CLOUDSEC 2019

PICTURE THIS!
See. Secure. Go Further.

2019년 제 9회를 맞이하는 CLOUDSEC은 아시아태평양, 유럽, 미주 지역에서 트렌드마이크로가 개최하는 세계 최대 규모의 클라우드 보안 컨퍼런스입니다.

전세계 전문가들과 업계 리더들이 참여하여 조직의 보안 대응력 강화를 위한 사이버 위협 환경 트렌드를 설명하고 빠르게 변화하는 초연결 사회에 대응 할 수 있는 정보 보안 및 위협 관리의 기술적 노하우를 공유하는 자리입니다.

점점 더 복잡해지고 변화하는 IT 환경에 쉽고 탄력적으로 적용할 수 있는 사이버 보안 방법을 찾아 보십시오. 본 행사에서 끊임없이 변화하는 위협과 위험을 어떻게 관리해야 하는지에 대한 명확한 비전을 가지고 있는지 생각해 보시기 바랍니다.

CLOUDSEC 2019 에 오신 것을 환영합니다.

CLOUDSEC Korea
2018 Highlight Video

아젠다

8:30 - 9:30
등록
9:30 - 10:10
기조연설 1: Digital Transformation and Security
트렌드마이크로 김진광 지사장
10:10 - 10:40
기조연설 2: Picture this….
트렌드마이크로 보안리서치 부사장 Rik Ferguson
10:40 - 11:00
휴식 및 전시부스 관람
11:00 - 11:30
기조연설 3: Security in the Cloud
11:30 - 12:00
기조연설 4: Cloud Security Native, 현명한 보안 컴플라이언스 대응
클라우드시큐리티
클라우드 컴퓨팅 발전법(2015.09)이 시행된지 만 4년이 되어가는 지금,
기업의 클라우드 활용은 빠른 속도로 증가하고 있으며 그에 따른 각종 보안 컴플라이언스 준수요구도 증가되고 있습니다.
이에따라 많은 기업들의 당면과제인 ISMS-P 인증을 클라우드 네이티브 환경에서 어떻게 준비할 것인가를 살펴보도록 하겠습니다.
12:00 - 13:00
점심시간
13:00 - 13:30
하이브리드 클라우드에서 새로운 워크로드(Docker + Container) 보안
트렌드마이크로
하이브리드 클라우드 환경은 다양한 애플리케이션기반의 워크로드들이 증가하고 있습니다. 또한, 고객의 요구사항을 빠르게 반영하여 time-to-market을 단축하는 것이 점점 더 중요해 지고 있습니다. 이러한 클라우드 개발환경에서 도커+컨테이너 기반의 개발은 필수 사항이 되었고, DevOps 파이프라인 채택이 점점 더 증가하고 있습니다. 본 세션에서는 DevOps 빌드 파이프라인에서의 보안 이슈와 도커+컨테이너기반, 그리고 서버리스 클라우드 환경의 보안이슈를 분석하고 최상의 대응 방안을 소개합니다.
13:30 - 14:00
멀티클라우드 환경에서의 보안 위협 가시성 확보 전략
많은 기업들이 멀티클라우드 환경으로 전환하며 발생되는 보안위협에 대한 통합 분석 요건이 증가하고 있습니다. 하지만 아직까지 각 클라우드의 특성상 통합하여 분석할 수 있는 대응 방안마련이 어렵습니다. 이에, 본 세션에서는 멀티클라우드 환경에서 분석이 대상 및 분석 방안에 대한 전략을 유즈 케이스와 함께 소개합니다.
14:00 - 14:30
암호화를 기반으로 한 클라우드 활용의 극대화
클라우드,빅데이터의 소중한 정보들 어떻게 보호하시겠습니까?이번 세션에서는 클라우드 환경의 데이터 활용도를 극대화하면서도 보안은 강화할 수 있는 암호화에 대해 사례를 통해 알아보겠습니다.
14:30 - 14:50
휴식 및 전시부스 관람
14:50 - 15:20
MS플랫폼 하에서의 Connected Security, PC에서 서버를 넘어 클라우드까지
퀘스트소프트웨어
윈도우기반의 PC부터 On-Premise, Hybrid, Azure환경까지 윈도우 플랫폼의 핵심인 AD/Azure AD를 중심으로 시스템 보안 강화를 위한 퀘스트의 보안 전략 및 솔루션 소개합니다.
15:20 - 15:50
Endpoint security as transformation to the cloud
클라우드로 전환하고 있는 ICT에 대한 동향, 전환 시 필요한 보안요소에 대한 이해, 그리고 그 안에서 Endpoint Security에 대한 대응 방안 제시
