CSA Official Press Release

Published 02/04/2021

Cloud Security Alliance Announces 2021 CSA Research Fellows

Cloud Security Alliance Announces 2021 CSA Research Fellows

Award honors volunteers for significant accomplishments, contributions to CSA research

SEATTLEFeb. 4, 2021 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, today announced the newest recipients of its prestigious Fellowship Awards. CSA Fellow is the highest honor and distinction that can be awarded to a volunteer. It recognizes the talent and dedication of select CSA volunteers whose work has led to groundbreaking and forward-thinking advancements within CSA.

"CSA's Fellowship Awards honor the tireless efforts and tremendous contributions of a select group of research volunteers, who have truly made an impact in the future of cloud security," said John Yeoh, Global Vice President of Research, Cloud Security Alliance. "This distinction speaks not only to their work within CSA but also to their dedication to raising awareness of best practices to help ensure a secure cloud computing environment."

The 2021 CSA Fellows are:

Dr. Jim Angle. Jim has dedicated hundreds of hours to CSA and was instrumental in reviving CSA’s Health Information Management working group. In doing so, he drafted the group’s first charter and went on to become its co-chair. In this role, he authored three papers — Managing the Risk for Medical Devices Connected to the Cloud, Telehealth in the Cloud, and Healthcare Big Data in the Cloud — and serves as the working group's representative on the CSA International Standardization Council. Jim spoke at the CSA Summit/ISC2 Congress in Orlando in 2019. Additionally, he authored a paper currently under consideration by CSA’s Blockchain working group. He is the manager of Network Security - Vulnerability Management at Trinity Health and has a doctorate in business administration with a specialization in computer and information security. He has over 25 years of experience in multiple areas of IT, culminating as the Deputy CIO for an army hospital, and more than 19 years of information security experience in both government service and the private sector.

Edward Chiu. Edward serves in CSA's Quantum-Safe Security working group, during which time he authored “Preparing Enterprises for the Quantum Computing Cybersecurity Threats,” and co-authored “A Day Without Safe Cryptography.” He presented “Quantum Cybersecurity Threat Mitigation” at the ICEX Security & Risk Accelerator meeting and “Impact of Quantum Computing on Cryptography” at ISSA Houston. He is an emerging cybersecurity technologist in the cybersecurity division of Chevron IT Co., with more than 28 years of experience in cybersecurity R&D and operations, software engineering, development, and security in oil and gas, IT consulting, and software development companies. Edward is a technology visionary and evangelist, who raises awareness regarding the importance of preparing for quantum threat mitigation. He received an Engineering Physics degree from McMaster University, an MBA from The Chinese University of Hong Kong, and pursued graduate studies in Computer Science. He holds CISSP and CSSLP certifications and is a member of IEEE.

Bruno Huttner. Bruno has co-chaired CSA’s Quantum-Safe Security working group, which was formed to address key generation and transmission methods and help the industry understand quantum‐safe methods for protecting their networks and their data, for approximately six years. As such, he has participated in writing most of the group’s research papers and has given several presentations about the group’s work. Bruno joined ID Quantique in 2014, where he’s responsible for the business development and product management in the quantum security division. Over the course of his career, Bruno has participated in and given lectures at many international conferences. He has also been active in standardization organizations, first in ITU-T on the polarization effects in optical fibers, then in SAE, ARINC and ASD/STAN for applications of optical fibers in aviation. Bruno is an engineer (Ecole Centrale Paris) and a physicist (PhD from the Technion, Israel Institute of Technology).

