Author name: antonyma

Engineering trained, Antony has the qualifications of CISA, CCSP, Oracle DBA and BS7799 ISMS assessor. He also received a LLM in Intellectual Property & Information Technology Law from The University of Hong Kong. Founder of Cybersecurity Risk Assessment firm www.hoplite-tech.com Antony was th Chairman of Professional Information Security Association (PISA) from 2009 to 2010. He also joined ISC2 workshop on developing a new cloud security certification. Current positions include: 1. Chairman of Cloud Security Alliance (Hong Kong & Macau Chapter) 2. Convenor of HK OGCIO Working Group on Cloud Security and Privacy 3. Hong Kong delegate to ISO SC 27 committee, which drafts security standards like ISO27001. email : antony.linkedin@gmail.com Specialties Retail Banking System & Process, IT Security, Copyright Law, Audit & Control, Technology Risk Management, Cloud Security

VCPs technical analysis on the MAS Technology Risk Management guidelines.

1 Comment / Cloud, Information security strategy, Singapore, Technology / By

Since Singapore MAS released the TRM guideline last month, I believe many people are studying them (including me). Big Four accounting firms are usually most active in publishing explanatory reports and article with a purpose to generate more business leads. However, a group of Vmware certified professionals are taking the lead this time. They worked …

VCPs technical analysis on the MAS Technology Risk Management guidelines. Read More »

The essence of …

Leave a Comment / Cybersecurity / By

The essence of the new risk management is to produce the governance and regulation of unknowable uncertainties via a distinctive kind of organizational proceduralization which prioritizes the auditability of process. Power, Michael. Organized Uncertainty : Designing a World of Risk Management. Oxford, GBR: Oxford University Press, UK, 2007. p 199.

Singapore MAS Tech Risk Guideline (TRM) – Incident Reporting-SLA

Leave a Comment / Information security strategy, Singapore / By

Last post discussed the complication when running multiple bank applications on the same computing platform and need to decided when to report “a relevant incident” within one hour upon discovery. This part will discuss on how this requirement going to affect Services Level Agreements in Singapore banking IT operations. Before this MAS notice come into …

Singapore MAS Tech Risk Guideline (TRM) – Incident Reporting-SLA Read More »

The traditionals fight back

Leave a Comment / Cloud / By

In my last post, I wrote about an equity research report stated traditional outsourcing companies are losing. However, the big giants are not retreating without a fight. This war is real and happening.  “IBM charged that the CIA improperly awarded the deal to Amazon Web Services  by failing to evaluate all the pricing scenarios.”URL http://gigaom.com/2013/06/07/gao-says-not-so-fast-on-proposed-secret-amazon-cia-cloud/ The $600Mil is now …

The traditionals fight back Read More »

Home Networking Protection – DNS Filtering

Leave a Comment / Cybersecurity / By

When I saw this blog post, it immediately said it is a must have security device. Nowadays, home network is a given, router is in every metropolitan home.  Protecting home network is not a easy task. With so many home devices that are connected 24×7 to the Internet, patching them and also doing security configuration is professional work. This …

Home Networking Protection – DNS Filtering Read More »