(ISC)2 Singapore Certified Mentors

(ISC)2 Singapore is proud to share our current list of certified cybersecurity mentors. Please note this list will grow over time as we train and enlist more mentors.

To mentees, please review the following profiles of (ISC)2 Singapore cybersecurity mentors. You may fill in the mentees' form below to connect with your desired mentor. 

https://forms.office.com/r/vM4466YfTn

Please note that connection to the desired mentor is also subjected to his/her availability. This could be due to, not limited to the following:

• Mentors' work and/or personal schedule 
• Mentors' being occupied with one or multiple mentees
• Skills mismatch which the mentor may not be able to assist
• Personal reasons

As such, we seek for the mentees' kind understanding if he/she is unable to connect to the desired mentor. In that case, it is advised to look for an alternative from the list.

If you have other enquiries, you may write to the (ISC)2 Singapore mentorship team at mentorship@isc2chapter.sg.

Amanda Bolzan

IT Security Professional

CISSP, SABSA and COBIT

Amanda Bolzan is an IT security professional with 15 years of experience.

Amanda has held a variety of IT Security positions in transportation, banking, retail, government, and health organisations across Asia and Australia.

Amanda began her career in IT Security operations at Australia's central bank and was responsible for security management, incident response, and product evaluations. She then moved into the area of risk, governance, and compliance where she worked at the leading Australian retailer, and subsequently performed consulting roles for banks, health, and government organisations. Here she wrote policies, performed security audits, and implemented compliance and risk management programs of work (eg. PCI, GDPR, ISO27001, ISM, PSPF).

Amanda's most recent role was head of IT security for a global airline (headquartered in Asia) where she was responsible for the overarching security direction for the organisation and the security staff: operations, analysts, compliance, risk management & architecture.

Amanda has a Bachelor of Science in Information Technology from the University of Technology Sydney and a Masters in E-forensics and Enterprise Security from Melbourne University. She is CISSP, SABSA and COBIT certified.

Amanda has recently moved to Singapore and spends her time volunteering for a number of IT Security initiatives:

• ️ Amanda is a master trainer for ASEAN Cybersecurity Skilling Programme which aims to teach young women about IT Security.
• ️ Amanda is part of a ISC2 global initiative called Women Cyber Leaders Committee which aims to help attract and retain women in the IT Security field.
• ️ Amanda is also a mentor for AISP Ladies in Cyber.

Amanda is committed to helping those who are new to IT Security establish a strong foundation to develop a fulfilling career path. Amanda believes that this mentorship program is a great opportunity to do so.

Amin Mahetar

Information Security Architect, Cisco Systems

CISSP

Amin is a Senior technologist / Cyber Security consultants with over 20 years of experience in multi-faceted role primarily on Cloud Solution Architecting, Cloud Networking, Cloud Security, SaaS Security, IAAA, Regional IT Security Controls & Guidelines and Web Application Security.

Led culturally diversified team around the globe, on-shore & Off shore (UK, US, India, Singapore, Japan, Philippines, Australia). Some of the key sectors exposures in my careers are, BFSI, Regional IT Controls, Public Sectors (GovTech), Regulatory Reporting, Investment Banking, Insurance, F&B and Customer Loyalty.

He holds Master in Computer Application and obtained multiple certificates during his professional journey, to name a few CCSP, GCP-PCNE, GCP-PCSE, GCP-PCA, GCP-ACE, AWS-SA, AWS-SysOps

Job Track Amin would like to assist on -

Cloud Security, Cyber Security, Cloud Infrastructure Security, SaaS Security, IAAA, Customer Engagement

Anu Pillai

Enterprise Architect, ComfortDelGro Corporation

CISSP, TOGAF, PMP, MITRE ATT&CK® Fundamentals

Anu's LinkedIn at https://sg.linkedin.com/in/anugpillai

Enterprise Architect with 19 years of experience in architecture, design, development and implementation of secure, scalable multi-layered applications with a strong focus on application and data security, ensuring seamless integration of security best practices throughout the software development life cycle.

Balaji Kapsikar

Head of Technology and Cyber Risk, Funding Societies Singapore

DPO | VCISO | Speaker | Mentor | Cyber AI | CISSP | CISM | CRISC | CDPSE | ISO27001 LA | CEH | CPISI

Balaji Kapsikar Head of Technology and Cyber Risk at Funding societies pte Ltd(Fintech). Additionally He is also DPO for Funding Societies.  Balaji has completed his Masters in computer application and has 12 plus years of experience in Information security along with various Certifications like CISSP, CISM, CDPSE, ISO27001 and CEH. In his experience he has worked upon various information security domains, Vulnerability Management, Cloud Security, AI Security & AI Risk Management, Third-party Risk Management, Incident Management, Security Operations, Threat Modelling, Security Architecture Design & review, Security Audits and Compliance, Cyber Security Awareness, Data Security and privacy, Access Control, IT Security Policies & Procedures, GDPR, and cyber security maturity assessment, security review for merger and acquisition.

