Enabling Data Privacy in the Cloud
Dr Meng-Chow Kang, CISSP, Member, ISC2 Advisory Council – Asia Pacific
With the advancement of AI/ML, Big Data analytic, and cloud technology, much can be done with data that organization possesses. Where personal data are involved, such processing may however raise regulatory and data subject’s concerns. The secure use of such technology in a privacy-respectful way could deliver more efficient and beneficial services for the end users. This session evaluates the key requirements for personal data protection, dissects what they mean in the context of personal data processing in public cloud services, and discusses how we can approach such requirements leveraging cloud-enabled and cloud-native capabilities to achieve the end goals of providing better services to the end users, and at the same time ensuring adequate privacy safeguards and security of personal data in the cloud.
Speaker: Dr Meng-Chow Kang, CISSP, Member, ISC2 Advisory Council – Asia Pacific
Dr. Kang Meng-Chow has been a practicing information security professional for more than 30 years with field experience spanning from technical to management in the various information security and risk management roles, including the Singapore government, major multi-national financial institutions, and global security and technology providers.
Since 2022, Dr Kang is Director of Averitus, which specializes in cybersecurity and privacy strategy and risk management advisory, development, implementation, competency building, and assurance.
Prior to founding Averitus, Dr Kang was the leader of the security assurance team in Amazon Web Services Asia Pacific, Japan, and China region from 2017 to 2021. Dr Kang has been active in the information security community, and was a Director of the (ISC)2 Board from Jan 2015 to Dec 2017 and a member of the (ISC)2 APAC Advisory Council from 2004- 2014.
Dr Kang’s research and part of his experience in the field have been published in his book, “Responsive Security – Be ready to be secure”, by CRC Press in Oct 2013. His contributions to the information security industry and community have also been marked by numerous industry awards.
Dr Kang has also been contributing to both local and international security standardization efforts since 1998, in which he has held several committee and working group chair and editorial positions in the Singapore national standards body, ITU-T SG17, and ISO/IEC JTC 1 SC 27. Dr Kang is also co-Chair of the Asia Regional Information Security Exchange (RAISE) Forum, which he co-founded with a group of security experts in 2004. Besides contributing to the industry and community, Dr Kang continues to conduct research and teach cybersecurity as an Associate Professor (Adjunct) with the School of Computer Science & Engineering at Nanyang Technology University, Singapore.
Dr Kang received his MSc degree in Information Security from the Royal Holloway and Bedford New College, University of London, and completed his PhD in Information Security Risk Management at the Southern Cross University, Australia. He has also been a Certified Information Systems Security Professional (CISSP) since 1998.