Anil Karmel. Anil is co-chair of the CSA Application Containers and Microservices working group and has led the development of multiple research artifacts, building off the work started in the NIST Cloud Security working group. He is president of the CSA DC Metro Area Chapter, which he has transformed from a dormant chapter into one of North America’s most active chapters, serving more than 1,000 members in government, healthcare, and financial sectors. Under his leadership, it has forged formal partnerships with ATARC and ISACA's Greater Washington DC Chapter (ISACA-GWDC). He is the co-founder and CEO of C2 Labs, a security-focused, agile digital transformation partner that blends art and science to securely modernize IT to move at the speed of business. Formerly, Anil served as the National Nuclear Security Administration's (NNSA) Deputy Chief Technology Officer. He and his team have garnered industry and government accolades, including the SANS National Cyber Security Innovators Award for Cloud Security, InformationWeek 500 Top Government IT Innovators, ACT/IAC Excellence.gov Award, and the DOE Secretary's Achievement Award.

Balaji Karumanchi. Balaji is an active contributor to several CSA working groups, including Hybrid Cloud Security and Artificial Intelligence, and has had articles published in well-known journals. Currently, he is a nationally and internationally acclaimed global IT/cloud infrastructure manager for Natsoft Corp., where he is responsible for the leadership, management, and direction of the enterprise’s data science and AI initiatives through machine learning, computer vision, and NLP predictive analytics. Responsible for exploring AI options in the market space and educating the enterprise on these opportunities, he provides strategic guidance through the implementation and iteration of predictive algorithms for improved program outcomes through tool and resource development. Balaji has a successful track record of prioritizing and delivering multiple high-dollar projects using the synergistic multi-disciplinary application of data science and six sigma quality methodologies in an agile software development environment.

Vishwas Manral. Vishwas is the co-chair of CSA’s Serverless working group and a contributor to the Application Containers and Microservices working group. He has served as a presenter at the CSA Virtual EU Summit 2020, and as chair of the Silicon Valley chapter. He is the head of container security and Chief Architect-Cloud at McAfee. He joined McAfee when his company NanoSec was acquired in 2019. Vishwas is an advisor to multiple security companies, as well as Bootup Ventures and H.A.C.K., Karnataka’s first cyber security accelerator for startups in India. He is also the founder of Ionos Networks and LiveReach Media. He has a deep technology background and has led multiple efforts on creating technologies, having authored over 30 requests for comments (RFC) and standards in the networking and security space, including such technologies as IPsec and DVPN (which are in nearly every router and used by every enterprise).

Ashish Mehta. Ashish is co-chair of the CSA Blockchain/Distributed Ledger working group, where he leads and supports the group’s peer-reviewed research papers and coordinates educational and networking webinars with various industry players for the wider CSA community and industry participants. He has represented CSA as a speaker at multiple global events and is heavily involved with the Quantum-safe Security and Internet of Things working groups. Among his past research contributions are: Using Blockchain Technologies to Secure the IoT, a CSA blog post on the documentation of distributed ledger systems, and OWASP Medical Device secure deployment. He is director at Genese Incubation Management Services Pvt Ltd., a leading startup advisory firm. He serves as an advisor to the Government of Kerala's Blockchain Initiative and takes part in various technology analyst panels. He has taught blockchain and secure coding courses and is the co-author of books on BPX (SAP) and OCEG(GRC). He is also an active participant in the research efforts of NIST, ACT-IAC, OWASP, IAPP, and IEEE. He was awarded the Young Alumni Achiever Award by IIT-Kharagpur for 2020. He has a B.Tech (Hons) from IIT-Kharagpur and M.Sc in Cryptography with a Minor in Technology Strategy from Columbia Business School.

Nya Murray. Nya is a key contributor to the Zero Trust working group and author of several position papers published by CSA’s Software-Defined Perimeter working group. She is the CEO of Trac-Car and Verviam IDaaS and a senior information and communications technology (ICT) cloud cyber security and identity management consulting architect. Nya consults as a senior multi-cloud security architect to customize Verviam IDaaS for enterprises and has provided architecture consultancy for organizations across Europe, Australia, and the UK. Nya has co-authored several position papers on cloud security and cloud governance with the Object Management Group (OMG) Cloud Working Group. Nya's international experience in enterprise cloud transformation is as an architect for migration/transition of applications to containerized microservices running on hybrid multi-cloud infrastructure, software, network, and storage virtualization.

