CSA Government Cyber Security Forum
12th October, 2016
SUNTEC CONVENTION CENTRE, SINGAPORE
The Cloud Security Alliance (CSA) will host its Inaugural CSA Government Cyber Security Forum as an event of interest under the Singapore International Cyber Week at Suntec Convention & Exhibition Centre in Singapore on October 12 2016.
Driven by the evolution of the cyber space landscape, there is a need to revisit to discuss on national's roadmap to cyber security. We have put together a line-up of speakers and panelists from government worldwide, who will provide perspectives on their country's national cloud computing/cyber security strategies, civilian and defense agency cloud security standards, and real-world implementation experiences with state-of-the-art cloud security architectures. This will be a full day event with the aim to bring information security professionals from civilian and defense agencies together to share experiences and lessons learned about best practices for securely implementing cloud computing to support agency missions.
This is an exclusive invitation-only forum.
12th October, 2016
SUNTEC CONVENTION CENTRE, SINGAPORE
The Cloud Security Alliance (CSA) will host its Inaugural CSA Government Cyber Security Forum as an event of interest under the Singapore International Cyber Week at Suntec Convention & Exhibition Centre in Singapore on October 12 2016.
Driven by the evolution of the cyber space landscape, there is a need to revisit to discuss on national's roadmap to cyber security. We have put together a line-up of speakers and panelists from government worldwide, who will provide perspectives on their country's national cloud computing/cyber security strategies, civilian and defense agency cloud security standards, and real-world implementation experiences with state-of-the-art cloud security architectures. This will be a full day event with the aim to bring information security professionals from civilian and defense agencies together to share experiences and lessons learned about best practices for securely implementing cloud computing to support agency missions.
This is an exclusive invitation-only forum.
Aloysius CheangExecutive Vice President of APAC, CSA
|
Aloysius Cheang is a cybersecurity enthusiast first and a senior business executive second. He has extensive experience in managing and delivering direct business values in strategic, complex multi-million dollar information technology (IT) program and business projects for Global 500 organizations worldwide. In his line of work, Aloysius has managed large multi-cultural, multi-disciplinary team spread across 5 continents and 4 major time zones, many a time building up the business from scratch.
Currently the Executive Vice President of Asia Pacific for the CSA, Aloysius is instrumental for the superlative expansion of CSA in Asia including China, Japan and Korea in East Asia to India in South Asia and Oceania countries in the Pacific, obtaining critical executive buy-in from both the private and public sectors. He is also influential in political and economic groups such as the ISO, INTERPOL, ITU-T, APCERP and ASEAN. In addition, he is responsible for the organization’s standardization efforts as the Chief Standards Officer. Prior to the CSA, Aloysius was the global Head of Security with one of the largest telecommunication company in the world and the Technology Practice Leader covering Asia and the Middle East for a leading management consulting firm. He holds B.Sc (Hons) and Masters in Computer Science from the National University of Singapore and is an adjunct professor with a couple of universities. |
Bryce BolandCTO (APAC), FireEye
|
As Chief Technology Officer for Asia Pacific at FireEye, Bryce plays an integral role in setting the company’s strategic direction in the region and aligning its future offerings with the needs of Asia Pacific organisations. He counsels governments, militaries, companies and corporate boards in their approach to address cyber security challenges.
Bryce’s passion for hacking technology began at age six soldering memory into his Sinclair ZX81. He has worked as an information security professional for over 17 years. Prior to joining FireEye, he was the Security CTO for UBS, responsible for security strategy and architecture, and driving security requirements into all technology development. He also built and ran UBS’s application security program, the security testing/penetration testing program, and the security consulting team. In previous roles at UBS he was responsible for IT risk management in the Asia Pacific region, the architecture of the security operations centre, and the architecture of the entitlements management systems. Prior to UBS, Bryce worked for ABN AMRO as a technology risk management consultant. Bryce has spoken at numerous conferences, and is regularly quoted in top media outlets such as Bloomberg, The Financial Times, Reuters and The Wall Street Journal. Bryce is a member of the Interpol Global Cybercrime Expert Group which advises Interpol about cyber policy and the implementation of cyber programs and operations. He has a master's degree in computer science with a thesis in cryptographic protocols. He has lived and worked in New Zealand, Australia, the U.K., Switzerland, and now Singapore. On Twitter, he is @BryceBoland. |
Maslina DaudSenior Vice President, Cyber Security Proactive Services at CyberSecurity Malaysia
|
Maslina Daud, a certified Information security professional is the Senior Vice President of the Cyber Security Proactive Services in CyberSecurity Malaysia and has had 14 years of experience in information security. Under her purview, she oversees the Cyber Security Proactive Services operations. She has also served National Security Council at the Prime Minister's department related to Critical National Information Infrastructure (CNII) sectors protection of the country. She is also actively involved in committees involving information security related standards development. In 2010, she was awarded Information Security Leadership Awards (ISLA) by ISC2; an international recognition for information security professional for Asia-Pacific.
