Discovery Cloud Concerns (Continued) – PaaS/IaaS Specific • Justification – Deal With Software Vendor & Cloud Service Provider • Third-Party Products – Long-Term Strategy/Viability
• e-Discovery Cloud Solutions – SaaS – PaaS – IaaS
• e-Discovery Cloud Solutions – SaaS • Social Media-Centric – Arkovi – Archive-It – LiveOffice SocialArchive • Comprehensive – Zantaz – Proofpoint Enterprise Archive – Microsoft EOA – Symantec Enterprise Vault.cloud – EMC SourceOne – VARs/Resellers – Google Message Discovery (GMD)
• e-Discovery Cloud Solutions – SaaS (Continued) • Comprehensive – Sonian – Smarsh
• e-Discovery Cloud Solutions – PaaS • Various Platform Vendors – Build e-Discovery Modules Leveraging Existing Platform » Not Much of a Market/Business Model » Re-Create the Wheel – IaaS • Various Cloud Vendors – Build e-Discovery Solution on IaaS Instance » Leverage Existing Licensing » Analogous to Hosting
• Processes – EDRM – IGRM
• Questions? • Contact – Email: smarkey@ncontrol-llc.com – Twitter: markes1 – LI: http://www.linkedin.com/in/smarkey – CSA-DelVal: http://www.csadelval.org/

Recommended

Moving E Government to the Cloud
Moving E Government to the CloudMoving E Government to the Cloud
Moving E Government to the Cloud
WSO2
 
Extending The Value Of Oracle Crm On Demand Through Cloud Based Extensibility
Extending The Value Of Oracle Crm On Demand Through Cloud Based ExtensibilityExtending The Value Of Oracle Crm On Demand Through Cloud Based Extensibility
Extending The Value Of Oracle Crm On Demand Through Cloud Based Extensibility
Jerome Leonard
 
Six Steps to Private Cloud
Six Steps to Private CloudSix Steps to Private Cloud
Six Steps to Private Cloud
Logicalis Australia
 
Introduction to Java Cloud Service
Introduction to Java Cloud ServiceIntroduction to Java Cloud Service
Introduction to Java Cloud Service
Perficient, Inc.
 
The Age of Network Operations Management in Software Defined Data Centers
The Age of Network Operations Management in Software Defined Data CentersThe Age of Network Operations Management in Software Defined Data Centers
The Age of Network Operations Management in Software Defined Data Centers
Virtualization and Cloud Management Solutions
 
SAP Teched 2012 Session Tec3438 Automate IaaS SAP deployments
SAP Teched 2012 Session Tec3438 Automate IaaS SAP deploymentsSAP Teched 2012 Session Tec3438 Automate IaaS SAP deployments
SAP Teched 2012 Session Tec3438 Automate IaaS SAP deployments
Chris Kernaghan
 
Data-Centric and Message-Centric System Architecture
Data-Centric and Message-Centric System ArchitectureData-Centric and Message-Centric System Architecture
Data-Centric and Message-Centric System Architecture
Rick Warren
 
Migrating to Cloud - A Step by Step
Migrating to Cloud - A Step by Step Migrating to Cloud - A Step by Step
Migrating to Cloud - A Step by Step
Imaginea
 

Recommended

Moving E Government to the Cloud
Moving E Government to the CloudMoving E Government to the Cloud
Moving E Government to the Cloud
WSO2
 
Extending The Value Of Oracle Crm On Demand Through Cloud Based Extensibility
Extending The Value Of Oracle Crm On Demand Through Cloud Based ExtensibilityExtending The Value Of Oracle Crm On Demand Through Cloud Based Extensibility
Extending The Value Of Oracle Crm On Demand Through Cloud Based Extensibility
Jerome Leonard
 
Six Steps to Private Cloud
Six Steps to Private CloudSix Steps to Private Cloud
Six Steps to Private Cloud
Logicalis Australia
 
Introduction to Java Cloud Service
Introduction to Java Cloud ServiceIntroduction to Java Cloud Service
Introduction to Java Cloud Service
Perficient, Inc.
 
