-
Summary
-
Speakers
-
Schedule
-
Contact Us
<
>
CSA Forum on "Data Protection in the Cloud"
(Focus on Singapore & China)
How do enterprises address Data Privacy (also used interchangeably with Data Protection) in a cloud environment, wherever that data is located, whether it’s at rest or in motion, and whether it’s managed internally by the company or externally by a third party? What additional measures must an enterprise take when transmitting Personal Identifiable Information across borders? At this forum, our invited speakers and panelists aim to address these questions in the context of Singapore and China.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csaforum2022.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
(Focus on Singapore & China)
How do enterprises address Data Privacy (also used interchangeably with Data Protection) in a cloud environment, wherever that data is located, whether it’s at rest or in motion, and whether it’s managed internally by the company or externally by a third party? What additional measures must an enterprise take when transmitting Personal Identifiable Information across borders? At this forum, our invited speakers and panelists aim to address these questions in the context of Singapore and China.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csaforum2022.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
Organized by
Speakers & Panelists
Prof. Paolo BALBONI
Co-chair, CSA Privacy Level Agreement WG & Principal Author, CSA GDPR CoC
|
Paolo BALBONI PhD is a top-tier European ICT, privacy & cybersecurity lawyer and serves as data protection officer (DPO) for multinational companies, Professor of Privacy, Cybersecurity, and IT Contract Law at the European Centre on Privacy and Cybersecurity (ECPC) within the Maastricht University Faculty of Law, Chairman of the European Patent Office (EPO) Data Protection Board, Member of the EUMETSAT Data Protection Supervisory Authority, Member of the Europrivacy Board of Experts, and Lead Auditor BS ISO/IEC 27001:2013.
Dr. BALBONI is a qualified lawyer admitted to the Milan Bar and the Amsterdam Bar. He is a Founding Partner of ICT Legal Consulting (ICTLC), a law firm with offices in Milan, Bologna, Rome, Amsterdam, Athens, Helsinki, Madrid, Melbourne and Partner Law Firms in more than 40 countries around the world. He is also Founding Partner of ICT Cyber Consulting, a company specialized in information/data security. Paolo BALBONI is Co-Chair of the Cloud Security Alliance Privacy Level Agreement (PLA). He is a Recommended Lawyer ranked by The Legal 500 EMEA 2021 in the areas of Data Privacy and Data Protection and Industry Focus : TMT. |
Sarbojit M BOSE
Education Director, CSA Singapore Chapter & CCSK Instructor
|
Sarbojit Madhab BOSE is a seasoned Information Technology (IT) security professional with a rare combination of over 30 years of experience. He has had the opportunity to work with Program and Project Delivery, Service Transition and Operation, Application Test and Implementation, Compliance and Quality, and Cybersecurity.
He is a self-employed professional trainer with expertise in the areas of Project and Product Management, IT/Cyber/Cloud Security, Data Privacy, Governance, Risk and Compliance. Along with CCSK, he is a certified PMP, PRINCE2, ITILv4, Cyber RESILIA, DevOps, DevSecOps, DevOps Leader, SRE, CTF, CASM, CISA, CRISC, CISM, CSX, CISSP, CIPT, PDPA and PDPP, SG. |
Daniele CATTEDDU
CTO, CSA
|
Daniele Catteddu is an information security and risk management practitioner, technologies expert and privacy evangelist with over 15 of experience. He worked in several senior roles both in the private and public sector. He is member of various national and international security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on risk management, cyber security and privacy.
He is the Chief Technology Officer at CSA, where he is responsible to drive, on a global scale, the adoption of the technology strategy roadmap within key CSA lines of business: research, membership services, standards, education and products. He identifies technology trends, global policies and evolving social behavior and their impact on information security and on CSA’s activities. Daniele leads the product management for CSA and chairs the Futures Advisory Committee. Daniele is the co-founder and executive of the CSA Open Certification Framework / STAR Program. Moreover he leads definition and implementation of the CSA research agenda in Europe and manages the relations with European public institutions and is member of the CSA International Standardization Council. He has been recently appointed as Member of the Policy and Scientific Committee of the European Privacy Association. In past he worked at CSA as Managing Director for the EMEA Region, at ENISA (European Network and Information Security Agency), as expert in areas of Critical Information Infrastructure Protection (CIIP) and Emerging and Future Risks Management, and in particular, having a leading role in developing EU cloud security research. Before joining ENISA, Daniele worked as an Information Security consultant in the banking and financial sector. Daniele graduated from the University of Parma (Italy) in Business Administration and Economics, and he is an ISACA Certified Information Security Manager. |
Benjamin CHEONG
Deputy Head, Technology, Media and Telecoms, Rajah & Tann Singapore
|
Benjamin has practised in Singapore, Hong Kong and Shanghai (as a foreign lawyer), and has been involved in many complex cross-border and multi-jurisdictional deals across Asia.