|
Evan DumasHead, Emerging Technologies - APAC, Middle East & Africa, Check Point
|
Evan is a 16+ year veteran of startups & large enterprises where he has been involved in helping to launch & scale business through sales, business development, and services. At Check Point, Evan is part of a multi-cultural team using cutting edge technology to help Customers & Partners secure their business and enable growth through the prevention of Threats in the network, on endpoints, mobile devices and in the cloud.
Evan is responsible for Check Point's Emerging Technologies including Threat Prevention, Mobility, and Virtualization strategic products across APAC, Middle East & Africa as well as developing relationships in key accounts to Identify and solve customer problems. Evan is focused on ensuring customer satisfaction by collaborating with customers, parters, and internal resources. Throughout our region Evan advocates threat prevention, Mobile, and Virtualization best pratice to the market looking to ensure visibility and transparency of our solutions. |
Kowsik GurusamyCTO, Menlo Security
|
Kowsik Guruswamy is CTO of Menlo Security. Previously, he was co-founder and CTO at Mu Dynamics, which pioneered a new way to analyze networked products for security vulnerabilities. Prior to Mu, he was a distinguished engineer at Juniper Networks. Kowsik joined Juniper via the NetScreen/OneSecure acquisition where he designed and implemented the industry's first IPS. He has more than 15+ years of experience in diverse technologies like security, cloud, data visualization, and computer graphics. Kowsik has 18 issued patents and holds an MSCS from University of Louisiana.
|
Kang Meng ChowCo-founder and Co-chair, RAISE Forum
|
Dr. Meng-Chow Kang has been a practicing information security professional for more than 25 years of field experience spanning from technical to management in the various information security and risk management roles and organizations, including the Singapore government, major multi-nationals financial institutions, and global security and technology providers. Over the years, his experience includes a wide spectrum of information security domains, including policies development and study, awareness and competency training, security architecture design, development, and implementation, security testing, security products research and development, third-parties security management, joint-venture and business partnership security plan and implementation, incident investigation, security operations management, security standards development, ISO/IEC 27001 certification implementation and maintenance, and teaching the CISSP Common Body of Knowledge, and courses on information security management. Along with his practice, Dr. Kang has been conducting research on information security management. One of the outcomes was the publication of the book,"Responsive Security - Be ready to be secure", by CRC Press in Oct 2013.
|
Anil KarmelCo-chair, Cloud Security WG, NIST
|
Anil Karmel is the co-founder and CEO of C2 Labs, a company that partners with organizations on their journey, from designing and implementing IT Strategic Plans to allow IT to take back control leveraging our forward-leaning products and services to a deep specialization in Application Rationalization and Transformation (ART), leveraging Secure Development Operations (SecDevOps), cutting edge application architecture methodologies and a secure application container management platform in C2’s Intermodal Operations Navigator (ION). Formerly, Anil served as the National Nuclear Security Administration's (NNSA) Deputy Chief Technology Officer. Within NNSA, Karmel served as the RightPath Chief Architect and Management and Operations (M&O) Implementation Lead for a range of enterprise information technology (IT) solutions including cloud computing, enterprise mobility, unified communications and enterprise wireless.
