-
Summary
-
Speakers
-
Schedule
-
Contact Us
<
>
The Great Reset : New Challenges, New Opportunities & New Innovations
The COVID-19 pandemic created an instant demand for cloud-based solutions requiring the majority of organizations to accelerate their journey to the cloud. The CSA ASEAN Hybrid Summit will focus on educating stakeholders on the key issues and trends facing cloud and cybersecurity today. The event will deliver the education, tools and knowledge you need to make this easier, faster pivot to the cloud.
This hybrid event comprises an in-person segment on Day 1 (4 August), which will also be available virtually due to the limited capacity of the event venue in Bangkok. Day 2 (5 August) will be entirely virtual. Registration for the in-person segment will be on an invitation basis and managed by the CSA Thailand Chapter, whereas registration for the virtual event will be via the Brighttalk platform.
This two-days program co-organised by CSA APAC & CSA Thailand Chapter will provide insight and provide a perspective on critical strategic cloud and cybersecurity concerns. Join the leading experts with domain proficiency and expertise to discuss the key issues and trends facing cloud security and cybersecurity today at this Hybrid Summit on 4-5 August 2022.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csaaseansummit2022.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
This hybrid event comprises an in-person segment on Day 1 (4 August), which will also be available virtually due to the limited capacity of the event venue in Bangkok. Day 2 (5 August) will be entirely virtual. Registration for the in-person segment will be on an invitation basis and managed by the CSA Thailand Chapter, whereas registration for the virtual event will be via the Brighttalk platform.
This two-days program co-organised by CSA APAC & CSA Thailand Chapter will provide insight and provide a perspective on critical strategic cloud and cybersecurity concerns. Join the leading experts with domain proficiency and expertise to discuss the key issues and trends facing cloud security and cybersecurity today at this Hybrid Summit on 4-5 August 2022.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csaaseansummit2022.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
Co-organized by
Platinum Partner
Silver Partner
Speakers & Panelists
Dr. James ANGLE
Co-chair, Healthcare WG, CSA & Product Manager, IT Services – Information Security, Trinity Health
|
Dr. Angle has over 25 years of experience in multiple areas of IT culminating as the Deputy CIO for an army hospital. Additionally, he has over 20 years of information security experience in both government service and the private sector. Jim has a Doctorate in Business Administration with a specialization in Computer and Information Security. He also has the CISSP and SABSA SCF certifications.
He is currently working with Trinity Health where he has served as Regional Information Security Officer, Security Architect, Manager for Vulnerability Management, and is currently Product Manager for IT Services-Security. His areas of focus are: Governance, Risk, and Compliance, Medical Device Security, Cloud Computing in Healthcare & Information Security Architecture. |
Pui Yan CHAN
AI Ethicist & Data Scientist, Foundational Data & Analytics, Singapore IT Hub, MSD
|
Pui Yan is an AI ethicist and data scientist focusing on Responsible AI, Ethics and Governance. Her work involves evaluating AI risks and embedding ethical and responsible AI practices into governance processes as well as technical development. She was previously a researcher in life sciences and a co-founder of two start-ups.
Puiyan has a Bachelor’s in Chemical and Biomolecular Engineering from Cornell University and is a co-author of the Singapore Computer Society’s AI Ethics & Governance Body of Knowledge. She lives in Singapore with her family. |
Surachai CHATCHALERMPUN
Country Cyber Security & Privacy Officer, Huawei Technologies, Thailand
|
Surachai is an expert in Cybersecurity & Data Privacy and Risk Management. He is Country Cyber Security & Privacy Officer, Huawei Technologies (Thailand) Co., Ltd. He was CISO at Krungthai Bank, the largest state-owned enterprise in Thailand and was Regional Head of IT Security at Maybank taking care of 5 countries in Asia-Pacific.
He is certified with international Cybersecurity certifications such as EU-GDPR-CEPAS, CISSP, CDPSE, CISA, CISM, CSSLP, SSCP, CEH, ECSA, ISO27001, MIT, and Harvard executive certifications. |
Air Vice Marshal Amorn CHOMCHOEY
Deputy Secretary General, National Cyber Security Agency
|
Air Vice Marshal Amorn CHOMCHOEY is the Deputy Secretary General, National Cyber Security Agency, and Advisor to the National Security Council. His background is in Cybersecurity, Electronics Warfare, Tactical Data Link, Cyber workforce development, Cyber security plan and policy. He holds certifications such as CISSP, ISO 27001 Lead Auditor, CEH, CHFI, MCSE & Microsoft Certified Trainer.
|
Timothy GRANCE
Senior Advisor for Emerging Technology, NIST
|
Tim GRANCE is a senior computer scientist in the Information Technology Laboratory at the National Institute of Standards and Technology in Gaithersburg, MD. He has held a variety of positions at NIST including Group Manager, Systems & Network Security, and Program Manager for Cyber & Network Security. He has led a broad portfolio of projects including high profile projects such as the NIST Hash Competition, Cloud Computing, Security Content Automation Protocol (SCAP), Protocol Security (DNS, BGP, IPv6), Combinatorial Testing, and the National Vulnerability Database. He is presently a senior researcher advising on various projects in cloud computing, zero trust, trustworthy artificial intelligence and semiconductors.
