Webinar Recap – Ask Me Anything with Eric Yuan & Zoom Leadership: May 19

Security & Privacy

Webinar Recap - Ask Me Anything with Eric Yuan & Zoom Leadership: May 19

Hillary Ross

May 20, 20215 min read

In this month's 'Ask Me Anything' webinar hosted by Zoom CEO, Eric S. Yuan, we provided an update on our progress since our last executive session on April 21, 2021.

Eric was joined on the webinar by Lynn Haaland, Chief Compliance, Ethics & Privacy Officer, and Gary Sorrentino, Global Deputy Chief Information Officer, who moderated a fireside chat. The fireside chat included Stephen Ellis, Zoom's Government Solutions Lead, along with three CIO Advisors, Ted Brodheim, Bill Shickolovich, and Magnus Falk. Brendan Ittelson, Chief Technology Officer, joined us for the Q&A session.

If you missed this month's session, you can watch the recording here:

Recent recognitions, thought leadership, and events

1:27-6:31: Eric began the webinar by highlighting some recent acknowledgments, thought leadership opportunities, and events related to Zoom's privacy and security efforts:

Awards

• 2021 CSO50 Awards: Our 90-day plan has been shortlisted as a winner for the 2021 CSO50 awards, which recognize 50 organizations for security projects and initiatives that demonstrate outstanding business value and thought leadership.
• Cyber Defense Magazine's Global Infosec Awards: The launch of our end-to-end encryption offering secured our place as a winner in the 'Hot Company Encryption' category for Cyber Defense Magazine's Global Infosec Awards.

Publications and forums

• CISO Magazine: Our Chief Information Security Officer, Jason Lee, was featured on the cover of CISO Magazine. He spoke to the magazine about Zoom's efforts to continue building out our security teams.
• WSJ Risk & Compliance Forum: Lynn Haaland was recently featured in the Wall Street Journal after she spoke at the WSJ Risk & Compliance Forum about Zoom's efforts to formalize our risk and ethics functions last year.

Security events

• 2021 RSA Conference: Taking place May 17-20, the 2021 RSA Conference features four key members of our security team, who shared their expertise on a range of important topics:
  • As part of RSA's Public Sector Day, Tamika Puckett, Head of Cyber Risk Management, participated in a panel discussion about how organizations can recover and maintain resilience after a ransomware attack.
  • Brandon Evans, Senior Security Engineer, spoke about how organizations can use cloud audit logs provided by the big three cloud providers to detect compromised cloud infrastructure.
  • Adam Ruddermann, Head of Bug Bounty and Vulnerability Management, led a session on the process for building a bug bounty program from scratch.
  • Max Krohn, Head of Security Engineering, discussed how organizations can navigate the decisions they must make to roll out end-to-end encryption.

• SecurITy Week by German Mittelstand e.V.: The Germany SecurITy Week brings together companies and security experts to discuss IT trends, take a closer look at concepts and solutions, and help create safer working environments. In addition to hosting a workshop and participating in the 'Late Night Talks' series, our CIO Advisor Peter Sany spoke on a panel about threats to IT security.

New in-product privacy notifications

6:32-8:15: Lynn talked through new updates to our in-product privacy notifications, which were first mentioned on the last Ask Me Anything webinar. Building on the launch of our in-product privacy notifications last month, Zoom is adding more in-product notifications that will expand our efforts to give users more information and greater control over their privacy.

In addition to the notifications we rolled out last month, we are adding notice and consent for registration for events or meetings hosted on Zoom, as well as recordings and livestreamed meetings this coming weekend.

We are also adding user profile notifications, which remind users that if they are signed into Zoom, their profile information will be visible to the account owner and any hosts of meetings and webinars they join.

These notices are designed to help users make informed decisions about how they use Zoom without disrupting the Zoom experience you've come to know and love.

Fireside chat on industry-specific security and privacy

8:16-32:43: Gary kicked off the fireside chat, which featured Stephen, Ted, Bill, and Magnus speaking about the privacy and security landscape as it applies to the government, healthcare, financial services, and education sectors.

Each of the speakers addressed some of the important security and privacy features and certifications relevant to their respective industry, and how those components can overlap across sectors. For example, HIPAA compliance isn't just important for healthcare, it's vital for government and educational institutions as well.

Gary noted the importance of identifying these areas of overlap for customers - we need to make sure they're aware of the many cross-industry capabilities that are available to all Zoom users.

Q&A

32:43-43:24: For the Q&A session, the panel fielded relevant questions from the audience. From information on the new in-product privacy notifications to security training for the hybrid workforce to a live demonstration of our new Immersive View feature, the questions prompted a lively discussion from the entire panel.

Thank you!

Whether you attended this month's session live or watched after the fact, thank you for your interest in learning about our advances in security and privacy! We're continually evolving our efforts to help make the Zoom experience seamless, safe, and secure for every user.

To learn more about our latest security efforts, be sure to visit the Trust Center or Zoom's blog.

Don't forget to share this post