Michael Roza. As co-chair to CSA’s Enterprise Architecture and Security-as-a-Service working groups, he's led numerous research projects and publications and has lent his time and expertise to numerous other working groups. His contributions to CSA culminated in his recognition as a 2020 Ron Knode Service Award recipient. He has served as lead author/contributor for 11 projects completed by CSA’s Internet of Things, Blockchain/Distributed Ledger, Top Threats, Cloud Control Matrix, Software-Defined Perimeter and Cyber Resiliency working groups. Michael is a risk, audit, control and compliance professional with 20-plus years of experience with organizations such as Bridgestone EMEA, Komatsu International, Mitsui Novus International, Johnson and Johnson Inc., and Baxter Inc. He has worked with several high-tech startups serving the network management and contact center software markets, in addition to disk manufacturing and radiological cancer treatment markets. He has held lead positions in SAP configuration and transformation teams, as well as SAP segregation of duties and IT general controls projects. Michael also served as secretary or observer for various committees and councils on internal audit, risk management, governance and risk, information security, and corporate social responsibility. He is a Certified Information Systems Auditor, Certified Public Accountant, and Certified Internal Auditor. He holds an AEMBA from Claremont College, Peter Drucker Center, and an MBA from De Paul University.

Ronald Tse. Ron has served CSA in numerous capacities, including as a member of CSA's APAC Research Advisory and International Standardization councils. Additionally, he co-chairs the Open Certification Framework (OCF), SaaS Governance, and DevSecOps working groups. He is the founder and CEO of Ribose, where under his leadership the company has been consistently awarded the industry's highest cloud security ratings, including being the only organization to be triple assured by CSA: CSA STAR Attestation, CSA STAR Certification and CSA C-STAR Assessment. He is Vice President and Director of External Relationships for CalConnect and a founding co-chair of several of its committees. He sits on the ECCMA Board of Directors, is a Certification Advisory Council Member for BSI, and a UN/CEFACT expert for the UN Economic Commission for Europe. Additionally, he is a Convener of ISO/TC 154/WG 5, and expert representative to numerous ISO committees for CalConnect, CSA, Hong Kong, China and Canada. He received CSA's Ron Knode Award in 2017, and is an IAPP Fellow of Information Privacy, a member of Sigma Xi, a CISSP-ISSAP, ISSMP, CSSLP, CAP, SSCP, CISA, CISM, CRISC, CGEIT, CIPP/US, CIPM, CIPT, PSM I-II-III, PSPO I-II, PSD and CCIE Emeritus #9650. He received his bachelor's degrees magna cum laude in Computer Science and Biology and a Master of Science in Computer Science from Brown University.

Onn Chee Wong. Onn Chee has served as co-chair for CSA’s APAC Research Advisory Council since 2018 and was chairman of the CSA Singapore Chapter in 2011. He is also a former member of the CSA’s International Standardization Council, and in 2014, he spoke at the CSA ASEAN & OWASP Summit in Bangkok. He serves in several capacities, including as managing director for Infotect Security, Chief Technology Officer for Resolvo Systems, and the Chief Executive Officer for Rajah & Tann Cybersecurity. His areas of expertise include information leakage protection, web/cloud security, and security strategy. He is a co-inventor of at least six international PCT patent rights, in addition to several US, EU, and Singapore patents. He is the Cloud Security Working Group Chair of the Security & Privacy Standards Technical Committee under IT Standards Committee in Singapore. He has also led the Singapore national delegation to ISO/IEC JTC 1/SC 27 meetings. He is a contributor to Singapore’s first technical reference on public computing services (TR 31:2012) and is a member of the working group that developed Singapore’s first national cloud security standard (SS 584:2013).

Learn more about the CSA Research Fellowship Program.

About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.

Share this content on your favorite social network today!

About Cloud Security Alliance

The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, follow us on Twitter @cloudsa.

For press inquiries, email Zenobia Godschalk of ZAG Communications or reach her by phone at 650.269.8315.