 |
|
|
 |
4th Elected Committee for 2005/2007 |
|
|
4th Elected Committee 2005/2007
The following are members of the current committee of SIG^2.
|
Aloysius Cheang
President
|
|
Aloysius Cheang is the Director heading the Technology Practice in PIPC Asia and Middle East. PIPC is a leading global management consultancy firm that provides business and technology consulting and professional services. Aloysius delivers complex, multi-dimensional strategic and information security programmes for Global 500 organisations across Asia, USA and Europe. He specialises in information risk management and development of information security strategies, frameworks, policies and controls. He has led numerous IT security audit, security reviews and security penetration testing engagements, provided business continuity management and disaster recovery services, and supported clients in computer forensic and investigation.
Aloysius is also the founder and President of the Singapore-based 1000-strong Information Security Professional Association, SIG^2 (Special Interest Group in Security and Information inteGrity). Since 2004, he is a member of the Chief Security Officer Round-Table chaired by Infocomm Development Authority of Singapore that advises government policy makers on the 10-year IT master-plan. In addition, he represents Singapore in the ISO/IEC Joint-Technical Steering Committee 27, which developed international security standards such as ISO17799 (currently known as ISO 2700x series). Aloysius has published numerous papers in top-tier research publications, presented in many internationally recognised conferences and is a sought-after subject matter expert for news media such as Times Asia magazine, CIO magazine, The Business Times, The Straits Times, ZDNet, Computerworld and ChannelNewsAsia. As one of the first Singaporean to be trained at SANS Institute in GCIH, he is licensed with the Federal government of USA as an ethical hacker since 2000.
Aloysius has held previously senior management position in PricewaterhouseCoopers Singapore where he led the IT security and computer forensic groups. Prior to that, he was a cyber-warfare research scientist for DSO National Laboratories in Singapore where he provided expertise in building up National information security capabilities that contributed to critical infrastructure protection, homeland defence program and computer warfare. Aloysius holds a master of computing and a bachelor of science in computer and information sciences degree from National University of Singapore, with several industry recognitions - CISSP, CISA, MS MVP (Security), GCIH and GNU LCP. He also attended intermediate training in Encase, a leading forensic tool from Guidance Software.
|
| |
|
|
|
| |
Chan Kin Chong
Vice-President
|
|
Kin Chong is currently an Information Risk Manager with JPMorgan Chase Bank
for the Asia Pacific region, a regional risk management role that covers
the diverse areas of risk assessment, system security design, third-party
service provider IT audit, regulatory compliance, security process
engineering, and user security awareness.
Before joining JPMorgan Chase, Kin Chong was with Singapore-listed company
Stratech Systems, where he held the concurrent portfolio of Head,
e-Business R&D labs, as well as Senior Security Consultant, and was the
principal behind the security design of e-Government and e-Business
applications. Prior to that, he served as Assistant Director in the
Infocomm Development Authority of Singapore (IDA Singapore), where he
championed the adoption of standards and technologies such as public key
infrastructure, smart cards and biometrics in both the public and private
sectors, and was also chief editor of the government's Security Technology
Roadmap in the year 2000.
Kin Chong has been actively involved in the related fields of technology
and information security for more than eight years. He has diverse
experience in planning, designing, implementing and managing IT security
initiatives. As Deputy Chair of the Singapore Security and Privacy
Standards Technical Committee (SPSTC), he continues to be an active player
in the development, adoption and promotion of information security
standards in Asia. Kin Chong is a Certified Information Systems Security
Professional (CISSP) and Certified Information Systems Auditor (CISA).
Awarded the prestigious Singapore National Computer Board scholarship in
1992, Kin Chong studied at the Carnegie Mellon University in Pittsburgh,
USA where he graduated with Honors in 1996 with double bachelor degrees in
Mathematics and Computer Science.
|
| |
|
|
|
| |
Khoh Chih Jeun
Secretary
|
|
Chih Jeun is the Assistant Director for Monetary Authority of Singapore (MAS) Technology Risk Supervision Division where he worked with a portfolio of financial institutions in technology risk management and information security processes.