He has been recognised as one of Asia’s Leading Lawyers for IP by Chambers Asia Pacific, where he was lauded as being “smart, quick, precise, dynamic and on top of things”, and by The Legal 500 Asia Pacific “one of the brightest minds in the industry' in respect of IP and data protection in addition to his broader TMT expertise” and is praised for his “valuable insight and experience”. Benjamin has also been named as one of “Singapore’s 40 Most Influential Lawyers Aged 40 and Under” by Singapore Business Review. Benjamin has more than a decade of experience in advising clients on contentious and non-contentious matters, with a particular focus on technology-related joint ventures / mergers & acquisitions, technology and intellectual property licensing, technology outsourcing deals and data protection compliance. He has worked on a number of cross-border joint venture and mergers and acquisition deals across Asia, with a particular focus on the PRC. With the growth of the digital and knowledge-based economy, Benjamin has a keen interest in cybersecurity, blockchain technology, fintech, insurtech, medtech, digital payments and AI and keeps abreast with developments in these new technologies and industries. |
Dr. Hing-Yan LEE
EVP, Government Affairs, CSA
|
Dr. Hing-Yan LEE is Executive Vice President (Government Affairs) at Cloud Security Alliance (CSA). He has 30+ years of ICT working experience in both the public and private sectors. He was previously Executive Vice President for APAC and global director of the CSA STAR program. Before that, he was Director of National Cloud Computing Office at the Infocomm Development Authority, where he was responsible for developing the cloud ecosystem, promoting cloud adoption by government agencies and private sector enterprises, and building a trusted environment (including developing Multi-Tier Cloud Security standards and Cloud Outage Incident Response guidelines).
He was Deputy Director of National Grid Office at Agency for Science, Technology & Research, Principal Scientist at the Institute for Infocomm Research, Director of Knowledge Lab and Deputy Director of Japan-Singapore Artificial Intelligence Centre and Deputy Director at Information Technology Institute (the applied R&D arm of National Computer Board). He supervised industry collaborations and applied R&D in machine language translation, spoken language dialogue, expert systems, knowledge discovery, data mining, data visualization, and other knowledge-driven efforts at the Kent Ridge Digital Labs. Hing-Yan is a Fellow of Singapore Computer Society. He graduated from University of Illinois at Urbana-Champaign with PhD and MS degrees in Computer Science. He studied Computing and Management Science at Imperial College. |
LIM May-Ann
Director, Fair Tech Institute, Access Partnership & Emeritus Director, Asia Cloud Computing Association, Singapore
|
May-Ann is Director of the Fair Tech Institute at technology consultancy firm Access Partnership, and is concurrently Emeritus Director of the Asia Cloud Computing Association (ACCA). She has worked extensively on technology policy development, including data governance policies, digital economy, emerging technology, ICTs for development, green digital sustainability, and cybersecurity. She has worked with many global, regional, and local organizations such as APEC, ASEAN, PECC, INTERPOL, Council of Europe (CoE), United Nations Institute for Disarmament Research (UNIDIR), FELEBAN in Latin America, ACCA, and Asia Internet Coalition (AIC), on thought leadership development, government outreach and stakeholder engagement efforts.
She is appointed to the Singapore Data Protection Appeal Panel 2019-2023, and sits on various international agency task forces, such as the World Bank Group’s Cloud and Data Infrastructure Private Sector Advisory Committee, World Economic Forum’s Digital ASEAN Taskforce, the Data & Jurisdiction Team for the Internet & Jurisdiction Policy Network. A strong advocate for inclusive education, digital literacy, and sustainability, May-Ann also volunteers as a youth mentor with Advisory Singapore, and with nonprofit organization Engineering Good, which focuses on assistive technology and digital inclusion of the under-privileged and disabled. |
Ekta MISHRA
APAC Membership Director & Country Manager India, CSA
|
Ekta has been with CSA for over eight years. As APAC Membership Director, she is responsible for customer relations with APAC corporate members, assuring that members understand and utilize their membership benefits. As India Country Manager, she is responsible for managing CSA’s business within India. She also looks after the engagement with members, partners, chapters and other strategic alliances in country. She strengthens CSA influence and presence in APAC through managing over 30 Chapters in the region primarily focusing on providing the various support system and tools for strengthing the Chapters engagement. Ekta also manages the CCSK Training in the APAC region and has been actively leading various regional events in India.
Ekta has completed her MBA in marketing from S.P Jain School of Global Management- Singapore and Dubai. |
Jim REAVIS
Co-Founder & CEO, CSA
|
For many years, Jim REAVIS has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.
Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and formerly served on WWU’s alumni board. Jim was recognized as a WWU Distinguished Alumnus in 2015. In 2016, Jim was inducted into the Information Systems Security Association (ISSA) Hall of Fame. |
Marcus TAN
Managing Partner, Marcus Tan & Co, Advocates & Solicitors, Malaysia
|
Marcus founded his own practice by the name of Marcus Tan & Co. (“MTC”) and later joined by other partners with the same vision of becoming a legal-preneur. Marcus is the legal adviser and chief compliance officer of Huobi Labuan, a licensed digital asset money brokerage entity in Labuan. He is also the official custodian of Tokenize Exchange, a digital asset exchange licensed by Securities Commission, Malaysia.
He is a senior partner in Censuria Capital, a private equity management corporation licensed by Securities Commission, Malaysia. He is also a member of the Audit Committee of Tunku Abdul Rahman University College Education Foundation. |
Onn Chee WONG
CSA Fellow & CTO Resolvo Systems
|
Onn Chee is Chief Executive Officer of Rajah & Tann Cybersecurity, Technical Director of Rajah & Tann Technologies, Managing Director in Infotect Security and the Chief Technology Officer of Resolvo Systems. His areas of expertise include information leakage protection, web/cloud security and security strategy. Onn Chee is a co-inventor for at least six international PCT patent rights (http://www.wipo.int), besides several US, EU and Singapore patents.
He has published his works in the area of information leakage protection and application of evidence laws when designing IT systems in the ISSA Journal (Information Systems Security Association). Similarly, he had been a contributor to the Center of Internet Security (CIS) security benchmarks. Onn Chee is the Singapore chapter lead of Open Web Application Security Project (OWASP) (http://www.owasp.org/) and the main organiser of the Security Meetup Group in Singapore. In addition, he is the Cloud Security Working Group Chair of Security & Privacy Standards Technical Committee under the IT Standards Committee in Singapore and has led the Singapore national delegation to ISO/IEC JTC 1/SC 27 meetings. He is a contributor to Singapore first Technical Reference on public computing services (TR 31:2012) and is a member of the working group which developed Singapore's first national cloud security standard (SS 584:2013). Onn Chee is also a member of the working group which developed Singapore's first Technical Reference (TR 82:2020) on cloud native security guidelines. Onn Chee is co-chair of Cloud Security Alliance APAC Research Advisory Council (APRAC). Besides cloud security, Onn Chee is also a member of the working group which developed Singapore’s first Technical References on Internet-of-Things (IoT), such as Technical Reference for IoT security for smart nation (TR 64:2018), sensor network for smart nation (public areas) (TR 38:2014) and for sensor networks for Smart Nation (homes) (TR 40:2015). Other than being an information security professional, Onn Chee is also trained in BS 7799/ISO 17799, ISO 9000 and ITIL. He is a certified PRINCE2 Practitioner and was a former certified Project Management Professional (PMP) and former Certified Information Privacy Manager (CIPM). In 2021, Onn Chee was recognised as a Cloud Security Alliance Research Fellow. In 2015, Onn Chee was awarded the SPRING Merit Award for his contributions to the standardisation work under the Singapore IT Standards Committee. In 2010, Onn Chee was selected as one of the honorees for ISC2's Asia Pacific Information Security Leadership Achievements - Senior Information Security Professional Category. His work on the HTTP POST Layer 7 DDOS was voted by his peers around the world to be the top 7 technique in the Top 10 Web Hacking Techniques of 2010 (http://jeremiahgrossman.blogspot.com/2011/01/top-ten-web-hacking-techniques-of-2010.html). |
Philip
VICTOR Managing Director, Welchman Keen
|
An award-winning cybersecurity advocate with over 29 years in information technology, Philip VICTOR has served more than a decade in the cybersecurity domain. A recipient of the Senior Information Security Leadership Award from (ISC)2 for outstanding contribution in enhancing public-private partnerships globally, his role includes, spearheading Cyber Risk for Critical Infrastructure practice and engagement with the International Telecommunication Union (ITU) and governments.
In working with the UN specialized agency, ITU, Philip was instrumental in assisting governments globally in enhancing their cybersecurity posture through various initiatives and projects including National Cybersecurity Strategy, Child Online Protection, National Computer Emergency Response Team, Capacity Building and International Cooperation. He is a regular speaker at numerous international conferences, forums and seminars in cybersecurity and has published articles for publications both locally and internationally. He has also been featured and interviewed in international media as a cybersecurity expert and advocate on global issues. Philip was a former board member of Cloud Security Alliance Malaysia Chapter and sits on the Taylor’s University Industry Advisory Panel. He also serves on the Board of Study for the International Business School at University Technology Malaysia. |
Rizwi WUN
Partner, RHTLaw Asia
|
Rizwi is one of the founding members of RHTLaw Asia. He has been in practice for about 20 years and is the Acting Head of the Firm’s Intellectual Property & Technology Practice.
