Lawrie Abercrombie
Technical Director ARCANUM INFORMATION SECURITY LTD, United Kingdom
Cyber security leader with UK defence and NCSC-aligned experience in risk, assurance, and cyber defence capability.
DRI Conference 2021
Regional Business Continuity & Cyber Resilience
23 August 2021 | 9.30am - 5.30pm
About
Regional Business Continuity & Cyber Resilience
DRI KL2021 brings together business continuity, cyber resilience, operational resilience, and risk leaders for a two-day virtual conference and awards programme.
Business Continuity
Cyber Resilience
Awards of Excellence
Regional Conference
2
Conference Days
13
Speakers & Panelists
10+
Award Categories
Speakers & Panelists
Featured Speakers & Panelists
John Burnage
Director OAKPOINT LTD UK
Experienced across information assurance, business continuity, programme delivery, and international security operations.
Jane Chappell
Operation Director ARCANUM INFORMATION SECURITY LTD, United Kingdom
Cyber security executive with advisory, defence, and academic assessment experience across public and private sectors.
David Porter
Director, HR Projects & Continuity AUSTRALIAN TAXATION OFFICE, Australia
Business continuity leader known for whole-of-government practice development, crisis simulation, and national response work.
Hairul Affandy Ismail
Head of Operation Risk PERKESO, Malaysia
Operational risk and BCM practitioner with deep ISO implementation experience across institutional environments.
Magda Chelly
Head of Cyber Risk Consulting MARSH ASIA
Cyber risk strategist and industry advocate with leadership experience spanning consulting, security operations, and cloud security.
Firhan Fikri Hadenan, CBCP
Head, Group BCM Maybank
Leads strategic BCM implementation and crisis coordination across a major regional banking group.
Clifford Seow
Business Resiliency Management, Asia Pacific Multinational
Operational resilience specialist with multinational leadership across crisis, risk, and continuity management programs.
Kenji Watanabe
Professor and Head of Disaster & Safety Management of Nagoya Institute of Technology, Japan
Academic and policy expert in BCM, risk management, and critical infrastructure protection in Japan.
Murari Kalyanaramani
Chief Information Security Officer (CISO), Singapore United Overseas Bank (UOB)
Senior information risk and cyber security leader with global banking and governance experience.
Mohd Nazlan Eza
Head of Business Continuity Management UMW Corporation
Internal audit, governance, and BCM professional with broad cross-sector operational experience.
Indrani Chandrasegaran Kermorvant
Managing Director Accenture Security SEA
Cyber security executive advising on governance, resilience, and transformation across APAC and beyond.
Dr. Ronald Ross
Fellow National Institute of Standards and Technology
Influential security risk leader shaping systems security engineering and federal cyber resilience frameworks.
Lawrie Abercrombie
Lawrie is the Technical Director of Arcanum Information Security Ltd, a National Cyber Security Centre (NCSC) certified company, which he co-founded in 2008 after retiring from full time service in the British Army where he commanded the Army’s first Cyber Security unit. Certified as one of only 30 Risk Management Specialists in the UK under the NCSC’s flagship Certified Cyber Professional (CCP) scheme, Lawrie is a very experienced Cyber Security professional with strong leadership and organisational abilities.
He has specialised in ISTAR and Defence related CIS projects and has extensive knowledge of HMG and MoD security policies and is fully cognisant of the latest technical cyber security and cryptographic mitigation measures. Whilst leading and assisting on projects for various UK Central Government Departments and commercial clients in the UK, NATO and the Middle East, he has provided Cyber Threat and Security Risk Assessments, information security and assurance, accreditation document sets and has also audited commercially to ISO 27001.
Serving as an officer in both the Regular and then the Territorial Army, he developed a particular interest in the development of Cyber Defence Capability in multinational and joint cyber operations as part of which from 2013 -15, he planned and led the UK’s participation in Ex CYBER GUARD, the world’s largest real time Cyber Defence Exercise.
John Burnage MBCS
John has a deep understanding of security and intelligence processes and procedures within the Physical, Personal, Telecommunications and Information Technology arena.
He followed a demanding full military career for 35 years working within the broad field of Information Services and has subsequently filled related commercial roles for multi-national concerns, these have included Lottery, Investment and Insurance businesses. He has held project and programme management appointments where briefing sensitive subjects on a daily basis at board level was part of his routine. Those roles have included programmes worldwide based in China, Africa and the Middle East
He demonstrates high flexibility, intellectual and analytical ability combined with a sound practical approach. Business Continuity, Information Assurance, Physical and Personal Security, Information Security, Programme and Project Management are all part of his broad skill set.
For a number of years, he was part of the World Lottery Association Security and Risk Committee as a co-opted member providing Information Assurance advice and support. In addition to that role, he is a founding member of UK Defence’s Information Assurance Group which in its initial stages focussed ensuring defence systems world wide were safe and secure.
He is highly experienced in working an international multi-lingual environment. (UN, NATO, South America, China, Middle East, Africa, Brunei, Canada) to name a few.
He has been internationally and nationally recognised for his contribution to Information Security, Training and Peace Keeping roles.
