-
Summary
-
Speakers
-
Schedule
-
Contact Us
<
>
CSA Forum on "Data Protection in the Cloud"
(Focus on Malaysia)
How do enterprises address Data Privacy (also used interchangeably with Data Protection) in a cloud environment, wherever that data is located, whether it’s at rest or in motion, and whether it’s managed internally by the company or externally by a third party? What additional measures must an enterprise take when transmitting Personal Identifiable Information across borders? At this forum, our invited speakers and panelists aim to address these questions in the context of Malaysia.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csamyforum2022.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
(Focus on Malaysia)
How do enterprises address Data Privacy (also used interchangeably with Data Protection) in a cloud environment, wherever that data is located, whether it’s at rest or in motion, and whether it’s managed internally by the company or externally by a third party? What additional measures must an enterprise take when transmitting Personal Identifiable Information across borders? At this forum, our invited speakers and panelists aim to address these questions in the context of Malaysia.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csamyforum2022.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
Organized by
Supporting Organization
Speakers & Panelists
Daniele CATTEDDU
CTO, CSA
|
Daniele CATTEDDU is an information security and risk management practitioner, technologies expert and privacy evangelist with over 15 of experience. He worked in several senior roles both in the private and public sector. He is member of various national and international security expert groups and committees on cyber-security and privacy, keynote speaker at several conferences and author of numerous studies and papers on risk management, cyber security and privacy.
He is the Chief Technology Officer at CSA, where he is responsible to drive, on a global scale, the adoption of the technology strategy roadmap within key CSA lines of business: research, membership services, standards, education and products. He identifies technology trends, global policies and evolving social behavior and their impact on information security and on CSA’s activities. Daniele leads the product management for CSA and chairs the Futures Advisory Committee. Daniele is the co-founder and executive of the CSA Open Certification Framework / STAR Program. Moreover he leads definition and implementation of the CSA research agenda in Europe and manages the relations with European public institutions and is member of the CSA International Standardization Council. He has been recently appointed as Member of the Policy and Scientific Committee of the European Privacy Association. In past he worked at CSA as Managing Director for the EMEA Region, at ENISA (European Network and Information Security Agency), as expert in areas of Critical Information Infrastructure Protection (CIIP) and Emerging and Future Risks Management, and in particular, having a leading role in developing EU cloud security research. Before joining ENISA, Daniele worked as an Information Security consultant in the banking and financial sector. Daniele graduated from the University of Parma (Italy) in Business Administration and Economics, and he is an ISACA Certified Information Security Manager. |
FOONG Cheng Leong
Advocate & Solicitor, Foong Cheng Leong & Co
|
Cheng Leong is a lawyer focusing in the areas of Intellectual Property, Information Technology, Franchise, Privacy and Data Protection laws. He is the author of the following books namely (1) Compendium of Malaysian Intellectual Property Cases - Trade Marks, (2) Compendium of Malaysian Intellectual Property Cases - Copyright, and (3) Foong's Malaysia Cyber, Electronic Evidence and Information Technology Law. He is regularly featured in the media, notably over topics regarding intellectual property, cyberlaw, data privacy and the like. He is also a regular columnist for Digital News Asia and writes at www.foongchengleong.com.
|
Ferdinand FONG
Chair, Protem Committee, CSA Sarawak Chapter
|
Ferdinand graduated from the University of Auckland with a degree in Bachelor of Science (Physics). He brings with him over 20 years of global experience in Engineering, Manufacturing, Project Management and Global Business Development. Leveraging on his experience, he made a move to the Fintech industry in 2019, managing the migration of payment platform for a client in Hong Kong.
He is a Cyber Security Practitioner with a Swiss cyber security company, wizlynx Pte Ltd ; he has cloud security and cybersecurity as part of his portfolio of expertise. He has also been operating and managing local non-for-profit community servers for almost a decade. He is an authorized CSA CCSK instructor as well as a holder of CCSK, CISSP, CCSP and CISA. |
Dr. Meng-Chow KANG
Adjunct Associate Professor, Nanyang Technological University
|
Meng-Chow KANG, PhD, CISSP has been an Adjunct Associate Professor with the School of Computer Science and Engineering at NTU since 2014. Besides teaching and research on cybersecurity and privacy areas, Meng-Chow is also Founding Director of Averitus Pte Ltd, a firm specializing in cybersecurity and privacy strategy and risk management advisory, development, implementation, competency building, and assurance for organizations in the Asia region. Averitus clients include major renewable energy platform and service providers, technology providers, venture capitals, and cybersecurity education and certification bodies.
Prior to establishing Averitus, Meng-Chow has been a practicing cybersecurity professional for over 30 years with field experience spanning from technical to management in the various cybersecurity and privacy risk management and assurance roles in both public and private sector organizations including the Singapore government (MINDEF), major multinational financial institutions (Standard Chartered Bank and JP Morgan), and global security and technology providers (Microsoft, Cisco, and Amazon Web Services). His research and part of his experience in the field have been published in his book, “Responsive Security – Be ready to be secure”, by CRC Press in Oct 2013, and a Chinese version, “响应式安全:构建企业信息安全体系”, by Broadview in Apr 2018. |
Dr. Hing-Yan LEE
EVP, Government Affairs, CSA
|
Dr. Hing-Yan LEE is Executive Vice President (Government Affairs) at Cloud Security Alliance (CSA). He has 30+ years of ICT working experience in both the public and private sectors. He was previously Executive Vice President for APAC and global director of the CSA STAR program. Before that, he was Director of National Cloud Computing Office at the Infocomm Development Authority, where he was responsible for developing the cloud ecosystem, promoting cloud adoption by government agencies and private sector enterprises, and building a trusted environment (including developing Multi-Tier Cloud Security standards and Cloud Outage Incident Response guidelines).