The Age of Network Operations Management in Software Defined Data Centers
The Age of Network Operations Management in Software Defined Data CentersThe Age of Network Operations Management in Software Defined Data Centers
The Age of Network Operations Management in Software Defined Data Centers
Virtualization and Cloud Management Solutions
 
SAP Teched 2012 Session Tec3438 Automate IaaS SAP deployments
SAP Teched 2012 Session Tec3438 Automate IaaS SAP deploymentsSAP Teched 2012 Session Tec3438 Automate IaaS SAP deployments
SAP Teched 2012 Session Tec3438 Automate IaaS SAP deployments
Chris Kernaghan
 
Data-Centric and Message-Centric System Architecture
Data-Centric and Message-Centric System ArchitectureData-Centric and Message-Centric System Architecture
Data-Centric and Message-Centric System Architecture
Rick Warren
 
Migrating to Cloud - A Step by Step
Migrating to Cloud - A Step by Step Migrating to Cloud - A Step by Step
Migrating to Cloud - A Step by Step
Imaginea
 
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
Amazon Web Services
 
The Website Resiliency Imperative
The Website Resiliency ImperativeThe Website Resiliency Imperative
The Website Resiliency Imperative
Distil Networks
 
Managing Performance in the Cloud
Managing Performance in the CloudManaging Performance in the Cloud
Managing Performance in the Cloud
DevOpsGroup
 
GTL RIM Offerings
GTL RIM OfferingsGTL RIM Offerings
GTL RIM Offerings
dheerajkureel
 
Agile Infrastructure Automation Presentation to Wall Street Technology Associ...
Agile Infrastructure Automation Presentation to Wall Street Technology Associ...Agile Infrastructure Automation Presentation to Wall Street Technology Associ...
Agile Infrastructure Automation Presentation to Wall Street Technology Associ...
Alex Henthorn-Iwane
 
Franco arteseros resume
Franco arteseros resumeFranco arteseros resume
Franco arteseros resume
Franco Arteseros
 
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
Amazon Web Services
 
7 steps to cloud onboarding
7 steps to cloud onboarding7 steps to cloud onboarding
7 steps to cloud onboarding
Interxion
 
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
WSO2
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
Alicja Sieminska
 
Oracle cloud computing strategy
Oracle cloud computing strategyOracle cloud computing strategy
Oracle cloud computing strategy
jameskenney
 
Accelerating and Protecting your Virtualize Environment
Accelerating and Protecting your Virtualize EnvironmentAccelerating and Protecting your Virtualize Environment
Accelerating and Protecting your Virtualize Environment
CTI Group
 
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
WSO2
 
Oracle Cloud Computing
Oracle Cloud ComputingOracle Cloud Computing
Oracle Cloud Computing
Freelance PR
 
Data Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtcData Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtc
DataTactics
 
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
Lucas Jellema
 
Oracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureOracle Cloud Reference Architecture
Oracle Cloud Reference Architecture
Bob Rhubart
 
Rightscale Webinar: Building Blocks for Private and Hybrid Clouds
Rightscale Webinar: Building Blocks for Private and Hybrid CloudsRightscale Webinar: Building Blocks for Private and Hybrid Clouds
Rightscale Webinar: Building Blocks for Private and Hybrid Clouds
RightScale
 
Oracle Public Cloud: Oracle Java Cloud Service, by Nino Guarnacci
Oracle Public Cloud: Oracle Java Cloud Service, by Nino GuarnacciOracle Public Cloud: Oracle Java Cloud Service, by Nino Guarnacci
Oracle Public Cloud: Oracle Java Cloud Service, by Nino Guarnacci
Codemotion
 
Oracle cloud strategy
Oracle cloud strategyOracle cloud strategy
Oracle cloud strategy
Agora Group
 