Jane Chappell
Jane is Operations Director of Arcanum Information Security Ltd, a National Cyber Security Centre (NCSC) certified company, which she co-founded in 2008. A Fellow of the British Computer Society she has an MSc in Information Security and MBA in International Management. A cyber security professional with over 20 years’ experience, she has advised numerous organisations including: the European Commission; NATO Communications and Information Agency; European and American Defence companies; the Ministry of Defence; Government Departments, Agencies and Police Forces.
A former regular Royal Air Force officer, she also served as an intelligence officer in the RAuxAF. Jane has served as a military reservist alongside her civilian career and joined the Army’s largest cyber security unit and was the first woman to command it. She fulfils several voluntary roles as: Advisory Board Member of the Research Institute in Sociotechnical Cyber Security.
National Cyber Security Centre (NCSC) Panel Member assessing cyber security Master’s and Bachelor’s degrees applications for NCSC certification. Chartered Institute of Information Security assessor for the certified Cyber Professional scheme. She was previously a committee member of the of the British Computer Society Information Security Specialist Group and UK Cyber Security Challenge host and assessor.
David Porter
David Porter was the Director of Business Continuity Management (BCM) at the Australian Taxation Office (ATO) from September 2010 and has provided a strategic oversight role since August 2016, while leading technology, HR and building refurbishment projects.
David developed the whole-of-government BCM Community of Practice, with members from over 40 Commonwealth and state based agencies. He provides regular mentoring support for other organisations locally and has represented the ATO in London, Berlin and Jakarta. As a member of several forums, David has contributed towards the emergency readiness and preparedness across the public sector and finance industries. As well as leading several national level responses to business interruptions and natural disasters, David has guided senior executive and board level groups through detailed crisis simulation testing and exercises.
David developed and embedded the ATO’s BCM framework, supporting 20,000 staff, 40 buildings and over 250 critical IT systems. He progressively integrated all key incident/emergency/crisis processes across the organisation and in 2016 completed the design and installation of a purpose built crisis control room within the Penrith office.
David has established a credible, international profile within the BCM industry, through his work with the Disaster Recovery Institute’s Future Vision Committee and regularly presenting at national and international conferences.
Evidence of David’s expertise and contribution is demonstrated by receiving several national and international awards across continuity and risk related industries. David has also worked with the United Nations Office of Disaster Risk Reduction to demonstrate effective organisational responses to natural disaster events.
David has been published in the peak industry academic publication Journal of Business Continuity and Emergency Planning and forms part of the global editorial board with 25 industry leaders.
Having performed a variety of management roles in the ATO over the last 18 years, David has a broad skill set including leading large operational teams and managing change through strategic projects. He has completed studies in business management and is currently studying a Bachelor of Digital Design with Curtin University.
Hairul Affandy Ismail
Hairul Affandy Ismail is the Head of Operational Risk in PERKESO, a National Social Security Organization with more than 15 years of experience in effective and efficient BCM implementation, 11 years in ORM and 7 years in Information Technology application development and support in various organizations including financial institutions and statutory bodies.. He is responsible to ensure good governance practice of Operational Risk Management (ORM) and Business Continuity Management (BCM) throughout the organization. He was involved in various ISO implementations and certifications such ISO 9001, ISO 27001, ISO 23001. ISO 39001 and ISO 37001.
He was invited as speakers in various events organized by various organizations including Business Continuity Institute (BCI) and local university. He obtained his degree of business administration majoring in Accounting and Management Information System from Northeastern University, Boston, Massachusetts, USA. He is certified Master Business Continuity Practitioner (MBCP) from Disaster Recovery International Institute, USA (DRII).
Magda Chelly
HEAD OF CYBER RISK CONSULTING,
MARSH ASIA
Magda is leading Cyber Risk Consulting for Marsh Asia. She is the founder of Women of Security (woSEC) Singapore Chapter, where she encourages diversity and inclusion in the industry.
Magda was nominated as global leader of the year at the Women in IT Awards 2017, and a TOP 50 cyber security influencer globally, as well as TOP 58 Women In Cyber Sec urity to Follow on Twitter and a TOP 20 Cyber Sec urity Experts alongside with Kevin Mitnick, and Brian Krebs.
She has previously co-founded Responsible Cyber , an all in-one cybersecurity shop for small and medium businesses.
She has a PhD in Telecommunication Engineering, She held
several Chief Information Security Officer roles f or medium and large organizations across Asia and internationally. She built cyber security strategies for companies, and provided guidance; from governance and security architecture to security operations. She has hands-on experience with penetration testing and technical cloud secur ity across main cloud platforms.
Firhan Fikri Hadenan, CBCP
Profile content not supplied.
CLIFFORD SEOW
MBCP
Business Resiliency Management,
Asia Pacific Multinational, Financial Services
Clifford’s 33 years career spans roles in Engineering, Regional P&L Management, Risk Management, Crisis Management and Business Continuity Management in organizations like Texas Instruments, Pepsi-Cola Asia Pacific, Cadbury Schweppes, The Coca-Cola Company and CrisisAsia. He is currently accountable for operational resilience for an international financial institution covering more than 70 offices across Asia.
