Architecting Systems for Data Privacy & Security in the Cloud

Agenda:

• Tech Talk by the Speaker
• Tea/Coffee & Networking

In this talk, we will explore

1. Techniques for PII Data Protection in Software Systems
2. Decision Tree for using the appropriate technique for your use case
3. Use Case Discussion of a Global Company Dealing with PII Data
4. Architecture Implemented to address Data Privacy & Security Concerns

Abstract of the talk:
This DevDay talk is designed for Software Engineers, QAs, Architects, and Engineering Managers involved in handling Personally Identifiable Information (PII) & sensitive data during product development

Today, storing a person’s KYC information, credit card/debit card information, or other similar sensitive details to charge for services availed on a platform is commonplace. This entails storing & dealing with Personally Identifiable Information (PII) and sensitive financial information like Credit Card number, AADHAR, Pan Number. Hacking of such systems can expose businesses to risks like financial and reputation loss, legal liability, and loss of customer trust. Further regulations like GDPR, HIPAA have mandated all companies to comply with data privacy & security regulations.
This means that every Software Developer/Engineer should understand mechanisms to build data security & privacy in the platform while building software platforms.

This talk aims to sensitize Software Engineers to different types of PII Data Protection techniques namely Encryption and Tokenisation. It further highlights how these techniques compare against each other and their trade-offs.

The talk would also touch open a use case for a Global Company where handling PII data & being regulatory compliant was an important business concern.

The talk will also discuss the System architecture adopted to address the Data Privacy & security concerns for their platform deployed on a public cloud.

With this knowledge, Software Engineers would be better placed to choose the right PII Data Protection technique for their problem domains

About the Speaker:

Vidushi works as a Solution Consultant at Sahaj.ai Bengaluru. She has over 5 years of experience in software development, predominantly in the tech consultant industry. She has worked in different domains like Finance, Cosmetics, pharmaceuticals, and Automobile. She possesses expertise in various technologies, including Java, ReactJs, NodeJs, Kotlin, Serverless, etc making her a polyglot engineer. She is presently developing a solution to address PII data and regulatory compliance across various countries.

Priyadarshan works as a Solution Consultant at Sahaj.ai. He has 16 years of Software Engineering experience focussed on Tech Consulting and implementation and building strong technology teams. He has worked on Distributed systems, and traditional monolith platforms and built products on top of Eclipse Platform. He has diverse experience in Software Engineering - building tech platforms dealing with PII Data and requiring regulatory compliance, delivery management, customer relationship management, and presales. At Sahaj, he is learning the art of building technology platforms with extreme programming practice and working in high-trust and accountability technology teams. He is also helping Sahaj bootstrap its office in Hyderabad.