Karmel has been in the IT Industry for over fifteen years, working with various Fortune 500 companies and government in the areas of cloud, cybersecurity and collaboration. He and his team garnered industry and government accolades, including the SANS National Cyber Security Innovators Award for Cloud Security, InformationWeek 500 Top Government IT Innovators, ACT/IAC Excellence.gov Award and the DOE Secretary's Achievement Award. His team at Los Alamos National Laboratory was named an ACT/IAC Excellence.gov Finalist two years running. Karmel is a internationally recognized speaker and has been featured at numerous IT conferences and webinars. Anil serves as the co-chair of the National Institute of Standards and Technology (NIST) Cloud Security Working Group, currently leading the security working group to document best practices for application container and microservices security as well as the security working group chartered to create the Risk Management Framework for Cloud Ecosystems (RMF4CE), a new 800-level standard to quantify risk in a cloud-connected enterprise He authored the NIST Definition of Application Containers and Microservices, SP 800-180 and co-chairs the Cloud Security Alliance’s (CSA) Application Container and Microservices Working Group documenting best practices for application containers and microservices. |
Keng LeeCOO, Tanosecure
|
Keng Lee is currently the COO of Tanosecure. He has been in e-government profession for over 20 years and has served as an Advisor for Taiwan-India collaboration, Government of Taiwan. He won Best E-Government Project award 2001 Taiwan and has worked on “Taiwan government smart accounting framework system”,world e-government association report, 2001. He holds Master of Computer Science from Utah State University.
|
Yale LiSecurity Advisor, Institute of Information Engineering, Chinese Academy of Sciences
Chairman, CSA Greater China Regional Coordinating Body |
Yale Li has been volunteering for the CSA since 2010. He is currently Chairman of CSA Greater China Region and its Security Coordinating Body. Previously, he served as the Chief Strategy Ambassador and Strategy Advisor for CSA Global, CISO Submit Program Committee Member for CSA APAC, Board Member & Research Director for CSA Seattle Chapter, and Lead/Member for several CSA Workgroups. He is one of the earliest CCSK credential holders. Yale is a global security thought leader in both industry and academia. With a focus on European governments and telecommunications companies, he has provided technical leadership at Huawei in China since late 2014 as the Chief Cyber Security Expert (VP Level) to cover cyber security evaluation, international CSO, cloud computing and CEO advisory roles. Prior to Huawei, he had been with Microsoft in US for 16 years as the Global Chief Security Architect and China CISO, and worked in areas such as Information Security, Cyber Security, Cloud Security, Windows R&D, and Internet Ops. He came to Microsoft from IBM in Canada where he was the Chief Technology Architect. Yale is currently Senior Fellow & Adjunct Professor at Xi’an Jiaotong University and Visiting Professor at Nanjing University of Telecommunications & Posts. He was also Ph.D. Supervisor at University of Washington, Honorary Professor at Peking University, and Visiting Scholar at Beihang University. He was the ICCSM Programme Chairman, RecordsInTheCloud.Org Collaborator, and advisor/speaker for several government agencies and labs such as US Nist and China CEPREI Certification Body. Yale had background in Physics as research assistant to CERN’s Nobel Prize and Rutherford Medal laureates. He has also authored several books and many articles.
|
Koji NakaoAdvisor, KDDI Corporation and Yokohama National University, Japan
Research Executive Director of Cybersecurity Research Center, Network Security Research Institute (NICT) |
Koji Nakao received the B.E. degree of Mathematics from Waseda University, in Japan, in 1979. Since joining KDDI in 1979, Koji has been engaged in the research on communication protocol, and information security technology for telecommunications in KDDI laboratory. After 2003, Koji has moved to KDDI head office to construct and manage its security systems. In 2004, he has started to additionally work for NICT (National Institute of Information and Communications Technology). In NICT, he has heavily involved in development of NICTER system from the beginning. His present positions are "advisor" for all the security issues required in KDDI and "Distinguished Researcher" to manage research activities for network security technologies in NICT.
Koji received the IPSJ Research Award in 1992, METI Ministry Award and KPMG Security Award in 2006, and Contribution Award (Japan ITU), NICT Research Award, Best Paper Award (JWIS) and MIC Bureau Award in 2007, the Commendation for Science and Technology award by the Minister of Education, Culture, Sports, Science and Technology (Prizes for Science and Technology: Research Category) in 2009, Lifetime Achievement Awards in ASIA-JCIS in 2012, Ministry Award (contributions for cyber security) from the Ministry of Internal Affairs and Communications in 2015. He is a member of IPJS and IEICE. Koji has also been a part-time instructor in Nagoya University and a guest professor of Yokohama National University. |
Alex NgGeneral Manager, Clear Manage
|
Alex is the founder of Clearmanage, a Singapore based company focused on providing Enterprise/Government with Managed Secure Cloud Service and Managed Advance Security solution. They have been providing highly secure and reliable cloud service to enterprises and government for more than 8 years and specialized in managed private and virtual private cloud, hybrid cloud, etc. Alex is one of the early adopter of cloud computing in Singapore and have a keen eye on cloud and security, and how they are intertwine and impact how user will choose one cloud over another. He led his team to be the first to achieve MTCS L3 and CSA STAR in Singapore and constantly renewing the security practice and cloud technology.
|
Jim ReavisCo-founder and Chief Executive Officer, CSA
|
For many years, Jim Reavis has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.
Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and serves on WWU’s alumni board. |
David SiahChairman, CSA Singapore Chapter
|
David Siah is actively involved in cyber-security activities in Singapore. He is a member of iDA’s Cyber Security Alliance as well as iDA’s working group on Cloud Outage Incidence Response. He is also a committee member on the Singapore Information Technology Federation’s Security and Governance Chapter and is the Country Manager of Trend Micro. In his capacity, he runs Trend Micro’s business operations in Singapore and is in charge of Trend Labs Singapore--responsible for malware analysis and response.
|
Adisak SrinakarinExecutive Vice President, Electronic Goverment Agency
|
Dr. Adisak Srinakarin is Executive Vice President of Electronic Government Agency (EGA). He presides and oversees the open-source development projects at EGA. With over 32 years of work experience, his work at EGA’s main include promoting and supporting e-Government development, providing various services such as ICT infrastructure, research and development, standardization of operational framework of e-Government, consultation and transfers of knowledge on e-Government so that the public sector's operations and services are in line with the national ICT development strategy.
He has done his Doctorate and Masters in Computer Science from Baton Rouge, Louisiana State University, USA. |
Andrie SyahrizaHead Of Bureau Information and Technology,
Ministry of State Secretariat of Republic of Indonesia |
Mr. Andrie Syahriza is the Head Of Bureau Information and Technology, Ministry of State Secretariat of Republic of Indonesia. Graduated from computer engineering and master of administration science for his formal education, he also attended several leadership and technical course for his non formal education in IT related for Government Sector. This includes speaking in many various event and lecturing in ICT in the Ministry Training Center.
Servicing Ministry of State Secretariat of Republic of Indonesia for over 20 years, he is responsible for strategic planning including National Policy and Cooperation inter institution and day to day tactical operation of Information Technology Bureau of the ministry. |
Thoo Wee MengHead of Innovation Initiative (APAC), Cloud Security Alliance
Head of Investments, Technology, Media and Telecom Sector, Leonie Hill Capital |
Wee Meng Thoo has held various business leadership positions in HP, Oracle, VMware, Ooredoo (formerly QTEL) and NEC in the ICT industry with 20 years of experiences across Asia Pacific and Middle East region. He currently runs an incubation firm working with private equity institutions engaging with Technology and non Technology firms in Tech Start up Business, Reinventing Business through Technology adoption, Restructuring Organization, Reach to Markets Globally and helping them realized their Exit Plan, be it Buyout or IPO. Prior to this, Wee Meng Thoo was serving as the Chief Commercial Officer in NEC-STEE Cloud Service, a joint venture company between NEC and Singapore Technologies. He was instrumental in building the company from scratch into a formidable Managed Cloud Services Provider in Asia. Wee Meng Thoo is also serving as the Senior Advisor to the Administration Commission for Software Park in Fujian Provincial Government in China since 2007, advising on IT export initiatives for Chinese Fujian based ICT Enterprises going Global.
|
Yum Shoen YihDeputy Director for Government Cybersecurity Consultancy in the Critical Information Infrastructure Division, Cyber Security Agency (CSA) of Singapore
|
Mr. Yum Shoen Yih is Deputy Director for Government Cybersecurity Consultancy in the Critical Information Infrastructure Division of the Cyber Security Agency (CSA) of Singapore. He is the ‘point man’ in CSA’s effort to “secure the Government networks and systems” to “Build a Resilient Infrastructure” as expounded in the Singapore Cybersecurity Strategy. Previously, he was responsible for the cybersecurity defence of Ministry of Defence (MINDEF) Headquarters (HQ). He applies the “Principles of War” in his security practices, which focused much on the THREATS-OF-CONCERN in order to manage the RISKS cost-effectively. In this way, the security posture is always keeping up with current, emerging and new threats EFFICIENTLY. His security practices enabled his organization to be resilient to achieve its national security missions.