He was Deputy Director of National Grid Office at Agency for Science, Technology & Research, Principal Scientist at the Institute for Infocomm Research, Director of Knowledge Lab and Deputy Director of Japan-Singapore Artificial Intelligence Centre and Deputy Director at Information Technology Institute (the applied R&D arm of National Computer Board). He supervised industry collaborations and applied R&D in machine language translation, spoken language dialogue, expert systems, knowledge discovery, data mining, data visualization, and other knowledge-driven efforts at the Kent Ridge Digital Labs. Hing-Yan is a Fellow of Singapore Computer Society. He graduated from University of Illinois at Urbana-Champaign with PhD and MS degrees in Computer Science. He studied Computing and Management Science at Imperial College. |
Ramiah MARAPPAN
CISO, Security Spectrum
|
Ramiah MARAPPAN is CISO at Security Spectrum Services LLP as well as an experienced information security consultant, trainer and advisor.
He has 30 years’ experience and expertise in Information Security Consulting, Design, Development and Operations, Security Risk Assessment, Policy Development and Implementation, Security Operations, Infrastructure Design and Operations and Training. Delivered consulting, design and build engagements for Financial Institutions, Government, Manufacturing, Retail, Academic Institutions, Telecom, Commercial and Aviation in Asia Pacific, Middle East and Europe regions. He has 10 years of teaching experience in Information Security, Networking and Data Centre Operations, DevOps, Privacy and Cloud. He participated in the ISO ISO/IEC JTC 1/SC 27 committee as a subject matter expert. His certifications include CISSP, CISA, CCSK, CBSA, DevOps, and DevSecOps certifications. He is an authorised CCSK instructor. |
Jim REAVIS
Co-Founder & CEO, CSA
|
For many years, Jim REAVIS has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.
Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and formerly served on WWU’s alumni board. Jim was recognized as a WWU Distinguished Alumnus in 2015. In 2016, Jim was inducted into the Information Systems Security Association (ISSA) Hall of Fame. |
Marcus TAN
Managing Partner, Marcus Tan & Co, Advocates & Solicitors, Malaysia
|
Marcus founded his own practice by the name of Marcus Tan & Co. (“MTC”) and later joined by other partners with the same vision of becoming a legal-preneur. Marcus is the legal adviser and chief compliance officer of Huobi Labuan, a licensed digital asset money brokerage entity in Labuan. He is also the official custodian of Tokenize Exchange, a digital asset exchange licensed by Securities Commission, Malaysia.
He is a senior partner in Censuria Capital, a private equity management corporation licensed by Securities Commission, Malaysia. He is also a member of the Audit Committee of Tunku Abdul Rahman University College Education Foundation. |
Philip
VICTOR Managing Director, Welchman Keen
|
An award-winning cybersecurity advocate with over 29 years in information technology, Philip VICTOR has served more than a decade in the cybersecurity domain. A recipient of the Senior Information Security Leadership Award from (ISC)2 for outstanding contribution in enhancing public-private partnerships globally, his role includes, spearheading Cyber Risk for Critical Infrastructure practice and engagement with the International Telecommunication Union (ITU) and governments.
In working with the UN specialized agency, ITU, Philip was instrumental in assisting governments globally in enhancing their cybersecurity posture through various initiatives and projects including National Cybersecurity Strategy, Child Online Protection, National Computer Emergency Response Team, Capacity Building and International Cooperation. He is a regular speaker at numerous international conferences, forums and seminars in cybersecurity and has published articles for publications both locally and internationally. He has also been featured and interviewed in international media as a cybersecurity expert and advocate on global issues. Philip was a former board member of Cloud Security Alliance Malaysia Chapter and sits on the Taylor’s University Industry Advisory Panel. He also serves on the Board of Study for the International Business School at University Technology Malaysia. |
Time |
Activity |
Session Link |
9:00 am |
Welcome Address Dr. Hing-Yan LEE (EVP, Government Affairs, CSA) Opening Keynote Jim REAVIS (CEO & Co-Founder, CSA) |
|
9:30 am |
Implementing Data Privacy in the Cloud Dr. Meng-Chow KANG (Adjunct Associate Professor, Nanyang Technological University) With the advancement of AI/ML, Big Data analytic, and cloud technology, much can be done with data that an organization possesses. Where personal data are involved, such processing may however raise regulatory and data subject's concerns. The secure use of such technology in a privacy-respectful way could deliver more efficient and beneficial services for the end users. This session evaluates the key requirements for personal data protection focusing on some of the regional regulatory requirements, dissects what they mean in the context of personal data processing in public cloud services, and discusses how we can approach such requirements leveraging cloud-enabled and cloud-native capabilities to achieve the end goals of providing better services to the end users, and at the same time ensuring adequate privacy safeguards and security of personal data in the cloud. |
|
10:00 am |
Malaysia PDPA & Its Application to Cloud Computing FOONG Cheng Leong (Advocate & Solicitor, Foong Cheng Leong & Co) This presentation will cover the salient points of the Malaysian Personal Data Protection Laws in the context of cloud services, including application to the Cloud. |
|
10:30 am |
Fireside Chat with FOONG Cheng Leong (Advocate & Solicitor, Foong Cheng Leong & Co) MODERATOR : Daniele CATTEDDU (CTO, CSA) |
|
11:00 am |
Panel Discussion : Implications of MY PDPA for Enterprise Cloud Users MODERATOR : Ferdinand FONG (Chair, Protem Committee, CSA Sarawak Chapter) PANELISTS :
|
Disclaimer : The ordering & timing is subject to change