-
Summary
-
Speakers
-
Schedule
-
Contact Us
<
>
Journey toward Cloud – Adoption & Security in Post-Covid Era
This one-day program, co-organised by CSA APAC & CSA Pakistan Chapter, will provide insight and a perspective on critical strategic cloud and cybersecurity concerns. Join the leading experts with domain proficiency and expertise to discuss the key issues and trends facing cloud security and cybersecurity today at this virtual Summit on 20 December 2021.
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csapakistansummit2021.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
The event is free to attend. To register for the sessions, log in using your BrightTalk account. If you do not have an existing account, please sign up here https://www.brighttalk.com/login/. Once the account is created visit https://www.csaapac.org/csapakistansummit2021.html and register for sessions you would want to attend under the 'schedule' tab.
Earn CPE Credits: To download your viewing certificate, navigate to the “Viewing History” section of your BrightTALK Account. You can find more information about this here: https://support.brighttalk.com/hc/en-us/articles/204280700-Can-I-have-a-list-of-all-the-webinars-I-ve-attended-
Co - Organized by
Supporting Organizations
Speakers & Panelists
M. Tauseef ASLAM
President, ISC2 Islamabad Chapter
|
M. Tauseef ASLAM has over 17 years of experience in different industries. He holds a master degree in Computer Science from University of Engineering & Technology Lahore. He is a security leader in the local industry of Pakistan. He volunteers as President of ISC2 Islamabad Chapter & CISO Forum core council. He previously served in CSA Islamabad Chapter and & ISACA Islamabad Chapter. He holds industry certification including CCSK, CISSP, CIPP/E, CISA, SABSA, CRISC, CISM, and ISO 27001 LA/LI. His areas of expertise include Security GRC, security operations, data privacy, security architecture, security culture, security maturity models and security strategy.
|
Dr. Junaid ARSHAD
Associate Professor, Birmingham City University, UK
|
Dr. Junaid ARSHAD has 14 years of research experience and expertise in investigating and addressing cybersecurity challenges for diverse computing paradigms such as Grid computing, Cloud computing, IoT, and blockchain. He is actively engaged in cutting-edge R&D for collaborative intrusion detection within IoT systems and is an alumnus of the Innovate UK & DCMS funded CyberASAP programme, commercially prototyping the CyMonD system for effective monitoring & defence of IoT-based systems against cyber-threats. Junaid has successfully achieved research funding from UK and overseas funding agencies, and has worked as a security specialist for a number of EU funded projects with experience of developing bespoke security solutions. He is also actively involved in research into the analysis of malware for mobile and IoT devices focusing on profiling malicious behaviour to achieve runtime detection and defence. Junaid has been actively involved in publishing high quality research in cybersecurity and has more than 50 publications at high quality fora including journals, book chapters, conferences and workshops. He is an Associate Editor for the Cluster Computing and IEEE Access journals; he regularly serves on program and review committees of several journals and conferences.
|
Moshe FERBER
Chair, CSA Israel Chapter
|
Moshe FERBER is an entrepreneur, investor, popular industry speaker and cloud security evangelist. He has been working on building the next generation of cyber security solutions. In his 20 years of experience in information security, Moshe has served as high ranking manager in large corporations, founder of innovative startups, frequent lecturer at cyber conferences and major contributor to various cloud education programs and certifications.
|
Muhammad Samiul HAQ
Department Head, IT Security, Zarai Taraqiati Bank
|
Muhammad Samiul HAQ is Department Head for IT Security in a Government-owned bank in Pakistan, with 18+ years of formal education culminating in an MS Information Security from UET Taxila, Pakistan. This growth track record spanning over 16 years has been made possible by delivering quantifiable defined goals in IT and Information Security. His professional skill set includes Cybersecurity Governance/Management, Information and Related Technology program management, Security Architecture Design, security testing, auditing, risk management and incident response, Information Security Management & Operations, Secure Enterprise IT Application/Portals Development, Secure Object-Oriented Software Engineering – Secure OOSE, OpenSAMM, MSDL, IT Governance, Risk Compliance, policies development & implementation, data center infrastructure design for hosting of mission critical services, Procurement of IT Services/Software/Equipment and IT/Security training.
|
William HO
Co-chair, ICS Security WG, CSA
|
William HO is a co-founder of Indonesia CIO network with over 33+ years of ICT & extensive business technology experience and exposure in IT infrastructure & architecture design, converged infrastructure solutions, cloud computing, information security, data protection & security, cloud Security, disaster recovery/business continuity management, risk management and business-IT compliance.
