News And Announcements 

 

Student Application

Are you considering an Information Technology (IT) related career? Joining ISACA will open the door to opportunities in a wide range of fields like security, audit, assurance, risk, privacy, compliance and many more!

Student application

 Chapter News

Auditing Virtualization & Cloud Computing Workshop2/20/2017 10:07 AM

Dear Members,

ISACA Malaysia Chapter is proud to introduce by popular request a workshop on Auditing Virtualization & Cloud Computing workshop.

This 2 days’ workshop is designed especially for IT Auditors and IT Security Professionals who wish to gain knowledge in setting up a virtual computing environment and auditing/securing virtualized servers deployed in their company’s infrastructure. With hands-on workshop, participants would be able to experience on how a virtual infrastructure would look like besides using some of the available tools used for auditing. In addition, participants will also learn how Cloud Computing is deployed, secured and the ways of auditing a Cloud environment!

The workshop details are as follows:

Date : 25th to 26th April 2017
Venue : InfoTrek Sdn Bhd
            Amcorp Mall Jalan 18 Jalan Persiaran Barat,
            Seksyen 52, 46050 Petaling Jaya
            Selangor Malaysia
            http://www.info-trek.com/

Who should attend:

This programme is suitable for people who want to have in-depth understanding of auditing / providing assurance in more specific technological areas. The people who should attend include:

  • Security personnel who are tasked with securing virtual technologies
  • Network and systems administrators who need to understand how to architect, secure and maintain virtualization technologies
  • IT auditors and consultants who need to gain deeper understanding of virtualization from a security and compliance perspective

What you will learn:

  • First of its kind training in Malaysia brought to you by the ISACA Malaysia Chapter’s Special Interest Group on Virtualization which comprises of professionals in different industries and background!
  • The theory of Virtualization and Cloud Computing!
  • Practical hands on training with dedicated personal computer for each individual participants!
  • Use commercial tools available in the market to assist you to obtain the results you required in various formatted reports without the hassle of generating scripts or “print-screen”!
  • Build your own virtualized systems and create your own private Cloud environment!

As seats are limited, please register ASAP to secure yourself a seat. For more details and registration, please refer to the brochure link: Brochure

Or you can contact Seelan at officeadmin@isaca.org / +6017 -219 6225


Half Day Talk on Cyber Ethics & Fraud (13th March 2017)2/16/2017 4:57 PM

Dear Members,

Our chapter is pleased to bring you the free-for- members half day talk for March 2017, focusing on cyber ethics, fraud and forensic.

For the very first time, we have invited a speaker from France, Mr. Hugh H.Penri-Williams, to speak on cyber ethics, fraud and forensic.

Of German-Welsh origin, Hugh continuously thrived in multinational, multicultural environments in the banking, insurance, ultra-secure financial network, and telecom infrastructure sectors. His on-going career began 1967 in the City of London, since when he enjoyed assignments, courses, workshops & conferences in 51 countries at last count.

An experienced specialist with over 40 years of operational, consulting & training activities in governance, internal audit, risk management, internal control; information systems & security; fraud prevention, detection & investigation; delivering related services to multinational private & international public sector organisations; teaching at business schools and at university-level plus CIA/CGAP/CFE/CGEIT exam preparation courses, also in French.

An ardent supporter of ISACA/ITGI, The IIA & ACFE, Hugh served in many professional association boards, committees and chapters, culminating as Chairman of the Information Security Forum (twice). He is a past recipient of ISACA’s John Kuyers Award for Best Speaker/Conference Contributor.

The event details are as follows:

Date / Time: 13th March 2017, 2:00pm – 5:30pm (Registration start at 1:30pm)

Venue: Sime Darby Convention Centre, Bukit Kiara, 60000 Kuala Lumpur

Seats are LIMITED. Please register via ISACA MY Chapter Mobile Apps (available in both Android and IOS platforms). Just search for “ISACA MY Chapter” in stores and download it.

For more details please visit our website at:URL

Thank you

On behalf of ISACA Malaysia Chapter BOD 2016/2017


Newsletter Feb 20172/14/2017 2:42 PM

Dear Members,

2016 has been an eventful year for ISACA Malaysia Chapter. This edition of our newsletter contains articles, events and updates on activities organised by your local ISACA chapter. We are happy to see that participation from our members have been very encouraging throughout the year. We do hope that you will continue to support our events. This will give us the impetus to organise bigger and better events moving forward!

Please visit URL for the latest newsletter at: Newsletter

Do remember to join our planned activities for 2017! Also, feel free to drop us a line with your comments and questions.