Cloud Computing - Is it the Future of ESI?
Cloud Computing - Is it the Future of ESI?Cloud Computing - Is it the Future of ESI?
Cloud Computing - Is it the Future of ESI?
trentlivingston
 
E Discovery Cloud
E Discovery CloudE Discovery Cloud
E Discovery Cloud
gjohansen
 

More Related Content

What's hot

(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
Amazon Web Services
 
The Website Resiliency Imperative
The Website Resiliency ImperativeThe Website Resiliency Imperative
The Website Resiliency Imperative
Distil Networks
 
Managing Performance in the Cloud
Managing Performance in the CloudManaging Performance in the Cloud
Managing Performance in the Cloud
DevOpsGroup
 
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
Amazon Web Services
 
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
WSO2
 
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
WSO2
 
Oracle Cloud Computing
Oracle Cloud ComputingOracle Cloud Computing
Oracle Cloud Computing
Freelance PR
 
Data Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtcData Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtc
DataTactics
 
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
Lucas Jellema
 
Rightscale Webinar: Building Blocks for Private and Hybrid Clouds
Rightscale Webinar: Building Blocks for Private and Hybrid CloudsRightscale Webinar: Building Blocks for Private and Hybrid Clouds
Rightscale Webinar: Building Blocks for Private and Hybrid Clouds
RightScale
 
Oracle cloud strategy
Oracle cloud strategyOracle cloud strategy
Oracle cloud strategy
Agora Group
 

What's hot (20)

(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
(ENT305) Develop an Enterprise-wide Cloud Adoption Strategy | AWS re:Invent 2014
 
The Website Resiliency Imperative
The Website Resiliency ImperativeThe Website Resiliency Imperative
The Website Resiliency Imperative
 
Managing Performance in the Cloud
Managing Performance in the CloudManaging Performance in the Cloud
Managing Performance in the Cloud
 
GTL RIM Offerings
GTL RIM OfferingsGTL RIM Offerings
GTL RIM Offerings
 
Agile Infrastructure Automation Presentation to Wall Street Technology Associ...
Agile Infrastructure Automation Presentation to Wall Street Technology Associ...Agile Infrastructure Automation Presentation to Wall Street Technology Associ...
Agile Infrastructure Automation Presentation to Wall Street Technology Associ...
 
Franco arteseros resume
Franco arteseros resumeFranco arteseros resume
Franco arteseros resume
 
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
(ENT202) Four Critical Things to Consider When Moving Your Core Business Appl...
 
7 steps to cloud onboarding
7 steps to cloud onboarding7 steps to cloud onboarding
7 steps to cloud onboarding
 
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
Roadmap to the Clouds - How to Easily Migrate to the Cloud Platform Using WSO...
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Oracle cloud computing strategy
Oracle cloud computing strategyOracle cloud computing strategy
Oracle cloud computing strategy
 
Accelerating and Protecting your Virtualize Environment
Accelerating and Protecting your Virtualize EnvironmentAccelerating and Protecting your Virtualize Environment
Accelerating and Protecting your Virtualize Environment
 
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
Achieve Cloud Scale by Implementing Elastic Load Balancing, Asset Deployment,...
 
Oracle Cloud Computing
Oracle Cloud ComputingOracle Cloud Computing
Oracle Cloud Computing
 
Data Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtcData Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtc
 
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
What is the Oracle PaaS Cloud for Developers (Oracle Cloud Day, The Netherlan...
 
Oracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureOracle Cloud Reference Architecture
Oracle Cloud Reference Architecture
 
Rightscale Webinar: Building Blocks for Private and Hybrid Clouds
Rightscale Webinar: Building Blocks for Private and Hybrid CloudsRightscale Webinar: Building Blocks for Private and Hybrid Clouds
Rightscale Webinar: Building Blocks for Private and Hybrid Clouds
 
Oracle Public Cloud: Oracle Java Cloud Service, by Nino Guarnacci
Oracle Public Cloud: Oracle Java Cloud Service, by Nino GuarnacciOracle Public Cloud: Oracle Java Cloud Service, by Nino Guarnacci
Oracle Public Cloud: Oracle Java Cloud Service, by Nino Guarnacci
 
