The biggest fear is not the technology, it is the potential of human error that could expose your organization to a cyberattack. The majority of CISOs agree that an employee carelessly falling victim to a phishing scam is the most likely cause of a security breach. Most also agree that they will not be able to reduce the level of employee disregard for information security. How do we guard against human error without limiting employee efficiency and productivity?
APAC: The Greatest Fears?
CISO Council
August 17, 2021
Speakers
Leonard Ong
Senior Director, Cybersecurity
General Electric
CISO Council Speaker
I am a board-certified in security management professional with over 19 years of experience gained in investment banking, telecommunication, enterprise, pharmaceutical and healthcare sectors. I have been in both management and technical roles covering cybersecurity, project management, corporate security, security consulting, and information security.
I led a regional Governance, Risk Management, and Compliance in a Fortune 100 Pharma firm. Prior to that, I led an Information Security Risk function in an investment bank that operates in over ten different markets within the Asia Pacific region with over 35,000 employees.
I served on ISACA International Board of Directors for four consecutive terms. In addition, I served as Honorary Chairman in ASIS International (Singapore Chapter) for 2012 and 2013-2014 term and President in ISACA Singapore Chapter for 2012-2013 and 2013-2014 term. My other contribution includes IAPP, AsiaDPO, and GIAC.
I am making an impact to the society through my leadership in leading associations. ISACA Singapore Chapter has been awarded as the best very large chapter in Asia for year 2013 with K. Wayne Snipes Award and honorable mention in the following year. The chapter forged extensive collaboration with other associations, academia and government. Membership of ASIS International (Singapore Chapter) has doubled with various accolades received from headquarters.
Apart from formal chapter appointments, I am members of different councils/associations and volunteering at regional and global level.
I am certified in leading security certifications such as CPP, CFE, CISSP ISSMP-ISSAP, CSSLP, CCSP, CISM, CISA, CRISC, CGEIT, CDPSE, CIPM, CIPT, PMP, GCIA, GCIH, GSNA, GCFA, GAWN, GCTI, GISP, COBIT 5 and 2019 certifications.
I led a regional Governance, Risk Management, and Compliance in a Fortune 100 Pharma firm. Prior to that, I led an Information Security Risk function in an investment bank that operates in over ten different markets within the Asia Pacific region with over 35,000 employees.
I served on ISACA International Board of Directors for four consecutive terms. In addition, I served as Honorary Chairman in ASIS International (Singapore Chapter) for 2012 and 2013-2014 term and President in ISACA Singapore Chapter for 2012-2013 and 2013-2014 term. My other contribution includes IAPP, AsiaDPO, and GIAC.
I am making an impact to the society through my leadership in leading associations. ISACA Singapore Chapter has been awarded as the best very large chapter in Asia for year 2013 with K. Wayne Snipes Award and honorable mention in the following year. The chapter forged extensive collaboration with other associations, academia and government. Membership of ASIS International (Singapore Chapter) has doubled with various accolades received from headquarters.
Apart from formal chapter appointments, I am members of different councils/associations and volunteering at regional and global level.
I am certified in leading security certifications such as CPP, CFE, CISSP ISSMP-ISSAP, CSSLP, CCSP, CISM, CISA, CRISC, CGEIT, CDPSE, CIPM, CIPT, PMP, GCIA, GCIH, GSNA, GCFA, GAWN, GCTI, GISP, COBIT 5 and 2019 certifications.
Micky Lo
Managing Director Chief Technology Risk Officer APAC
Bank of New York Mellon
CISO Council Speaker
Managing Director
Chief Technology Risk Officer APAC
The Bank of New York Mellon
Micky Lo joined BNY Mellon in July 2013 as Chief Technology Risk Officer APAC. He is leading the regional team with the mission to enable business solutions while proactively protecting BNY Mellon from information risks in a balanced control environment. He oversees and govern the implementation of the bank wide information risk roadmap in the region with particular focus on IT regulatory compliance
He has over 30 years of IT experience in Financial Service Industry that spans across a diversified IT management disciplines including regional and location management, IT and security architecture, distributed computing engineering, technology infrastructure operation, outsourcing/in-sourcing management, IT risk management and technology audit.