15:50 - 16:20
망연계솔루션을 이용한 클라우드 내부망 보안강화
클라우드 기반의 망연계 솔루션으로 내부망의 기업 자산 보호 및 개인정보 유출방지 방안, 망간 전송되는 자료의 악성코드 검사 및 승인결재를 통해 안전한 망연계 환경을 제공하는 솔루션입니다.
16:20
경품 추첨 및 종료
13:00 - 13:30
Is an attacker hidden in your network?
Today's security tools are focused on prevention and protection against threats and attacks. There are several tools on the market providing this solution. However, the modern approach should be very different. Detection and reaction on security breaches should be the main focus of secured networks. And the best way to detect an event is to monitor what is happening in the network. Do you really know what, who, where and how is doing?
13:30 - 14:00
Moving Beyond The Perimeter - A Journey to Zero Trust
아카마이 & GIT
클라우드 도입에 따른 새로운 보안 패러다임인 Zero Trust 에 대한 소개와 실 환경에서 Zero Trust 구현을 위하여 아카마이에서 제안하는 솔루션에 대하여 소개 드립니다.
14:00 - 14:30
퍼블릭환경의 워크로드를 보호를 위한 제로데이 취약점기반의 새로운 클라우드 네트워크 보안
클라우드 네트워크 보호는 가상 패치, 실시간 공격 차단을 포함한 알려진 공격 및 제로 데이 공격에 대한 정교한 대응방법과 네트워크 성능을 요구합니다. 본 세션에서는 기존 가상 네트워크 어플라이언스 기반의 클라우드 네트워크 보호 솔루션의 복잡한 구성의 문제점을 분석하고, AWS Transit gateway를 이용하여 VPC간의 트래픽과 외부로부터의 네트워크 위협에 대응할 수 있는 새로운 고성능 네트워크 가상 어플라이스 기반의 침입방어시스템을 소개합니다.
14:30 - 14:50
휴식 및 전시부스 관람
14:50 - 15:20
사례로 살펴보는 클라우드 보안 성숙도 평가 Cloud SE(Security Evaluation)
최근 퍼블릭 클라우드 컴퓨팅 환경의 도입이 빠르게 확산되어 감에 따라, 클라우드 환경에 대한 보안 수준 진단과 평가에 대한 필요성이 증가하고 있습니다.
이에, 클라우드 보안 성숙도 측정 사례를 통해 클라우드 환경에 대한 보안 수준 제고 방안을 소개합니다.
15:20 - 15:50
물리,가상,프라이빗 클라우드 기반의 기업데이터센터를 위한 새로운 통합서버보안 전략
동훈아이텍
물리서버, 가상서버 환경의 데이터센터에서 리눅스기반의 운영체제가 많은 부분을 차지하고 있습니다. 리눅스 기반 서버들에서 단순히 백신기능만으로 보안을 구현하는 것은 취약점과 리눅스운영체제를 노리는 신종 랜섬웨어를 방어할 수 없습니다. 본 세션에서는 데이터 센터의 서버들을 위한 통합서버보안방법을 소개하고 이를 통하여 보안 컴플라인스의 대응방법을 제안합니다.
15:50 - 16:20
새로운 엔드포인트 위협과 위협인텔리젼스기반의차세대 Endpoint Detection & Reponse (EDR)
트렌드마이크로
엔드포인트에 대한 위협은 그 기법이 점점 더 정교해지고 고도화되고 있습니다. 최근 파일리스 악성코드와 이를 기반으로하는 마이너, 랜섬웨어의 피해가 점점 더 증가하고 있습니다. 본 세션에서는 최근의 엔드포인트 공격을 분석하고 이를 대응하기 위한 위협 인텔리전스 기반의 차세대 EDR을 소개합니다.
16:20
경품 추첨 및 종료

사전등록

본 행사에 많이 관심을 가져 주셔서 감사합니다
사전등록이 마감되었습니다.