He has successfully established regional programs for crisis management for global multinational organizations and led consulting projects with large private organizations and government linked institutions and sovereign wealth funds in Operational Risk Management, Crisis Management and Business Continuity Management.
He is a member of the TC292 led by SPRING Singapore and was part of the team which initiated the SS540; Singapore’s first BCM standard. He is Masters-certified by the Disaster Recovery Institute International (DRII) and a Faculty of the DRII certifying many practicing professionals across Asia since 2005.
He enjoys running in his spare time and spends time on web design and following up on world affairs as well as catching up with fellow professionals and practitioners keen to promote and grow the Crisis Management and Business Continuity Management industry.
Kenji Watanabe
Kenji Watanabe is a professor at the Graduate School of Engineering, and also the head of Disaster & Safety Management of the Nagoya Institute of Technology in Nagoya, Japan. He has almost 20 years business and professional experiences at the Mizuho Bank and PricewaterhouseCoopers in financial business and risk management fields.
He is assigned as a chair of several governmental committees in Japan on risk management, business continuity management (BCM) and critical infrastructure protection(CIP) in the Cabinet Secretariat, the Ministry of Economy, Trade and Industry, and other national/regional governments. He has also been a national expert in the ISO/TC292 (Security & resilience) for the last 10 years. He has MBA and PhD in Information, Production and Systems.
Murari Kalyanaramani
Chief Information Security Officer (CISO), Singapore
United Overseas Bank (UOB)
CISA, CISM, CRISC, CISSP, CFE, CBCP
Murari is an accomplished IT and Information Risk Management professional with over 20 years’ experience in Information & Cyber Security, Outsourcing & Supplier Management, Business Continuity, Information Systems Auditing and IT Risk Management.
He has successfully built and managed global information & cyber security capability and led multinational and multi-location teams in global strategy & governance definition and implementation, industry partnership & outreach efforts, operational service delivery and transformational initiatives during his career with United Overseas Bank (UOB), Standard Chartered Bank, British American Tobacco (BAT) and PricewaterhouseCoopers (PwC).
Murari has spoken at conferences and specialist forums in Asia Pacific and possesses various management and technical certifications. He currently serves as a Senior Advisor for CIO Academy Asia (CIOAA) and is a member of the Singapore Institute of Directors (SID). He has previously served on the International Board of Directors for the Financial Services Information Sharing and Analysis Centre (FS-ISAC), FS-ISAC Asia Pacific Strategy Committee, ISACA International Professional Standards Committee (PSC), ISACA Professional Standards and Career Management Committee (PSCMC), Board of Directors for the ISACA Malaysia Chapter and served as the corporate liaison, for Standard Chartered Bank with the Singapore Cybersecurity Consortium (SCC) which has been created for engagement between industry, academia and government agencies to encourage research, manpower training and technology awareness in cybersecurity
Mohd Nazlan Eza, CBCP, CISA
HEAD OF BUSINESS CONTINUITY MANAGEMENT
UMW CORPORATION
Nazlan is a strong proponent of Business Continuity Management, Internal Control, Enterprise Risk Management, Corporate Governance principles.
- Operational Auditing of Information Systems, Automotive, Services, and Properties
- ACL Computerised Audit Analysis Tool Software practitioner
- Technical Support in Aeronautical Information Services
- Management of Technical Services
- IT audit for SeaPort and Haulage Industries
- Operational audit in SeaPort and Total Logistics
- Management of Group Internal Audit functions
- Certification from Disaster Recovery Institute (CBCP)
- Certified Information Systems Auditor (CISA)
Indrani Chandrasegaran Kermorvant
Indrani Chandrasegaran is an experienced Cyber Security Executive with over 20 years of experience in advising clients on cyber defence strategy, digital transformation strategy, enterprise cyber governance framework, audit, compliance management, threat protection, information protection and privacy framework in APAC, Middle East, and Europe.
During her work experience, she has built vast understanding of multi-faceted client base comprising of financial institutions, health organizations, telecommunications providers, Shipping, business process outsourcing and manufacturing businesses.
Prior to Accenture, Indrani served as the CISO/Vice President Cyber Security Services with Infosys Compaz (a joint venture of Temasek and Infosys) where she spearhead and managed security services.
Dr. Ronald Ross
Profile content not supplied.
