Evolution of Security Risk Assessment

Speakers: Sonia Dela Cruz and Shomo Sengupta

Thursday, March 15th, 2018, 6:30 PM

Event Summary

Don’t miss March’s special ISSA Puget Sound meeting. In addition to our monthly speaker, ISSA Chapter President Justin White will lead an analysis of the most recent news and discuss how cyber attackers continue to evolve during his monthly Garden Fresh presentation.

Join us for the after meeting soirée with food and drinks at the Islander Restaurant. Plan on bringing a friend!!! This is a great opportunity to network with your peers, introduce your friend and to meet new people: Address 2441 76th Ave SE, Mercer Island, WA 98040

Evolution of Security Risk Assessment

This talk will focus on the evolution of how Microsoft’s Application Security team modernized their approach to conducting risk assessments from a very reactive and manual selection process to a collaborative and continuous risk-based selection method and driving adoption & behaviors through scorecards/dashboards.

Sonia Dela Cruz has worked in the field of Security for the past 12 years. She previously worked as a contractor to a variety of Federal Agencies implementing Identity and Access Management Solutions and Security Control Evaluations. Prior to joining Microsoft, she ran the Information Security Policies and Programs group at a large financial institution. At Microsoft, she led the security development life assessment process for Line of Business applications and now manages the assessment process for a number of high-risk applications. She partners closely with compliance and privacy teams to manage security risk reduction across Microsoft’s Business Units.

Shomo Sengupta has been working in the Information Security and Risk Consulting fields specializing in Project Management, Business Continuity Management (BCM), IT Governance Risk & Compliance (GRC) and Controls/systems architecture. Shomo has technical education in Management Information Systems and his strong understanding of the business process and technology has allowed him to lead and deliver a wide range of engagements in different industries across various stages of their business lifecycles.


Chapter Meeting Time:
Thursday, March 15, 2018
6:30 pm – 8:30 pm

Community Center at Mercer Island
8236 SE 24th Street Mercer Island, WA 98040

Thanks to our Chapter Sponsors:

Diamond Level Sponsor:


Continuous Crowdsourced Security for Enterprises


Accelerate Security, Vulnerability Management, and Compliance

Gold Level Sponsor:


Focus On The Threats That Matter


Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

© 2024 Information Systems Security Association - Puget Sound