He has extensive public and private experience in accounting, law enforcement, and computer security. He has written on diverse topics including cloud computing, incident handling, privacy, metrics, contingency planning, forensics, and identity management. He was named in 2003 to the Fed 100 by Federal Computer Week as one of the most influential people in Information Technology for the US Government. He is also a two-time recipient of the US Department of Commerce’s highest award—a Gold Medal, from the Secretary of Commerce. |
Sitthinut
HARUANPUACH Co-founder & CEO, Inspex Co Ltd
|
He is Co-Founder and CEO at Inspex Co Ltd. Before that, he was Cyber Security Manager at Secure D Global, and IT Security Compliance Engineer at NTT DATA - Thailand. He studied at the Faculty of ICT at Mahidol University and went to Kasetsart University Laboratory School.
|
Philip Cao HUNG
Advisor, CSA Vietnam Chapter
|
Philip MSCS, ZTX-I, CCISO, CISM, CCSP, CCSK, CASP, GICSP, PCNSE is a strategist, advisor, contributor, educator and motivator. He is also a cyber & Zero Trust evangelist. He has 20+ years of experience in the ICT/Cybersecurity industry in various sectors and positions. Philip is one of the few people certified by Forrester as Zero Trust Strategist (ZTX-I), the first Vietnamese, first Vietnamese featured on EC-Council Elite Members’ Wall for C|CISO, as an inspiration to others in the industry and community, fifth in ASEAN and first in Vietnam to achieve Certified Cloud Security Professional (CCSP) from (ISC)2, first person in Vietnam to achieve Certificate of Cloud Security Knowledge (CCSK) from Cloud Security Alliance (CSA).
Philip actively participates in global ICT/Cybersecurity associations such as (ISC)2, IEEE, ISACA, IAPP, ISA, IASA, and CSA and constantly drives Cybersecurity activities in Southeast Asia.. Heparticipates in Vietnam ICT/Cyber Security associations such as a member of Vietnam Information Security Association (VNISA) since 2008; Board of Advisors (2011) & a member in Board of Judges (2015, 2016, 2017) for ASEAN CIO/CSO Awards by IDG; Co-founder & advisor, CSA Vietnam Chapter; Co-founder & Vice President, (ISC)2 HCMC Chartering Chapter; Co-founder of #CISOClubVN; Board Advisor of CyberKid Vietnam. He was a keynote speaker at TEDxHUS and other top industry conferences; as well as Creator & Host at Ask Me Anything: CYBER. Philip graduated from EC-Council University with a degree of Master of Science in Cyber Security (MSCS) : Executive Leadership in Information Assurance, and held an Advanced Computer Security Certificate from Stanford University. He can be reached anytime at https://philipcao.com or https://linkedin.com/in/philipcao. |
Stephanie King-Chung HUNG
SVP Cloud Business, Mission Software and Services, Digital Systems, ST Engineering
|
Stephanie is an innovative and dynamic leader. She has over 30 years of working experience in technology sector at IBM, HP, Microsoft, start-ups and ST Engineering servicing clients from airlines and airports, banking and financial services institutions, to manufacturing and consumer packaged goods industry, defence, education, healthcare, government and critical infrastructure sectors accumulated many years industry knowledge in the business and IT transformation journey. She has been a business advisor in providing business and technology consultancy to companies and start-ups in striving for digital transformation, innovation, industrial internet, connectivity, and sustainability.
Stephanie leads the cloud business at ST Engineering, responsible for building the organization capabilities and providing cloud adoption and transformation services to our customers in the new digital 5.0 with the use of cloud & edge computing, analytics & AI and lean & agile approach. She joined ST Engineering (Electronics) in early 2018 to lead the Singapore Business driving strategic customer engagement and experience, develop organizational capabilities in design thinking, lean and agile methods to envision the future use of technology and co-create innovative ideas, and strengthen strategic alliances in the digitalization and business transformation. She is also the Chairperson for Women@STEngineering council committee. She was selected as SG 100 IT Women in 2020. She also championed cross-company MentorConnect Program in 2019-2021. She is a member of the CSA APAC Research Advisory Council. She is also a council member of the Chinese University of Hong Kong Vice-Chancellor’s Global Alumni Advisory Board (2021-2022). She served as a member of the Media Literacy Council (2016-2018) under the Ministry of Communications and Information, Singapore to develop public awareness and education on cyber wellness, and advise on trends and development pertaining to the internet and media. She was among the early batch of certified client executives that completed the IBM Cohort Client Executive Certification program at Harvard Business School. She led the Global Client Management Practice development in HP. She designed and conducted Insight Selling and Envisioning & Co-creation workshops at ST Engineering. She developed her passion for coaching and advocates as a coach for others in excelling in client relationship and business management. She holds a Master Degree in Business Administration with high honors from the University of Chicago Booth School of Business. She was with the Amy and Richard Wallman Scholar at the Chicago Booth School of Business. She holds a Bachelor Degree in Business Administration from the Chinese University of Hong Kong. She is fluent in both English and Chinese (Mandarin and Cantonese). |
Kittipong KEATNIYOMRUNG
Product Technical Manager, British Standard Institution, Thailand
|
Kittipong KEATNIYOMRUNG – Technical Product Manager, BSI (Thailand) Ltd. He completed his bachelor’s degree in engineering and master’s degree in f management. He hs been a lead auditor and trainer in Management System standard more than 20 years and a lead auditor and trainer in other management system standards; namely, ISO 9001-Quality Management System, ISO 14001- Environment Management System, ISO 45001-Occupational Health and Safety Management System, ISO 50001-Energy Management System, ISO 39001 – Road Traffic Safety Management System, ISO 22301- Business Continuity Management System, ISO/IEC 20000-1 – Service Management System, ISO/IEC 27001 – Information Security Management System, ISO/IEC 27701 – Privacy Information Management System, and CSA STAR Certificate.