Agenda
Conference Agenda
Monday, 23th August 2021 (Day 1)
11:00 to 11:05
Welcome Remarks by Emcee (DRII)
11:05 to 11:40
DRI International Announcement & Keynote Address – Chloe Demrovsky, President & CEO, USA
11:40 to 12:15
BCM Keynote Address – David Porter, Director, HR Projects & Continuity, Australian Taxation Office
12:15 to 12:30
DRI Awards of Excellence Nominations Presentation
12:30 to 14:00
Lunch Break
14:00 to 15:00
Panel Discussion 1
“Business Continuity Management, Current Trend, Challenges & Lesson Learnt”
Moderator: Clifford Seow, MBCP
Panelists :
1) John Burnage, Practitioner, United Kingdom
2) Kenji Watanabe, Professor and Head of Disaster & Safety Management of Nagoya Institute of Technology, Japan
3) Firhan Fikri, CBCP, Head of BCM – Maybank Malaysia
4) Hairul Affandy Ismail, MBCP, BCM Head – PERKESO Malaysia
5) Mohd Nazlan, GIAD Senior Manager – UMW Malaysia
“Business Continuity Management, Current Trend, Challenges & Lesson Learnt”
Moderator: Clifford Seow, MBCP
Panelists :
1) John Burnage, Practitioner, United Kingdom
2) Kenji Watanabe, Professor and Head of Disaster & Safety Management of Nagoya Institute of Technology, Japan
3) Firhan Fikri, CBCP, Head of BCM – Maybank Malaysia
4) Hairul Affandy Ismail, MBCP, BCM Head – PERKESO Malaysia
5) Mohd Nazlan, GIAD Senior Manager – UMW Malaysia
15:00 to 15:10
Short Break
15:10 to 16:10
Panel Discussion 1 (Continue)
“Business Continuity Management, Current Trend, Challenges & Lesson Learnt”
“Business Continuity Management, Current Trend, Challenges & Lesson Learnt”
16:10 to 16:15
Emcee Wrap up for Day 1
Tuesday, 24th August 2021 (Day 2)
11:00 to 11:05
Emcee Remarks
11:05 to 11:40
Cyber Resilience Keynote Address – Dr. Ronald Ross, Fellow, National Institute of Standards and Technology, USA
11:40 to 12:15
Cyber Resilience Presentation – John Burnage, Practitioner, United Kingdom
12:15 to 12:30
Awards of Excellence Winners Announcement
12:30 to 14:00
Lunch Break
14:00 to 15:00
Panel Discussion 2
“Cyber Resilience Current Treat, Challenges and Lesson Learnt”
Moderator: John Burnage, United Kingdom
Panelists :
1) Lawrie Abercrombie, Technical Director, Arcanum Information Security, United Kingdom
2) Murari Kalyanaramani, CBCP, Chief Information Security Officer, UOB Singapore
3) Jane Chappell, Operations Director, Arcanum Information Security, United Kingdom
4) Magda Chelly, Ph.D, S-CISO, CISSP®, Head of Cyber Risk, Marsh Advisory APAC
5) Indrani Chandrasegaran, CBCP, CBCLA, Accenture Singapore
“Cyber Resilience Current Treat, Challenges and Lesson Learnt”
Moderator: John Burnage, United Kingdom
Panelists :
1) Lawrie Abercrombie, Technical Director, Arcanum Information Security, United Kingdom
2) Murari Kalyanaramani, CBCP, Chief Information Security Officer, UOB Singapore
3) Jane Chappell, Operations Director, Arcanum Information Security, United Kingdom
4) Magda Chelly, Ph.D, S-CISO, CISSP®, Head of Cyber Risk, Marsh Advisory APAC
5) Indrani Chandrasegaran, CBCP, CBCLA, Accenture Singapore
15:00 to 15:10
Short Break
15:10 to 16:10
Panel Discussion 2 (Continue)
“Cyber Resilience Current Treat, Challenges and Lesson Learnt”
“Cyber Resilience Current Treat, Challenges and Lesson Learnt”
16:10 to 16:15
Closing Remarks
Awards of Excellence
Award Categories
Industry Newcomer – One Award
This award is directed for new business continuity champion who shows exceptional potential in this line of profession. Nominees should not have more than two years of business continuity experience and must be able to demonstrate originality, dynamism and innovation in the learning and understanding of the awareness of BCM and its importance within his/her organization.
Nominations should be submitted in the form of maximum 500 words in essay format, and should show evidence of the nominees' application of originality and innovation in the fast-track learning and understanding of BCM.
Eligibility:
- Nominee does not require to be certified by any recognized BCM organizations/institutes and has not received the award (in the same category) from 2016 to 2020.
- Nominee must be an active learner and/or practitioner in Business Continuity Management (BCM) for less than 2 years (as of 30 June 2021).
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
Best ABCP – Three Awards
Nominees' ABCP membership must be in good standing and he/she must demonstrate continuous learning and practicing on BCM and/or DRP since 2016. ABCP certification supports entry-level proficiency with some knowledge in business continuity planning, but who have not yet acquired a great deal of experience in the field. He/she must also demonstrate sound record on his/her BCM learning and improvement as well as contributions to the organizations in terms of BCM awareness.
These achievements and contributions shall be verifiable by 2 references (can be from the same organizations) who will be contacted by the Judges of the Committee. Nominations should be submitted in the form of maximum 1000 words in essay format.
Eligibility:
- Nominee must be an active Associate Business Continuity Professional (ABCP) and membership shall be in good standing.
- Nominee must be an active practitioner in Business Continuity Management (BCM) more than 2 years (as of 30 June 2021).
- If there is no submission for this category (minimum 10 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
Best CBCP – Two Awards
Nominees' CBCP membership must be in good standing. He/She must have at least 5 years of significant practical experience in DRI's 10 Professional Practices for Business Continuity Planners. He/she must also have significant BCM related achievements as well as made positive contributions to the community and industry since 2015.