스폰서

주최:

플래티넘 스폰서:

골드 스폰서:

실버 스폰서:

서울 코엑스 인터콘티넨탈 호텔 하모니볼룸

2019년 8월 29일
목요일 오전 9시 - 17시

서울 코엑스 인터콘티넨탈 호텔 하모니볼룸

2019년 8월 29일
목요일 오전 9시 - 17시

Conference

Event Speakers

Arup Deb

Systems Engineer, Networking & Security, ASEAN | VMware

Arup is a Systems Engineer working for the Networking and Security Centre of Excellence in APJ. He has broad experience working closely with customers across all verticals performing design, implementation, day two operations and troubleshooting. He has been focussed on data centre technologies including physical and virtual networking, compute and storage for several years and is currently ensuring customers achieve their business outcomes with VMware’s SDDC solution. Arup holds technical certifications from VMware as well as Data Center CCIE.

Conference

Event Speakers

Dane Anderson

Vice President, Research Director & Region Manager serving CIO Professionals | Forrester

technology leaders develop customer-obsessed strategies that drive growth. He provides strategic guidance and advice to Forrester’s clients in the areas of digital business transformation, customer experience, and Forrester’s customer-obsessed operating model. Dane’s research focuses on helping clients shift their organisational structures, cultures, processes, metrics, and operations from inward-looking legacy approaches to an outward-looking model driven by the customer.
Dane's views on the Asian IT market are commonly cited in prominent publications and broadcast media, and he is a sought-after speaker at industry events in both Asia and the US.

Conference

Event Speakers

Jinan Budge

Principal Analyst serving Security & Risk Professionals | Forrester

Jinan is an experienced leader serving security and risk professionals who specializes in transformational change and building sustainable cybersecurity, digital, and information risk management capabilities. Jinan has delivered outstanding results using strategic and innovative thinking in the cybersecurity field — building, standing up, and delivering significant cyber transformation strategies across the public and private sectors. Jinan’s research centers on building transformational and effective security programs by focusing and communicating the business issues and value of security to organisations and executives.

Conference

Event Speakers

David Tay Kwee Choon

Chief Information Officer | Beyonics

David Tay is responsible for the digitalization and transformation of manufacturing facilities in 4 countries to Industry 4.0 platform. He and his team is also leading the integration of multiple business entities into, and migration of ERP systems into a single platform that drive the company’s manufacturing business.
Prior to this appointment, David worked for 15 years as Regional Director for CIO/Managed Services, and Vice President for Software BU in Diebold Nixdorf.
David played a VP - Infrastructure role in setting up a Data Centre that provided IDC, Business Continuity and Disaster Recovery services. He also work at IBM Singapore for 15 years in various technology services groups.
David holds a B.Sc (Hons) from the University of Bradford. He is also a Disaster Recovery Certified Expert.

Conference

Event Speakers

Dhanya Thakkar

Vice President | Trend Micro Asia Pacific, Middle East and Africa (AMEA)

DDhanya Thakkar is currently the Managing Director and VP, AMEA for Trend Micro. With global experience at numerous start-ups as well as large global public companies, Dhanya has been associated with utmost innovation and led business transformations for over 19 years. A highly dynamic and extremely skilled executive who successfully blends technology acumen and business skills, Dhanya has a proven track record of building security solutions to and from the cloud, developing strategic alliances and strategic selling at an executive level. Prior to Trend Micro, Dhanya was President at Indusface, where he founded and built Indusface’s information security products and solutions division. This included Indusface’s flagship SaaS product for web application security IndusGuard, where Dhanya was responsible for IndusGuard’s product strategy, product engineering and innovation, global marketing, sales and business development. Prior to Indusface, Dhanya was VP of Business Development and VP of Security Center at Third Brigade, a leading provider of server and cloud security software. Dhanya was involved in all aspects of Third Brigade strategy and operations and was instrumental in engineering the acquisition of Third Brigade by Trend Micro. Prior to joining Third Brigade, Dhanya held various leadership positions at Entrust from 1995 through 2005. Dhanya is co-inventor of two patented technologies and has published internet briefs on software technology. He earned his bachelor's degree in Computer Science from Maharaja Sayajirao University in India. He has completed the Queen's Graduate School of Business Executive Program. He is also a frequent speaker at conferences and forums around the world.