Oracle cloud strategy
Oracle cloud strategyOracle cloud strategy
Oracle cloud strategy
 

Viewers also liked

E Discovery Cloud
E Discovery CloudE Discovery Cloud
E Discovery Cloud
gjohansen
 
Forecast 2014: eDiscovery and Forensics
Forecast 2014: eDiscovery and Forensics Forecast 2014: eDiscovery and Forensics
Forecast 2014: eDiscovery and Forensics
Open Data Center Alliance
 
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
Cengage Learning
 
Better together: Enterprise Vault.cloud and Microsoft Office 365
Better together: Enterprise Vault.cloud and Microsoft Office 365Better together: Enterprise Vault.cloud and Microsoft Office 365
Better together: Enterprise Vault.cloud and Microsoft Office 365
proutley
 

Viewers also liked (6)

Cloud Computing - Is it the Future of ESI?
Cloud Computing - Is it the Future of ESI?Cloud Computing - Is it the Future of ESI?
Cloud Computing - Is it the Future of ESI?
 
E Discovery Cloud
E Discovery CloudE Discovery Cloud
E Discovery Cloud
 
Forecast 2014: eDiscovery and Forensics
Forecast 2014: eDiscovery and Forensics Forecast 2014: eDiscovery and Forensics
Forecast 2014: eDiscovery and Forensics
 
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
 
Cloud Computing Legal Issues
Cloud Computing Legal IssuesCloud Computing Legal Issues
Cloud Computing Legal Issues
 
Better together: Enterprise Vault.cloud and Microsoft Office 365
Better together: Enterprise Vault.cloud and Microsoft Office 365Better together: Enterprise Vault.cloud and Microsoft Office 365
Better together: Enterprise Vault.cloud and Microsoft Office 365
 

Similar to E discovery 2-cloud_v5

e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5
Steve Markey
 
Cloud computing arma_nnj
Cloud computing arma_nnjCloud computing arma_nnj
Cloud computing arma_nnj
scm24
 
Cloud_Computing_IIMC_v1
Cloud_Computing_IIMC_v1Cloud_Computing_IIMC_v1
Cloud_Computing_IIMC_v1
Steve Markey
 
Integrating garp e_discovery
Integrating garp e_discoveryIntegrating garp e_discovery
Integrating garp e_discovery
scm24
 
Securing your esi_piedmont
Securing your esi_piedmontSecuring your esi_piedmont
Securing your esi_piedmont
scm24
 
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud ComputingDr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
ikanow
 
Securing_Native_Big_Data_v1
Securing_Native_Big_Data_v1Securing_Native_Big_Data_v1
Securing_Native_Big_Data_v1
Steve Markey
 
Security & Compliance in the Cloud [2019]
Security & Compliance in the Cloud [2019]Security & Compliance in the Cloud [2019]
Security & Compliance in the Cloud [2019]
Tudor Damian
 

Similar to E discovery 2-cloud_v5 (20)

e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5e-Discovery_2_Cloud_v5
e-Discovery_2_Cloud_v5
 
Cloud computing arma_nnj
Cloud computing arma_nnjCloud computing arma_nnj
Cloud computing arma_nnj
 
Rubik cloud risks-jun2012
Rubik cloud risks-jun2012Rubik cloud risks-jun2012
Rubik cloud risks-jun2012
 
Cloud_Computing_IIMC_v1
Cloud_Computing_IIMC_v1Cloud_Computing_IIMC_v1
Cloud_Computing_IIMC_v1
 
Integrating garp e_discovery
Integrating garp e_discoveryIntegrating garp e_discovery
Integrating garp e_discovery
 
Securing your esi_piedmont
Securing your esi_piedmontSecuring your esi_piedmont
Securing your esi_piedmont
 
CSCMP 2014: End to End SCM In The Cloud - Supply Chain Exchange II Track 13 -...
CSCMP 2014: End to End SCM In The Cloud - Supply Chain Exchange II Track 13 -...CSCMP 2014: End to End SCM In The Cloud - Supply Chain Exchange II Track 13 -...
CSCMP 2014: End to End SCM In The Cloud - Supply Chain Exchange II Track 13 -...
 