These achievements and contributions should be documented and shall be verifiable by 2 references (not from the same organizations) who will be contacted by the Judges of the Committee. Nominations should be submitted in the form of maximum 2,000 words in essay format.
Eligibility:
- Nominee must be an active Certified Business Continuity Professional (CBCP) and membership shall be in good standing.
- Nominee must be an active practitioner in Business Continuity Management (BCM) more than 5 years (as of 30 June 2021).
- If there is no submission for this category (minimum 10 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
Best MBCP – One Award
Nominees' MBCP membership must be in good standing. He/She must have at least 7 years of significant practical experience in DRI's 10 Professional Practices for Business Continuity Planners. He/she must also have significant BCM related achievements as well as made positive contributions to the community and industry since 2014.
These achievements and contributions should be documented and shall be verifiable by 2 references (not from the same organizations) who will be contacted by the Judges of the Committee. Nominations should be submitted in the form of maximum 3,000 words in essay format.
Eligibility:
- Nominee must be an active Certified Master Business Continuity Professional (MBCP) and membership shall be in good standing.
- Nominee must be an active practitioner in Business Continuity Management (BCM) more than 7 years (as of 30 June 2021).
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
BCM Program Leader of the Year – One Award
In this category, recognition will be given to practitioners who excel in the business continuity field. Among the factors considered are the use of imaginative ideas to resolve issues, resourcefulness and innovative during the initiation of business continuity culture in the organizations involved, strengthening relationships between service suppliers, insurers and business continuity professionals, and being creative towards future developments in business continuity planning.
Nominations should be submitted in the form of maximum 2,000 words in essay format.
Eligibility:
- Nominee must be an active DRI Certified Professional and membership shall be in good standing.
- Nominee must be an active practitioner in Business Continuity Management (BCM) for more than 5 years (as of 30 June 2021).
- If there is no submission for this category (minimum 5 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
Program Leader of the Year – Cyber Resilience & Information Security – One Award
In this category, recognition will be given to practitioners who excel in IT Disaster Recovery and Security field.
Among the factors considered are the use of imaginative ideas to resolve issues, resourcefulness and innovative during the initiation of IT disaster recovery and security culture in the organizations involved, strengthening relationships between service suppliers, insurers, IT personnel and business continuity professionals, and being creative towards future developments in IT disaster recovery and security. Nominations should be submitted in the form of maximum 3,000 words in essay format.
Eligibility:
- Nominee must be an active practitioner in IT disaster recovery and security for more than 5 years (as of 30 June 2021).
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
BCM Team of the Year – One Award
This award recognizes the human capital of business continuity departments across the organization, including teams that cross fields or are geographically dispersed. The award is designed to acknowledge collaboration, development and specific achievements of the team internally or partnering with external consultants.
Collaborative team work and exceptional communication skills are essential ingredients for a successful business continuity management program, and judges will be looking for evidence of these in each entry as well as examples of the tenets contained within DRII's 10 Professional Practices. The winning entry will demonstrate evidence of leadership by the team director. Entries should be no more than a maximum of 2,000 words in length.
Eligibility:
- BCM program is established and managing effectively, actively and continuously since 2016.
- Minimum one staff must be an active DRI Certified professional as of 30 June 2021.
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
BCM Continuity Awareness Award – One Award
This award will recognize the level of awareness that is both educational and drives the business continuity message throughout the organization (public or private) and the broader community as a whole. The initiative's aim should be to persuade buy-in at executive board level, executive management and at all levels throughout the organization. Examples may include films, road shows or scenarios, innovative use of new media or any unique/unusual idea for raising business continuity awareness.
Entries should be no more than a maximum of 2,000 words in length.
Eligibility:
- BCM program is established, awareness created throughout the organization and the program runs continuously since 2016.
- Minimum one staff must be an active DRI Certified professional as of 30 June 2021.
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 30 June 2021.
COVID-19 Response and Recovery of the Year – One Award
This award will recognize the organization that has demonstrated the greatest commitment to meeting the challenges presented by COVID-19 — not only to the organization itself, but also to the community it serves. Such commitment would include providing a safe environment for its employees, relieving the financial pressure that employees face, aiding medical personnel, and providing support for the welfare of the community as a whole.
Eligibility:
- Submit an essay outlining the nature of its COVID-19 response, its impact on the organization, how it was resolved, and lessons learned as a result.
- Minimum one staff must be an active DRI Certified professional as of 1 July 2016.
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 1 June 2021.
Best BCM Organization – Private Sector – One Award
This award recognizes organization, including teams in the private sector that cross fields or are geographically dispersed. The award is designed to acknowledge collaboration, development and specific achievements of the team internally or partnering with external consultants/service providers.
Collaborative team work and exceptional communication skills are essential ingredients for a successful business continuity management program, and judges will be looking for evidence of these in each entry as well as examples of the tenets contained within DRII's 10 Professional Practices. The winning entry will demonstrate evidence of leadership by the team director. Nominations should be submitted in the form of maximum 3,000 words in essay format.
Eligibility:
- Organization must have an active BCM unit/department with robust BCM programs for more than 5 years and at least 1 team member is certified by DRI International.
