Security and Quality Kamlesh Bajaj CEO, DSCI May 23, 2009 NASSCOM Quality Summit Hyderabad

1. Security and Quality Kamlesh BajajCEO, DSCI May 23, 2009 NASSCOM Quality Summit Hyderabad

2. IT Services Management

3. IT Frameworks benefit both business and IT

4. Security and QA in SOX Compliance

5. QA and Security groups: synergize for Compliance

6. Triumph of Quality Management Frameworks

7. Framework for a Systematic, Comprehensive Approach to Information Security

8. DSCI- Data Protection Practices Security Market Research Legal Forums Academic Collaborations Data Protection Authorities Privacy Regulations Knowledge Collaboration Security Technology Trends EU Privacy Directives • DSCI- Best Practices • Data Security • Data Privacy Technology Forums UK- Data Protection Act 1998 Architecture Principles US- FTC directives, Patriot Act Solution Categories Canada- PIPEDA Legal & Regulatory Requirements Technology and Vendor interactions Product, solution trends Aus- Privacy Act 1988, APAC • Mapping to compliance regulations • Adoption of leading practices • Micro level & customized • Easy of implementation Technology advancement IT (Amendment) Act, 2008 Compliance Regulations Security Vendor Collaboration GLBA Vendor forums, interactions HIPAA Industry best practices PCI-DSS Security Management ISO 27001 Risk Management OCTAVE | COSO | FMEA IT Governance CoBIT Security Standards ITU-T X.1051 Security Practices NIST SP 800 Infrastructure Mgmt ITIL | ISO 20000

9. Best Practices: Data Security and Privacy

10. Thank You