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud ComputingDr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
 
Winning Governance Strategies for the Technology Disruptions of our Time
Winning Governance Strategies for the Technology Disruptions of our TimeWinning Governance Strategies for the Technology Disruptions of our Time
Winning Governance Strategies for the Technology Disruptions of our Time
 
Securing_Native_Big_Data_v1
Securing_Native_Big_Data_v1Securing_Native_Big_Data_v1
Securing_Native_Big_Data_v1
 
Boot camp - Migration to AWS
Boot camp - Migration to AWSBoot camp - Migration to AWS
Boot camp - Migration to AWS
 
Azure reference architectures
Azure reference architecturesAzure reference architectures
Azure reference architectures
 
Peter Mell Cloud Standards 20090915
Peter Mell Cloud Standards 20090915Peter Mell Cloud Standards 20090915
Peter Mell Cloud Standards 20090915
 
Spatial Cloud Computing And Gis Web Version, Urisa October 2012
Spatial Cloud Computing And Gis Web Version, Urisa October 2012Spatial Cloud Computing And Gis Web Version, Urisa October 2012
Spatial Cloud Computing And Gis Web Version, Urisa October 2012
 
Big data and cloud
Big data and cloudBig data and cloud
Big data and cloud
 
Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...
Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...
Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...
 
Icinga Camp Bangalore - Enterprise exceptions
Icinga Camp Bangalore - Enterprise exceptions Icinga Camp Bangalore - Enterprise exceptions
Icinga Camp Bangalore - Enterprise exceptions
 
Security & Compliance in the Cloud [2019]
Security & Compliance in the Cloud [2019]Security & Compliance in the Cloud [2019]
Security & Compliance in the Cloud [2019]
 
Moving your IT to the Cloud with an Enterprise Cloud Strategy
Moving your IT to the Cloud with an Enterprise Cloud StrategyMoving your IT to the Cloud with an Enterprise Cloud Strategy
Moving your IT to the Cloud with an Enterprise Cloud Strategy
 
Today's Unified Communications: To upgrade, coexist, or go 'all in' with the ...
Today's Unified Communications: To upgrade, coexist, or go 'all in' with the ...Today's Unified Communications: To upgrade, coexist, or go 'all in' with the ...
Today's Unified Communications: To upgrade, coexist, or go 'all in' with the ...
 

Recently uploaded

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 

Recently uploaded (20)

Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
AI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by AnitarajAI in Action: Real World Use Cases by Anitaraj
AI in Action: Real World Use Cases by Anitaraj
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Introduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDMIntroduction to use of FHIR Documents in ABDM
Introduction to use of FHIR Documents in ABDM
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 