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers”.
- Nominations shall be submitted online not later than 1 June 2021.
Best BCM Organization – GLC/Public Sector – One Award
This award recognizes organization, including teams in the GLC/Public Sector that cross fields or are geographically dispersed. The award is designed to acknowledge collaboration, development and specific achievements of the team internally or partnering with external consultants and service providers.
Collaborative team work and exceptional communication skills are essential ingredients for a successful business continuity management program, and judges will be looking for evidence of these in each entry as well as examples of the tenets contained within DRII's 10 Professional Practices. The winning entry will demonstrate evidence of leadership by the team director. Nominations should be submitted in the form of maximum 3,000 words in essay format.
Eligibility:
- Organization must have a functional Business Continuity Management (BCM) department/section which reflected in the organization chart.
- Organization’s BCM Department/Section was established more than 5 years (as of 30 June 2021).
- Minimum of one staff must be an active DRI Certified professional as of 30 June 2021.
- If there is no submission for this category (minimum 3 submissions), the award will be categorized as “no takers” .
- Nominations shall be submitted online not later than 30 June 2021.
- The essay must be submitted in PDF format.
- Closing date for Awards of Excellence submission is on 30 June 2021.
- Nominees hereby grant DRI Malaysia consent to publish the nominee company’s name and logo on DRI Malaysia’s website and communication channels.
LA
Lawrie Abercrombie
Technical Director ARCANUM INFORMATION SECURITY LTD, United Kingdom
Lawrie is the Technical Director of Arcanum Information Security Ltd, a National Cyber Security Centre (NCSC) certified company, which he co-founded in 2008 after retiring from full time service in the British Army where he commanded the Army’s first Cyber Security unit.
Certified as one of only 30 Risk Management Specialists in the UK under the NCSC’s flagship Certified Cyber Professional (CCP) scheme, Lawrie is a very experienced Cyber Security professional with strong leadership and organisational abilities.
He has specialised in ISTAR and Defence related CIS projects and has extensive knowledge of HMG and MoD security policies and is fully cognisant of the latest technical cyber security and cryptographic mitigation measures.
Whilst leading and assisting on projects for various UK Central Government Departments and commercial clients in the UK, NATO and the Middle East, he has provided Cyber Threat and Security Risk Assessments, information security and assurance, accreditation document sets and has also audited commercially to ISO 27001.
Serving as an officer in both the Regular and then the Territorial Army, he developed a particular interest in the development of Cyber Defence Capability in multinational and joint cyber operations as part of which from 2013 -15, he planned and led the UK’s participation in Ex CYBER GUARD, the world’s largest real time Cyber Defence Exercise.
JB
John Burnage
Director OAKPOINT LTD UK
John has a deep understanding of security and intelligence processes and procedures within the Physical, Personal, Telecommunications and Information Technology arena.
He followed a demanding full military career for 35 years working within the broad field of Information Services and has subsequently filled related commercial roles for multi-national concerns, these have included Lottery, Investment and Insurance businesses. He has held project and programme management appointments where briefing sensitive subjects on a daily basis at board level was part of his routine. Those roles have included programmes worldwide based in China, Africa and the Middle East
He demonstrates high flexibility, intellectual and analytical ability combined with a sound practical approach. Business Continuity, Information Assurance, Physical and Personal Security, Information Security, Programme and Project Management are all part of his broad skill set.
For a number of years, he was part of the World Lottery Association Security and Risk Committee as a co-opted member providing Information Assurance advice and support. In addition to that role, he is a founding member of UK Defence’s Information Assurance Group which in its initial stages focussed ensuring defence systems world wide were safe and secure.
He is highly experienced in working an international multi-lingual environment. (UN, NATO, South America, China, Middle East, Africa, Brunei, Canada) to name a few.
He has been internationally and nationally recognised for his contribution to Information Security, Training and Peace Keeping roles.
JC
Jane Chappell
Operation Director ARCANUM INFORMATION SECURITY LTD, United Kingdom
Jane is Operations Director of Arcanum Information Security Ltd, a National Cyber Security Centre (NCSC) certified company, which she co-founded in 2008. A Fellow of the British Computer Society she has an MSc in Information Security and MBA in International Management.
A cyber security professional with over 20 years’ experience, she has advised numerous organisations including: the European Commission; NATO Communications and Information Agency; European and American Defence companies; the Ministry of Defence; Government Departments, Agencies and Police Forces.
A former regular Royal Air Force officer, she also served as an intelligence officer in the RAuxAF. Jane has served as a military reservist alongside her civilian career and joined the Army’s largest cyber security unit and was the first woman to command it. She fulfils several voluntary roles as: Advisory Board Member of the Research Institute in Sociotechnical Cyber Security.
National Cyber Security Centre (NCSC) Panel Member assessing cyber security Master’s and Bachelor’s degrees applications for NCSC certification. Chartered Institute of Information Security assessor for the certified Cyber Professional scheme. She was previously a committee member of the of the British Computer Society Information Security Specialist Group and UK Cyber Security Challenge host and assessor.