Conference

Event Speakers

Johnny Kho

CISA, CISSP (Associate Director of Cyber Security) | Singtel

Johnny Kho is currently an Associate Director in Singtel leading cyber security product management. He has more than 20 years of cyber security experience. Prior to Singtel, he is a Regional Business Development Manager with Systex Corporation, as part of the team guiding the solution strategy for the Asia Region. He constantly engages with Vendors, Partners and Customers in a business and advisory role; covering key areas in Cyber Security, Compliance and Risk Management as well as IT Operations Optimisation. He has previously taken on Product Management and Solution Consultant roles with NetIQ (Attachmate), BT Frontline and Internet Security Solutions (IBM) mainly in enterprise security especially in areas of intrusion prevention, vulnerability management and security incident and event management from solution and operations perspective. He is a CISA and CISSP. He has been active in the local IT Security area through various interest groups and as a member of AiSP (Association of information Security Professionals) and SCS IS Chapter. He has done public speaking at regional seminars and conferences such as Microsoft TechEd and HP BTO Conference.

Conference

Event Speakers

Joy Nathalie Avelino

Threat Research Engineer | Trend Micro

Joy Avelino work mainly focuses on practical applications of data science and machine learning for malware and threat security research. In recent years, she has regularly presented use cases of machine learning in the threat security industry based on actual results of POC projects. She has worked on several projects dealing with the application of machine learning for threat security, such as algorithms for ransomware family classification using accessible malware information. Her current project primarily involves clustering in-the-wild network traffic with the aim of augmenting threat intelligence for threat family correlation and analysis.

Conference

Event Speakers

Kevin Ripa

President of The Grayson Group | SANS Certified Instructor

Kevin currently serves as president of The Grayson Group of Companies, which consists of Computer Evidence Recovery, Pro Data Recovery Inc., and J.S. Kramer & Associates, Inc. He provides investigative services to various levels of law enforcement, Fortune 500 companies, and the legal community. He is past president of the Alberta Association of Private Investigators and a former member of the Canadian Department of National Defence, where he served in both foreign and domestic postings.

Kevin has assisted in many complex cyber-forensics and hacking response investigations around the world. He's a sought-after resource for his expertise in information technology investigations and frequently serves as an expert witness.

Kevin has designed, produced, hosted, and taught numerous industry-related courses, and has had over 100 speaking and training engagements with industry and law enforcement around the world. He has also authored dozens of articles, as well as chapters in a number of manuals, books, and training texts on the subjects of computer security and forensics.

Kevin holds a number of industry certifications, including four GIAC certifications (GCFE, GCFA, GSEC, GISF), EnCase Certified Examiner, Certified Data Recovery Professional, and Licensed Private Investigator, and he previously held the Certified Penetration Tester and Certified Ethical Hacker certifications.

Conference

Event Speakers

Miguel Carlo Ang

Threat Research Engineer | Trend Micro

Miguel Carlo Ang, a graduate of Mapua Institute of Technology, began his career in cybersecurity at Trend Micro in 2011. Starting as a member of the Web Reputation Services team, he evaluated suspicious websites and performed research and documentation for the solution delivered. He also took on a Threat Research Engineer position, where he was able to analyze different threats and make technical reports and sandboxing solutions for them. Currently an end-to-end analysis expert, he now focuses on malware research: exploring the “bigger picture” and the latest threats that are in the wild today.