|
Dr. Hing-Yan LEE
EVP, Government Affairs, CSA
|
Dr. Hing-Yan LEE is Executive Vice President (Government Affairs) at Cloud Security Alliance (CSA). He has 30+ years of ICT working experience in both the public and private sectors. He was previously Executive Vice President for APAC and global director of the CSA STAR program. Before that, he was Director of National Cloud Computing Office at the Infocomm Development Authority, where he was responsible for developing the cloud ecosystem, promoting cloud adoption by government agencies and private sector enterprises, and building a trusted environment (including developing Multi-Tier Cloud Security standards and Cloud Outage Incident Response guidelines).
He was Deputy Director of National Grid Office at Agency for Science, Technology & Research, Principal Scientist at the Institute for Infocomm Research, Director of Knowledge Lab and Deputy Director of Japan-Singapore Artificial Intelligence Centre and Deputy Director at Information Technology Institute (the applied R&D arm of National Computer Board). He supervised industry collaborations and applied R&D in machine language translation, spoken language dialogue, expert systems, knowledge discovery, data mining, data visualization, and other knowledge-driven efforts at the Kent Ridge Digital Labs. Hing-Yan is a Fellow of Singapore Computer Society. He graduated from University of Illinois at Urbana-Champaign with PhD and MS degrees in Computer Science. He studied Computing and Management Science at Imperial College. |
Laurence LIEW
Director, AI Innovation, AI Singapore
|
Laurence is Director for AI Innovation at AI Singapore and is driving the adoption of AI by the Singapore ecosystem through the 100 Experiments, AI Apprenticeship programmes and the various AI Makerspace initiatives. A visionary and serial technopreneur, Laurence identified and introduced Singapore's enterprises to Data Science with R in 2011, by building Revolution Analytics Inc business in Asia and R&D team in Singapore. Revolution Analytics was acquired by Microsoft in 2015. Cloud Computing in 2007, by architecting both the Cloud business and technology for then Singapore Computer Systems' Alatum Cloud (now owned by Singtel/NCS). Grid Computing in 2003, by building and operating Singapore's first Grid platform - IDA's National Grid Pilot Platform. High Performance Computing (HPC) Cluster in 2001, by building A-STAR’s IHPC first compute cluster (most of the initial HPC clusters in NUS, NTU, SMU were built by Laurence and his team). Linux and open source in 1999, by being the first RED HAT partner and authorized training center in Asia Pacific.
Laurence serves as a co-chair (designate) of Innovations and Commercialization working group, Global Partnership for AI (GPAI), an OECD initiative; Chair of “SME Adoption of AI” working group under Innovations and Commercialization Group, Global Partnership for AI (GPAI), an OECD initiative; Scientific Panel Committee, Ministry of National Development; ITE Board of Governors; Chairman, AI Standards Technical Committee, ITSC, EnterpriseSG; Council member for the following schools (IT/Computing): Singapore Polytechnic, Republic Polytechnic, and Nanyang Polytechnic. Over the years, he has served as Regional Director, Microsoft. Regional Directors act as industry advisory experts to the Microsoft leadership team. This is a 2-year pro-bono appointment by invitation only; Advisor, SGTECH AI+HPC Chapter; Technical Workgroup for IMDA National ICM Technology Roadmap - Track T4 (AI and Data, and Blockchain); Working Group Member, National Infocomm Media Masterplan 2025, Infocomm Development Authority of Singapore; Transactions on Computational Sciences, Springer Journal Editorial Board. Laurence graduated from National University of Singapore (NUS) with First Class Honors in Engineering and holds a Masters in Knowledge Engineering from NUS. |
Anthony LIM
Fellow, SUSS
|
Anthony is a pioneer in cyber-security and governance in Asia Pacific, with over 25 years’ professional experience, as a business leader, consultant, advocate, instructor and auditor. His current domains of interest include cloud security, smart cities/nation, application security, policy & audit, operational technology and risk management.