DP
David Porter
Director, HR Projects & Continuity AUSTRALIAN TAXATION OFFICE, Australia
David Porter was the Director of Business Continuity Management (BCM) at the Australian Taxation Office (ATO) from September 2010 and has provided a strategic oversight role since August 2016, while leading technology, HR and building refurbishment projects.
David developed the whole-of-government BCM Community of Practice, with members from over 40 Commonwealth and state based agencies. He provides regular mentoring support for other organisations locally and has represented the ATO in London, Berlin and Jakarta. As a member of several forums, David has contributed towards the emergency readiness and preparedness across the public sector and finance industries.
As well as leading several national level responses to business interruptions and natural disasters, David has guided senior executive and board level groups through detailed crisis simulation testing and exercises.
David developed and embedded the ATO’s BCM framework, supporting 20,000 staff, 40 buildings and over 250 critical IT systems. He progressively integrated all key incident/emergency/crisis processes across the organisation and in 2016 completed the design and installation of a purpose built crisis control room within the Penrith office.
David has established a credible, international profile within the BCM industry, through his work with the Disaster Recovery Institute’s Future Vision Committee and regularly presenting at national and international conferences.
Evidence of David’s expertise and contribution is demonstrated by receiving several national and international awards across continuity and risk related industries. David has also worked with the United Nations Office of Disaster Risk Reduction to demonstrate effective organisational responses to natural disaster events.
David has been published in the peak industry academic publication Journal of Business Continuity and Emergency Planning and forms part of the global editorial board with 25 industry leaders.
Having performed a variety of management roles in the ATO over the last 18 years, David has a broad skill set including leading large operational teams and managing change through strategic projects. He has completed studies in business management and is currently studying a Bachelor of Digital Design with Curtin University.
HA
Hairul Affandy Ismail
Head of Operation Risk PERKESO, Malaysia
Hairul Affandy Ismail is the Head of Operational Risk in PERKESO, a National Social Security Organization with more than 15 years of experience in effective and efficient BCM implementation, 11 years in ORM and 7 years in Information Technology application development and support in various organizations including financial institutions and statutory bodies..
He is responsible to ensure good governance practice of Operational Risk Management (ORM) and Business Continuity Management (BCM) throughout the organization. He was involved in various ISO implementations and certifications such ISO 9001, ISO 27001, ISO 23001. ISO 39001 and ISO 37001.
He was invited as speakers in various events organized by various organizations including Business Continuity Institute (BCI) and local university. He obtained his degree of business administration majoring in Accounting and Management Information System from Northeastern University, Boston, Massachusetts, USA. He is certified Master Business Continuity Practitioner (MBCP) from Disaster Recovery International Institute, USA (DRII).
MC
Magda Kelly
Head Of Cyber Risk Consulting, Marsh Asia
Magda is leading Cyber Risk Consulting for Marsh Asia. She is the founder of Women of Security (woSEC) Singapore Chapter, where she encourage diversity and inclusion in the industry.
Magda was nominated as global leader of the year at the Women in IT Awards 2017, and a TOP 50 cyber security influencer globally, as well as TOP 58 Women In Cyber Sec urity to Follow on Twitter and a TOP 20 Cyber Sec urity Experts alongside with Kevin Mitnick, and Brian Krebs.
She has previously co-founded Responsible Cyber , an all in-one cybersecurity shop for small and medium businesses. She has a PhD in Telecommunication Engineering, She held several Chief Information Security Officer roles f or medium and large organizations across Asia and internationally . She built cyber security strategies for companies, and provided guidance; from governance and security architecture to security operations.
She has hands- on experience with penetration testing and technical cloud secur ity across main cloud platforms
FF
Firhan Fikri Hadenan, CBCP
Head, Group BCM Maybank
Firhan leads the Business Continuity Management function within Maybank Group, focusing on strategic implementation of BCM measures, adoption of best practices as well as coordination of crisis management across all Maybank locations globally.
Prior to Maybank, Firhan served in consulting roles focusing on Business Continuity Management, Information Risk Management, IT Advisory and IT Audit for organisations across different industries in Malaysia, Indonesia, Mongolia, Qatar and Japan.
CS
Clifford Seow, MBCP
Business Resiliency Management, Asia Pacific Multinational
Clifford’s 33 years career spans roles in Engineering, Regional P&L Management, Risk Management, Crisis Management and Business Continuity Management in organizations like Texas Instruments, Pepsi-Cola Asia Pacific, Cadbury Schweppes, The Coca-Cola Company and CrisisAsia. He is currently accountable for operational resilience for an international financial institution covering more than 70 offices across Asia.
He has successfully established regional programs for crisis management for global multinational organizations and led consulting projects with large private organizations and government linked institutions and sovereign wealth funds in Operational Risk Management, Crisis Management and Business Continuity Management.
He is a member of the TC292 led by SPRING Singapore and was part of the team which initiated the SS540; Singapore’s first BCM standard. He is Masters-certified by the Disaster Recovery Institute International (DRII) and a Faculty of the DRII certifying many practicing professionals across Asia since 2005.
He enjoys running in his spare time and spends time on web design and following up on world affairs as well as catching up with fellow professionals and practitioners keen to promote and grow the Crisis Management and Business Continuity Management industry.
