Cecil Su

Cecil Su

Director, Cybersecurity

Cybersecurity

Consumer business | Financial services | Manufacturing | Professional Services | Real Estate & Construction | Technology, Media & Telecommunications

Executive Summary

As Head of the Cybersecurity Unit, Cecil leads various engagement teams on diversified projects across vertical industries. His area of focus is in Cyber Security Advisory, IT Assurance and Digital Forensics.

Cecil has a background founded in cybersecurity, technical assessments and controls testing, including ISO/IEC27001. He has spent a number of years performing and overseeing cybersecurity assessments, technology audits, digital forensics including complex enterprise platforms on networks and applications. Aside from that, Cecil has been involved in developing and deploying risk-based management and data governance frameworks, helping clients to manage data risk and meet associated regulatory requirements.

Cecil has successfully led and managed wide-ranging initiatives in both the government and commercial sectors in the areas of cybersecurity assessments, technical countermeasures, threat analysis, cyber investigations/forensics, and smart technology.

Professional Qualifications and Affiliations

  • Certified Information Systems Security Professional (CISSP), International Information Systems Security Certification Consortium (ISC2)
  • Certified Information Systems Auditor (CISA), Information Systems Audit & Control Association (ISACA)
  • Certified Information Security Manager (CISM), Information Systems Audit & Control Association (ISACA)
  • Certified in Risk and Information Systems Control (CRISC), Information Systems Audit & Control Association (ISACA)
  • OSSTMM Professional Security Tester (OPST), Institute for Security & Open Methodologies (ISECOM) 
  • PCI DSS Qualified Security Assessor (PCI QSA)
  • ISO/IEC 27001 ISMS Lead Auditor (ISO27001LA), International Register of Certificated Auditors (IRCA)
  • Oracle 9i Certified Professional Database Administrator (OCP DBA), Oracle Corporati
  • Cybersecurity Strategic Leadership Programme (CSA / SMU)
  • Certification in AI Ethics & Governance - Professional (SCS / NTU)

Other Information

  • Fellow Member of the Association of Information Security Professionals (AiSP)
  • AiSP Validated Information Security Professional
  • CREST Asia Advisory Council Member
  • Co-Chapter Lead for Open Web Application Security Project (OWASP) Singapore Chapter
  • Member of Open Web Application Security Project (OWASP)
  • Member of High Technology Crime Investigation Association (HTCIA)
  • Member of International Information System Security Certification Consortium (ISC)2
  • Member of Information Systems Audit and Control Association (ISACA)
  • WorldSkills Singapore Industry Expert (Cyber Security Technical Working Group)