He is director for cyber managed services and project CISO at NCS, SingTel’s enterprise technology solutions provider, and has held inaugural senior regional business executive roles at CheckPoint, CA and IBM and a regional principal consultant at Fortinet. He was a member of the team which built the CCSP, ISC2’s internationally acclaimed cloud security professional certification, a joint production with CSA. He was also one of the first in APAC to take CSA’s CCAK (cloud auditor certification). Anthony is a university fellow and an adjunct instructor and module developer for several tertiary academic & professional institutions. He has presented and provided content at many government, business, industry and academic seminars, committees, executive roundtables, training and media (print, broadcast, internet) in APAC and the US. He is an ISO-27001 Lead Auditor, holds an MBA and is a life alumni member of the University of Illinois, Urbana-Champaign. |
Victor LO
Head of Cybersecurity, Malaysia Digital Economy Corporation
|
Victor LO is an experienced professional with more than 20 years of information security and risk consulting experience in both enterprise information security solutions and specializing in cyber threat intelligence framework.
Over the years, he has served businesses across countries such as India, Turkey, Thailand, Vietnam, Philippines, Indonesia, Malaysia, and Singapore. He has experience dealing with vertical industries primarily in the South East Asia market including Fortune 500 companies. Victor works at MDEC heading the cybersecurity industry development. His key role is driving cybersecurity as Catalyst for digital economy and promoting collaboration among cybersecurity industry partners and innovation for the cybersecurity ecosystem. Malaysia Digital Economy Corporation (MDEC) is a Malaysia government agency tasked to lead the digital economy development and implementation of the digital economy roadmap. |
Mel MIGRINO
VP & CISO Meralco, Chairman & President, Women in Security Alliance Philippines
|
Mel is Vice President and Group CISO of Meralco, the largest power distribution conglomerate in the Philippines and former Cyber Security Leader of a Big 4 auditing firm and the largest fintech in the Philippines. She is Chairman and President of the Women in Security Alliance Philippines (WiSAP) which focuses on empowering and inspiring women in security. Also, she is a member of the Executive Committee of the ASEAN Chief information Officer Association.
Prior to joining Meralco, she was Vice President for Information Security, Privacy and Enterprise Risk Management of a leading fintech company wherein she established the compliance program on data privacy and led the strategy for application and infrastructure security. She led the development of the Security Operations Center and spearheaded the Enterprise Risk Management Framework and initiatives. Also, she served as the Cyber Security Director of Deloitte Philippines where she led Technology Risk Management projects servicing clients within Southeast Asia. Further, she expanded the cyber security capability in the Philippines and increased the footprint of the firm in the local market by establishing strategic partnerships in the Philippines and within Asia Pacific. She has more than 15 years of combined experience in cyber and IT governance, business process review and automation, application and infrastructure security, Operational Technology Security, business continuity, privacy, IT audit, project management across multiple industries. |
OU Phannarith
Chair, CSA Cambodia Chapter
|
Mr. OU is Chairman of CSA Cambodia Chapter, research fellow at the Center for Inclusive Digital Economy, Asian Vision Institution (AVI), Professor at Royal University of Law and Economic (RULE) specializing in Cybersecurity and Senior Advisor to the Cambodia Digital Tech Association (CDTA). He is founder of the first cybersecurity awareness website (www.secudemy.com), ISAC-Cambodia (Cybersecurity), Cyber Studies Network (CSN), and founder of Cyber Youth Cambodia.
|
Dr. Chakan PRAMKAEW
CTO, National Digital Identity Company
|
Dr. Chakan PRAMKAEW is CTO, National Digital ID Co Ltd. His previous roles include Blockchain Architect. He is a prominent expert in Blockchain technology in Thailand.
He obtained his PhD in Computer Science from Mahidol University. He also studied at Kasetsart University where he received his Bachelor of Electrical Engineering and Master of Computer Engineering. |
Khadijah Abdul RAHMAN
Chair, CSA Malaysia Chapter
|
Khadijah has 19 years of working experience in the IT industry, where she focuses on cloud computing solutions and product development for the last 10 years. She leads the technical cloud product team, servicing local and international customers from various industries. In getting the public and private cloud infrastructure secured, she coordinates relevant security measures and compliance standards. She has obtained a Certificate of Cloud Security Knowledge (CCSK).
She has been continuously delivering technical seminars at a local public university and Technical and Vocational Education and Training (TVET) students since 2018 on Cloud Computing. She has been appointed an Industry Advisor at Politeknik Sultan Mizan Zainal Abidin for the 4th year. She holds a MSc in Computer Networking from the Universiti Teknologi Mara (UiTM) Malaysia, having her research dissertation work in Cloud Security complimented and published as a second author in an academic publication. The research paper won the Best Paper Award in PEOCO2019. She previously graduated from University Putra Malaysia, having obtained a Bachelor of Engineering in Computer and Communications. |
Narudom ROONGSIRIWONG
SVP, Head of Digital Architecture, Bank of Ayudhya PCL
|
Narudom ROONGSIRIWONG has been an information security professional for over twenty years with solid technical experience in architecture, data analytics, application development and cloud computing. Narudom has experience in running three security operation centers (SOC) and the last one operated with in-house AI and Machine Learning. He was a pioneer in setting up the Thailand banking sector CERT.