Before joining BNY Mellon, Micky was the Head of IT Security APAC and Head of Technology Greater China for Deutsche Bank. Micky has held various management positions in IT management, IT Security/Risk management and Audit with JPMorgan and Citibank.
Micky received a Bachelor of Mathematic degree from the University of Waterloo (Canada) and an Executive Master of Business Administration degree from University of Western Ontario (Canada).
Alex Sayle
Executive Director
JP Morgan Chase
Connie McIntosh
Head of Security Assurance, Head of Solution Security
Ericsson
VJ Viswanathan
CEO
TORQE
CISO Council Speaker
VJ Viswanathan is a veteran global technology executive recognized and awarded for technology innovation, capability transformation and inclusive leadership. Most recently, VJ is the founding partner at CYFORIX, a global cybersecurity research, advisory & strategy firm delivering solutions to public and private sectors. He serves as the CEO at TORQE, a specialized due diligence, advisory and technology services firm delivering value through analytics and automation. VJ is also the co-host of ELEVATEINTEL, a podcast series at the nexus of technology, social and defense.
With over 25 years of Enterprise technology, Cyber Security, Privacy, Compliance and Risk Management experience, VJ has a detailed track record of designing, implementing and leading highly successful programs, products & services at multinational brands spanning CPG, Telecom, Media, Supply-chain & Finance segments.
As a strategic thought leader, VJ has delivered the first of its kind "Supply Chain Security" & “Omni-channel Risk management” frameworks. As a published author and featured keynote speaker at global industry events, he approaches disruptive digital paradigms with innovation, creativity and active collaboration with his key industry peers, national & international law enforcement and defense groups.
VJ is an active advisor, investor at select incubators & accelerators groups. As a strategic advisor to VC & PE firms, he specializes in developing market analysis, competitive product road map and guides in opportunity mapping. As a Board member and subject matter advisor to CEOs and Corporate directors, VJ evaluates and audits cyber security program for veracity and operational effectiveness.
VJ is passionate about animal rights and giving back to the technology & security industry. He has created a rescue & foster care group for large breed dogs. He is actively engaged with academic institutions and purpose driven professional groups like ‘Minorities in Cyber security’, where he serves as the Board member and chair of mentorship programs to develop the next generation talent through coaching and facilitating scholarships for cyber security education.
Andrew Wan
CISO
The Smith Family
CISO Council Speaker
Andrew is an innovative industry veteran in security and has worked across government, critical infrastructure, telecommunications, health, aviation, banking and finance, logistics, fmcg, retail and hospitality. He is a respected thought leader within government & private sectors with experience in delivering many industry and security firsts at the CISO and director level for a number of years. Additionally, Andrew has a proven track record in entrepreneurship, having built and grown multimillion dollar businesses, as well as being a member on a number of boards and think tanks. Andrew is a change agent safeguarding companies by managing risk, making strategic investments, crisis management and ensuring reasonable security practices.
Engagement and setting up key working relationships, strategy and policy with other states, federal government, local councils, law enforcement and internationally with partners in Cyber Security, crisis management, pandemic exercises and threat intelligence.
For a number of years was acknowledged as the author of a significant number of threat advisories shared in law enforcement and government within Australia, and counterparts.
BTC 3Mgn4zXtQMx67UCqKbQ62LoGhm5KfEfFau
BTC 387hiBBLQdpPiTSHEbB22y8jvrHPu42paw
ETH 0xBA92a06B239c9c0Ba7d1739c0Da1757b1e49f388
Unique algorithms and tools to unobscure metadata and access on transactions, wallets, packets.
Chartered Security Architect, Certified FBI First Responder, ISO 27001 Lead Auditor, TOGAF, CISSP, CISM, CISA, CRISC, SABSA, CHFI, SANS GIAC (exp 2012), CCSK, ITIL, PGCM, Agile Project Manager Foundation, Open FAIR, Cellebrite, various offensive security certifications.
Simon Paul Anderson
CISO
Sport Integrity Australia Government
CISO Council Speaker
As a technology executive, I operate in environments that are under constant threat. From emerging technology innovations to increasing customer demands, an enterprise’s ability to create and evolve digital capabilities is a powerful weapon. I understand the critical importance of being strategically agile and able to identify and align innovation and emerging technologies with top business priorities. Over the last two decades, I have navigated a constantly evolving arena to enable business performance through technology transformation.