Conference

Event Speakers

Nilesh Jain

Vice President | Trend Micro Southeast Asia & India

Nilesh Jain, with his capacity to plan strategically coupled with his operational competence, spearheads the Enterprise Business of Trend Micro in India & the SEA Region. Nilesh have been instrumental in scaling business through sales management, team management, retention and training of employees. As a country manager, he is currently responsible for all facets of the organisation’s region-wide enterprise operations in the India & SEA arena. He supervises profit, revenue, cash and sales in India and SEA region. With more than 15 years of experience in the IT industry, Nilesh has held various leadership roles in his tenure at Trend Micro. Extremely adept at managing sales operations and networking, he was instrumental in growing Government business by more than 250% within two years by focusing on government-specific strategic alliances, channels and end-customer. The overall business grew by around 38% YOY under his able guidance and leadership. His sales management skills also saw him being awarded “Best Sales” for two consecutive years in 2010 and 2011. He holds a Bachelor of Technology degree in Chemical Engineering from S.P. University, Ahmedabad and has completed a Postgraduate Diploma in Business Management (Marketing and Sales) from SLIMS, Ahmedabad. He has been significantly instrumental in contributing towards enterprise sales business including channel, non-named enterprise sales and government sales. Nilesh regularly participates as a key speaker at various IT security forums and events to disseminate the knowledge gained during his ten years in the IT security industry.

Conference

Event Speakers

Suchit Mishra

Head of Information Security | Grab

Suchit Mishra Head of Information Security | Grab Suchit is the Head of Information Security at Grab, where he provides leadership and oversight to ensure the security of hundreds of millions of people who use the ride hailing platform in South East Asia. He is also very passionate about collaborating with the security community and building solutions to improve the ecosystem at large.

Prior to Grab, he was heading the security assurance team at Uber focusing on the enterprise products and services and drove the global technical security & compliance strategy for Uber Everything and Uber for Business. Before Uber, Suchit headed the security engineering function at Flipkart, the largest e-commerce marketplace in India, covering all aspects of secure software development, infrastructure and IT corporate security along with regulatory compliance. He has also worked at salesforce.com where he led and managed the information security programs for acquisitions and enterprise IT. Suchit spent the early years of his career at Adobe where he led the team to embed security into the engineering practices there.

Suchit is a regular speaker and panelist at security conferences worldwide. He holds multiple master's degrees in Electrical Engineering from University of Alabama, and Software Management from Carnegie Mellon University.

Conference

Event Speakers

William Malik

Vice President of Infrastructure Strategies | Trend Micro

Bill Malik’s information technology career spans over four decades. Before joining Trend Micro, he was CTO of Waveset, an Identity Management vendor. Bill worked at Gartner for twelve years where he led the Information Security service and the Application Integration and Middleware service. He co-authored the Cobit version 3 standard. During his 12-year career at IBM he worked in MVS development, testing, and business planning.

Conference

Event Speakers

Zhuang Haojie

Director of Research | CSA APAC

Haojie is Director of Research for APAC at the Cloud Security Alliance (CSA), where his current portfolio includes delivering initiatives from CSA Working Groups, CSA Corporate Members, standards developing organisations, governments, and other strategic partners.

Prior to joining CSA, Haojie was Manager at the Intelligent Computing Lab, Technology Solutions Division of the Infocomm Media Development Authority (IMDA) of Singapore. During this tenure, he led the development of artificial intelligence strategic roadmaps, and collaborative projects with industry and research community partners to co-develop machine learning driven solutions, aimed at tackling productivity and sectoral challenges. When Haojie was with the National Cloud Computing Office under the former Infocomm Development Authority (IDA) of Singapore, he conceptualized & managed data-related initiatives for industry, and led awareness creation efforts for cloud computing in Singapore.

Haojie obtained his B.Eng. (Hons) in Computer Engineering from the National University of Singapore, beginning his career with a brief stint as an events photographer, before getting involved in the research & design of networking protocols for multi-hop underwater networks at the Institute for Infocomm Research (I2R), Agency for Science, Technology & Research (A*STAR).

Whenever possible, Haojie prefers inline skating to walking.