Escalate Your Information Security Standards Beyond Frontiers

Executive Committee 2018/2019

Dr Steven Wong

President
Dr. Steven Wong, MAISP
Singapore Institute of Technology

Dr. Steven Wong is an Associate Professor and Programme Director, Academic Programmes, at the Singapore Institute of Technology (SIT). He spearheaded one of SIT’s flagship degree programmes in Software Engineering in 2014 and also lead the first Information Security degree programme offered by an autonomous university in Singapore. Steven obtained his undergraduate degree with 1st class honours in Computer Engineering from Nanyang Technological University (NTU) and his PhD in Informatics from the University of Edinburgh. Steven have over a decade of academic and industry experience, and was involved in several multi-million dollar funded research projects. Currently, Steven is also serving as a board member of the Cloud Security Alliance (Singapore) and is a committee member of the Singapore Computer Society Infocomm Security SIG. He is also currently the Chairman of the IEEE Consumer Electronics (Singapore) Chapter.

Alex Lim

Vice-President
Alex Lim, MAISP
DBS Bank

Alex has over 30 years of diverse experience ranging from infrastructure and application support, security management, security consulting on regional presales and transition projects in outsourcing services, and technology risk management in Finance Services Industry (FSI). He specializes in IT security and tech risk management and is currently working as VP, Group Technology Risk Assurance in DBS Bank. He holds the CISSP, CISA, CISM, CCSP and ISO27001 Qualified Auditor certifications.

Andre Shori

Vice-President
Andre Shori, MAISP, CISSP®, PMP®

Andre Shori hails from Canada and has over 20 year’s international experience as a Project Manager in Information Technology. He holds a variety of certifications in the Cyber Security arena and has been a full member of AISP since 2009.

Andre holds a Bachelors of Business Administration in International Business and a Bachelor of Science degree in Management and Technology. He is also a current World Record holder in the Guinness Book of World Records. Presently, Andre is enrolled in the Master of Science in Information Security Management program from the prestigious SANS Institute.

Ryan Baxendale, MAISP

Vice-President
Ryan Baxendale, MAISP
Centurion Information Security

Ryan Baxendale is an information security consultant and penetration tester who is well versed in a variety of security assurance services helping clients go beyond compliance, government regulations, and corporate initiatives resulting in better protection of their critical information assets. Ryan’s main area of expertise is focused on penetration testing and he has profound experience with web and mobile applications, enterprise networks, wireless security testing, vulnerability assessments, architecture reviews, and system hardening.

Ryan holds a Bachelor's degree in Network Security and maintains active CREST, OSCP, and CISSP certifications.

Cecil Su

Secretary
Cecil Su, MAISP
BDO Advisory

Cecil leads the Cyber Security & DFIR unit for BDO Advisory. He currently leads various engagement teams on diversified advisory, security testing and incident response projects across vertical industries. His current area of focus is in IT Security research and security testing. Prior to this, he was the Practice Lead for Trustwave SpiderLabs SEA, which is the advanced security services and research team that specialises in penetration testing, incident response/forensics, education services, and security research.

Yew Hock Meng

Treasurer
Yew Hock Meng, MAISP
Wonwey Pte Ltd

Hock Meng has more than 20 years of experience in managed services including Managed Security Service Provider (MSSP). He holds a MSc in Management of Technology (NUS).

Freddy Tan

Committee Member
Freddy Tan, MAISP
Ensign InfoSecurity

Freddy holds a MSc in Information Systems Security from the London School of Economics & Political Science and CISSP. He is a member of the (ISC)2 Asia Advisory Board and was awarded the (ISC)2 President's Award in 2003 in recognition of his volunteer work with (ISC)2.

Huynh Thien Tam

Committee Member
Huynh Thien Tam, MAISP
Kroll

Tam is a cyber-security advisor with over 12 years of experience on advising organisations across industries in Singapore and APAC region on cyber-security matters. Tam is currently a Senior Director of Kroll's Cyber Security and Investigations practice helping organisations to prevent, detect and response to cyber-attacks. Prior to Kroll, Tam was with MWR InfoSecurity specialising on security assurance services and researching on smart technologies. Before that, Tam was an Associate Director in KPMG Singapore leading security assessment services. Tam holds Offensive Security Certified Professional (OSCP), CREST Registered Penetration Tester and Certified Information Systems Security Professional (CISSP), GIAC Certified Forensic Examiner (GCFE) and GIAC Certified Forensic Analyst (GCFA). He gathered several hacking competition awards, reported zero-day vulnerabilities and spoke at various security events in the region.

