(ISC)2 SG Chapter Seminar and Networking Event – The Myth of the Private Key

Dear Members,
We are pleased to introduce Mr. Tommi Lampila, Asia Pacific Vice President, SSH Communications Security to share about SSH Key Management, entitled, “The Myth of the Private Key”.
Learn about the most common myths around Secure Shell (SSH) key management, an essential control to ensure your organization’s machine and human based access is being monitored and adhering to your security policies.
Generally speaking most security experts have a deep understanding of technical complexities of Secure Shell deployments in enterprise environment. However, below questions still cause them distress.
– Why finding and managing private SSH keys is such a daunting task?
– What are the shortfalls of traditional PAM based solutions and their approaches?
– What are the best practices around private SSH key management and getting the entire trust chain under control?
During this informative session, Tommi will take you through:
– The Myth of Key Discovery
– The Myth of the Private Key
– The Myth of Key Rotation
– The Myth of Integrated PAM SSH Key Management
Speaker Bio:
Tommi Lampila is the Vice President, APAC, for SSH Communications Security, and is responsible for sales and customer support operations in the Asia-Pacific region.
During his sixteen years at SSH Communications Security, Mr. Lampila has held various positions in product and solutions management as well as marketing. He has worked with some of the largest SSH customer deployments in the financial, retail, and governmental sectors. Prior to joining the company, Mr. Lampila worked in Information Management with Rautaruukki, a Nordic steel corporation.
Mr. Lampila holds a Master of Science degree in Industrial Engineering and Management from Tampere University of Technology, and is a CISSP certified information security professional.
Where and When:
Venue: National Volunteer and Philanthropy Centre,  6 Eu Tong Sen Street #04-88, The Central
Date: 10 March 2016
6.30 PM – 7.00 PM: Registration and dinner
7.00 PM – 7.10 PM: Introduction by event sponsor SSH Communications Security
7.10 PM – 9.00 PM: Tommi Lampila on the Myth of Private Key
(ISC)2 credential holders can earn up to two CPE hours by attending this event.
See you all!

(ISC)2 Seminar and Networking Event – Secure Your Premises With CCTV: Benefits and Pitfalls

Dear Colleagues, 

Come and join us on the tossing of prosperity salad (Lo-Hei Yu Sheng 捞起魚生), for our post Lunar New Year celebration.

On this night, we are also pleased to welcome the Director of Advisense Pte Ltd,  Hozehfa MH Topiwala, to talk and share about physical security.


Close Circuit TVs have become ubiquitous in Singapore. From managing traffic to looking out for shoplifters, from securing the perimeter to settling insurance claims, the uses of CCTV are myriad.

Beneficial as CCTV are, they need to be used with care. To achieve optimal security, CCTVs should be combined with appropriate illumination, effective overlap of range, and must have adequate storage space for the images. Images and footages need to be handled with care and a set of policies and procedures to store, access, and delete these needs to be developed.

Careless deployment of CCTV will not only offer a false sense of security but may also expose the organisation to violation of the Personal Data Protection Act 2012. In addition, a poorly implemented or maintained CCTV system is itself vulnerable to cyber security issues and being hacked.

Hozehfa will bring us an inside view of the CCTV technology and systems, and the legal and IT security aspects of deploying a CCTV camera in home, office, and commercial establishments.

Join us on this session to learn about:

1. How best to deploy a CCTV system for home and office
2. Who will guard the guards – keeping the CCTV system safe
3. Developing policies and procedures to keep out of trouble

This session will be of interest to security professionals, business owners, IS auditors, and anyone who has been intrigued by the CCTV cameras that now dot the urban landscape.

Speaker Bio:

Hozehfa Topiwala specialises in the field of video security and audit. He is the only qualified specialist in CCTV System Design in Singapore. His 18-year career has seen him serving many roles, including financial and information security audit in Big 4 firms, IT Governance & Compliance in an MNC, video surveillance systems consultancy, and many others. He is a Director of Advisense Pte Ltd, a video surveillance consultancy and audit firm. His experience in video surveillance systems, external and internal audit, and cybersecurity enables him to share unique perspective of this important field.

He is a CISA, and he holds CCTV System Design Diploma from the UK.

Where and When:

Venue: National Volunteer and Philanthropy Centre,
6 Eu Tong Sen Street #04-88, The Central

Date: 18 February 2016
6.30 PM – 7.00 PM: Registration and dinner
7.00 PM – 9.00 PM: Hozehfa Topiwala on Securing Your Premises With CCTV: Benefits and Pitfalls

(ISC)2 credential holders earn up to two CPE hours by attending this event.

Registration Link: https://isc2sg-feb18-2016.eventbrite.sg

(ISC)2 SG Seminar & Networking Night Presents Evolution of Breach Detection

In the ever-evolving cyber security landscape, keeping the bad guys out is a hard problem—finding them once they’re in – and mitigating the damage they do – is even harder.
Today’s cyber criminals launch planned, highly targeted and multi-faceted attacks to gain valid credentials and become ‘insiders’ within your network. Once inside, they can add accounts, hide in the noise, and accomplish their goals by using built-in tools and executables. How do you start defending your critical data against these kind of attacks?
Join us at this presentation by Bernie Png where he will share with us the modern threat landscape, trends of attackers, the anatomy of a cyber-attack; and, how you can start to proactively hunt these threats to reduce the scope of incidents.
Where and When:
Venue: National Volunteer and Philanthropy Centre, 6 Eu Tong Sen Street #04-88, The Central 059818
Date: 28 January 2016
6.30 PM – 7.00 PM: Registration and Dinner
7.00 PM – 7.10 PM: Introduction by event sponsor Bit9 Carbon Black
7.10 PM – 9.00 PM: Bernie Png on Evolution of Breach Detection
(ISC)2 credential holders earn up to two CPE hours by attending this event.

Annual CIFI Security Summit

We are pleased to support this Cyber Security Event.

The Annual CIFI Security Summit is an essential 2 day conference and exhibition bringing together leading security experts from across Asia to discuss Cyber Intelligence, Digital forensics, Cyber Security and Cyber Investigation. The event will explore the latest technologies in the industries, challenges being faced and the outlook for Cyber Security in Asia Pacific. This is the only event of its kind that will run 4 simultaneous streams over 2 days in addition to case studies and demonstrations from global business leaders. With 400 attendees expected from across a plethora of sectors and a sell- out exhibition, this is the must attend event of the year!


Please refer to website or contact Mr Kennith Ng at (852) 3978 9968 or Kennith@innoxcell.net to see if you are eligible for a complimentary ticket

What I Want for the Holidays…

Chuan-Wei Hoo, Technical Advisor, Asia-Pacific, (ISC)2  shares his  view for this holdidays…

Lately, we’ve seen news stories about cyberattacks on manufacturers of children’s electronics during which millions of parents’ and children’s personal information, including photos of children, were stolen. One incident involved over six million children’s profiles worldwide, including almost three million from the U.S. As an information security professional, we understand that in cyberspace, there will be casualties. But, we have to do our best to minimize the casualties and most important of all, that they do not involve children….

See more at:  (ISC)² Blog