Thank you

Best Regards,

Anthony Tai

Director of Branding, Publicity and Communications 2016/17 ISACA Malaysia Chapter


Authorized Training Partner for the Cybersecurity Practitioner (CSXP) Bootcamp by ISACA International.2/14/2017 2:32 PM

Dear Members,

AKATI Consulting Group has been appointed as the Authorized Training Partner for the Cybersecurity Practitioner (CSXP) Bootcamp by ISACA International.

The bootcamp is a 5 days workshop from 13-17 March 2017 and will be held in Cyberjaya, Malaysia. For more information, please visit the link below:

URL link : http://www.akati.com/csxp/017-03-ACL-CSX-BROCHURE.pdf

Note: This is a 3rd party event. ISACA Malaysia Chapter is not responsible for registration or any other matters related to this event.

Thank you

On behalf of ISACA BOD Malaysia 2016/2017


Communication Excellence Award 20162/13/2017 12:26 PM

Dear Members,

We are happy to announce that ISACA Malaysia has earned the 2016 Communications Excellence Award from ISACA International. The award recognises chapters who plan and execute great communications with their members. The criteria included assessments on:

  • Communications governance;
  • Stakeholder analysis;
  • Strategic objectives, communications goals and message;
  • Channels used; and
  • Results of the communications.

In 2015, ISACA Malaysia was awarded the 2015 Communications Commendation.

We would like to thank all members for your support of the local chapter! We look forward to seeing you at our upcoming events.

comm2016

Thank you

On behalf of ISACA BOD Malaysia 2016/2017


ISACA China HK Chapter Annual Conference 2017 Inspiration and Challenges of IT Governance vs Cybersecurity - 2017 and Beyond 2/7/2017 9:42 PM

Dear Members

ISACA Malaysia supports ISACA China HK Chapter Annual Conference organized by ISACA China Hong Kong Chapter which would be held on 16 March 2017 at Regal Hong Kong Hotel

Carrying the theme of “Inspiration and Challenges of IT Governance vs Cybersecurity - 2017 and Beyond” this year, 100 delegates who are key IT executives, and decision makers from both local and overseas professionals with solid information technology background would come to join the event.

Mr. Nicholas Yang, Secretary for The Innovation and Technology Bureau, The Government of the HKSAR will participant the conference. Besides, we have lined up with the following prominent speakers:-

  • Mr. Nelson Chow ,Chief Fintech Officer, Fintech Facilitation Office, Hong Kong Monetary Authority
  • Mr. Robert Clyde, ISACA International Board Director and Managing Director of Clyde Consulting LLC
  • Mr. Rocky Cheng, General Manager, Information Technology, Bank of China (Hong Kong) Limited
  • Mr. Martin Schlatter, CIO and Regional CEO, APAC, NTT Security
  • Mr. Hugh H. Penri-Williams, VP of Association of Certified Fraud Examiners France Chapter and Owner, Glaniad 1865, France
  • Mr. Angus Choi, Chief Executive Officer, Hong Kong, Joint Electronic Teller Services Limited (JETCO)

URL link : http://www.isaca.org.hk/conference2017

Note: This is a 3rd party event. ISACA Malaysia Chapter is not responsible for registration or any other matters related to this event.

Thank you

On behalf of ISACA BOD Malaysia 2016/2017


GTACS 2017 organized by ISACA Singapore Chapter2/7/2017 4:24 PM

Dear Members

ISACA Malaysia supports GTACS 2017 organized by ISACA Singapore Chapter. The flagship annual conference, GTACS 2017, will be held on April 24-26 at Marina Bay Sands.

GTACS, serves as the platform that enables exchange of ideas, sharing of industry best practices and knowledge source for trends for the cybersecurity community. Themed "Cyber Resilience for Tomorrow" will show ways organisations need to change their strategy in four tracks – Governance, Cyber security, Assurance, Risk, Control & Compliance.

Come join more than 200 professionals from the region at the event that brings the best and brightest minds to embrace challenges and forge solutions for a resilient enterprise of tomorrow. Earn up to 30 CPE Hours by participating in the conference and workshop. More information can be found on www.gtacs.sg

URL link : www.gtacs.sg

Note: This is a 3rd party event. ISACA Malaysia Chapter is not responsible for registration or any other matters related to this event.

Thank you

On behalf of ISACA BOD Malaysia 2016/2017


CyberSecurity Nexus Fundamentals Training (CSXF) Penang2/1/2017 10:46 AM

Dear Members,

By popular demand, the chapter is excited to bring the popular Cybersecurity Nexus Fundamental training as part of our Training Programme!