Prior to MAS, Chih Jeun had held various appointments with the public service and had participated in IT governance, infrastructure assurance, business continuity and disaster recovery and technology audit projects.
|
| |
|
|
|
| |
Lim Boon Seng
Vice-Secretary
|
|
Boon Seng is a manager with Ernst and Young's Technology Risk Advisory Services. He brings to his clients 8 years of experience in IT risk management, security audit and review. He is a specialist in performing security testing for clients in banking and finance sectors as well as government agencies, having spent over 6 years with DSO National Laboratories lending his expertise in homeland defence initatives.
Boon Seng graduated from Nanyang Technology University a Bachelor of Applied Science (Computer Engineering) with honours. He is a Certified Information Security Professional (CISSP) and a Certified Information System Auditor (CISA).
|
| |
|
|
|
| |
Raymond Lay
Treasurer
|
|
Raymond Lay has more than 8 year of IT and Information Security experience.
He works for Kraft Foods Inc as the Regional Manager in the Security &
Controls group. His IT security experience ranges from Mainframe Security,
BS7799 compliance, SOX compliance, standards review, incident response,
intrusion analysis, vulnerability assessment, product research, security
framework development to trianing. Prior to this appointmnet, he was the
Head of IT Security in Great Eastern, Senior Consultant in Citrix Systems,
Head of Network Security in a government agency and the Regional Lead for
Global Networks (Data/Voice/Security) in a Big 6 Audit MNC. Raymond is also
a country representative to international ISO/IEC/JTC1/SC27 meetings and a
member of the ITSC NSSWG (Network Security Standards Working Group).
Raymond holds a B.Accountancy degree from the Nanyang Technological
University as well as a number of professional security certifications
including CISSP-ISSMP, ISSAP, CISA, SISP and CCNA.
|
| |
|
|
|
| |
Josephine Tan
Vice-Treasurer
|
|
Josephine is the regional Information Security Manager for British Petroleum, responsbile for Rest of the World territory.
|
| |
|
|
|
| |
Francis Goh (Stepped down)
Committee Member, Director of Education and Campus Relations
|
|
Francis graduated from Carnegie Mellon University (USA) with dual degrees, BS (with University Honors) in Electrical and Computer Engineering and BS (with University Honors) in Economics in 2000. He also holds a Master of Science in Electronic Commerce from the joint program offered by the Tepper Business School and the School of Computer Science at Carnegie Mellon in 2001.
Since then, he has been working in the Infocomm Development Authority (IDA).For the period from 2001 to 2002, he was with the Development Policy Division, looking after infocomm policy matters. He has provided policy and regulatory advice on policy matters related to the Electronic Transactions Act, Electronic Transactions (Certification Authorities) Regulations and Security Guidelines for CA's. He administered the regulatory aspects of the voluntary licensing framework and regime for the licensed certification authorities. He has a good grasp of the technological aspects of Public Key Infrastructure (PKI) and has contributed to the report on APEC e-Security Task Group (ESTG) Report on Electronic Authentication (Issues related to its selection and use), 2002 as part of Singapore's international contribution to APEC ESTG.
In 2003, he joined the Infocomm Security Division (iSec) in IDA. He has actively contributed to the conceptualization of the S$38 million Infocomm Security Masterplan and is experienced in conducting brainstorming workshops, research surveys, performance and management reporting, cost-benefit analysis, project portfolio management and prioritization, budget planning and securing of funding and project account management for the set of masterplan projects.
|
| |
|
|
|
| |
Lim Kian Kim (Stepped down)
Committee Member and Director, Industrial Relations
|
|
Kian Kim is responsible for client engagements and training delivery. The courses he teaches include IT security management particularly technical-legal compliance for large enterprises, IT security for non IT managers and compliance under various standards. He has worked both in public sectors such as Infocomm Development Authority of Singapore (IDA) and global consultancy firms such as Arthur Andersen (Singapore Office) in diverse areas such as international market research, standards and technology, electronic commerce, certification authority, technology laws and security consulting.