William is a professional committee member of China’s security standardization committee of China Society of Emergency Management, senior advisor to China Business Continuity Management, co-chair of CSA Industrial Control System Working Group and was the founder of storage networking user group for Singapore and China, deputy project manager for the Technical Committee setting the Singapore TR19-Business Continuity Management Standard and a resource member for Singapore first BC/DR Standards SS507. William was the first qualified CCSK trainer in Asia (for CCSK V2.1 and V3). He is also a cloud trainer for Arcitura’s Cloud School of Certified Cloud Professional, certified cloud technology professional and certified cloud architects and pioneer trainer for the Fintech Essential Programme-Cloud Computing & the API Economy module. William is Director Education at CSA Singapore Chapter. |
Bruno HUTTNER
Co-chair, Quantum-Safe Security WG, CSA
|
Bruno HUTTNER is an engineer (Ecole Centrale Paris) and a physicist (PhD from the Technion, Israel Institute of Technology). He is Director of Strategic Quantum Initiatives, and a Quantum Key Distribution Expert at ID Quantique. He is also Co-chair of the CSA Quantum-Safe Security Working Group.
|
Jibran ILYAS
Managing Director, Mandiant
|
Jibran ILLYAS is Managing Director at Mandiant, with 15+ years of experience in digital forensics, incident response & threat intelligence, leading data breach investigations in the financial, health, technology and defense sectors. As a thought leader, Jibran has given talks at large cybersecurity conferences including DEFCON, Black Hat USA, RSA Conference, SOURCE Barcelona, and Thotcon. In 2017, Jibran was honored as Crain's 40 under 40 for his contributions in cybersecurity. He is also an adjunct faculty at Northwestern University for the Digital Forensics course.
|
Ammar JAFFRI
Director General, Center of Information Technology, Pakistan
|
Ammar JAFFRI is a former Additional Director General of Federal Investigation Agency - Government of Pakistan and currently Director General, Center of Information Technology, Pakistan. Mr Jaffri is the pioneering Head National Response Center For Cyber Crimes (NR3C) Federal Investigation Agency Government of Pakistan (CIT) Islamabad.
Having strong educational background and hands-on experience in implementation of latest technologies (forensic labs) during his stay in Government Service and after leading mega IT projects, Mr Jaffri is now contributing at national and international Levels in a number of mega projects in Information Security & Cyber Security. Mr Jaffri heads the Cyber Security Task Force of the Senate Defense Committee and represents Pakistan in a number of International Initiatives on Cyber Security like APCERT, JPCERT, OIC-CERT and PISA-CERT. He is focal point of Contact of Pakistan in other international initiatives like Crime Stoppers Pakistan & MS Digital Crime Center. Mr Jaffri is a regular speaker on International fora on topics of Information Security, Cyber Security & Digital Forensics. He is a lead Investigator for public & private sector organizations in complex technology based Investigations. Mr Jaffri very frequently leads & organizes cyber drills, engaging countries of Asia Pacific and OIC. |
Dr. Hing-Yan LEE
EVP APAC, CSA
|
Hing Yan LEE is Executive Vice President, APAC at the Cloud Security Alliance (CSA). He has over 30 years of ICT working experience in both the public and private sectors. He was global director of the CSA STAR program for 6 months in 2017. Prior to that, he was Director of National Cloud Computing Office at the Infocomm Development Authority (IDA) for 9+ years, where he was responsible for the national program for, inter alia, developing the cloud ecosystem, promoting cloud adoption by government agencies and private enterprises, and building a trusted environment (which included developing the Multi-Tier Cloud Security (MTCS) standards and Cloud Outage Incident Response guidelines).