KW
Kenji Watanabe
Professor and Head of Disaster & Safety Management of Nagoya Institute of Technology, Japan
Kenji Watanabe is a professor at the Graduate School of Engineering, and also the head of Disaster & Safety Management of the Nagoya Institute of Technology in Nagoya, Japan. He has almost 20 years business and professional experiences at the Mizuho Bank and PricewaterhouseCoopers in financial business and risk management fields.
He is assigned as a chair of several governmental committees in Japan on risk management, business continuity management (BCM) and critical infrastructure protection(CIP) in the Cabinet Secretariat, the Ministry of Economy, Trade and Industry, and other national/regional governments. He has also been a national expert in the ISO/TC292 (Security & resilience) for the last 10 years. He has MBA and PhD in Information, Production and Systems.
MK
Murari Kalyanaramani
Chief Information Security Officer (CISO), Singapore United Overseas Bank (UOB)
Murari is an accomplished IT and Information Risk Management professional with over 20 years’ experience in Information & Cyber Security, Outsourcing & Supplier Management, Business Continuity, Information Systems Auditing and IT Risk Management.
He has successfully built and managed global information & cyber security capability and led multinational and multi-location teams in global strategy & governance definition and implementation, industry partnership & outreach efforts, operational service delivery and transformational initiatives during his career with United Overseas Bank (UOB), Standard Chartered Bank, British American Tobacco (BAT) and PricewaterhouseCoopers (PwC).
He has spoken at conferences and specialist forums in Asia Pacific and possesses various management and technical certifications. He currently serves as a Senior Advisor for CIO Academy Asia (CIOAA) and is a member of the Singapore Institute of Directors (SID).
He has previously served on the International Board of Directors for the Financial Services Information Sharing and Analysis Centre (FS-ISAC), FS-ISAC Asia Pacific Strategy Committee, ISACA International Professional Standards Committee (PSC), ISACA Professional Standards and Career Management Committee (PSCMC), Board of Directors for the ISACA Malaysia Chapter and served as the corporate liaison, for Standard Chartered Bank with the Singapore Cybersecurity Consortium (SCC) which has been created for engagement between industry, academia and government agencies to encourage research, manpower training and technology awareness in cybersecurity
MN
Mohd Nazlan Eza
Head of Business Continuity Management UMW Corporation
Nazlan is a strong proponent of Business Continuity Management, Internal Control, Enterprise Risk Management, Corporate Governance principles.
- Operational Auditing of Information Systems, Automotive, Services, and Properties
- ACL Computerised Audit Analysis Tool Software practitioner
- Technical Support in Aeronautical Information Services
- Management of Technical Services
- IT audit for SeaPort and Haulage Industries
- Operational audit in SeaPort and Total Logistics
- Management of Group Internal Audit functions
- Certified Information Systems Auditor (CISA)
IC
Indrani Chandrasegaran Kermorvant
Managing Director Accenture Security SEA
Indrani Chandrasegaran is an experienced Cyber Security Executive with over 20 years of experience in advising clients on cyber defence strategy, digital transformation strategy, enterprise cyber governance framework, audit, compliance management, threat protection, information protection and privacy framework in APAC, Middle East, and Europe.
During her work experience, she has built vast understanding of multi-faceted client base comprising of financial institutions, health organizations, telecommunications providers, Shipping, business process outsourcing and manufacturing businesses.
Prior to Accenture, Indrani served as the CISO/Vice President Cyber Security Services with Infosys Compaz (a joint venture of Temasek and Infosys) where she spearhead and managed security services.
RR
Dr. Ronald Ross
Fellow National Institute of Standards and Technology
Ron Ross is a Fellow at the National Institute of Standards and Technology. His focus areas include computer security, systems security engineering, trustworthy systems, and security risk management. He currently leads the NIST Systems Security Engineering Project which includes the development of standards and guidelines for the federal government, contractors, and United States critical infrastructure.
He also supports the U.S. State Department in the international outreach program for cybersecurity and critical infrastructure protection. He previously served as the Task Leader for the Joint Task Force, an interagency group that includes the Department of Defense, Office of the Director National Intelligence, U.S. Intelligence Community, and the Committee on National Security Systems, with responsibility for developing a Unified Information Security Framework for the federal government.
He also served as the project leader for the Federal Information Security Modernization Act Implementation Project and is the former Director of the National Information Assurance Partnership, a joint activity of NIST and the National Security Agency.
During his twenty-year military career, he served as a White House aide and senior technical advisor to the Department of the Army. He has lectured at a number of prestigious universities and has authored and coauthored many publications on risk management, cybersecurity, systems security engineering, and cyber resiliency. And he has received numerous public and private sector awards.
He has also been recognized three-times as one of the Top 10 Influencers in Government IT Security and is a five-time recipient of the Federal 100 award for leadership and technical contributions to cybersecurity projects affecting the federal government. He has been inducted into the National Cyber Security Hall of Fame, selected as an (ISC)2 Fellow, and inducted into the Information Systems Security Association Hall of Fame receiving its highest honor of Distinguished Fellow.