Workshops‎ > ‎cs-ga-2011‎ > ‎

Johny Gasser

Orange Business Services


Mr. Johny Gasser is recognized as an international expert within three disciplines: in information security management as well in the related technologies, in risk management and in strategic alignment of IT to Business processes and needs.

His capacity to address concerns from Executives to IT administrators and thus acting as a link between Business and IT is really appreciated and brings a considerable added-value to our customers.

At Orange Business Services, he has developed the maturity assessments framework and related methodologies. This has become a key and successful of our consulting services.

Among his important professional experience, we can highlight accreditation preparation of an European Commission classified IT infrastructure, giving awareness training for the IT engineers of an European Commission service, information security and compliance officer for a global financial company, IT auditor and consultant of one of the big four audit firms, national and international investigations in the banking environment under mandate of Swiss Federal Banking Commission, reorganizing the IT security department of the national customs of an EMEA country, defining the IT strategy for an international banking group, implementing security controls for an international lottery game, etc.

As senior consultant, he is holding several certifications, such as CISM, CISSP, CGEIT and several other technical certifications.


European data protection and privacy regulations

The cultural differences between USA and Europe around data protection and privacy is reflected in the regulations. It means that it could become challenging to be compliant globally, as regulations are local. It could be also a blocking point for non-European companies trying to enter the European market.

Global companies, companies having subsidiaries in Europe, companies providing services to European companies must understand the European data protection and privacy concepts and identify the potential issues in their company and for the services that they provide to their European customers, business to business or business to consumer.

This session has the objectives to:

  • Present the concepts of data protection and privacy regulations in Europe 
  • Present the potential blocking points for non-European companies having business in Europe
  • Present the concerns expressed by European companies 
  • Present & discuss the potential solutions