E discovery 2-cloud_v5

  • 1. e-Discovery 2.0: In the Cloud Wednesday, November 16, 2011 9:45 AM - 10:45 AM Steven C. Markey, MSIS, PMP, CISSP, CIPP, CISM, CISA, STS-EV, CCSK Founder/Principal, nControl, LLC; Adjunct Professor; President, Cloud Security Alliance – Delaware Valley Chapter (CSA-DelVal)
  • 2. • Presentation Overview – Technology • Case Study 1: IN the Cloud • Case Study 2: FROM the Cloud • e-Discovery Cloud Benefits • e-Discovery Cloud Concerns • e-Discovery Cloud Solutions – Process • Electronic Discovery Reference Model (EDRM) • Information Governance Reference Model (IGRM)
  • 4. • Case Study 1: IN the Cloud – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned
  • 5. • Case Study 1: IN the Cloud (Continued) – Background • A Fortune 1000 Financial Services Firm – Investment Management (PA) – Life Insurance (CT) – Annuities (IN) • Legacy Project: 2005/2006 • In-House, Mature IT Team – Drivers • Efficiency/GUI Availability • Compliance • Cost
  • 6. • Case Study 1: IN the Cloud (Continued) – Technologies • Email: In-House Exchange/IXOS – Recently Transitioned from GroupWise in CT • Discovery: Zantaz (SaaS) – Limitations • De-Centralized Back Office (IT, Compliance, HR) – No Formal Records & Info Mgmt (RIM) Function/Role • Lack of Enterprise Project Mgmt Office (PMO) • Lack of Discovery Specialists
  • 7. • Case Study 1: IN the Cloud (Continued) – Risks • Data Loss – Tape Conversion – Large Result-Set Delivery » CD-ROMs via Snail Mail » Hourly Vendor Processing Fee • Vendor Management: Contractual/SLA Omissions • Search/Result-Set False Positives/Negatives • BCP/DR: Datacom • Poor Usability • Scope Creep
  • 8. • Case Study 1: IN the Cloud (Continued) – Lessons Learned • Schedule/Effort Underestimated – Uploading Email on Tape to Zantaz » Transitioned Legacy GroupWise Data to Exchange • Not Enough On-Site Training – Compliance, HR Not Technical • Discovery Support Resource Limitations – Budget Was Not There • Testing Plans – Incident Response – BCP/DR
  • 9. • Case Study 2: FROM the Cloud – Background – Drivers – Technologies – Limitations – Risks – Lessons Learned – Next Steps
  • 10. • Case Study 2: FROM the Cloud (Continued) – Background • Financial Services SMB – Capital Management (PA) • Recent Project: 2010 • IT: Managed Service Provider/Operations, Director – Drivers • Cost • Compliance – Technologies • Email: Exchange Server ‘07/Online/BPOS/Office 365 • Discovery: Symantec Enterprise Vault (EV) v8.0/v9.0
  • 11. • Case Study 2: FROM the Cloud (Continued) – Limitations • Budget • Skill-Sets • Resources – Risks • Software/System Interoperability • Vendor Management: Contractual/SLA Omissions • BCP/DR: Datacom • Legacy Email Availability • Scope Creep
  • 12. • Case Study 2: FROM the Cloud (Continued) – Lessons Learned • Limited Cost Savings – On-Site Exchange Box for Journaling – Upgrade to EV v9.0 to Support Exchange 2010 • Exchange Journaling From the Cloud, Complicated • Leverage Interim Solution for BlackBerry Services – Shutdown BlackBerry Enterprise Server (BES) – Leverage AstraSync (Exchange ActiveSync)
  • 13. • Case Study 2: FROM the Cloud (Continued) – Next Steps • Upgrade to EV v10.0 – Incorporate Social Media • Test BCP/DR e-Discovery Functionality • BlackBerry Office 365/BES Express – Looking at BES Balance (“Data Boxing”) • Reviewing Cloud e-Discovery SaaS Solutions – Symantec Enterprise Vault.cloud – Microsoft EOA/EHA
  • 14. • e-Discovery Cloud Benefits – Generic (Across SPI Stack) – SaaS Specific – PaaS Specific – IaaS Specific
  • 15. • e-Discovery Cloud Benefits (Continued) – Generic (Across SPI Stack) • Cost – More Quantifiable Return on Investment (ROI)….? – Total Cost of Ownership (TCO) Savings » Operating Expense versus Capital Expense » Variable Expense versus Fixed Expense • Core Competency Focus – Vendor Has Skill-Set » Configuration Management » Tie-In 3rd Party Products – Legal/Litigation Support – Cross-Platform Support
