Get an iPad mini, ASUS ZenScreen LED Monitor, or $350 Off with OnDemand Training thru 5/19


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

SaaS Security: Balancing Security Risk Management and Business Enablement

  • Wednesday, May 05, 2021 at 3:00 PM EDT (2021-05-05 19:00:00 UTC)
  • Shawn Henry, Christine Ray, Adam Gavish


  • DoControl

You can now attend the webcast using your mobile device!



Enterprises continue to increase their use of SaaS applications across all corporate functions to scale and pivot quickly without large capital investments. The challenge that arises from increased SaaS utilization is now critical corporate data is outside your security perimeter, and relies upon the security measures of each SaaS application independently. Since employees use these applications to drive business enablement with vendors, partners, and customers, CISOs and IT teams are now tasked with controlling this unmanageable data access, which poses significant risk and increases the likelihood of a data breach.

So how do you gain visibility into each of these different SaaS applications, in terms of understanding all the internal users, external collaborators, assets, and data? Can you track which external users and domains have access to data in these platforms, or which data and files are still publicly available long after they were initially shared?

In todays ever-changing environment, Security / IT teams must balance their ability to create and enforce policies around data access without inhibiting business enablement nor creating tons of additional manual work for their teams.

Join this DoControl webcast, where Shawn Henry (president of CrowdStrike Services and chief security officer at CrowdStrike), Christine Ray (CISO at Unqork), and Adam Gavish (Co-founder and CEO at DoControl) will discuss the following:

  • What kinds of risks come with SaaS application adoption?
  • Why is just having visibility not enough?
  • Why is looping in employees a critical part of the story?
  • How do manual, labor-consuming security processes add even more risk?
  • How do you get buy-in from executives on SaaS Security?

Speaker Bios

Shawn Henry

Shawn Henry serves as president of CrowdStrike Services, leading a world-class team of cybersecurity professionals in investigating and mitigating targeted attacks on corporate and government networks globally. Under his leadership, CrowdStrike engages in significant proactive and incident response operations across every major commercial sector and critical infrastructure, protecting organizations’ and governments’ sensitive data and networks around the world. Henry’s work includes educating boards of directors and executives of key companies on critical proactive security measures, governance, and corporate readiness in the event of a breach. He also oversees all security aspects of global CrowdStrike facilities, personnel, executive protection, and corporate events.

Henry’s legendary commitment to “One team. One Fight.” resonates throughout the entire organization, unifying CrowdStrike’s rapidly growing and geographically dispersed workforce. He joined CrowdStrike in 2012 after retiring from the FBI, where he oversaw half of the FBI’s investigative operations, including all FBI criminal and cyber investigations worldwide, international operations, and the FBI’s critical incident response to major investigations and disasters. He also oversaw computer crime investigations spanning the globe and received the Presidential Rank Award for Meritorious Executive for his leadership in enhancing the FBI’s cyber capabilities. Henry lectures at leading universities and is a faculty member at the National Association of Corporate Directors. He serves as a keynote speaker at major cyber security conferences around the world and is regularly interviewed on cyber security issues by major broadcast, cable, online, and print media.

Christine Ray

Christine Ray is Chief Information Security Officer at Unqork, a SaaS disrupter in the insurance and banking industries. Christine is well versed on global privacy and data laws, and has spent 30 years working for IBM, Sun, Softbank and others across many industries. Her experience runs, as she says, from circuit boards to the boardroom. Christine is also an avid science geek, following everything from biomedicine to space flight to growing orchids in her greenhouse.

Adam Gavish

Adam Gavish is the Co-Founder and Chief Executive Officer of DoControl. Adam brings 15 years of experience in product management, software engineering, and network security.

Prior to founding DoControl, Adam was a Product Manager at Google Cloud, where he led ideation, execution, and strategy of Assured Workloads (GovCloud) customer experience serving Fortune 500 customers. Before Google, Adam was a Senior Technical Product Manager at Amazon, where he launched customer-obsessed products improving the payment experience for 300M customers globally. Before Amazon, Adam was a Software Engineer in two successfully acquired startups, eXelate for $200M, and Skyfence for $60M.

Adam holds a B.S. in Computer Science from the Academic College of Tel-Aviv Yafo and an MBA from the Johnson Graduate School of Management at Cornell University.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.