Ron Knode Service Award

The Ron Knode Service Award is awarded annually to CSA members whose contributions reflect Ron’s passion for volunteerism and embody the spirit for which this award was established in 2012.

2015 Service Award Recipients

Kai Roer

Kai Roer

Kai Roer provides Fortune 1000 companies worldwide with expertise on how to build and maintain security culture based on his free and open Security Culture Framework. Roer is a bestselling author, speaker and security culture facilitator who believes in the power of volunteerism.

Mariano Benito

Mariano Benito

CISO at GMV

Mariano J. Benito is CISO at GMV, a leading Spanish company in the cybersecurity field, and CSA Spanish Chapter task force (CSA-ES CTO). Along his twenty-year long career, he has contributed to the development and implementation of international standards, including ISO 27001 & 22031 at GMV. Mariano J. Benito has also developed a specific focus also on Cloud Computing, Compliance & Governance, being the author of the first security analysis in Spain regarding cloud security (2009) and currently contributing to the deployment in Spain of CSA Guide, CCM, PLA and other local CSA initiatives.

Dr. Said Tabet

Dr. Said Tabet

Senior Technologist and Industry Standards Strategist in the Corporate Office of the CTO at EMC

Dr. Said Tabet is a member of the Object Management Group Board of Directors and the principal EMC representative to the Industrial Internet Consortium. Said is the Chair of the INCITS CS1 Secure Cloud Computing Ad-Hoc Group, and a member of the US delegation to ISO SC27. He is also a member of the Cloud Security Alliance International Standardization Council, co-Chair of the SME Council and the Cloud Security SLA working group. Said spent over two decades driving and contributing to various international standardization activities including ISO, RuleML, OMG standards, W3C Semantic Web and Rules, Risk and Compliance, GRC-XML, Regulatory Reporting and Supervision, Security and Data protection and Privacy. Said continues to work on challenges around Cloud Computing adoption, IoT, Cloud SLA and security SLA automation, Big Data Analytics and security, cyber security and best practices, Industrial Internet of Things, and Semantic Data Collaboration. He is a regular speaker and panelist at industry conferences and international standards meetings, authors and editor of book series and articles.

David Siah

David Siah

Vice-Chairman, CSA Asia Pacific Executive Council

David Siah is actively involved in cyber-security activities in Singapore. He is a member of iDA’s Cyber Security Alliance as well as iDA’s working group on Cloud Outage Incidence Response. He is also a committee member on the Singapore Information Technology Federation’s Security and Governance Chapter and is the Country Manager of Trend Micro. In his capacity, he runs Trend Micro’s business operations in Singapore and is in charge of Trend Labs Singaporeresponsible for malware analysis and response.

Brian Russell

Brian Russell

Chief Engineer focused on Cyber Security Solutions for Leidos

Brian Russell oversees the design and development of security solutions and the implementation of privacy and trust controls for customers. Brian leads efforts that include security engineering for Unmanned Aerial Systems (UAS) and Connected Cars, the design of secure next- generation energy systems (microgrids) and the development of high assurance cryptographic key management systems. He supports the Center for Internet Security as a member of the 20 Critical Security Controls Editorial Panel and also serves as Co-Chair of the Cloud Security Alliance (CSA) Internet of Things (IoT) Working Group.

Benildus Nadar

Benildus Nadar

Chair for India Regional Coordinating Body

Benildus provides senior advisory services in area of Information Technology with a concentration on Information Security and Risk. Currently with Ericsson, Benildus worked in IBM, Fidelity Investment, Comodo etc in a career spanning 14 Years. Benildus is the founder and chairperson of the CSA Bangalore Chapter, one of the biggest chapters for CSA worldwide.

2014 Service Award Recipients

Yi-Lang Tsai

Yi-Lang Tsai

Founder and Director of the CSA Taiwan Chapter

Yi-Lang Tsai is a famous IT commentator and author in Taiwan having published 34 books and many columns in professional IT publications. His works include the research projects for the detection, The Honeynet Project Taiwan Chapter Leader, the analysis and the honeypot related information security technologies and also in the cloud security technologies for industry, government and academy. He is the Director of major security projects and leader of an Information Security Incident Response Team to work for Taiwan Academic Network (TANet) to handing security incident. He is an expert in UNIX/Linux, Windows OS, communication network technology, network security, ISMS, and digital forensics.