Rizwi’s main areas of legal practice covers the creation, protection, commercialisation and enforcement of intellectual property in Singapore, and also in the region. Rizwi also advises on legal and regulatory aspects of technology-related matters, with particular emphasis on Data Protection, Cyber Security, and Competition Law issues. In addition, Rizwi’s industry focus covers developments in telecommunications sector, fashion & luxury, food & beverage, and games industry. Rizwi also has in-house industry experience, having previously worked as in-house legal officer and company secretary to a Singapore Government-Linked Company and legal counsel in a multi-national consumer electronics company. He contributes regularly on topics including life sciences research, data protection, and franchising and has been featured, most recently in 2016, in the Singapore Business Times and Bloomberg Asia relating to issues on cyber security and data protection. Rizwi has also advised clients such as China Mobile and Nexmo, Inc. on regulatory licences and permits with the Infocomm Development Authority of Singapore, for the provision of telecommunication services and Monster Energy on regulatory issues and permit for food importation. Rizwi was identified as one of the most highly-acclaimed legal experts in the Asia-Pacific region in the practice area of Intellectual Property by the 2007 Asialaw Leading Lawyers survey and was listed in Who’s Who Legal for Franchising in 2008 and for Patents in 2016. He has also been listed in Asia Legal 500 from 2009 to 2011 and in 2018 for Intellectual Property and TMT matters. |
Frank Miao ZHANG
IAPP Fellow & Senior Security & Privacy Expert, Huawei Technology
|
Frank ZHANG has 15+ years of security and data protection experience. He spent 2 years overseas where he led the implementation of GDPR compliance for Huawei in 10+ European countries. His main focus covers security and privacy compliance. Frank has obtained CISSP, IAPP Fellow, CIPP-E and CIPM.
|
Time |
Activity |
Session Link |
9:00 am |
Welcome Address Dr. Hing-Yan LEE (EVP, Government Affairs, CSA) Opening Keynote Jim REAVIS (CEO & Co-Founder, CSA) |
|
9:30 am |
Doing Cloud Business in the EU: Privacy & Contractual Reflections Prof. Paolo BALBONI (Co-chair, CSA Privacy Level Agreement WG & Principal Author CSA GDPR CoC) The presentation will update the audience on the main issues and opportunities concerning the provision of cloud services in the EU. We will discuss both privacy and contractual aspects focusing the attention on present and forthcoming Codes of Conducts, data transfer, collaboration duties, limitation of liabilities, etc. Relevant case law will be analyzed as well as recent trends concerning data protection as part of the ESG/Corporate Social Responsibility. The goal is to provide a comprehensive picture to the audience about doing cloud business in the EU. |
|
10:10 am |
Fireside Chat with Prof. Paolo BALBONI (Co-chair, CSA Privacy Level Agreement WG & Principal Author CSA GDPR CoC) Moderator : Ekta MISHRA (APAC Membership Director & Country Manager India, CSA) |
|
10:30 am |
Singapore PDPA and Its Application to Cloud Computing by PDPC / PDPA & the Cloud Riwzi WUN (Partner, RHTLaw Asia) This presentation will cover the salient points of the Singapore Personal Data Protection Laws in the context of cloud services, including application to the Cloud, the possible application of the Shared Responsibility Model, the treatment of CSPs as a data intermediary, and issues relating to data sovereignty. |
|
11:10 am |
Fireside Chat with Riwzi WUN (Partner, RHTLaw Asia) Moderator : Daniele CATTEDDU (CTO, CSA) |
|
11:30 am |
Implementing China's Personal Information Protection Law for Enterprises Frank Miao ZHANG (IAPP Fellow & Senior Security & Privacy Expert, Huawei Technology) The presentation will provide the background and the main points of the China Personal Information Protection Law (PIPL). It will also identify the compliance requirements that enterprises need to comply with. A comparison of the differences between PIPL and GDPR will also be shared. |
|
12:10 pm |
Fireside Chat with Frank ZHANG (IAPP Fellow & Senior Security & Privacy Expert, Huawei Technology) Moderator : Benjamin CHEONG (Deputy Head, Technology, Media and Telecoms, Rajah & Tann Singapore) |
|
12.30 pm |
Panel Discussion : Implications of PIPL for Enterprise Cloud Users In this panel discussion on “Implications of PIPL for Enterprise Cloud Users,” moderated by WONG Onn Chee (CSA Fellow & CTO Resolvo Systems), we have invited several experts to weigh in on how their view on how PIPL will affect enterprises doing business in China and elsewhere when using cloud services. Moderator : WONG Onn Chee (CSA Fellow & CTO Resolvo Systems) Panelists :
|
Disclaimer : The ordering & timing is subject to change