He was previously Deputy Director of National Grid Office at the Agency for Science, Technology & Research (A*STAR), Principal Scientist at the Institute for Infocomm Research, Director of Knowledge Lab and Deputy Director of Japan-Singapore Artificial Intelligence Centre at the Kent Ridge Digital Labs as well as Deputy Director at Information Technology Institute (the applied R&D arm of the National Computer Board). He oversaw and managed industry collaborations and applied R&D in machine language translation, spoken language dialogue, expert systems, knowledge discovery, data mining, data visualization, and other knowledge-driven efforts. Hing Yan is a Fellow and former VP of the Cloud Chapter in Singapore Computer Society. He is active in the ITSC working group on MTCS revision, and SingAREN Lightwave Internet Exchange (SLIX 2.0) Steering Committee. He has also undertaken consultancy and research reviews for the governments of Finland, Israel, Malaysia and Singapore as well as cloud service providers. He graduated from the University of Illinois at Urbana-Champaign with PhD and MS degrees in Computer Science. He previously studied at Imperial College London in the UK where he obtained a BSc (Eng.) with 1st Class Honours in Computing and MSc in Management Science. |
Dr. Sheheryar MALIK
Director, Riphah School of Computing & Innovation
|
Dr. Sheheryar MALIK received his PhD degree from INRIA France and University of Nice Sophia Antipolis France. He has worked as a faculty and consultant in different organizations in Western Europe, Central Asia and Pakistan. He is Director and Professor at RSCI, Riphah International University, Pakistan and Chief Scientist at Center for Research in Distributed Supercomputing, Pakistan. His research interests include cloud architecture, interoperability, scheduling and management.
|
Jawad Khalid MIRZA
CISO, Askari Bank
|
Jawad Khalid MIRZA has 18 years of diversified experience in the areas of Information & Cybersecurity, Branchless Banking, & Program/Project Management with the Financial and Telecom sectors in Pakistan. He serves as CISO in Askari Bank, having served in Allied Bank and MCB Bank in similar roles.
|
Ekta MISHRA
Country Manager India, CSA
|
Ekta has been with CSA for over six years. As APAC Membership Director, she is responsible for customer relations with APAC corporate members, assuring that members understand and utilize their membership benefits. As India Country Manager, she is responsible for managing CSA’s business within India. She also looks after the engagement with members, partners, chapters and other strategic alliances in country. She strengthens CSA influence and presence in APAC through managing over 30 Chapters in the region primarily focusing on providing the various support system and tools for strengthing the Chapters engagement. Ekta also manages the CCSK Training in the APAC region and has been actively leading various regional events in India.
Ekta has completed her MBA in marketing from S.P Jain School of Global Management-Singapore and Dubai. |
Ludovic PERRET
Co-chair, Quantum-Safe Security WG, CSA
|
Ludovic PERRET is co-founder and CPO of CryptoNext Security, a spin-off from INRIA Paris and Sorbonne University specialized in post-quantum cryptography. Before founding CryptoNext Security, Ludovic was an associate professor at Sorbonne University.
Ludovic has expertise in the design, analysis and deployment of post-quantum cryptography; publishing more than 60 scientific articles in these topics. In 2018, Ludovic was awarded the Atos-Joseph Fourier First Prize in the area of Quantum Technologies for his contributions to post-quantum cryptography. Ludovic is also deeply involved in the standardization of post-quantum cryptography : co-author of the GeMSS digital signature scheme selected to the on-going third round of the NIST post-quantum standardization process, Co-chair of the CSA Quantum-Safe Security working group and an active member of the ATARC Quantum working group, the quantum-safe cryptography specification group at ETSI (TC Cyber QSC) and the ASC X9 Quantum Computing Risk Study Group. |
Jim REAVIS
Co-Founder & CEO, CSA
|
For many years, Jim REAVIS has worked in the information security industry as an entrepreneur, writer, speaker, technologist and business strategist. Jim’s innovative thinking about emerging security trends have been published and presented widely throughout the industry and have influenced many. Jim is helping shape the future of information security and related technology industries as co-founder, CEO and driving force of the Cloud Security Alliance. Jim has been named as one of the Top 10 cloud computing leaders by SearchCloudComputing.com.