Damir Savanovic

Damir Savanovic

President of Cloud Security Alliance Slovenia Chapter

Damir Savanovic is a Chief Information Security Officer in SKB, Société Générale Group. In past he worked as IT Quality Manager in SKB, Société Générale Group. Before joining Société Générale Group, Damir worked as Information Systems Auditor at EY. His field of expertise is information security and assurance. He worked in variety of industries including financial, telecommunications, manufacturing and retail in the region. He is also a board member of ISACA Slovenia chapter. Damir graduated from University of Ljubljana (Slovenia) in Information Technology and holds CISM and CISA certifications.

Dr. Alberto Manfredi

Dr. Alberto Manfredi

Co-Founder and President of the CSA Italy Chapter

Alberto Manfredi supports CSA EMEA in chapter expansion and development. He currently serves as Business Development Manager Smart Solutions with Selex ES, a Defense and Security Electronics Division of Finmeccanica Spa. He has been working in the ICT market since 1993 with a focus on information security in the last 11 years. He is a member of ISC2,ISACA-AIEA, SANS, AFCEA Rome, DFA, ANORC (honorary member) associations.

Ben Katsumi

Ben Katsumi

Executive Director and Secretary General of Cloud Security Alliance (CSA) Japan Chapter, Inc.

Ben T. Katsumi is President and CEO, Information Economy Research Institute, Inc. and former Chief Researcher, IT Security Center, IPA(Information-technology Promotion Agency Japan).

Mr. Katsumi has 20 years of experience in cybersecurity specializing in market analysis, social and international studies, and security management and governance. His career includes 8 years at IPA as a researcher (2005 thru 2013), consultant at several Japanese firms including Ricoh’s subsidiary (2004 thru 2008), director at Symantec Japan (2001 thru 2004).

In 2010 Mr. Katsumi co-founded CSA Japan Chapter, which was incorporated in 2013 where he serves as a board member as well. He is members of Japan Network Security Association (JNSA), JASA Cloud Information Security Promotion Alliance (JCISPA), Japan Society of Security Management (JSSM), and Institute of Digital Forensics (IDF). CCSK, CISA, Information Security Associate Auditor, Certified Information Security Administrator.

He is a frequent writer and a speaker at domestic and international conferences including NIST Cloud Forum & Workshop, IEEE-EMBC, CloudAsia, CloudscapeV, Securecloud, and CSA Congress.

Eric Hibbard

Eric Hibbard

Hitachi Data Systems’ CTO Security & Privacy

Eric Hibbard is responsible for storage security strategy, identifying and defining new storage security architectures and designing new storage networking infrastructures. Hibbard is also a senior security professional who serves as the INCITS/CS1 (Cyber Security) International Representative to ISO/IEC JTC1 SC27, the Vice Chair of IEEE P1619 Security in Storage Working Group and the Chair of the SNIA Security Technical Work Group. His involvement in organizations like INCITS/T11, ISACA, ISSA, the Trusted Computing Group, the IEEE-USA Critical Infrastructure Protection Committee (CIPC) and the American Bar Association afford him a unique perspective on issues germane to information assurance.

Junaid Islam

Junaid Islam

Founder and CTO of Vidder

Junaid Islam is the CTO of Vidder. Junaid has over 25 years of experience in developing network and security protocols. Prior to founding Vidder, Junaid founded Bivio Networks which was the first Gigabit speed software based security platform in the industry. Earlier in his career Junaid helped create networking protocols such as Frame Relay, ATM and MPLS while at StrataCom and Cisco. Junaid is the Co-chair of the Software Defined Perimeter (SDP) Working Group at the Cloud Security Alliance.

2013 Service Award Recipients

Dr. Siani Pearson

Dr. Siani Pearson

Principal Research Scientist at HP Labs, Bristol

Dr. Siani Pearson’s current research focuses on accountability, privacy and the cloud and she holds over 50 patents and is author or co-author of well over 100 papers and technical reports in these fields.

Siani received an MA from Oxford University in logic, a PhD in artificial intelligence from the University of Edinburgh and was a Research Fellow at Cambridge University before joining HP in 1994. She is a Fellow of the British Computer Society, senior member of IEEE and a Certified Information Privacy Professional/Information Technology. Siani is currently the scientific coordinator of a major European research project on Accountability for the Cloud (A4Cloud) and is a member of: HP Privacy and Data Protection Board; UK Cloud Security Alliance Chapter board; HP cloud security WG; CSA PLA and OCF WGs; IEEE Transactions on Cloud Computing Editorial Board; UK IEC subcommittee on data principles; numerous programme committees, including being Program Chair of IEEE CloudCom 2014; the steering committees of a number of conferences and advisory boards of several universities and EU projects.

