Escalate Your Information Security Standards Beyond Frontiers

Executive Committee 2017/2018

Dr Steven Wong

President
Dr. Steven Wong, MAISP
Singapore Institute of Technology

Dr. Steven Wong is an Associate Professor and Programme Director, Academic Programmes, at the Singapore Institute of Technology (SIT). He spearheaded one of SIT’s flagship degree programmes in Software Engineering in 2014 and also lead the first Information Security degree programme offered by an autonomous university in Singapore. Steven obtained his undergraduate degree with 1st class honours in Computer Engineering from Nanyang Technological University (NTU) and his PhD in Informatics from the University of Edinburgh. Steven have over a decade of academic and industry experience, and was involved in several multi-million dollar funded research projects. Currently, Steven is also serving as a board member of the Cloud Security Alliance (Singapore) and is a committee member of the Singapore Computer Society Infocomm Security SIG. He is also currently the Chairman of the IEEE Consumer Electronics (Singapore) Chapter.

Alex Lim, MAISP

Vice-President
Alex Lim, MAISP
DBS Bank

Alex has over 25 years of diverse experience ranging from infrastructure and application support, security management, security consulting on regional presales and transition projects in outsourcing services, and technology risk management in Finance Services Industry (FSI). He specializes in IT security and risk management and is currently working as VP, Technology Risk Management in DBS Bank. He holds the CISSP, CISA, CISM and ISO27001 Qualified Auditor certifications.

Andre Shori, MAISP, CISSP®, PMP®

Vice-President
Andre Shori, MAISP, CISSP®, PMP®

Andre Shori hails from Canada and has over 20 year’s international experience as a Project Manager in Information Technology. He holds a variety of certifications in the Cyber Security arena and has been a full member of AISP since 2009. Andre holds a Bachelors of Business Administration in International Business and a Bachelor of Science degree in Management and Technology. He is also a current World Record holder in the Guinness Book of World Records. Presently, Andre is enrolled in the Master of Science in Information Security Management program from the prestigious SANS Institute.

Ryan Baxendale, MAISP

Vice-President
Ryan Baxendale, MAISP
Centurion Information Security

Ryan Baxendale is an information security consultant and penetration tester who is well versed in a variety of security assurance services helping clients go beyond compliance, government regulations, and corporate initiatives resulting in better protection of their critical information assets. Ryan’s main area of expertise is focused on penetration testing and he has profound experience with web and mobile applications, enterprise networks, wireless security testing, vulnerability assessments, architecture reviews, and system hardening. Ryan holds a Bachelor's degree in Network Security and maintains active CREST, OSCP, and CISSP certifications.

Cecil Su, MAISP

Secretary
Cecil Su, MAISP
Trustwave

Cecil is the Practice Lead for Trustwave SpiderLabs SEA, which is the advanced security services and research team that specialises in penetration testing, incident response/forensics, education services, and security research. Prior to Trustwave, Cecil was the Head of Professional Security Services arm for e-Cop/Quann, a member firm of Certis Cisco. As head of the Professional Security Services unit, he led various engagement teams on diversified advisory, security testing and incident reponse projects across vertical industries. His current area of focus is in IT Security research and security testing.

Yew Hock Meng, MAISP

Treasurer
Yew Hock Meng, MAISP
LGA Telecom

Hock Meng is the Chief Operating Officer of LGA Telcom Pte Ltd. Responsible for the formulation and implementation of LGA’s commercial strategy of transforming into a Managed Security Service Provider (MSSP), Hock Meng has played a key role in driving the business growth of the company to its current level.

Freddy Tan, MAISP

Committee Member
Freddy Tan, MAISP
NCS

Freddy holds a MSc in Information Systems Security from the London School of Economics & Political Science and CISSP. He is a member of the (ISC)2 Asia Advisory Board and was awarded the (ISC)2 President's Award in 2003 in recognition of his volunteer work with (ISC)2.

Huynh Thien Tam, MAISP

Committee Member
Huynh Thien Tam, MAISP
Kroll

Thien Tam is a cyber-security advisor with over 10 years of experience on advising organisations across industries in Singapore and APAC region on cyber-security matters. Tam is currently a Senior Director of Kroll's Cyber Security and Investigations practice helping organisations to prevent, detect and response to cyber-attacks. Prior to Kroll, Tam was with MWR InfoSecurity specialising on security assurance services and researching on smart technologies. Before that, Tam was an Associate Director in KPMG Singapore leading security assessment services. Tam holds Offensive Security Certified Professional (OSCP), CREST Registered Penetration Tester and Certified Information Systems Security Professional (CISSP) and Payment Card Industry Qualified Security Assessor (PCI QSA). He gathered several hacking competition awards, reported zero-day vulnerabilities and spoke at various security events in the region.