Jim is the President of Reavis Consulting Group, LLC, where he advises security companies, governments, large enterprises and other organizations on the implications of new trends such as Cloud, Mobility, Internet of Things and how to take advantage of them. Jim founded SecurityPortal, the Internet’s largest website devoted to information security in 1998, and guided it until a successful exit in 2000. Jim has been an advisor on the launch of many industry ventures that have achieved a successful M&A exit or IPO. Jim is widely quoted in the press and has worked with hundreds of corporations on their information security strategy and technology roadmap. Jim has a background in networking technologies, marketing, product management and systems integration. Jim received a B.A. in Business Administration / Computer Science from Western Washington University in 1987 and formerly served on WWU’s alumni board. Jim was recognized as a WWU Distinguished Alumnus in 2015. In 2016, Jim was inducted into the Information Systems Security Association (ISSA) Hall of Fame. |
Dr. Muhammad
SADIQ Chair, CSA Pakistan Chapter
|
Dr. Muhammad SADIQ holds a PhD degree in Computer Science. He has over 15 years of industry experience with expertise in security operations, data privacy, security architecture, security culture, security maturity models and security strategy, ISO27001 Implementation and auditing. He is affiliated with the defense sector in Pakistan, where he also serves as a volunteer in several organizations such as CSA-PK, ISC2 Islamabad , and PISA. He has several top rated cyber security certifications including CEH, CHFI, ISO27001 LA/LI, and Mobile Forensics. His research interests are Artificial Intelligence, Cloud Computing, Cloud Security, and Computer Vision. Mr. Sadiq has several publications in the last few years.
|
Mehzad SEHAR
Group Head, Information Security, Engro Corp
|
Mehzad SEHAR is Group Head, Information Security at Engro Corp, with 22+ years of international diversified experience in several industries with focus on cyber security for OT/ICT in Telecom, Banking, Oil & Gas, Energy, FMCG and consulting in Pakistan as well as Middle East & Europe. He has worked as CISO in major industries (such as PTCL, Telenor, & Bank Al Falah). He was the program director of a security project where he built the KSA National CERT in 2007 and was a founding member of Saudi Aramco first cyber security centre in 2001.
He holds an engineering degree with management certificates from Insead, Harvard Business Schools, Telenor Academy including more than two dozen global security certifications to design, build and manage security concepts into tangible organizational services. |
Dr. Jawwad Ahmed SHAMSI
Dean, Faculty of Computing at National University of Computer & Emerging Sciences, FAST Karachi
|
Dr. Jawwad A. SHAMNSI is Professor and Dean (Computing) at FAST National University of Computer and Emerging Sciences, Karachi. He received a PhD degree from Wayne State University, MI, USA in 2009 and an MS degree from the University of Michigan-Dearborn in 2002. He has written several papers in leading journals and conferences related to Cloud Computing, Big Data, Cyber & Network Security, Software Defined Networks, Smart Cities, High-Performance Computing, Machine Learning, and Deep Learning. He has also authored a book entitled “Big Data Systems – A 360 Degree Approach” published by CRC Press. His research has been funded by several agencies including NVIDIA, Higher Education Commission (Pakistan), and National Center for Artificial Intelligence.
Dr. Shamsi leads a research group syslab, http://syslab.khi.nu.edu.pk. He has also established startups, syslab.ai and iparhai.com. |
Dr. Rafi us SHAN
Project Director Digital Transformation, Ministry of IT & Telecom, Pakistan
|
Dr. Rafi us SHAN has a breadth of local and international experience across different sectors such as Cybersecurity, Cloud Computing and e-Government. He has a PhD degree in Communication Systems from University of Lancaster and has authored over 20 research publications in various national & international conferences and journals. He is Project Director for Project Monitoring and Digital Transformation Cell at the Ministry of Information Technology & Telecommunication Pakistan.