This training is designed specifically to equip you with an introductory knowledge and awareness towards CyberSecurity threats, risks and challenges faced by enterprises. Cybersecurity is a growing and rapidly changing field, and it is crucial that the central concepts that frame and define this increasingly pervasive field are understood by professionals who are involved and concerned with the security implications of Information Technologies. The CSXF training is designed for this purpose, as well as to provide insight into the importance of cybersecurity and the integral role of cybersecurity professionals

The workshop details are as follows:

Date : 20th to 21st March 2017 2016
Venue : G Hotel
            168A, Persiaran Gurney, Pulau Tikus,
            George Town, 10250 Pulau Pinang

Who should attend:

This programme, which is designed by ISACA International, is suitable for people who is looking to gain foundational knowledge in cybersecurity and to begin building their skillset and knowledge in this crucial area. You may be a fresh graduate or an experienced professional in any fields – from new assurance / security / risk / compliance professionals to experienced Management personnel who needs to understand and/or deal with this new emerging risk area

What will you learn:

  • Understand basic cybersecurity concepts and definitions
  • Identify cybersecurity roles
  • Understand basic security architecture principles
  • Understand malware analysis concepts
  • Recognise the techniques for detecting host-and-network-based intrusions via intrusion detection technologies
  • Understand vulnerability assessment management
  • Recognise penetration testing phases
  • Understand high level network security, including remote access technology and systems administration concepts
  • Understand system hardening and virtualisation
  • Recognise system lifecycle management principles
  • Understand / Review the OWASP top ten
  • Differentiate between events and incidents
  • Define types of incidents and identify elements of an incident response plan
  • Be aware of the basic procedures for processing digital forensic data
  • Recognise new and emerging information technology and identify the associated security implications

As seats are limited, please register ASAP to secure yourself a seat. For more details and registration, please refer to the brochure link: Brochure

Or you can contact Seelan at officeadmin@isaca.org / +6017 -219 6225

Thank you

On behalf of ISACA Malaysia Chapter BOD 2016/2017


Half Day Talk: Cybersecurity: Attack and Respond on 22 March 2017, Penang2/1/2017 10:34 AM

Dear Members,

Our chapter is pleased to bring you another free-for-members half day talk that would be focusing on the area of Cybersecurity attack and IT assurance.

We have 2 esteemed speakers that would be sharing with us on the cybersecurity attack simulation, IT assurance and the regulators guideline.

Keys Take Away

  • Understand cybersecurity attack concepts
  • Understand IT Assurance
  • Understand Cybersecurity guideline by regulators
  • Distinguish type of network defence and characteristics
  • Understand the differences of ISACA certifications and how it can help you in your career!

The event details are as follows:

Date/Time : 22th March 2017, 9:00am – 12:30pm (registration start at 8:30am)
Venue : G Hotel, 168A, Persiaran Gurney, George Town, Pulau Pinang, Malaysia

Seats are LIMITED. Please register via ISACA MY Chapter Mobile Apps (available in both Android and IOS platforms). Just search for “ISACA MY Chapter” in stores and download it.

For more details please visit our website at: More Info

Thank you

On behalf of ISACA Malaysia Chapter BOD 2016/2017


Half Day Talk: Assessing Cyber Risk Management Maturity & Privilege Access Management2/1/2017 10:21 AM

Dear Members,

Our chapter is pleased to bring you the free-for- members half day talk for February 2017 that would be focusing on cyber risk management and privilege access management in the corporate business.

We have 2 esteemed speakers that would be sharing with us on cyber risk management maturity assessment and management on privileged access in your organization.

The first speaker, Hallace Ho is currently the Manager of Governance, Risk & Compliance practice within the Thales Critical Information Systems and Cybersecurity business line, Asia Pacific. Hallace has 15 years’ experience specializing in information technology and cybersecurity governance, risk management, threat profiling, and compliance audit. Hallace will be sharing his experience in cyber risk management maturity assessment.

Our second esteemed speaker, Jason Lim, with more than 10 years’ experience is the Head of Professional Services at Silverlake Mastersam Group, leading a team of consultants which deliver a range of professional and technical services in deploying a good privileged access management. Jason will be sharing the best practice in managing privileged access in the organization.

The event details are as follows:

Date/Time : 20th February 2017, 2:00pm – 5:30pm (registration start at 1:45pm)
Venue : Sime Darby Convention Centre, Bukit Kiara, 60000 Kuala Lumpur

Seats are LIMITED. Please register via ISACA MY Chapter Mobile Apps (available in both Android and IOS platforms). Just search for “ISACA MY Chapter” in stores and download it.