Narudom is active in the Cloud Security Alliance (CSA) as APAC Research Advisory Council Member and Co-Chair of the Hybrid Cloud Security Working Group. He also has a significant contribution to the OWASP Thailand Chapter. |
Kurt SEIFRIED
Chief Blockchain Officer, CSA
|
Kurt Seifried has been doing Information Security his entire adult life. Starting with Linux and Open Source in 1995, he has since embraced cloud computing, and Blockchain security. Kurt is also highly focused on the mapping and publication of vulnerabilities, weaknesses, incidents and other security data for software, hardware, service components, smart contracts and more. If you want to learn more, you can also listen to Kurt Seifried and Josh Bressers, hosts of the Open Source Security Podcast (300+ episodes as of 2022).
|
Dr. Sak SEGKHOODTHOD
Chair, CSA Thailand Chapter
|
Sak Segkhoonthod received a Ph.D. in Electronic System Engineering from Essex University in 1997. He then joined the National Electronic and Computer Technology Center as a researcher at the Network Technology Lab where he was responsible for projects such as the Information Super Highway Testbed and the Government Information Technology Services (GITS). At GITS, he was in charge of setting IT infrastructure for Government agencies such as the Government Information Network. Since 2011, He has been working at the Electronic Government Agency, an agency in charge of providing IT services such as GIN, the G-Cloud and other IT services to all government agencies.
|
Elinor TSEN
PhD student, University of Queensland Business School
|
Elinor TSEN is a PhD candidate at the University of Queensland Business School, Australia. Her interdisciplinary research focuses on cyber resilience and improving its adoption within organizations. She is supervised by Professor Ryan Ko and Associate Professor Sergeja Slapničar from the University of Queensland. Her research is supported by an Australian Government Research Training Program Scholarship.
|
Ryan TY
Chair, CSA Philippines Chapter
|
Ryan has been in the IT and Infosec industry for more than 16 years. He is currently the Chairman of Cloud Security Alliance (CSA) Philippines Chapter, a global non-profit organization focusing on research, best practices, and education on Cloud and Emerging Technologies.
He has previously worked with well renowned Cybersecurity companies such as Trend Micro and McAfee on both technical and managerial levels, and is currently the Country Manager of Qualys in the Philippines. He has also conducted training, consulting, and pentesting services to local and foreign companies. |
Dr. Nantawan WONGKACHONKITTI
Deputy Manager, Student Loan Funds
|
Dr. Nantawan Wongkachonkitti has more than 24 years of working experience in the IT and related industries. She began her career as Network Administrator, Programmer, Engineer, Manager, Director, and Chief of Information Security at the United State of America Agency for International Development (USAID). After moving back to Thailand in 2010, she began her career with Thailand Digital Government Development Agency as Director of Engineering and Operations Department and Innovation Department. When a new opportunity arose at Thailand Student Loan Fund in 2016, she joined the agency as its Deputy Manager and CIO.
|
Jason Tamara WIDJAJA
Director, Artificial Intelligence & Responsible AI Lead, Singapore IT Hub, MSD
|
Jason believes in working towards a better world through data and AI. A multidisciplinary technology leader, Jason has the dual responsibilities of leading a large and diverse data science team in MSD’s technology hub in Singapore and driving business outcomes through AI globally. His AI responsibilities include developing computer vision capabilities, embedding responsible AI into the enterprise and nurturing partnerships with the global data science community.
A recognized thought leader, Jason has spoken in major international conferences and has been featured in the Business Times, TODAY and the Sydney Morning Herald. He actively contributes to multiple national initiatives including Singapore’s skills framework for data and AI careers, Singapore’s AI Governance Framework, and is an author of Singapore’s AI Ethics Body of Knowledge. Jason spent half his career in Australia before relocating back to Singapore in 2016. Since then, he has been active in the local start-up ecosystem, as a co-founder of Lauretta.io with his brother Galvin, and a mentor to AI startups in partnership with local venture capital firms in Singapore. Jason was on the Melbourne Business School Dean’s List for his MBA in 2010 and graduated from the same university with a second master’s in Business Analytics in 2015. He also holds a bachelor’s degree in Computing from the National University of Singapore and first-class honors in Business Information Systems and Human Resources Management from Middlesex University. In his free time, Jason enjoys reading, PC gaming and giving back by advocating for ethical AI and diversity in tech. Online, Jason writes on Medium and Quora, where he is a top writer with over 1,000 answers in Data Science, Analytics and AI. |
WONG Onn Chee
CSA Fellow, Co-chair, CSA APAC Research Advisory Council
|
Onn Chee is currently working as the Managing Director in Infotect Security, the Chief Technology Officer of Resolvo Systems and Technical Director of Rajah & Tann Technologies. His areas of expertise include information leakage protection, web/cloud security and security strategy. Onn Chee is also one of the co-inventors for at least six international PCT patent rights (http://www.wipo.int), besides several US, EU and Singapore patents.