He has published in journals such as the Asian Business Law Review, The CIO etc. and has lectured as Adjunct Lecturer with a local Polytechnic. In addition he has presented numerous papers numerous conferences and seminars. Prior to co-founding Integer Knowledge Pte Ltd, he was the General Manager of a public listed company responsible for risk management across its different entities of the company.
Kian Kim is a Director with IntegerKnowledge and holds the following formal qualifications:
- Master of Laws (Law Faculty), National University of Singapore, Singapore
- Bachelor of Laws (Monash School of Law), Monash University, Australia
- B.A (Government & Psychology), University of Texas, Austin, USA
- Specialist Diploma in Information Systems Security, Temasek Polytechnic, Singapore
- Founding Associate Fellow (Centre for Technology Law and Policy), Nanyang Technological University
|
| |
|
|
|
| |
Don Ng
Committee Member and Director, Centre of Competency
|
|
Don Ng is a field Director in charge of Gateway Security with Symantec in this region. He has been involved intimately with the domain of enterprise security management and perimeter security solutioning. Don carries out Security Architecture design and consultancy engagements across the region has given him an excellent grasp the different security lifecycles across asia.He is an evangelist in spreading the gospel of application security.
Prior to Symantec, Don Ng was the Country Manager of Quantiq International, managing a
diverse portfolio. Besides overseeing the expansion of the company into Thailand
and Vietnam, he also led the Strategy Team in Quantiq, which was responsible for
security market intelligence and security solution evaluation and
induction.
Don holds the CISSP and CFI certification among other certifications. His medium terms goals is to be a subject matter expert in the fields of information warfare and nanotechnology security.
|
| |
|
|
|
| |
Steven Sim
Committee Member and Director, SIG^2 Labs
|
|
Steven Sim Kok Leong has more than 8 years of IT security experience. He works for the National University of Singapore Computer Centre as an Assistant Manager in the Infocomm Security Group which doubles as the NUSCERT team. His IT security experience ranges from BS7799 compliance and audits, standards review, incident response, intrusion analysis, vulnerability assessment, penetration testing, product research, tools development to training. Security tools he developed include a behavioral-based IDS which has helped streamline the detection for new worms. Prior to this appointment, he managed critical firewalls and secured mission-critical servers, mission-critical networks and storage area networks at the University.
Steven is the Principal Investigator of the SIG^2 Honeynet Project team, research director at the ISSA (Information Systems Security Association) Singapore Chapter, a country representative to international ISO/IEC/JTC1/SC27 meetings, a member of the ITSC NSSWG (Network Security Standards Working Group) and an advisory member at the SANS GCFW advisory board.
Steven holds a postgraduate MComp (Masters of Computing) degree from the National University of Singapore on top of his BSc in Information Systems and Computer Science as well as a number of professional security certifications including CISSP, CISA, GCFW (honors), SISP and CCSA. In his spare time, he also maintains a personal website at https://www.beepz.com.
|
| |
|
|
|
| |
Roland Yeo
Committee Member and Director, Events and Communications
|
|
Roland is a specialist in the IT training and certification industry with
more than 8 years experience in the sales and marketing of vendor
certification and training programs. He is regular speaker at certification
and career seminars, providing consultancy and advice to IT professionals
with their career advancement and development.
As a keen enthusiast in all things IT, Roland is currently an IT
security evangelist promoting the importance of security awareness and
technical competency of both IT and non-IT professionals. Roland holds a
bachelor degree in computing and professional certifications in SISP and
MCSE. He is currently the Managing Consultant and co-founder of Fusion
Frontier, a human capital acquisition and management company specializing in
the placement of IT professionals.
|
Past Committees
3rd Elected Committee 2004/2005
2nd Elected Committee 2003/2004
1st Elected Committee 2002/2003
Founding Pro-tem Committee 2001/2002
|
|