For more details please visit our website at: More Info

Thank you

On behalf of ISACA Malaysia Chapter BOD 2016/2017


Application Controls Review - SAP1/18/2017 3:17 PM

Dear Members,

Based on you request, WE ARE RE-CONDUCTING THE SAP AUDIT SERIES!

You will have the opportunity to attend ISACA Malaysia chapter organised SAP Audit workshop.

In Mar 17, ISACA Malaysia will be conducted two-day program on Auditing FI and BASIS, specially designed with the objective to equip you with the knowledge on how to navigate the tricky world of SAP Auditing.

The workshop aims to give the participants understanding of key risks and controls, and auditing perspective of key components in FI and BASIS. You will be given the opportunity to experience “hands on” in performing an SAP Audit in a real environment, that has been set up specifically for the workshop.

Be prepared for a grueling two full days of knowledge transfer. You will also gain insights into some of the potential and common challenges faced in SAP Audits within enterprises. WE ARE LIMITING THE NUMBER OF SEATS, as we would like to ensure you get the most benefit from the workshop.

The workshop details are as follows:

Date : 21 to 22 March 2017
Venue : InfoTrek Sdn Bhd
            Amcorp Mall Jalan 18 Jalan Persiaran Barat,
            Seksyen 52, 46050 Petaling Jaya
            Selangor Malaysia
            http://www.info-trek.com/

Click on the link Brochure, download the registration form and REGISTER NOW.

Or you can contact Seelan at officeadmin@isaca.org / +6017 -219 622

Thank you


Half Day Talk: “Cybersecurity: What’s In For 2017” on 24 Jan 20171/10/2017 10:47 PM

Dear Members,

Our chapter is pleased to bring you the first free-for- members half day talk for 2017 that would befocusing on the area of Cybersecurity and Threat Intelligence & Analytics (TIA).

We have 2 esteemed speakers that would be sharing with us on the state of current organizations’ security maturity and how to achieve cyber resiliency in 2017 as well as how threat intelligence and analytics will help organizations in managing its cyber risks.

The first speaker, Jason Yuen is a Partner in Ernst & Young Advisory Services Sdn Bhd focusing on Risk,Information Security, Privacy and Business Continuity. He has over 17 years of experience serving clients in various industries including financial services, oil & gas, energy, telecommunications, manufacturing,healthcare and the public sector. Jason will be sharing the findings from the latest Global InformationSecurity survey to gauge what could be organization’s current security capabilities and strength, as well as a proposition of three steps to achieve cyber resiliency in an organization.

Our second esteemed speaker, Shaharil Abdul Malek is a Director in Deloitte Malaysia whom is currently attached to the Risk Advisory services. He has over 17 years of experience in providing cyber risk services which includes cyber security assessment, managed security services, incident response handling and digital forensics. He is the recipient for Most Innovative Information Security Profession,Malaysia Cyber Security Award 2012. Shaharil will be sharing the key characteristic of TIA and how it can assist organization in managing it’s cyber risks during his session.

The event details are as follows:

Date/Time : 24th January 2017, 2:00pm - 5:30pm (registration starts at 1:45pm)
Venue : Sime Darby Convention Centre, Bukit Kiara, 60000 Kuala Lumpur

Seats are LIMITED. Please register via ISACA MY Chapter Mobile Apps (available in both Android and IOS platforms). Just search for "ISACA MY Chapter” in stores and download it.For more details and registration, please refer to the website link: More Info

Thank you

On behalf of ISACA Malaysia Chapter BOD 2016/2017


CyberSecurity Professional Workshop1/4/2017 3:15 PM

Dear Members,

By popular demand, the chapter is excited to bring the popular Cybersecurity Professional Workshop as part of our Training Programme!

CyberSecurity is a growing and rapidly changing field, and it is crucial that the required hands on skillset that frame and define this increasingly pervasive field are understood by professionals who are involved and concerned with the security implications of Information Technologies. The CyberSecurity Professional Workshop is designed for this purpose, as well as to provide insight into the importance of cybersecurity technical skillset and the integral role of cybersecurity professionals.

The Cybersecurity Professional Workshop job practice is organized by five key domains (Identify>Protect>Detect>Respond>Recover), developed through an analysis of the work performed by cyber security professionals and validated by prominent subject matter experts and industry practitioners.

The workshop details are as follows:

Date : 27th to 29th March 2017
Venue : InfoTrek Sdn Bhd
            Amcorp Mall Jalan 18 Jalan Persiaran Barat,
            Seksyen 52, 46050 Petaling Jaya
            Selangor Malaysia
            http://www.info-trek.com/

Who should attend:

TThis programme is designed for people who is looking to gain hands on skillset in cybersecurity and to begin building their skillset and knowledge in this crucial area. You may be a fresh graduate or an experienced professional in any fields – from new assurance / security / risk / compliance professionals to experienced Management personnel who needs to understand and/or deal with this new emerging risk area.