• ·   Speaker at AISA #Cybercon 2023- Australian Cyber Conference 20-22 March 2023 -Canberra on Topic Insider threats - Don't underestimate
• ·       Speaker at (ISC)² SECURE Asia-Pacific Summit on Insider threats with remote and cloud work environment.
• ·       Awarded as receive recognition for Cloud Security Risk Champion2022 of the Year Award   by Cloud security alliance Chapter
• ·       Participated as Mentor in Global Mentorship for Cybersecurity ( GMFC) Program on Cloud and cyber security topics
• ·       Participated as Mentor in ISC2 Mentorship program 2022.

Balaji is passionate about helping various teams and multiple stakeholders on Various cyber risk-related matters to drive business outcomes that aid their success and growth. In addition, Balaji is trying to help Cybersecurity & Technology Risk skilling, especially People who would like to move into Cyber security by Participating mentorship programs in Cybersecurity community.

Cyril Tan

Quantum QKD | Product Security | IoT Security | OT Security | (ISC)2 Singapore Chapter | Wireless Pen Test Enthusiast | Cloud Security

CISSP, CSSLP, C|CISO, CEH, ITIL

Cyril's LinkedIn at https://www.linkedin.com/in/cyril-tan-1328227/

Cyril is a certified Information Security Leader, a Certified Ethical Hacker and a Blackblot Product Management Professional. He holds a bachelor’s degree in Electrical and Electronics Engineering Degree from Nanyang Technological University and professional security certifications that include CISSP, CSSLP, C|CISO, CEH and ITIL. He enjoys cybersecurity innovation, has 2 cybersecurity patents and several cybersecurity product innovation awards (CES and Singapore Good Design) and close to 20 years of R&D experiences in the cybersecurity industry, working in both government-linked companies and MNCs.

In the area of cybersecurity, particularly, he has worked with technologies (in the R&D space) that include steganography, cryptography design, smart cards, cloud security, IoT security, OT security, product security, wireless pen testing and most recently, quantum key distribution technologies. On security evaluation programs, he has worked on programs that include Common Criteria, IEC62443 and UL2900. Cyril was also previously an active contributor to the LXI Security Working Group. At Keysight, Cyril led a team of 10 engineers and went beyond his role, working with SUTD to create a novel fuzzing technology as part of wireless penetration testing and IoT/automotive security. Through the use of the novel technology, together with the SUTD researchers, a number of new vulnerabilities on different IoT and automotive targets were being uncovered, of which the most notable was the Sweyntooth family of BLE vulnerabilities and Braktooth. Cyril is also currently exploring in the space of quantum computing, looking into Quantum modalities, QKD and post quantum cryptography, striving to explore new grounds of innovation.

Cyril is also an active cybersecurity EXCO member with the ISC(2) Singapore Chapter as well as a volunteer of the Singapore Hokkien Huay Kuan (SHHK). He has mentored more than 50 cybersecurity professionals and currently leads the (ISC)2 Singapore Mentorship team. Cyril is also volunteering as a Volunteer Career Advisor (VCA) with Workforce Singapore (WSG).

Dan Thio

Technology and ICS Risk Specialist, Olea Global Pte Ltd

CISSP

With a comprehensive background in managing information security, privacy, and compliance operations, I bring a broad range of knowledge to assist you on your journey.

Throughout my career, I have had the privilege of serving in diverse roles such as policy management, controls audits, governance, regulatory compliance (GRC), client and staff security awareness, and engagement, as well as business continuity planning. Notably, I have gained hands-on experience in implementing robust controls and processes within Microsoft 365 and AWS environments.

In addition to my professional experience, I am a proud graduate of Singapore Management University, where I achieved Magna cum Laude honors in Information Systems (Information Security). I also had the opportunity to participate in a job rotation at Deutsche Bank Singapore as part of their esteemed Technology Graduate Programme.

Beyond my passion for cyber security, I remain genuinely interested in the intersection of FinTech, Cyber Security, and Technopreneurship. I actively volunteer my time with the Humanist Society (Singapore), an organization I co-founded.

Should you seek a mentor who offers guidance, support, and a down-to-earth approach, I am here to accompany you on your path to success. Together, we will navigate the ever-evolving landscape of cyber security, nurturing your skills and knowledge to thrive in this exciting field.

Garion Kong

Information Security Manager for Asia Pacific, Deputy CISO

CISSP, CCSP, SSCP, C|CISO, CISA, CISM, CRISC, PCQI

 

Garion is an information technology and security professional with over 20 years’ experience leading IT governance, management and information security for SMEs and regional offices of MNCs in Asia. He is currently the Information Security Manager for Asia Pacific and Deputy CISO for a FTSE-100 UK engineering company. Prior to his current role, Garion was the Head of IT & Security for Asia and Manager, Technical Services (APAC) for a global software analytics company and Head of IT for a catastrophe risk modelling and research company.