Antony Ma

Antony Ma

Member of Hong Kong OGCIO Expert Group on Cloud Computing

Antony Ma has over 14 years experience in the IT industry taking roles in different areas including software development, IT auditing and IT security. Antony has professional qualifications including CISSP, CISA, Oracle DBA and BS7799 ISMS assessor. He received a Bachelor degreed in Engineering, then completed a LLM degree in Intellectual Property & Information Technology Law from the Faculty of Law at the University of Hong Kong.

Antony has extensive experiences in financial IT, especially in IT compliance and technology risk management.

Dominik Birk

Dominik Birk

Vice President of the CSA Swiss Chapter

Dominik Birk is working as a Information Security Manager for the Zurich Insurance Group in Zurich, Switzerland. Besides that, Birk is leading the the CSA WG “Incident Management and Forensics”, helped establish the German and Swiss local CSA Chapters, and contributed to the CSA Cloud Security Guidance V3.0.

Sean Cordero

Sean Cordero

Founder of Cloud Watchmen, Inc.

Prior to establishing his company, Cloud Watchmen, Inc., Mr. Cordero served as the CSO for EdFund, where his team oversaw information security for an over $39B loan portfolio. His previous roles included: Director of Security and Compliance for Charlotte Russe, and global leader for Life Technologies distributed systems program. Mr. Cordero regularly presents at leading industry and academic conferences including CSO Magazine, the High Technology Crimes Association, and UC Davis, where he has shared his dynamic and pragmatic approach to information security.

Evelyn de Souza

Evelyn de Souza

Senior Security Strategist at Cisco

Evelyn is responsible for championing holistic security solutions that address emerging industry trends such as cloud, data center SDN and mobile. She is a strong proponent of building automated, repeatable processes that enable organizations to sustain compliance while optimizing security posture and reducing costs. To this end, Evelyn co-chairs the Cloud Security Alliance Cloud Controls Matrix (CCM) which harmonizes regulations and industry standards to a common framework and according to cloud model to enable reduce audit complexity. Evelyn has a weekly column on WIRED Insights and frequently posts at CloudTweaks, Internet Evolution and 21st Century. Evelyn is also a regular speaker at industry conferences and can be followed on Twitter @e_desouza.

Dr. Nantawan Wongkachonkitti

Dr. Nantawan Wongkachonkitti

Head of Marketing APAC

Nantawan serves as the Director of Innovation and Research and was formerly the Director for IT Intelligence Operations Division for Electronic Government Agency (Public Organization), Thailand. She has been working in the computer and telecommunication field for over 14 years. She manages Electronic Government Agency’s Operations Division for all IT Thailand Government. She is currently served as a secretary of CSA, Thailand Chapter which developed Cloud Control Matrix 1.3 on App Store for dual languages (Thai and English) called “Cloud Control Self Assessment”.

2012 Service Award Recipients

Richard Zhao

Richard Zhao

Chief Strategy Officer of NSFOCUS

Dr. Liang ZHAO (Richard) manages the research team, strategic planning, and fosters innovations at NSFOCUS. He obtained his B.Sc, M.Sc. and Ph.D degrees from Peking University at 1991, 1994, 1997 respectively. Liang majored physics and fiber-optic communications and has over 15 years of professional experience in telecom and network security areas. He owns certifications of CISSP, ITIL, BS7799.

Prior to his current position, he was the Director of Architect and Security Operations at Lenovo, responsible for the infrastructure architect and information security operations from 2006 to Aug. 2009. Before Lenovo, he worked for Computer Associates as the Principal Consultant at China from 2003 to 2006. From 2000 to 2003, he worked for iS-One as Chief Strategy Officer, responsible for R&D, security consulting service and etc. From 1997 to 2000, he worked for China Telecom, as the chief of network security affairs.

Henry St. Andre

Henry St. Andre

Director of Trust services for inContact

Henry St. Andre has a 28 year history in information systems, that began in telecommunications around the time of the divestiture of AT&T. He has worked in telecommunication engineering and network design and provisioning. He is currently Director of Trust services for inContact, a leading provider of SaaS services for contact centers.

Henry’s first computer science classes were Fortran and the Intel 8086 assembly language. Later, he worked with mini’s and mainframes, ASCII terminals, DOS, and Unix. Today, it’s Windows and virtual machines. His first telecommunications experience was with analog transmission systems such as 4 wire E&M circuits, later T1’s and DS3’s, optical carrier systems and currently Ethernet, TCP/IP and VoIP.

Bernd Jaeger

Bernd Jaeger

Colt (Germany)

Working for more than 20 years within the ICT industry, focussing on information security, Bernd’s scope ranges from security management related activities down to a deep, “hands-on” level of understanding of today’s threats and countermeasures.