What will you learn:

  • Use vulnerability assessment and scanning tool sets to identify and document vulnerabilities
  • Obtain and aggregate information from multiple sources for use in threat intelligence, metrics and incident detection
  • Implement cyber security controls – for network, endpoint, server, and more – and validate that controls are operating as required.
  • Conduct ongoing control tests and validations to verify effectiveness of controls
  • Implement and document changes to cyber security controls – for example: ids rule, firewall rule
  • Identify anomalous activity and potential internal, external, and third-party threats to network resources using network traffic monitors or intrusion detection system, as well as ensure timely detection of indicators of compromise
  • Perform exploitation attack to understand CyberSecurity from offensive perspective
  • Perform initial attack analysis to determine the attack vectors, targets and scope and potential impac
  • Execute defined response plans to contain damage on affected assets

As seats are limited, please register ASAP to secure yourself a seat. For more details and registration, please refer to the brochure link: Brochure

Or you can contact Seelan at officeadmin@isaca.org / +6017 -219 6225


CyberSecurity Nexus Fundamentals Training (CSXF)1/4/2017 11:50 AM

Dear Members,

By popular demand, the chapter is excited to bring the popular Cybersecurity Nexus Fundamental training as part of our Training Programme!

This training is designed specifically to equip you with an introductory knowledge and awareness towards CyberSecurity threats, risks and challenges faced by enterprises. Cybersecurity is a growing and rapidly changing field, and it is crucial that the central concepts that frame and define this increasingly pervasive field are understood by professionals who are involved and concerned with the security implications of Information Technologies. The CSXF training is designed for this purpose, as well as to provide insight into the importance of cybersecurity and the integral role of cybersecurity professionals.

The workshop details are as follows:

Date : 27th to 28th February 2017
Venue : InfoTrek Sdn Bhd
            Amcorp Mall Jalan 18 Jalan Persiaran Barat,
            Seksyen 52, 46050 Petaling Jaya
            Selangor Malaysia
            http://www.info-trek.com/

Who should attend:

This programme, which is designed by ISACA International, is suitable for people who is looking to gain foundational knowledge in cybersecurity and to begin building their skillset and knowledge in this crucial area. You may be a fresh graduate or an experienced professional in any fields – from new assurance / security / risk / compliance professionals to experienced Management personnel who needs to understand and/or deal with this new emerging risk area

What will you learn:

  • Understand basic cybersecurity concepts and definitions
  • Identify cybersecurity roles
  • Understand basic security architecture principles
  • Understand malware analysis concepts
  • Recognise the techniques for detecting host-and-network-based intrusions via intrusion detection technologies
  • Understand vulnerability assessment management
  • Recognise penetration testing phases
  • Understand high level network security, including remote access technology and systems administration concepts
  • Understand system hardening and virtualisation
  • Recognise system lifecycle management principles
  • Understand / Review the OWASP top ten
  • Differentiate between events and incidents
  • Define types of incidents and identify elements of an incident response plan
  • Be aware of the basic procedures for processing digital forensic data
  • Recognise new and emerging information technology and identify the associated security implications

As seats are limited, please register ASAP to secure yourself a seat. For more details and registration, please refer to the brochure link: Brochure

Or you can contact Seelan at officeadmin@isaca.org / +6017 -219 6225


ISACA MY Chapter - Get to Know Member (#8)3/16/2016 7:55 PM

Get to Know Dr. Kim!

 

It’s time to introduce another member in our Get to Know the Members space! Meet Dr. Kim (please click here to catch a glimpse of her cool picture!). Let’s hear Dr. Kim sharing little background about herself and experience being an ISACA member.

 

1.         Please share with us a little background about yourself

Spanning more than two decades in the field of IT, I have worked in diverse industries from software development, networking, operation and support to the rank of an executive officer and advisor to top management.  Three years ago, I ventured into the world of business and co-founded a recruitment house to source and to provide manpower to companies.  Going forward, I intend to be involved and to contribute in the field of IT governance professionally and academically.  Undeniably, IT and related technologies are already pervasive in the survival and existence of enterprises and must thus be managed and be governed appropriately at all times.   

 

2.     Please tell us on how you became a member in ISACA and what was your first impression of it?

In 2007, I met Mr Nickson Choo whose reputable company was engaged as the local external IT auditor cum consultant.  At that time, I was also struggling with my doctorate thesis on IT governance.  One day, I chanced lamented to him about the difficulties of getting articles on this topic.  He immediately introduced me to the ISACA website.  My first impression was joy at the overwhelming wealth of knowledge and information on the management and governance of IT from the practical and academic contexts.  I became and remain an ISACA member since then.    