Tok Yee Ching

Committee Member
Tok Yee Ching, MAISP
Singapore University of Technology and Design

Yee Ching is currently a PhD Student in Singapore University of Technology and Design (SUTD) under the Information Systems Technology and Design (ISTD) Pillar. His research interests cover a wide spectrum of information security areas including and not limited to penetration testing, mobile applications, attack detection, malware, Internet of Things (IoT) devices and Cyber-Physical Systems (CPS). Before pursuing his PhD, he was a Threat Hunter in Countercept, an advanced attack detection service for highly targeted organisations created by MWR InfoSecurity where he helped to detect, respond and reduce the impact caused by malicious attackers to the clients’ critical assets by actively seeking out for any nefarious activities. He currently holds a variety of professional information security certifications, and is both a SANS Lethal Forensicator and CREST Registered Penetration Tester. Yee Ching is also an Adjunct Lecturer at Singapore Polytechnic, teaching the Specialist Diploma in Cyber Security Management and a SANS Mentor for SANS Institute.

Johnny Kho

Committee Member
Johnny Kho, MAISP
Singtel

Johnny Kho is currently an Associate Director in Singtel Cyber Security handling Managed Security Services.

Prior to Singtel, he is a Regional Business Development Manager with Systex Corporation, as part of the team guiding the solution strategy for the Asia Region. He constantly engages with Vendors, Partners and Customers in a business and advisory role; covering key areas in Web Application Security, Compliance and Risk Management as well as IT Operations Optimization.

He has previously taken on Product Management and Solution Consultant roles with NetIQ (Attachmate), BT Frontline and Internet Security Solutions (IBM) mainly in enterprise security especially in areas of intrusion prevention, vulnerability management and security incident and event management from solution and operations perspective.

He is a CISA and CISSP. He has been active in the local IT Security area through various interest groups and as a member of the ISMS Working Group under SPSTC, ITSC Singapore (www.itsc.org.sg), SPRING. He has done public speaking at regional seminars and conferences such as Microsoft TechEd and HP BTO Conference.

Chai Chin Loon

Appointed Committee Member Representing GovTech
Chai Chin Loon
Government Technology Agency of Singapore

Chin Loon has spent the past 21 years in the IT industry after retiring from 12 years of active service in the Singapore Navy, where he held key appointments, including that as the Commanding Officer of a naval ship. He is currently the Senior Director, Cyber Security Group in GovTech where he oversees the cyber security of the government.

The group provides cyber security governance supported by a consulting practise and technology explorations in addition to the monitoring of security events with robust incident response capabilities. He also oversees the Ministries Chief Information Officers deployed to all ministries.

Martin Khoo, MAISP

Appointed Committee Member Representing IMDA
Martin Khoo, MAISP
Info-communications Media Development Authority of Singapore

Martin has over 13 years of experience in the IT industry specializing in IT security. He is currently the Deputy Director of infocomm security with the Info-communications Media Development Authority (IMDA) of Singapore. He leads a team of security consultants charged with providing security monitoring, vulnerability assessment, penetration testing, incident response and forensic investigation to the government agencies and organizations. He is the founder and Head of the Singapore Computer Emergency Response Team (SingCERT) which is the national security incident response center under the purview of IMDA, charged with the prevention, detection and resolution of computer security incident. Martin is a founding member and Deputy Chairman of the steering committee of the Asia Pacific Computer Emergency Response Team (APCERT).

Huang Shao Fei

Appointed Committee Member Representing SCS
Huang Shao Fei, MAISP
Land Transport Authority

As Director for Cybersecurity at Singapore's Land Transport Authority (LTA), Shao Fei leads the cybersecurity programme covering a wide spectrum of InfoComm Technology (ICT) and Operational Technology (OT) systems across land transport. He is also Director for Data Science and IT Governance at LTA, working with data scientists and engineers to harness the potential of advanced data analytics and technology experimentation for land transport innovation.

Shao Fei received his Bachelor’s degree in Mechanical Engineering from The University of Tokyo under the support of the Singapore Public Service Commission (PSC) and Japan Monbusho scholarships. He also holds a Master of Business Administration (MBA) from the University of Leicester, in addition to multiple IT security certifications including CISSP-ISSMP, CISSP, CISM and CRISC. He currently serves as the President of the Information Security Chapter of the Singapore Computer Society, and co-chairs the UITP Cybersecurity Working Group.

Wally Lee

Advisor to EXCO
Wally Lee, MAISP
Ensign InfoSecurity

Wally Lee is a Technology Evangelist and Trusted Security Advisor. He developed strategic relationships, providing technical/industry expertise and solutions for major financial institutions, telecommunication companies, government and defense agencies and multinationals in the region. Wally is an industry recognized security expert with over 14 years of hands-on experience. He is a Certified Information Systems Security Professional (CISSP) and BS7799 Lead Auditor.