Garion has a Bachelor of Science (Hons) in Business Information Technology. His current area of interest and specialization is in integrating information security with technology and businesses and holds several IT security certifications. Garion is a certified quality professional with CQI,  ISO/IEC 27001:2013 Lead Auditor and a certified Chief Information Security Officer (C|CISO).

Garion is the Immediate Past President and Chapter Advisor for the ISC2 Singapore Chapter. He is a volunteer Career Advisor with Workforce Singapore (WSG). Garion is also an EXCO member with Tech Talent Assembly (TTAB), leading their DevOps/DevSecOps and Cybersecurity SIGs.

Jeremy Ang

Senior Threat Intelligence Analyst, Intercontinental Exchange, Inc

CISSP, GCFA, GREM, GDAT, GCTI, GMON, GCIH and GOSI

Jeremy is an information security professional with a decade of experience in the financial services, pharmaceutical and managed security service provider (MSSP) industries. He has held previous cyber defense roles with responsibilities in threat intelligence and hunting, incident response and digital forensics, and vulnerability management. Jeremy has a bachelor’s degree in computer science and holds various industry certifications including CISSP, GCFA, GREM, GDAT, GCTI, GMON, GCIH and GOSI.

Jeremy is currently a Senior Threat Intelligence Analyst with Intercontinental Exchange, Inc., a Fortune 500 company that designs, builds and operates digital networks to connect people to opportunity. He also volunteers at the Association of Information Security Professionals (AiSP) Cyber Threat Intelligence (CTI) Special Interest Group (SIG).

Jeremy believes in contributing back to the cyber ecosystem via various avenues such as mentorship by providing consistent guidance, inspiration and knowledge sharing.

Johnson Yeo

Principal Consultant, Security Architecture

CISSP, CISSP-ISSAP, CISSP-ISSMP, CISSP-ISSEP, CCSP, CISA, CRISC, CISM, ITILv3 Expert, PMP, Azure, PCNSE, NSE4

With an extensive career spanning over 20 years in the IT industry, Johnson has immersed himself in different technologies, platforms and industries. Starting off from a technological perspective, Johnson has spent a considerable amount of time dabbling in technologies from .Net, SQL, Azure Cloud and SharePoint. As the technical expertise grew, he felt that he had to learn more about project management to handle his work projects better, therefore the decision to pursue PMP. As time grew, his love for new knowledge powered his pursuit of certification to validate his know-how.

Around 2014, Johnson decided to pivot to security due to the new-found challenges posed by security incidents happening around our region and country. As the knowledge and network grew, his projects increased. This not only considerably allowed him to utilize his expertise, it also points out gaps in his knowledge areas.

Being one of the few people in Singapore and the region to hold the concentration certificates of CISSP (CISSP-ISSAP, CISSP-ISSMP, CISSP-ISSEP), Johnson’s credentials are a testament to his show of commitment to continuous learning and professional growth. His previous experience of mentoring candidate in ISC2 and similar not-for-profit organization has also aided his growth personally and professionally. He hopes to help potential mentee(s) navigate the current cybersecurity landscape and aid their learning journey.

Mayank Nauni

Senior Solution Architect, Amazon Web Services

CISSP | CCIE | CISM | TOGAF

LinkedIn Profile: https://www.linkedin.com/in/mayanknauni/

Blog: https://mayanknauni.com/

Mayank Nauni serves as a Senior Solution Architect at Amazon Web Services, stationed in Singapore. He possesses an extensive background spanning more than 20 years within the IT sector, with a primary focus on solution architecture and a profound specialization in the realm of Cybersecurity.

Previously, Mayank held a pivotal role as a Senior Principal Technologist at the national flag carrier airline of the Republic of Singapore. During his tenure, he led a proficient technical team dedicated to conceiving and executing intricate digital transformation endeavors across both public cloud and on-premise environments.

Presently, Mayank is engaged in the pursuit of his PhD in Cybersecurity, complementing his academic achievements with a Master’s Degree in the same field from the esteemed Singapore University of Technology and Design (SUTD). His dedication to professional development is exemplified through the acquisition of 26 active certifications encompassing domains such as cybersecurity, virtualization, cloud computing platforms, networking, and containers.

An accomplished public speaker, he frequently addresses gatherings and conferences throughout the ASEAN region, delivering insights on critical subjects such as cybersecurity, hybrid cloud solutions, Industry 4.0, and OT security. His expertise extends to mentoring students and professionals for the past eight years, encompassing areas of cybersecurity, cloud architecture, network administration, and security protocols.