 

3.     What do you find most interesting about getting involved in ISACA events?

ISACA events are enriching.  There is always ‘something new’ to learn and to discover from each involvement.  Meeting members and non-members, I enjoyed the social networking and professional interactions that came with every event.

 

4.     How do people commonly describe about yourself?

My colleagues, friends and acquaintances describe me as friendly, patient, hardworking, trustworthy, resourceful and knowledgeable.  To my family members, I am dutiful, responsible and dependable.

 

5.         What do you do during your leisure time?

I listen to oldies as personally, I found the songs of yester years to be meaningful and melodious.  Otherwise, it will be reading books or surfing online on subjects that interest me. 

 

6.     What is the one thing which most people would be surprised to know about you?

I like to sing in the bathroom.  As a student, I used to sing for hours in the bathroom which enraged the whole family!  With greater responsibilities as my life evolves, I have continued doing so whenever I can spare the time. 

  

7.         Who is your role model in life?

I do not have any particular role model in my life.  However and of late, I admire Ms Sheryl Kara Sandberg, the COO of Facebook.  I have read her biography.  She has the qualities of a visionary leader.  Outright in her comments on women, she has also demonstrated the power of woman entrepreneurship.

 

8.         What is your personal philosophy about life?

I believe in strong perseverance, great passion and a sense of urgency in whatever I do.  If I have decided on a certain challenge, I will ensure that it gets completed to my best effort.


ISACA MY Chapter - Get to Know The Members (#7)1/13/2016 7:40 PM

Get to Know Foong!

It’s time to introduce another member in our Get to Know the Members space! Meet Ms. Foong Teng Cheng (please click here here to catch a glimpse of her cool picture!). Let’s hear Foong sharing little background about herself and experience being an ISACA member.

1. Please share with us a little background about yourself

I’m the youngest in the family of 4 girls from Penang.  I have moved down to KL since 2001 due to work opportunity.  My dad and sisters are still in Penang.  I’m SAE… that’s Single and Enjoying.

I’m currently working as Security Analyst Senior Advisor (in the Governance, Risk & Compliance team) in Dell, Cyberjaya.  Before I joined Dell, I worked at Pacific & Orient Berhad as an Internal Auditor for 8 years.

2. Please tell us on how you became a member in ISACA and what was your first impression of it?

During my employment in previous company, I was recommended to sign up as an ISACA member (thus I signed up in 2002) and at the same time took CISA certification (managed to pass in 2005 – the last batch for the 75% marking scheme).

3. What do you find most interesting about getting involved in ISACA events?

I get to meet different people from different organisations. Of course, in addition, I do get CPE points for attending evening talks.  

4. How do people commonly describe about yourself?

I asked a few friends, and these was what mentioned:- Funny, helpful, friendly, thoughtful, kind, easy going… (I think they are kind to me)

5. What do you do during your leisure time?

Surfing the internet (Facebook and watch online movies), cooking, sleeping.  I also do help out in some charity events (my frequent work is with NASAM – National Stroke Association of Malaysia & Kasih Hospice)

6. What is the one thing which most people would be surprised to know about you?

I have no idea.  Probably people will be surprised that I don’t really know Hokkien dialect (I’m from Penang – most of the Penangites are usually well versed in Hokkien!)

7. Who is your role model in life?

No one in particular (probably my parents).  Of late, I admire people like Nicholas Vujicic, Helen Keller, etc.  They can survive and be successful with their disabilities, hence, I shouldn’t complain about my life!

8. What is your personal philosophy about life?

Be healthy and helpful to others.


Cybersecurity Nexus (CSX) Website Lauch7/27/2015 1:37 PM

Dear Members,

Our chapter is excited to share that ISACA's brand new Cybersecurity Nexus (CSX) web site is now live! Featuring certification, career path information, the ability to purchase self-paced CSX Practitioner training labs and register for training courses to name a few, please visit https://cybersecurity.isaca.org  to take advantage of this new addition to the CSX program, and encourage your colleagues, friends and interested acquaintances to do the same. 

You would be able to enjoy the following CSX opportunities:

As part of the first phase release of the site additional resources have been made available within a few weeks time, with even more planned for release later this year.

On behalf of

Board of Directors 

ISACA Malaysia chapter 2015/2016."