Through strategic acuity, I turn what’s ‘possible’ into what’s ‘plausible’. Leveraging an early career in engineering, I bring a logical and calm approach to leadership that considers the ‘whole’ of the business in solution definition and delivery. Shown through progression into roles requiring a more holistic approach to technology and digital change than just program delivery, I have instigated, influenced and rallied support for major initiatives to shift legacy environments into future state capabilities. Most recently, I have provided a conduit between business and technology with UNSW, mobilising the initial stages of a state of the art technology program that is set to realise multimillion-dollar business benefits and empower the organisation to achieve its 2025 mission.
With an ability to see the end-state across a vast technology landscape, I ensure the early identification of risks, issues and opportunities, engaging direct teams, vendors and digital talent enterprise-wide in shaping solutions that meet both staff and customer needs. By putting people at the core of all decisions, I create innovative digital and enterprise technology capabilities with enduring value return
August 17, 2021
CouncilAgenda
All times Singapore Standard Time (GMT+8)
10:00 AM-11:15 AM
The Greatest Fears?
Panelists
Leonard Ong
Senior Director, Cybersecurity
General Electric
I am a board-certified in security management professional with over 19 years of experience gained in investment banking, telecommunication, enterprise, pharmaceutical and healthcare sectors. I have been in both management and technical roles covering cybersecurity, project management, corporate security, security consulting, and information security.
I led a regional Governance, Risk Management, and Compliance in a Fortune 100 Pharma firm. Prior to that, I led an Information Security Risk function in an investment bank that operates in over ten different markets within the Asia Pacific region with over 35,000 employees.
I served on ISACA International Board of Directors for four consecutive terms. In addition, I served as Honorary Chairman in ASIS International (Singapore Chapter) for 2012 and 2013-2014 term and President in ISACA Singapore Chapter for 2012-2013 and 2013-2014 term. My other contribution includes IAPP, AsiaDPO, and GIAC.
I am making an impact to the society through my leadership in leading associations. ISACA Singapore Chapter has been awarded as the best very large chapter in Asia for year 2013 with K. Wayne Snipes Award and honorable mention in the following year. The chapter forged extensive collaboration with other associations, academia and government. Membership of ASIS International (Singapore Chapter) has doubled with various accolades received from headquarters.
Apart from formal chapter appointments, I am members of different councils/associations and volunteering at regional and global level.
I am certified in leading security certifications such as CPP, CFE, CISSP ISSMP-ISSAP, CSSLP, CCSP, CISM, CISA, CRISC, CGEIT, CDPSE, CIPM, CIPT, PMP, GCIA, GCIH, GSNA, GCFA, GAWN, GCTI, GISP, COBIT 5 and 2019 certifications.
I led a regional Governance, Risk Management, and Compliance in a Fortune 100 Pharma firm. Prior to that, I led an Information Security Risk function in an investment bank that operates in over ten different markets within the Asia Pacific region with over 35,000 employees.
I served on ISACA International Board of Directors for four consecutive terms. In addition, I served as Honorary Chairman in ASIS International (Singapore Chapter) for 2012 and 2013-2014 term and President in ISACA Singapore Chapter for 2012-2013 and 2013-2014 term. My other contribution includes IAPP, AsiaDPO, and GIAC.
I am making an impact to the society through my leadership in leading associations. ISACA Singapore Chapter has been awarded as the best very large chapter in Asia for year 2013 with K. Wayne Snipes Award and honorable mention in the following year. The chapter forged extensive collaboration with other associations, academia and government. Membership of ASIS International (Singapore Chapter) has doubled with various accolades received from headquarters.
Apart from formal chapter appointments, I am members of different councils/associations and volunteering at regional and global level.
I am certified in leading security certifications such as CPP, CFE, CISSP ISSMP-ISSAP, CSSLP, CCSP, CISM, CISA, CRISC, CGEIT, CDPSE, CIPM, CIPT, PMP, GCIA, GCIH, GSNA, GCFA, GAWN, GCTI, GISP, COBIT 5 and 2019 certifications.