Working for Telecommunication-, Internet-, Cloud and Technology Service provider, Bernd designed and implemented highly customized security solutions, developed technical blueprints and products, conducted security audits and penetration tests, tested and introduced new technologies, trained employees and customers as well as provided internal and external consultancy at all times.

In addition to that he had been part of Cyber Security Incident Response Teams supporting forensics, malware analysis and application vulnerability testing.

Kevin Fielder

Kevin Fielder

Senior Manager Cyber Security at Worldpay

Kevin Fielder has over 15 years IT and security experience across multiple industries encompassing online trading, online supermarkets, banking/finance/insurance. His various roles have included pen testing and security assessments through technical and security architecture to security consulting and innovations.

Current focus includes security strategy, secure design and development, security innovations, software based mobile security, cloud policy and architecture, structured risk assessments, and of course his role as co-chair of the SecaaS working group.

He holds a Bachelors degree in Computing with Human Biology and a Masters in Distributed Systems and Networks, along with various industry certifications such as CISSP-ISSAP, CISSP-ISSMP, C|EH, ISEB enterprise and solutions architecture.

David Lingenfelter

David Lingenfelter

Security and Compliance for Fiberlink Communications

David Lingenfelter is a seasoned security professional with nearly 20 years of experience in risk management, information security, compliance and policy development. He is responsible for oversight of all security and compliance aspects of Fiberlink, an IBM company, including physical, application, network and data security. David successfully managed Fiberlink through the FISMA certification process, including proposed FedRAMP controls and helped design Fiberlink’s cloud architecture model.

David is an active member of the Cloud Security Alliance including being a co-chair for their Mobile Working Group and contributor to the development of the CSA Cloud Controls Matrix as well as being active in several other working groups. A noted expert and thought leader in mobile security, David frequently gives presentations on Cloud and Mobile technologies and has presented for ISACA, ISSA, Cloud Security Alliance, InfraGard and GTRA among others. David has also been quoted as a subject matter expert in a number of different publications.

Dr. Ryan Ko

Dr. Ryan Ko

CSA APAC Research Advisor

Dr Ryan Ko is the Head of the Cyber Security Lab at the University of Waikato, New Zealand, and the CSA APAC Research Advisor. He also serves as Affiliate Faculty Member at the Idaho State University’s National Information Assurance Training and Education Center (NIATEC), USA. Recipient of the (ISC)2 ISLA Award in 2014 and the inaugural CSA Ron Knode Award in 2012, his research interests are in the area of cloud security, focusing on data provenance, real-time situation awareness, and homomorphic encryption. Co-founder of the CSA Cloud Data Governance and Cloud Vulnerabilities working groups, he was part of the founding group of experts which created the (ISC)2-CSA Certified Cloud Security Professional certification’s CBK, and is the principal investigator of the NZD 12mil MBIE-funded STRATUS cloud security project.

Ron Knode

Innovative Thinker,
Tireless Volunteer

Ron Knode 1946-2012

Ron Knode was an information security expert and member of the Cloud Security Alliance family, who passed away on May 31, 2012. Ron was an innovative thinker and the author of the CSA Cloud Trust Protocol. Ron was a cherished member of CSA, with endless energy and humor to guide his volunteer contributions.

Ron Knode was a Director in the CSC Trusted Cloud & Hosting business unit, where he served as the consulting Trust Architect for CSC’s cloud services and a strategic advisor to all who are seeking an enterprise payoff by employing secure and trusted cloud services as a part of their enterprise IT architecture. He was also a Research Associate in CSC’s internal innovation think tank, known as the Leading Edge Forum (LEF), and an adjunct associate professor in the graduate school of Applied IT (AIT) at Towson University in Towson, Maryland.

Prior to his selection to the LEF, Ron was a Director in CSC’s Global Security Solutions business unit where he was responsible for the design, provisioning, deployment, and measurement of end-to-end security solutions that support CSC’s commercial and government clients around the world. Along with his operational and architectural duties, Ron served the LEF as the primary researcher and author for a programme entitled Digital Trust. That programme explores the ability of an enterprise to create new value with security services and technologies, rather than attempting only to do an incrementally better job of protecting the enterprise value that already exists. He also published a follow-up report with the ACLI on the application of digital trust in the life and annuity industry.

Ron held bachelor and master’s degrees in mathematics from the US Naval Academy and the US Naval Postgraduate School, and he completed doctoral coursework in computer science at the University of Maryland. He was a Certified Information Security Manager (CISM) in accordance with the standards and qualifications of the Information Systems Audit and Control Association (ISACA). He was also a fully trained Black Belt in Six Sigma quality improvement processes.