David has over 25 years of experience in Infocomm Security. He joined OCBC Bank in August 2014 as Head of Technology Information Security Office. In this role, he is responsible for overseeing the OCBC cybersecurity strategy, security architecture, and security function. David takes on an end-to-end responsibility from security policy formulation through security monitoring and management to ensure that the Bank’s IT operating environment is secured.
Today, David sits in the ABS Standing Committee on Cybersecurity and takes a leading role in collaborating with other industry participants and key government agencies to formulate cybersecurity management programmes to address evolving cyber threats.
Prior joining the Bank, David served in the Monetary Authority of Singapore as Director of IT Security Division. He was responsible for the development of IT security strategies, programmes, policies and standards for the purpose of protecting the central bank’s core functions and information assets. During his tenure, the MAS’ IT security posture had transformed substantially. David represented the central bank on several panels and working groups such as the Bank of International Settlement (BIS) G10 Group of Computer Experts on Security Issues.
OCBC Group formulated a 5-year Cyber Defence Roadmap (aka CDR 1.0) in 2013 to achieve six capabilities that mitigate [then] the evolving cyber threat landscape. Notwithstanding, the shift of attack vector, erosion of network perimeter between consumers and the Bank, as well as threat posed by Internet of Things (IoT) requires a new set of capabilities and skills. Hence, TISO recently added four additional capabilities. Together, these ten capabilities form the new CDR 2.0 – to sustain and enhance existing capabilities as well as to build and develop new defences to keep up with the emerging threat landscape.
Dr Ngair Teow Hin is the Founder & CEO of SecureAge Technology. He spent 13 years as a senior researcher at Kent Ridge Digital Labs (KRDL, now known as I2R). As a Senior Member of Research Staff, he was engaged in R&D works and innovative commercial product development on information security, multi-lingual computing and Artificial Intelligence.
He founded SecureAge Technology in 2003 to create and commercialize innovative data security solutions. The company focuses on providing data protection solutions that help prevent, protect, and shield governments and enterprises from any possible data breaches. These solutions are now successfully deployed by various governments and large enterprises in the Asia Pacific region.
He is currently Adjunct Professor at the School of Computing, National University of Singapore.
Anti-virus solution has been in used for more than 30 years. Throughout this period, technology like signature, heuristics, reputation and sandboxing have been introduced to make the solution better in catching viruses. Unfortunately, attackers are human and they are very good in changing their malware in evading these detections. Hence, fresh malwares are now difficult to detect by existing AV solution and users are put at risks by being infected by new and sophisticated malware. So what can we do better in blocking malware and viruses from attacking the user’s machine?
In this presentation, we will talk about a few new ideas that can push the anti-virus technology forward in blocking malware in general. These ideas include multi-AV solutions, application whitelisting and next generation AI based AV technology. Specifically, by combining these technologies, we believe that an effective solution can be created to effectively block advance malware and increasingly popular ransomware from harming the end users and enterprises.
Jonathan Nguyen-Duy leads Strategic Programs at Fortinet where he focuses on emerging technologies and key partnerships that enhance security and facilitate digital transformation. With a strong background in working with the Global Fortune 2000 and nation-states, Jonathan is responsible for developing holistic security solutions across enterprise ecosystems – from the IoT edge to the cloud.
Across dozens of industry reports and studies, cyber defenders are not keeping pace with velocity, variety and complexity of threats. The traditional enterprise perimeter is effectively gone – physically as we move towards private and hybrid cloud solutions and logically as more holes were opened to support external communications. Digital Transformation and move to public and hybrid cloud solutions is also diminishing value of traditional networks. So, if the traditional perimeter is gone. Why are we still focused on defending it with moat-based security strategies?
This session applies findings from 10+ years of data breach research findings and practical experience from 15+ years of running a global MSSP about how to effectively secure the next gen enterprise that’s adopting digital transformation capabilities across cloud, IoT, 5G and data analytics. The focus will be on distributed network segmentation and virtualization to address fundamental challenges of security and productivity facing all cyber operators and management of all levels.