|
John YEOH
Global VP Research, CSA
|
John YEOH is currently working in the capacity of Global Vice President of Research at Cloud Security Alliance (CSA). He has previously held the profiles of Director of Research, Senior Research Analyst and Acting Research Director at the firm. John is also a Technical Advisory Council Member for the Federation Communications Commission. He is an alumnus of the prestigious Massachusetts Institute of Technology (MIT) and University of Washington.
|
Dr. Muhammad YOUSAF
Head of Department, Cybersecurity & Data Science, Riphah International University
|
Dr. Muhammad YOUSAF is an Associate Professor in Riphah International University, Islamabad, Pakistan. He serves as the department head of cybersecurity and data science in the Riphah Institute of Systems Engineering, Islamabad. He holds a PhD degree in Computer Engineering and is a certified Information Systems Security Professional. He is a pioneer of introducing and establishing many emerging areas of cybersecurity and data science here in Pakistan. He is a unique blend of academia as well as of industry. He is a renowned teacher, a seasoned practitioner and cybersecurity and data governance consultant in the last 13 years in the cybersecurity industry of Pakistan. He also has 40+ research publications and 10+ national and international funded projects on his credit.
|
Time |
Activity |
Session Link |
9:00 am |
Welcome Remarks Dr. Hing-Yan LEE (EVP APAC, CSA) Opening Remarks Dr. Muhammad SADIQ (Chair, CSA Pakistan Chapter) Opening Address Jim REAVIS (Co-Founder & CEO, CSA) |
|
9:30 am |
Keynote : Digital Transformation in Public Sector through Cloud Adoption Dr. Rafi us SHAN (Project Director Digital Transformation, Ministry of IT & Telecom, Pakistan) With accelerated digital transformation across different sectors, citizens across the world are expecting the same level of seamless service delivery from the public sectors as the services they receive from the private sector. This requires an increased level of data sharing among public sector entities and an enhanced level of availability of e-services to citizens. The agility and quality of services offered by the private sector is very difficult to achieve with a fragmented ICT infrastructure by public sector entities. Moreover, with traditional procurement practices, the time to market for public sector e-government solutions is very long. Furthermore, the cost of maintaining individual data centers is high, their efficiency low and their security is below par. Therefore, public sector entities in many countries are gradually moving away from investing in individual data centers towards a cloud model. Through the Pakistan Cloud First Policy, MoITT aims to contribute to the GOP’s goal to promote e-Governance in order to make Pakistan the frontrunner in good governance through IT enablement at all levels. MoITT also aims to reduce the burden of import bills of Pakistan by discouraging the investments in organization specific data centers in public sector organizations and taking advantage of the economies of scale offered by the cloud. |
|
10:15 am |
A Blockchain-based Framework to Achieve Supply Chain Visibility within Niche Manufacturing Dr. Junaid ARSHAD (Associate Professor, Birmingham City University, UK) Modern manufacturing practices are increasingly modular, relying on a number of different independent parts to deliver the final product. These parts are manufactured by different suppliers who may in turn rely on their own suppliers, creating a web-like structure. Although benefits of modern manufacturing practices are remarkable, their success depends upon enhanced visibility into the product's supply chain to streamline movement of materials, identify and eliminate defects, ensure standardisation, and achieve effective inventory management. A number of established enterprise solutions (MES, ERP) help streamline supply chain processes, however the visibility provided by such systems is limited to 'tier 1' suppliers. The blind spot left by these systems limits the ability of a modern manufacturing organisation in many ways such as limiting ability to estimate lead times for materials, lack of provenance for materials traceability, and affecting business's ability to achieve standardisation across the supply chain especially for make-to-order products where adherence to custom design specifications is critical to success. This talk will outline the efforts to design and develop a blockchain-based framework to achieve supply chain visibility within niche manufacturing. Specifically, it will highlight use of distributed ledger technologies to achieve parts traceability across different tiers of the supply chain as well as exploring use-cases such as digital Certificates of Conformity and critical parts. |
|
11:00 am |