Benjamin Harris

Co-Opted Committee Member
Alina Tan, MAISP
Booz Allen Hamilton

Alina Tan is a cybersecurity consultant at Booz Allen Hamilton's Singapore office. Her expertise lies in securing Operational Technology (OT), Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) systems — specifically on the offensive security of these systems. Alina is also experienced in conducting cyber-wargames and enhancing the security of technology operations. Her interest lies in pentesting OT and automotive systems.

Alina has a BEng. in Electrical and Electronic Engineering from Nanyang Technological University (NTU) and also holds professional certifications such as GSEC and GICSP.

Benjamin Harris

Co-Opted Committee Member
Benjamin Harris, MAISP
MWR InfoSecurity

Originally from the United Kingdom, Benjamin is an established security consultant assisting enterprise clients enhance their organisational resilience. Over the last 4 years, Benjamin has been leading and driving technical capability for MWR within Asia Pacific, with a focus on offensive security.

Chris Rees

Co-Opted Committee Member
Chris Rees, MAISP
MWR InfoSecurity

A principal security consultant and veteran penetration tester, with significant experience selling and delivering security assurance services to multiple enterprise clients (both private and public sectors) within UK, Singapore and wider Asia Pacific region.

James Tan

Co-Opted Committee Member
James Tan, MAISP

James Tan is an infosec consultant at JT Consultancy & Management Pte Ltd and an adjunct lecturer at the Polytechnic. He holds a B.Sc. (Psychology), OSCE, CRT, CISSP, CIPP/A, among others.

Kelvin Chin

Co-Opted Committee Member
Kelvin Chin
Rekanext

Married with 2 children, Kelvin Chin is a Regional Director with leading IoT cybersecurity firm Forescout Technologies. He is also currently serving as Venture Partner with Pre-Series A VC firm Rekanext and has served as Regional Country Head for cybersecurity firm Palo Alto Networks. His past experiences includes CSO, CTO Regional Business Lead, Head of Consulting from companies such as IBM, Dimension Data Asia Pacific & Japan, Aurelius AG with over 20 years of experience in sales & marketing, general P/L business management, consulting & solutions within start-up incubation business units.

He had served as Entrepreneur Mentor in Residence at a Fintech Accelerator Startupbootcamp and has served as panel member of Media Development Authority for Singapore – Board of Films Consultative Panel from 2014-2016. In his spare time, Kelvin loves meditation and trekking & has scaled some interesting Peaks in Asia.

Kelvin has done his studies with Nanyang Business School for General Management & double bachelor’s degrees in Business IT & Computer Science. He is also a Certified Fitness Instructor from the Singapore Sports Council and American College of Sports Medicine with various technical credentials in Google Advertising, AWS, BS7799, CITPM, Microsoft, Cisco, CISSP, ITIL, Citrix, Checkpoint, Lotus.

Mithun Bagdai

Co-Opted Committee Member
Mithun Bagdai, MAISP
NCC Group

Mithun Bagdai is a principal information security consultant and red team lead for APAC at NCC Group. Mithun has been delivery information assurance for a large variety of industries for over seven years, across EMEA and APAC. He holds a Bachelor’s Hons degree in Computer Studies, maintains CREST and CISSP certifications.

Saint Widjaja

Co-Opted Committee Member
Saint Widjaja
Singtel

Saint is a Cyber Security Product Manager for Singtel. In her current role, she initiates and drives activities focusing on security offerings for Small and Medium-size Enterprises (SME) market. She also manages partnerships and alliances with security partners and vendors.

Prior to this role, Saint has worked with partners and vendors to develop regional ICT coverage deployment and maintenance enablement for network and security products. She also managed partner relationship with key network and security partners across the world in order to ensure continuous process improvements to achieve excellence in logistics management and also price competitiveness.

Saint holds degree in Bachelor of Business Administration - Computer Information Systems from Texas State University in San Marcos, Texas, USA.

Samson Yeow

Co-Opted Committee Member
Samson Yeow, MAISP
Singapore Polytechnic

Samson is a Course Chair/Senior Lecturer with Singapore Polytechnic (SP). He has more than twenty years of experience in projects involving technology architecture, as well as computer networking and security for local and foreign banks, MNCs and quasi-governmental departments. Currently, he is leading a team in managing both academic and technical training courses related to cyber security. He is also overseeing the running of the SP’s Cyber Security Academy (CSA) and Cyber Wargame Centre (CWC). Samson holds a Bachelor of Science (Honours) degree from the University of Central Lancashire (UK) and a Masters degree (Communications Software Management) from the University of Essex (UK). He also holds a number of professional certifications such as CFE, CISSP, CISA and CISM.