He had published his works in the area of information leakage protection and application of evidence laws when designing IT systems in the ISSA Journal (Information Systems Security Association). Similarly, he had been a contributor to the Center of Internet Security (CIS) security benchmarks. Onn Chee is the current Singapore chapter lead of Open Web Application Security Project (OWASP) (http://www.owasp.org/) and the main organiser of the Security Meetup Group in Singapore. In addition, he is the Cloud Security Working Group Chair of Security & Privacy Standards Technical Committee under IT Standards Committee in Singapore and had led the Singapore national delegation to ISO/IEC JTC 1/SC 27 meetings. He is one of the contributors to Singapore first Technical Reference on public computing services (TR 31:2012) and is a member of the working group which developed Singapore's first national cloud security standard (SS 584:2013). Onn Chee is also part of the national team that developed Singapore’s first Technical References on Internet-of-Things (IoT), such as Technical Reference for IoT security for smart nation (TR 64:2018), sensor network for smart nation (public areas) (TR 38:2014) and for sensor networks for Smart Nation (homes) (TR 40:2015). Onn Chee is also a member of the Singapore's Artificial Intelligence Technical Committee. |
Faisal YAHYA
Chair, CSA Indonesia Chapter
|
Faisal is a Cybersecurity Strategist with over 20 years of experience combined as CIO executive and CISO played an integral role in spearheading Information Security strategy roadmap which interfacing core business functions and technology teams — establishing and presenting cybersecurity strategic vision using technical skills to generate confidence with business stakeholders and company leadership.
As a speaker, instructor, and mentor, he has lectured on various Cybersecurity topics serving as an Official Instructor for EC-Council and Authorized Instructor for CSA CCSK. Faisal advocates for better cyber safety practices and defining improved Cybersecurity space in the South East Asian IT communities, actively researching and speaking on my passion - applying the latest technology securely and efficiently. He is always interested in connecting with business owners looking to take ownership of the risk within their Cybersecurity efforts, students interested in expanding their mastery of Cybersecurity, and Cybersecurity communities building in the Information Security space. Please feel free to reach out and connect. |
Dr. Han YU
Assistant Professor, Nanyang Technological University
|
Dr Han YU is a Nanyang Assistant Professor in the School of Computer Science and Engineering, Nanyang Technological University (NTU), Singapore. Between 2015 and 2018, he held the prestigious Lee Kuan Yew Post-Doctoral Fellowship at the Joint NTU-UBC Research Centre of Excellence in Active Living for the Elderly . Before joining NTU, he worked as an Embedded Software Engineer at Hewlett-Packard Pte Ltd, Singapore. He obtained his PhD from the School of Computer Science and Engineering, NTU in 2014. During his PhD study, he held the prestigious Singapore Millennium Foundation PhD Scholarship. His research focuses on online convex optimization, ethical AI, federated machine learning and their applications in complex collaborative systems such as crowdsourcing.
He has published over 150 research papers in book chapters, leading international conferences and journals. He co-authored the book "Federated Learning" - the first monograph on the topic of federated learning. His research work has been recognized with 25 awards from conferences and journals. He is a founding Co-PI of the Trustworthy Federated Ubiquitous Learning (TrustFUL) Research Lab (https://trustful.federated-learning.org/). |
YUM Shoen Yih
Director, Cybersecurity Programme Center, Cyber Security Agency, Singapore
|
Yum Shoen Yih is Director of the Cyber Security Programme Centre at the Cyber Security Agency of Singapore. He is responsible for securing classified government networks and systems and for implementing security programmes to enable a resilient nation and safer cyberspace. As a former naval officer, he has defended the country for over 30 years and is now securing its cyberspace. He got the local security industry to implement a “Zero Trust” concept to secure businesses to use the Internet safely. He is frequently invited to speak at international and local conferences on cybersecurity.
|
4 August 2022 (IN-PERSON & VIRTUAL PRESENTATIONS)
Time |
Activity |
Session Link |
9:00 am |
Introduction & Welcome Remarks Dr. Hing Yan LEE (EVP, Government Affairs, CSA) Opening Remarks (in English & Thai languages) Dr. Sak SEGKHOODTHOD (Chair, CSA Thailand Chapter) Opening Address Jim REAVIS (CEO & Co-Founder, CSA) |
In-person & Watch Now |
9:30 am |
Host Keynote : Cyber Security Capacity Building Landscape of Thailand Air Vice Marshal Amorn CHOMCHOEY (Deputy Secretary General, National Cyber Security Agency) |
In-person & Watch Now |
10:00 am |
Keynote : Cloud Service Security Governance Surachai CHATCHALERMPUN (Country Cyber Security & Privacy Officer, Huawei Technologies, Thailand) With the increasing complexity of the global regulatory environment, more and more stringent compliance has been promulgated in succession. Companies that fail to meet these regulations and requirements will face devastating business losses. Hence, increasingly stringent compliance requirements are likely to drive the growth of the corporate governance, risk and compliance market in the coming years. The new situation is fuelling new demand for cloud computing as the global demand for telecommuting and web applications increases dramatically.