ISACA MY Chapter - Get to Know The Members (#6)7/10/2015 3:14 PM

Dear Members,

It’s time to introduce another member in our Get to Know the Members space! Meet Ms. Tan Peck Hoon (please click here here to catch a glimpse of her cool picture!). Let’s hear Peck Hoon sharing little background about herself and experience being a ISACA member.

1. Please share with us a little background about yourself

I would call myself a local Klang Valley resident. I grew up in Kajang and later studied in the University of Malaya. Upon graduation, I worked in one of the big 4 accounting firms and trained as an accountant. Thereafter, I spent a good number of years working in Singapore before returning home to Malaysia due to family reasons.  I am married with 2 kids.

2. Please tell us on how you became a member in ISACA and what was your first impression of it?

While I was working in Singapore, it seems kind of fashionable to have various certifications. Since I was always curious to know more about IT audit and having to manage various IT audit as part of the overall audit engagement at work, it made sense to acquire the certification in order to be more knowledgeable about the entire process.  

3. What do you find most interesting about getting involved in ISACA events?

I like meeting up with the different people from different organizations. Also, the topics that are discussed keep me abreast of the profession and developments in the IT front.

4. How do people commonly describe about yourself?

People would say that I am quite an easy going person. However, I can be meticulous at work.

5. What do you do during your leisure time?

I don’t really have a lot of leisure time as I have a daughter who is only 4 years old. As those of you who have family would realize, they do take up a lot of your time. However, I love to spend time with my family. My son is already a young teenager, so there are different needs altogether. When I have some time to myself, I love to bake and read. My daughter loves to “assist” me in doing every single step of the baking process. Hence, it can be a lot of fun and clean up while my son and husband contributed towards eating the food!

6. What is the one thing which most people would be surprised to know about you?

There was once in my life when I thought of having my own bakery business. I guess I am too busy with my family and work to do this. Maybe I will do it when I retire. There was a period when I used to experiment baking different types of cheesecakes and my husband is the one who polished it up. At the end of 2 months, he told me to stop! Reason being: He has gained 2-3 kg of weight. Can’t stop someone from trying, right? J!!

7. Who is your role model in life?

I don’t really have any specific role model in my life. I like different aspects from different people and tend to try to emulate the part that I like about that person. So, the end result may be like a “rojak”! 

8. What is your personal philosophy about life?

I believe that the world is a smaller place than we imagine. We should always be human and do unto others what we would have them do unto us. Sometimes, God works in mysterious ways, you would never know when your path will cross again with someone you know. 


ISACA MY Chapter - Get To Know The Members (#5)3/24/2015 4:03 PM

Dear Members,

It’s time to introduce another member in our Get to Know the Members space! Meet Ms. Leong Sow Yoke (please click here here to catch a glimpse of her cool picture!), our ex-board member in ISACA MY Chapter. Sow Yoke has been with ISACA for more than 8 years now. Let’s hear Sow Yoke sharing some of her experiences previously when she was in ISACA BOD and also some background of herself.

1. Please share with us a little background about yourself.

I am one of 7 children and my family were pioneers of PJ, having moved there when I was 3 years old!  I am married with 2 grown boys and a teenage daughter.  An accountant by training, I am currently the Group Chief Internal Auditor of Alliance Bank Group.

2. Please tell us on how you first got involved in ISACA and what was your first impression of it?

I got involved in ISACA after I obtained my CISA in 2007.  I wanted to challenge my IT auditors at the time to do the same, and set a benchmark for my staff that becoming certified and being active in the profession is the way to go.

3. What do you find most challenging about getting involved in ISACA work?

The biggest challenge is finding time to attend Board meetings and organize events.  I try not to use my office resources for ISACA so it often means folding up my sleeves and attending to ISACA matters on my own.  It involves hard work and sacrifice but I did derive a lot of satisfaction from serving in the Board.

4. In your opinion, has the involvement in ISACA BOD helped in your career progression/career development? If yes, can please elaborate?

Not really, as I got involved in the BOD late in my career and was already in a senior management role.  I simply wanted to contribute to the profession.  Having said that, being in the BOD has elevated my visibility in the marketplace.

5. Any unforgettable moments happened during your involvement in ISACA?

Yes, I was accorded the Presidential Award for Outstanding Achievement in October 2010 when Malaysia Chapter celebrated its 25 anniversary.   It was totally unexpected and the gesture is much appreciated.

6. How do people commonly describe about yourself?

I am known to be a tough but fair person.  Family and friends are very important to me.

7. What do you do during your leisure time?

I serve in my local church. After a long day, I love to unwind and de-stress in front of the TV or do some baking with my daughter.  I love sports but unfortunately do not have much time for this nowadays. 