Sherin Y Lee

Co-Opted Committee Member
Sherin Y Lee
Ensign InfoSecurity

Sherin is the Head of Marketing, Brand & Communications for Ensign InfoSecurity (a newly formed joint venture company from the merger of Starhub’s Centre of Excellence and Certis’ Quann). She is passionate about bringing new cyber technologies to solve market problems.

She currently spearheads technology brand marketing initiatives aimed at capturing the audiences' imagination, and achieving impressive, measurable results for Cyber Security services.

With over 15 years’ experience in marketing multi-million dollar brands, Sherin knows what truly drives conversions, effective launches and media interviews that build long-term customer relationships.

Her previous role in Singtel demonstrated her expertise in developing 360º campaigns proven to drive significant increase in Singtel’s brand appeal, as well as Y-o-Y penetration growth in ICT services such as Cyber Security, Software-as-a-Service and Hosting Services.

Soffenny Yap

Co-Opted Committee Member
Soffenny Yap
Trend Micro

Soffenny Yap is an IT professional, specialized in Cybersecurity who manages and promotes security solutions to Singapore’s public sector at Trend Micro Pte Ltd. Soffenny has achieved success in driving business and spreading brand awareness efficiently with well-established companies and government agencies in her 8 years’ career in IT industry.

She also participants actively in committees like Association of Information Security (AISP) and Singapore Computer Society (SCS) to generate more IT awareness to female professionals like herself.

Soffenny holds a Degree in Management from London School of Economics.

Sugar Chan

Co-Opted Committee Member
Sugar Chan, MAISP
Booz Allen Hamilton

Sugar is a cyber security senior consultant who leads red teaming for ASEAN in Booz Allen Hamilton. She received her Bachelor's degree in Computer Science from Royal Melbourne Institute of Technology with full scholarship from the university.

Sugar has profound experience in providing strategic and technical consulting for organizations in various industries, where her main area of expertise is around penetration testing. She is passionate about Capture the Flag (CTF) competitions and has received multiple awards from local and global Industrial Control Systems (ICS) and Internet of Things (IoT) CTF competitions, such as DEFCON.

Sunny Neo

Co-Opted Committee Member
Sunny Neo, MAISP
Centurion Information Security

Sunny Neo is a Senior Consultant at Centurion Information Security and an Adjunct Lecturer teaching ethical hacking at Temasek Polytechnic and Singapore Polytechnic. He has obtained certifications including CREST Certified Simulated Attack Specialist (CC SAS) and CREST Certified Web Application Tester (CCT APP).

Kia Meng

Co-Opted Committee Member
Teo Kia Meng
MWR InfoSecurity

Kia Meng is a Threat Hunter at Countercept, a Managed Threat Hunting service by MWR InfoSecurity. Kia Meng specialises in attack detection and response, safeguarding client estates from adversaries. He is primarily a blue teamer, participates in CTFs whenever possible, and is a crew member for conferences such as Infosec in the City & Hack In The Box.

Chia Ling

Honorary Legal Advisor
Koh Chia Ling
Osborne Clarke

Chia Ling is a digital business lawyer trained in AI (MTech KE) and Cyber Security (CISSP). He practices IP, IT, Data & Disputes.

Chia Ling is also the Managing Director of OC Queen Street, a ranked Singapore law practice and a member of Osborne Clarke’s international legal practice. He leads a team of digital business lawyers supporting businesses in AI, FinTech, Blockchain, ICO, ePayments, Cyber Security and e-commerce.

OC Queen Street’s core practice areas include IT, Telco, Media, Data Protection, IP, Patent & Copyright Disputes, Investment Funds, M&A, PE, VC, Competition, Banking and Finance and Regulatory.

Chia Ling’s practice has been recognised in Chambers as well as the inaugural FinTech chapter of Who’s Who legal: Banking 2018.

Sugar Chan

Honorary Legal Advisor
Lim Ren Jun
Baker McKenzie Wong & Leow

Lim Ren Jun is a Principal at Baker McKenzie Wong & Leow. He represents local and international intellectual property-intensive clients in contentious and non-contentious matters. These matters include civil and criminal litigation for all forms of intellectual property infringement, local and international filing and prosecution strategies, cybersecurity breaches, domain name disputes, trade mark opposition and revocation, general litigation and anti-corruption issues.

In addition, Ren Jun plans and executes anti-counterfeiting operations for various clients in Singapore and the Asia Pacific region. Ren Jun also advises on various intellectual property-related and non-intellectual property-related commercial issues arising from mergers and acquisitions, data protection, licensing, franchising, due diligence and valuation. He also assists clients on a wide spectrum of regulatory issues affecting the consumer goods industry such as licensing, advertising, trade libel, harassment and product liability/recall.