|
In-person & Watch Now |
10:30 am |
Security in Decentralized Infrastructures in the Cloud Sitthinut HARUANPUACH (Co-founder & CEO, Inspex Co Ltd) |
Cancelled |
11:00 am |
Transition to CSA STAR Certificate – CCM Version 4 Kittipong KEATNIYOMRUNG (Product Technical Manager, British Standard Institution, Thailand) The Security, Trust, Assurance and Risk (STAR) program has changed its requirements on Cloud Controls Matrix CCM to version 4 since January 2021. Registry service providers then need to understand the CCM version 4 and implement in accordance with the new requirements. The CSA CCM version 4 framework provides organizations with the needed structure, details and clarity relating to information security tailored to the cloud industry. In addition, the new version has 17 domains which contain a total of 197 Cloud Security Controls. Therefore, this section will provide information about the two important topics as follows:
|
In-person & Watch Now |
11:30 am |
Lunch Break |
- |
12:30 pm |
Security on Digital Identity Platform Dr. Chakan PRAMKAEW (CTO, National Digital Identity Company) Nowadays, digital identity is more important than ever before since more and more individuals use online identity on a day-to-day basis, i.e. opening a new bank account, tax filing, and requesting bank statements. National Digital ID (NDID) is the first digital id platform in Thailand that connect more than 100 companies to help them onboard their users online. To connect a hundred companies via the Internet, as a platform, we have to ensure that everyone in the network is talking to the right person, and all messages are authenticated and encrypted for the intended recipient only. |
In-person & Watch Now |
5 August 2022 (VIRTUAL PRESENTATIONS)
Time |
Activity |
Session Link |
9:00 am |
Opening Address Jim REAVIS (CEO & Co-founder, CSA) |
|
9:15 am |
Keynote : Security in AI and Cloud Computing Timothy GRANCE (Senior Advisor for Emerging Technology, NIST) Perhaps no other technology topic arouses as much emotion, adulation, paranoia, dark/sunny conjecture or hype than artificial intelligence (AI). This talk seeks to give a balanced, neutral assessment of the area in general, with some specific opinions on the security issues in certain areas such as machine learning and neural networks. Moreover, the talk will briefly assess the use and utility of applying AI in the cloud and note the challenges for the security analyst. |
|
10:00 am |
AI in Healthcare Dr. James ANGLE (Co-chair, Healthcare WG, CSA & Product Manager, IT Services – Information Security, Trinity Health ) The emergence of AI as a tool for better healthcare offers opportunities to improve patient and clinical outcomes and reduce costs. Robotics and diagnosis and treatment applications can improve outcomes. Robotic process automation that performs structured digital administrative tasks can reduce cost. Big data and predictive analytics aid in improving population health. While all these uses can improve healthcare, they also come with potential pitfalls. Bias in AI presents significant challenges and can lead to false outcomes. This also presents ethical and legal challenges that must be addressed. Additionally, to be truly effective, AI requires multiple data sets and resides in the cloud, which causes concern about the privacy and security of patient data. This presentation will look at each area. |
|
10.30 am |
Implementing Singapore’s Model AI Governance Framework in Practice Jason Tamara WIDJAJA (Director, Artificial Intelligence & Responsible AI Lead, Singapore IT Hub, MSD) & Pui Yan CHAN (AI Ethicist & Data Scientist Foundational Data & Analytics Singapore IT Hub, MSD) AI is becoming a ubiquitous feature in our lives, and the technology is evolving at a rapid rate – 2022 sees over 150 AI publications released every day. In parallel, research in deploying ethical and trustworthy AI has increased fivefold between 2014 and the present, with downstream legislation and regulation starting to emerge in many countries. In this context, it is crucial for technology and security professionals to understand the unintended harm that can arise from treating AI solutions like regular technology implementations, and be familiar with principles that ensure AI is used in a beneficial and human-centric way. This talk presents an overview of Singapore’s response to AI ethics and governance, with an emphasis on the Model AI Governance framework. Grounded in real-life examples of AI causing harm, the session takes the lens of translating the framework to practice to show how it mitigates AI-specific risks. Jason and Puiyan are co-authors of Singapore’s AI Ethics and Governance Body of Knowledge and contributed to the Model AI Governance framework. Jason leads a global AI lead team in MSD whose scope includes responsible AI, and Puiyan is a full time AI Ethicist. |
|
11:00 am |
Panel Discussion : AI in Cybersecurity : Hype or Reality There has been much discussion and hope in AI improving our ability to handle cyber threats and malicious activities. Sophisticated machine learning algorithms would allow AI systems to be trained to detect malware, run pattern recognition, and detect even the smallest behaviors of malware or ransomware attacks before it enters the system. However AI is not a replacement for human intelligence, it can advance cybersecurity in many ways. A key topic at this year's summit is how AI and Cybersecurity can enhance each other. The panel discussion on “AI in Cybersecurity : Hype or Reality” will provide insights on how AI has been used to enhance cybersecurity capabilities and how cybersecurity can help secure AI systems. The panelists will share the challenges & opportunities. MODERATOR: Dr. Nantawan WONGKACHONKITTI (Deputy Manager, Student Loan Funds) PANELISTS:
|
|
11:45 am |
Lunch Break |
- |
1:00 pm |
