X.805 Standard presented at HITBSecConf Malaysia 2006

by Ching Tim Meng,

Tags: Security Wireless Firewall Risk

Summary : Presentation Title:Presentation Details:Network security should be designed around a strong and flexible security framework, coupled with appropriate security tools, standardized protocols and security infrastructure. Naturally, in a multivendor environment, no end-to-end security solution can be achieved without standards. The Bell Labs Security Model, which has been adopted by the International Telecommunication Union (ITU) as ITU-T X.805, uniquely identifies 72 key security areas that are evaluated by Lucent Worldwide Services security consultants, to assess, plan and implement security solutions appropriate for the organisation’s business. The security framework has been adopted by ISO on 1 February 2006 as part 2 of the International Standard ISO/IEC 18028. This presentation shall explore on how this standard can help organisations to secure their network more effectively with a proven methodology.About Tim MengChing Tim Meng is the Regional Security Consultant of the Lucent Worldwide Services, (Professional Services) team, and performs security consulting roles in Asia Pacific and China, Australia and New Zealand. He works with Lucentu2019s sales group, product group, customers and partners to provide practical solutions pertaining to information security issues. Tim Meng has 9 years of extensive experience in the information security industry. He has performed numerous penetration tests, technical review of systems, network architecture review, information security training, policy review and technical risk management audit. The clients he worked for includes global financial institutions, government bodies, multinational companies, educational institutions and network service providers. Tim Mengu2019s technical expertise lies in penetration test, wireless and VoIP security, firewall and IDS tuning, network incident handling and analysing security issues on new technologies.Prior to joining Lucent, Tim Meng was the Information Security Officer in a Swiss private Bank, where he was responsible for the management of information security matters for the Singapore and Hong Kong office. He has also previously worked in consulting positions for both PricewaterhouseCoopers and KPMG, providing information security services to clients. Tim Meng is currently the co-chairperson of Information Security Management Working Group (Singapore representative body for ISO/IEC JTC 1/SC 27/WG 1) responsible for developing and reviewing network and application security standards. He is a regular contributor for Singaporeu2019s security professional group, SIG^2, by performing technical researches and delivering talks to the members. Tim Meng has also delivered a diverse range of information security topics in several public seminars. Tim Meng received his Bachelor of Applied Science degree in Computer Engineering from Nanyang Technological University. He is also a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) and a qualified practising ISO27001 auditor.