Tok Yee Ching, MAISP

Committee Member
Tok Yee Ching, MAISP
MWR InfoSecurity

Yee Ching is currently a Threat Hunter in Countercept, an advanced attack detection service for highly targeted organisations created by MWR InfoSecurity where he helps to detect, respond and reduce the impact caused by malicious attackers to the clients’ critical assets by actively seeking out for any nefarious activities. In his free time, he researches on a multitude of information security areas including and not limited to penetration testing, mobile applications, attack detection, malware and Internet of Things (IoT) devices. He currently holds a variety of professional information security certifications, and is both a SANS Lethal Forensicator and CREST Registered Penetration Tester. In addition to his full-time job, he is also an Adjunct Lecturer at Singapore Polytechnic, teaching the Specialist Diploma in Cyber Security Management and a SANS Mentor for SANS Institute.

Philip Kwa, SMSCS, CITPM

Committee Member
Johnny Kho, MAISP
Singtel

Johnny Kho is currently an Associate Director in Singtel Cyber Security handling Managed Security Services.

Prior to Singtel, he is a Regional Business Development Manager with Systex Corporation, as part of the team guiding the solution strategy for the Asia Region. He constantly engages with Vendors, Partners and Customers in a business and advisory role; covering key areas in Web Application Security, Compliance and Risk Management as well as IT Operations Optimization.

He has previously taken on Product Management and Solution Consultant roles with NetIQ (Attachmate), BT Frontline and Internet Security Solutions (IBM) mainly in enterprise security especially in areas of intrusion prevention, vulnerability management and security incident and event management from solution and operations perspective.

He is a CISA and CISSP. He has been active in the local IT Security area through various interest groups and as a member of the ISMS Working Group under SPSTC, ITSC Singapore (www.itsc.org.sg), SPRING. He has done public speaking at regional seminars and conferences such as Microsoft TechEd and HP BTO Conference.

Chai Chin Loon

Appointed Committee Member Representing GovTech
Chai Chin Loon
Government Technology Agency of Singapore (GOVTECH)

Chin Loon has spent the past 21 years in the IT industry after retiring from 12 years of active service in the Singapore Navy, where he held key appointments, including that as the Commanding Officer of a naval ship. He is currently the Senior Director, Cyber Security Group in GovTech where he oversees the cyber security of the government. The group provides cyber security governance supported by a consulting practise and technology explorations in addition to the monitoring of security events with robust incident response capabilities. He also oversees the Ministries Chief Information Officers deployed to all ministries.

Martin Khoo, MAISP

Appointed Committee Member Representing IMDA
Martin Khoo, MAISP
Info-communications Media Development Authority of Singapore

Martin has over 13 years of experience in the IT industry specializing in IT security. He is currently the Deputy Director of infocomm security with the Info-communications Media Development Authority (IMDA) of Singapore. He leads a team of security consultants charged with providing security monitoring, vulnerability assessment, penetration testing, incident response and forensic investigation to the government agencies and organizations. He is the founder and Head of the Singapore Computer Emergency Response Team (SingCERT) which is the national security incident response center under the purview of IMDA, charged with the prevention, detection and resolution of computer security incident. Martin is a founding member and Deputy Chairman of the steering committee of the Asia Pacific Computer Emergency Response Team (APCERT).

Philip Kwa, SMSCS, CITPM

Appointed Committee Member Representing SCS
Philip Kwa, SMSCS, CITPM
Quann

Philip Kwa was appointed Account Executive, Public Sector Lead, in Feb 2013. He brings more than 20 years of proven experience and track record of direct and channel sales as well as managing large complex regional project. He has extensive experience working in China, ASEAN, Japan, and Korea and with different industries such as High Tech, Automotive, Consumer Products, Logistics and Retail.

Martin Khoo, MAISP

Co-Opted Committee Member
Mithun Bagdai, MAISP
NCC Group

Mithun Bagdai is a principal information security consultant and red team lead for APAC at NCC Group. Mithun has been delivery information assurance for a large variety of industries for over seven years, across EMEA and APAC. He holds a Bachelor’s Hons degree in Computer Studies, maintains CREST and CISSP certifications.