8. What is the one thing which most people would be surprised to know about you?

I have simple needs.  A good meal with my husband and children is enough to make me happy.

9. What is your personal philosophy about life?

To make a difference to others, no matter how small.   I will borrow a quote from Abraham Lincoln… “When I die, I want it said by those who knew me best … that I always plucked a thistle and planted a flower where I thought a flower would grow.”  The worst thing I can think of is for someone to die knowing that he had not lived or loved or mattered to anyone.

10. Any message to members about getting involved in ISACA BOD or any other volunteer work in general?

Go for it!  Real joy comes not from ease or riches or from the praise of men, but from doing something worthwhile (Wilfred Grenfell)


ISACA MY Chapter - Get to Know the Member (#4)12/16/2014 10:09 AM

Dear Members,

It’s time to introduce another member in our Get to Know the Members space! Meet Mr. Nickson Choo (click here for the image), our ex-board member and the current Chairman of Membership Growth and Retention Committee (MGRC) of ISACA International. Nickson has been with ISACA for more than 14 years now. Let’s hear him sharing some of his experiences previously when he was in ISACA BOD and also some background of himself.

1. Please share with us a little background about yourself

I’m an accounting graduate of University Malaya. I’ve worked in 3 different insurance companies before and I’m currently the Director of Risk Advisory Unit of Crowe Horwath Kuala Lumpur. Married with 2 teenage kids – boys. I joined ISACA BOD in year 2000 and set down as President in 2007.

2. Please tell us on how you first got involved in ISACA and what was your first impression of it?

Joined ISACA back in the year 2000 and during those years, volunteers was hard to come by and I volunteered and was immediately indoctrinated into the Board and given the Events Portfolio. My first impression was “Wow, these guys at ISACA was great and trusted me with this huge responsibility of generating revenue for the chapter!”  (On the hindsight, this was probably the worst portfolio and considered by many the most difficult and busiest portfolio which every experienced director will try to avoid taking up).  Don’t worry, we have since eliminated this Events Portfolio – so please do volunteer to the board and join the fun!!

The one thing that makes ISACA unique is the camaraderie amongst its members even to today. We may work for competing firms or organization but when it comes to ISACA, we share a commonality.  That’s what impressed me and this is what makes me continue to be with ISACA.

3. What do you find most challenging about getting involved in ISACA work?

Volunteerism is an important aspect of ISACA both here in Malaysia and around the world.  The one challenge that you will always face as a volunteer is on how much time that you can spare/devote to do ISACA work.  To be involved in ISACA, you need some flexibility in your working life as you are required to attend meetings and events as well as to help organize certain events or functions. Having an understanding employer and boss is a must.  If your boss was a current or ex-volunteer of ISACA, he/she will definitely understand the benefits of being involved as a volunteer and will also support your efforts and involvement.

4. Apart from being the BOD, please tell us on your other involvement in ISACA i.e. sub-committees, SIG etc.?

Although I no longer sit on the board of ISACA Malaysia, I am actively involved with ISACA International since the year 2008. I currently the Chair of the Membership Growth and Retention Committee (MGRC) which is tasked to look into improving the growth percentage as well as the retention ratios of the various chapters around the world.

 5. Any unforgettable moments happened during your involvement in ISACA?

Hahahaha! All the moments in ISACA are unforgettable. Honest! I have truly enjoyed my involvement in ISACA as it gave me the opportunity to interact with IT professionals and like-minded people from the various industries.  From the endless board meetings we have had, to the various events we have organized and to the unusual characters of people we have worked with, create wonderful memories that makes my involvement in ISACA so unforgettable.

6. How do people commonly describe about yourself?

Gee! People usually don’t tell me such things about myself. But I think they would describe me as the skinny spectacle guy that talks too much!!

7. What do you do during your leisure time?

I am an avid golfer and if there is any leisure time, I will try to get onto a golf course!

8. What is the one thing which most people would be surprised to know about you?

I guess most people would be surprised to know that I have been involved with ISACA international since 2008.  Most people don’t know that it’s possible to volunteer at International level.

9. What is your personal philosophy about life?

If you listen to this song by Baz Luhrmann titled “Everybody's Free (To Wear Sunscreen)” – it beautifully reflects how we should view our life. My personal favorite would be – “sometimes you’re ahead, sometimes you’re behind…the race is long, and in the end, it’s only with yourself”

10. Any message to members about getting involved in ISACA BOD or any other volunteer work in general?

Do join us at ISACA events, it’s the best platform for anyone to interact and network with other fellow professionals from the industry.  If possible, do volunteer to serve on the sub-committees or board of ISACA, the experience and exposure you get will be something that you can never get elsewhere.