  • 16. • e-Discovery Cloud Benefits (Continued) – Generic (Across SPI Stack) • Core Competency Focus – Processing » Retention » Disposition – Compliance Best Practices – System Criticality » Vendor/Provider Configuration Management » BCP/DR • Supports Distributed Enterprises – Distributed Parties (Internal/External Counsel, Plaintiffs) – Satisfy Different Jurisdictional Requirements » e.g. AWS Zones
  • 17. • e-Discovery Cloud Benefits (Continued) – SaaS Specific • “Turn-Key” – PaaS/IaaS Specific • Flexibility – Tie-In Best Practices » EDRM » IGRM » Generally Accepted Privacy Principles, GAPP » Generally Accepted Recordkeeping Principles, GARP • Control – Configuration Management
  • 18. • e-Discovery Cloud Concerns – Generic (Across SPI Stack) – SaaS Specific – PaaS/IaaS Specific
  • 19. • e-Discovery Cloud Concerns (Continued) – Generic (Across SPI Stack) • Cost – Data Transfer – Storage – Third Party Connectors/Extra License for Journaling • Loss of Additional Functionality/Scalability/Features – PST Collectors – Additional Archival Artifacts/System Integration » File Share(s) » Content Management System (CMS: SharePoint, Quickr) » Mobile/PC Social Media » Mobile/PC Instant Messaging (IM) » Mobile/VoIP PBX: Phone Calls, Voicemail (VM), SMS/Texts
  • 20. • e-Discovery Cloud Concerns (Continued) – Generic (Across SPI Stack) • Vendor Management – Viability/Long Term Market Prospects – Portability/Interoperability (“Lock-In”) – Vendor’s Vendors • BCP/DR • IAM – Federated Identities for Services/Users? » SAML » OAuth » OpenID » WS-Trust
  • 21. • e-Discovery Cloud Concerns (Continued) – Generic (Across SPI Stack) • Privacy/Compliance Jurisdiction • Usability (GUI) • RIM – Conversion Effort/Project/Task » Platforms: GroupWise/Lotus/Squirrel Mail/Exchange » Hard-Copy Files: Optical Character Recognition (OCR) • Compatibility – May Force Upgrade • Incident Response – Vendor’s CompSec Incident Response Team (CSIRT) » Criminal Investigations
  • 22. • e-Discovery Cloud Concerns (Continued)
  • 23.
  • 24. • e-Discovery Cloud Concerns (Continued) – SaaS Specific • AppSec • RIM – Classification – Retention – PaaS/IaaS Specific • Skill-Set • Control – Multi-Tenancy • Cost Effectiveness – Volume/Block-Level Storage
  • 25. • e-Discovery Cloud Concerns (Continued) – PaaS/IaaS Specific • Justification – Deal With Software Vendor & Cloud Service Provider • Third-Party Products – Long-Term Strategy/Viability
  • 26. • e-Discovery Cloud Solutions – SaaS – PaaS – IaaS
  • 27. • e-Discovery Cloud Solutions – SaaS • Social Media-Centric – Arkovi – Archive-It – LiveOffice SocialArchive • Comprehensive – Zantaz – Proofpoint Enterprise Archive – Microsoft EOA – Symantec Enterprise Vault.cloud – EMC SourceOne – VARs/Resellers – Google Message Discovery (GMD)
  • 28. • e-Discovery Cloud Solutions – SaaS (Continued) • Comprehensive – Sonian – Smarsh
  • 29. • e-Discovery Cloud Solutions – PaaS • Various Platform Vendors – Build e-Discovery Modules Leveraging Existing Platform » Not Much of a Market/Business Model » Re-Create the Wheel – IaaS • Various Cloud Vendors – Build e-Discovery Solution on IaaS Instance » Leverage Existing Licensing » Analogous to Hosting
  • 30. • Processes – EDRM – IGRM
  • 31.
  • 32.
  • 33. • Questions? • Contact – Email: smarkey@ncontrol-llc.com – Twitter: markes1 – LI: http://www.linkedin.com/in/smarkey – CSA-DelVal: http://www.csadelval.org/

Editor's Notes

  1. MS Exchange Online Connector (MEOC) Exchange 2007
  2. BES 4.0 for 2007 BES 5.0 for 2010
  3. BES v5.0.3 for Balancing