Prior to his cybersecurity appointments, he served as a Naval Officer in the Republic of Singapore Navy (RSN), attaining a rank of Commander (equivalent to Lt Col) as well as Joint Comms & Info Systems Dept, of the Singapore Armed Forces (SAF). His naval service included more than 15 years of experience in managing multi-million-dollar projects ranging from building naval ships and combat systems to R&D projects in areas of cybersecurity and command & control, communications, computers and Intelligence (C4I), as part of the transformation of the RSN and SAF. |
Time |
Activity |
0830 -0900 |
Registration |
0900 - 0910 |
Welcome Address Aloysius Cheang Executive Vice President APAC, Cloud Security Alliance |
0910 - 0930 |
Opening Keynote: Cybersecurity Strategies for Singapore Enterprise Yum Shoen Yih Deputy Director for Government Cybersecurity Consultancy in the Critical Information Infrastructure Division, Cyber Security Agency (CSA) of Singapore |
0930 - 1000 |
Emerging Approaches in a Cloud-Connected Enterprise: Containers, Microservices and Cloud Security Anil Karmel Co-chair, Cloud Security WG, NIST, USA |
1000 - 1030 |
Morning Tea |
1030 - 1100 |
Searchable Encryption As a Service Yale Li Security Advisor, Institute of Information Engineering, Chinese Academy of Sciences Chairman, CSA Greater China Regional Coordinating Body |
1100 -1130 |
National Cybersecurity Strategy & Related Projects in Japan Koji Nakao Advisor, KDDI Corporation and Yokohama National University, Japan Executive Director, National Institute of Information and Communications Technology, Japan |
1130 - 1200 |
Accelerating Innovation Thoo Wee Meng Head of Innovation Initiative (APAC), Cloud Security Alliance Head of Investments, Technology, Media and Telecom Sector, Leonie Hill Capital |
1200 - 1300 |
Lunch |
1300 - 1330 |
Mobile Application Security and IT Vetting Keng Lee Chief Operating Officer, Tanosecure |
1330 - 1400 |
Cyber Threats - Insights from history and current operations in a public sector Kowsik Gurusamy Chief Technology Officer, Menlo Security |
1400 - 1430 |
Cloud, Cyber Security and Digital Government Transformation in Thailand Dr. Adisak Srinakarin Executive Vice President, EGA, Thailand |
1430 - 1500 |
Regional Asia Information Security Exchange (RAISE) Forum Dr. Kang Meng Chow Co-founder and co-chair, RAISE Forum |
1500 - 1530 |
Afternoon Tea |
1530 - 1600 |
Multi-Tier Cloud Security Standards : What does it mean for CSP and Cloud Users Alex Ng General Manager, Clearmanage |
1600 - 1630 |
Panel Discussion: Real World Perspectives on Government use of Cloud Services & Security Maslina Binti Daud, Vice President of Cyber Security Proactive Services Division, CSM, Malaysia Dr. Adisak Srinakarin, Executive Vice President, EGA, Thailand Andrie Syahriza, Chief of Bureau for Information & Technology, Ministry of State Secretariat of Republic of Indonesia Bryce Boland, Chief Technology Officer (APAC), FireEye Chair: David Siah, Chairman, CSA Singapore Chapter |
1630 - 1700 |
Centralizing Cloud Security in a Distributed World in a Public Sector Environment Evan Dumas Head, Emerging Technologies APAC, Middle East, & Africa, Checkpoint |
1700 - 1730 |
Thoughts on the future of Cybersecurity Jim Reavis Chief Executive Officer, Cloud Security Alliance |
Venue |
Suntec Singapore Convention & Exhibition Centre
MR 311, Level 3 1 Raffles Boulevard Suntec City, 039593 Singapore +65 63372888 |
| Anil Karmel - Emerging Approaches in a Cloud-Connected Enterprise- Containers, Microservices and Cloud Security |
| Thoo Wee Meng - Accelerating Innovation.pdf |
| Keng Lee - Mobile Application Security and IT Vetting.pdf |
| Alex Ng - Multi-tier Cloud Security Standard.pdf |
| Evan Dumas - Centralizing Cloud Security in a Multi-cloud World with Checkpoint.pdf |
| Jim Reavis - Thoughts on the future of Cybersecurity |
Presentation materials not here are not made available to the public.
For any enquiries, please contact csa-gcs-fo[email protected].
For any enquiries, please contact csa-gcs-fo[email protected].