Keynote : Zero Trust way for Small and Medium-size Enterprises YUM Shoen Yih (Director, Cybersecurity Programme Center, Cyber Security Agency, Singapore) FutureCIO.Tech (19 Oct 20) reported Singapore SMEs fast tracking cloud adoption during COVID19 pandemic. 62% of SMEs shifted their business operations online to the cloud. Highest increase from 30% among markets surveyed in 2019. According to IndSights Research on Cloud Adoption in Singapore (13 Aug 20), 31% of ICT businesses in Singapore were fully on cloud infrastructure with 46% on hybrid models and 23% on traditional infrastructure. Thus, it is essential that they go online safely. Cyber Security Agency of Singapore (CSA) aims to help them by ‘Enabling a Safer Cyberspace’ in Singapore: (1) secure digital infrastructure, devices and applications that power our digital economy (2) safeguard our cyberspace activities and (3) empower our cyber-savvy population for a healthy digital way of life. One of the initiatives is that CSA funded an innovation by Singaporean vendors to develop an integrated solution that implemented CSA’s 2017 ‘Be Safe Online’ Top 6 Essentials in a Zero Trust concept: Asset-Based Cyber Defence (ABCD). The Zero Trust extends from the endpoints to the cloud. Oracle has agreed to work with the ‘ABCD Alliance’ to power ABCD in Oracle Cloud (OCI). The presentation aims to explain the Asset-Based Cyber Defence Zero Trust way for SMEss. ABCD Zero Trust is “first Verify then Trust and continue to Verify the Trust”. The Oracle-powered ABCD should also be available to all within the ASEAN region to raise the cybersecurity posture of ASEAN digital economy. To attract more Singapore entities to sign-up for ABCD, the ABCD MSSP has extended its services to cover CSA’s SG Cyber Marks so entities that subscribe to ABCD will also qualify for the SG Cyber Essential Mark. |
|
1:30 pm |
How Cyber Resilient are Organizations? Elinor TSEN (PhD Student, University of Queensland Business School) Recently, there have been calls for organizations to shift towards cyber resilience as it is considered an enhancement in protecting against cyber incidents. However, it is unclear if widespread adoption is occurring. For cyber resilience adoption to progress, we need to know what organizations are currently doing, which factors promote the adoption and how cyber resilience affects cyber outcomes. To enable this understanding, researchers at University of Queensland in collaboration with CSA APAC conducted a survey investigating the current state of cyber resilience. We developed a taxonomy of cyber resilience and operationalised it with measurable indicators. We then investigated what organizations are doing for cyber resilience and the relationship with post-incident outcomes. Broadly, our findings from the international sample of 110 organizations showed that cyber resilience implementation depends on several factors. The presentation will discuss our findings further and highlight potential implications for how organizations implement cyber resilience. |
|
2:00 pm |
Web 3 - The Sequel Nobody Wanted but the Studio Had to Make Kurt SEIFRIED (Chief Blockchain Officer, CSA) What exactly is Web 3? The sequel to the popular Web 1 and 2 that are now a part of everyday life? Will Web 3 fulfill the promise of a decentralized, censorship-resistant world where creators can easily release NFTs of their work and make a good living? Or will it simply be a tired rerun of Web 1 and 2, where we end up with a few dominant players controlling the markets and making a lot of money while everyone else pays (in time or attention) to consume the content? Kurt Seifried will take you through a quick review of Web 3 and show why, even if you don’t want to, you have to participate (if you don’t, your competitors will). |
|
2:30 pm |
Complying with Cybersecurity Code of Practice 2.0 WONG Onn Chee (CSA Fellow, Co-chair, CSA APAC Research Advisory Council) The speaker will walk through the new Cybersecurity Code of Practice (CCoP) 2.0 for all Critical Information Infrastructure (CII) operators of ICS/OT systems. Relevant changes will be highlighted and additional controls will be described in further details. |
|
3:00 pm |
Panel Discussion : Women in Cloud Security We’ve all seen the headlines – women represent about 25 percent of the global cybersecurity workforce which is one-fourth. These remarkable women represent multiple roles in cloud and security, from technical leadership to executive management. This distinguished panel of executives will discuss the unique challenges women face in the industry, share their career journeys, leadership philosophies and broaden perspectives of women in security changing the face of technology. MODERATOR: Ekta MISHRA (APAC Membership Director & Country Manager India, CSA) PANELISTS :
|
|
3:45 pm |
Panel Discussion : Missed Opportunities or A Blessing in Disguise in the Great Pivot While many enterprises took advantage of the COVID-19 pandemic to hop onto the cloud wagon, others failed to do so for various reasons. This panel seeks to identify such reasons and argue that it is not all doom and gloom; It's better to be late than never. What then should these enterprises do to move forward? MODERATOR: Dr. Sak SEGKHOODTHOD (Chair, CSA Thailand Chapter) PANELISTS :
|
|
4.30 pm |
Panel Discussion : Cloud Security Post Pandemic: There is Much to Do, Undo, Redo or Dodo The COVID-19 pandemic saw a great pivot from on-premise to cloud computing. There is increased cloud usage and cloud adoption. Many enterprises brought forward their plans to migrate to the cloud while others have been forced to do so in order to meet business needs, cater for greater online demand in providing new services and capacity, etc. In that rush to cloud adoption, many short-cuts, hasty due diligence and decisions were made. With the benefit of hindsight, what actions should such enterprises undertake or rectify? MODERATOR: Dr. Hing Yan LEE (EVP, Government Affairs, CSA) PANELISTS:
|
Disclaimer : The ordering & timing is subject to change