Embracing ICS with Cloud Computing Necessitate Clarity of Vision William HO (Co-chair, ICS Security WG, CSA) Understanding the trends, security concerns and state of the Industrial Control Systems (ICS) cloud helps pave the way. ICS with access to the cloud via web-enabled services are where IT and OT (Operational Technology) converge resulting in an integrated process and information flow that brings with it a more complex architecture. As ICS advances from communicating with networks within the enterprise to interacting externally via IoT platforms and the cloud, the efficiency, effectiveness and scalability improve. These advances create additional complexity and a larger attack surface which in turn has increased the opportunity for cyberattacks. |
|
11:45 am |
Securing the Cloud via CCSK Ekta MISHRA (Country Manager, India, CSA) As organizations migrate to the cloud, they need information security professionals who are cloud-savvy. The Certificate of Cloud Security Knowledge (CCSK) is widely recognized as the standard of expertise and provides an individual with the foundation they need to secure data in the cloud. Learn how CCSK can bridge the gap and provide an important first step in establishing baseline knowledge for individuals in cloud security. |
|
12:15 pm |
Cloud Security for Startups - From A to E(xit) Moshe FERBER (Chair, CSA Israel Chapter) Cloud computing performs amazing things for startups, providing young companies with access to enterprise grade infrastructure. But it is also a double-edged sword. The lack of proper security controls can lead to multiple challenges varying from longer sales cycles to losing customers & investors trust. The CSA has identified those unique challenges and developed a cloud security for startups guidelines. In this presentation, the guidelines co-author, Moshe Ferber, will explain the 3-phase cyber security strategy that is recommended for cloud based startups. |
|
12:45 pm |
BREAK |
- |
1:30 pm |
Modeling Against the Top Threats in Cloud John YEOH (Global VP Research, CSA) Since 2010, the CSA Top Threats report has revealed major security concerns in cloud computing from top industry professionals. John shares how the report can be used to protect against the latest attacks and high profile breaches of the past year. Leveraging the latest Deep Dive attack model, popular breaches are broken down into the threats, risks, and vulnerabilities that were exposed. Critical mitigations and controls are also shared to make sure your organization is prepared for these types of attacks. |
|
2:15 pm |
Cybersecurity in the Quantum Era Bruno HUTTNER & Ludovic PERRET (Co-chairs, Quantum-Safe Security WG, CSA) As emphasized by the recent announcements on the quantum advantage, quantum computers can already perform computations, deemed impossible or at least very lengthy with classical computers. Having access to improved computing power is great news in many areas. However, this also represents a threat for most of our communications. Indeed, cryptography, which is underpinning the security of our communication infrastructure, is based on some hard mathematical problems, which will become tractable with a quantum computer. Our complete cybersecurity infrastructure has to be revamped. In this talk, we start with a brief explanation of the quantum computer and explain the quantum threat. We then present possible solutions. Some solutions are based on new algorithms. They are known as quantum-resistant algorithms. These can be complemented with quantum solutions, which utilize the same peculiar properties of the quantum world to thwart the quantum computer threat. Together, they will be part of a new quantum-safe infrastructure. Any organisation or person relying on secure communication for his business or personal life has to start taking this new threat into account. |
|
3:00 pm |
Panel Discussion : Cloud Computing & Security Adoption & Challenges in Pakistan The adoption of cloud computing brings numerous advantages in both public and private sector organizations, however successful cloud computing adoption requires expertise and understanding of various fields. In this panel discussion, the focus is on identifying cloud adoption barriers/challenges and advantages/enablers. It also discusses the related security concerns related to cloud adoption and how cloud computing can in actual address these concerns. MODERATOR : Dr. Sheheryar MALIK (Director, Riphah School of Computing & Innovation) PANELISTS:
|
|
4:00 pm |
Panel Discussion : Pakistan National Cybersecurity Policy Pakistan’s National Cyber Security Policy 2021 was recently approved by the cabinet. The policy was drafted by the Ministry of Information Technology and Telecommunications, Government of Pakistan. The policy document comprehensively covers the governance, management, operational, technical, and capacity building aspects of cybersecurity. MODERATOR: Dr. Muhammad YOUSAF (Head of Department, Cybersecurity & Data Science, Riphah International University) PANELISTS:
|
Disclaimer : The ordering & timing is subject to change