Meenu Sharma

IT Security Manager, PwC

CISSP

I am a cybersecurity practitioner, working in the field of governance, risk, and compliance. I have worked on projects in security domains such as ISO audits, business continuity planning, internal risk audit, security policy enforcement, and security awareness initiatives.

Earlier in my career, I have worked in various roles in an enterprise IT organization, related to application development and maintenance, change management, adoption, and stakeholder relationship.

I have mentored a couple of early-in-career colleagues in my workplace, helping them integrate into the corporate work environment and work with global remote teams.

I aim to mentor individuals aspiring to work in IT or cybersecurity, in developing a comprehensive understanding of IT risk assessment and management, and emphasizing effective security strategies to foster a security-first culture in today's digital era.

Paul Wong

IT & Security Leader | Fortifying Businesses with Proactive Cybersecurity Solutions and Driving Technological Excellence| CISSP

Graduated from Nanyang Technology University of Singapore, holding a degree in computer Engineering.

A self-motivated IT and Cyber Security professional (CISSP) with over 22 years’ experience. Proactively mitigating risks and ensuring business continuity through innovative solutions and strategic planning in telecommunication, banking and finance sectors.

Oversee daily operations; Physical Security, Vulnerability management, Network Security, Desktop Security and Application Security for supporting Asia Pacific region. Im also the Security Coach reviewing all new development projects workflow to ensure all end point security and encryption is in place for sensitive data; data at rest, data in motion and data in transmit.

Responsibilities included provisioning for new projects/launches, architecture, capacity planning, security and working closely with Service Management to deliver an optimal service and troubleshoot of any security related production issue for the region.

Beside providing leadership within my organization, I’m also an advocate of mentorship to external security apprentices. The aim is to guide them in self-discovery and self-understanding, thereby enabling them to embark on a fruitful journey in the realm of Security.

Seow Kong Guan

Assistant Director, Regional Technology Risk Management

CISSP, CEH, CISA, CRISC, CISM, CGEIT, CDPSE, Cobit, ITILv5, PMP, CSM, Prince2, GRCP, GRCA, eTOM, Azure Fundamental, ACTA

With an extensive career spanning over 27 years in the IT industry, KG stands as a seasoned professional with a wealth of experience under his belt. His expertise shines brightly in the realm of first-line IT security operations and services, with a dedicated focus on application security requisites and the ever-vital domain of cloud security essentials. KG's prowess extends further to encompass second-line defense strategies, enshrining the intricate domains of risk and control management, the precise delineation of Key Risk Indicators (KRIs), and the establishment of a resilient corporate risk appetite.

KG's professional journey has encompassed an array of regional and global companies, prominent Big4 firms, distinguished local and international system integrators, reputable vendors, and a publicly listed conglomerate. His prowess has also been harnessed to provide services to Singapore government agencies, attesting to his significance within the industry.

Holding a CISSP certification along with 15 other active IT industry certificates, KG's credentials are a testament to his commitment to continuous learning and professional growth. His wealth of certifications positions him as an ideal mentor for individuals seeking to navigate the diverse landscape of industry certificates and forge a well-guided career path. Whether it's advice on certifications or career guidance, feel free to reach out to KG for valuable insights and direction.

Tyler Tang Yu Long

Assistant Vice President, Third Party Cyber Risk Management, State Street

Bachelors of Computer Science (Specialization in Information Security), (ISC)2 CC

I spent 10 years building my exposure and experience in computer science and information security from scratch, of which 5 years were dedicated to my career in security assessments where I worked my way from an Associate Analyst to Assistant Vice President at present.

I hope to be able to help those interested in a career of cybersecurity to understand it is not just penetration testing or security operation centers, nor only if you are CISO can you be seen as successful.

Zhou Zhihao

Security Consultant, IBM Singapore

CISSP-ISSMP, ISSAP, CGRC, CCSP, CSSLP, CCSK, OSCP, CMSC, ITIL

Zhou Zhihao is a seasoned cybersecurity professional who has over a decade of experiences in Cybersecurity Operations, Cybersecurity consultancy, penetration testing and software engineering. He is holding a professional appointment as a Security Consultant with IBM Security. He is also an adjunct lecturer with National University of Singapore, Institute of System Science (NUS-ISS) and Honorary Secretary / Chief Technology Officer of (ISC)2 Singapore Chapter Executive Committee.

 

Zhihao holds a Masters degree in Knowledge Engineering from NUS and professional certifications such as CISSP-ISSMP, ISSAP, CGRC, CCSP, CSSLP, CCSK, OSCP, CMSC and ITIL. An advocate of lifelong learning, he truly believes the importance of contributing back to the cybersecurity community. Zhihao is currently volunteering as a career advisor with Workforce Singapore (WSG).

 

For any queries about the program, please drop an email to (ISC)2 SG Chapter (mentorship @ isc2chapter.sg).