Micky Lo
Managing Director Chief Technology Risk Officer APAC
Bank of New York Mellon
Managing Director
Chief Technology Risk Officer APAC
The Bank of New York Mellon
Micky Lo joined BNY Mellon in July 2013 as Chief Technology Risk Officer APAC. He is leading the regional team with the mission to enable business solutions while proactively protecting BNY Mellon from information risks in a balanced control environment. He oversees and govern the implementation of the bank wide information risk roadmap in the region with particular focus on IT regulatory compliance
He has over 30 years of IT experience in Financial Service Industry that spans across a diversified IT management disciplines including regional and location management, IT and security architecture, distributed computing engineering, technology infrastructure operation, outsourcing/in-sourcing management, IT risk management and technology audit.
Before joining BNY Mellon, Micky was the Head of IT Security APAC and Head of Technology Greater China for Deutsche Bank. Micky has held various management positions in IT management, IT Security/Risk management and Audit with JPMorgan and Citibank.
Micky received a Bachelor of Mathematic degree from the University of Waterloo (Canada) and an Executive Master of Business Administration degree from University of Western Ontario (Canada).
Alex Sayle
Executive Director
JP Morgan Chase
Connie McIntosh
Head of Security Assurance, Head of Solution Security
Ericsson
Andrew Wan
CISO
The Smith Family
Andrew is an innovative industry veteran in security and has worked across government, critical infrastructure, telecommunications, health, aviation, banking and finance, logistics, fmcg, retail and hospitality. He is a respected thought leader within government & private sectors with experience in delivering many industry and security firsts at the CISO and director level for a number of years. Additionally, Andrew has a proven track record in entrepreneurship, having built and grown multimillion dollar businesses, as well as being a member on a number of boards and think tanks. Andrew is a change agent safeguarding companies by managing risk, making strategic investments, crisis management and ensuring reasonable security practices.
Engagement and setting up key working relationships, strategy and policy with other states, federal government, local councils, law enforcement and internationally with partners in Cyber Security, crisis management, pandemic exercises and threat intelligence.
For a number of years was acknowledged as the author of a significant number of threat advisories shared in law enforcement and government within Australia, and counterparts.
BTC 3Mgn4zXtQMx67UCqKbQ62LoGhm5KfEfFau
BTC 387hiBBLQdpPiTSHEbB22y8jvrHPu42paw
ETH 0xBA92a06B239c9c0Ba7d1739c0Da1757b1e49f388
Unique algorithms and tools to unobscure metadata and access on transactions, wallets, packets.
Chartered Security Architect, Certified FBI First Responder, ISO 27001 Lead Auditor, TOGAF, CISSP, CISM, CISA, CRISC, SABSA, CHFI, SANS GIAC (exp 2012), CCSK, ITIL, PGCM, Agile Project Manager Foundation, Open FAIR, Cellebrite, various offensive security certifications.
Simon Paul Anderson
CISO
Sport Integrity Australia Government
As a technology executive, I operate in environments that are under constant threat. From emerging technology innovations to increasing customer demands, an enterprise’s ability to create and evolve digital capabilities is a powerful weapon. I understand the critical importance of being strategically agile and able to identify and align innovation and emerging technologies with top business priorities. Over the last two decades, I have navigated a constantly evolving arena to enable business performance through technology transformation.
Through strategic acuity, I turn what’s ‘possible’ into what’s ‘plausible’. Leveraging an early career in engineering, I bring a logical and calm approach to leadership that considers the ‘whole’ of the business in solution definition and delivery. Shown through progression into roles requiring a more holistic approach to technology and digital change than just program delivery, I have instigated, influenced and rallied support for major initiatives to shift legacy environments into future state capabilities. Most recently, I have provided a conduit between business and technology with UNSW, mobilising the initial stages of a state of the art technology program that is set to realise multimillion-dollar business benefits and empower the organisation to achieve its 2025 mission.
With an ability to see the end-state across a vast technology landscape, I ensure the early identification of risks, issues and opportunities, engaging direct teams, vendors and digital talent enterprise-wide in shaping solutions that meet both staff and customer needs. By putting people at the core of all decisions, I create innovative digital and enterprise technology capabilities with enduring value return
In Partnership With
