Leonard Ong, CISA, CISM, CRISC, CGEIT, CPP, CFE, PMP, CIPM, CIPT, CISSP ISSMP-ISSAP, CSSLP, CITBCM, GCIA, GCIH, GSNA, GCFA, serves on the board of directors of ISACA and is associate director at Merck & Co. Inc.
Ong has more than 16 years of experience in cyber and corporate security gained in telecommunication, enterprise, banking, and pharmaceutical industries. His roles within the security profession have included information security, corporate security, project management, consulting and business development.
He leads the governance, risk management, and compliance platform for Asia Pacific and Japan within IT Risk Management and Security in Merck & Co., Inc. (also known as MSD International). Prior to that, he was with Barclays Capital as Head of Information Security Risk & Operation, Asia-Pacific. During his tenure with Nokia Siemens Networks, he established security professional security services enabling telecommunication carriers to secure their networks. He spent four years in Nokia Corporate Security and was responsible for securing Nokia businesses in seven countries across the region.
Ong has received recognition from leading information security associations, such as ISACA, (ISC)2 and ASIS International. The National Infocomm Competency Centre (NICC) named Ong as IT Specialist of the Year in 2005. He was awarded (ISC)2 Information Security Leadership Achievement (ISLA)—Senior Information Security Professional category in 2011, and ASIS International Professional Certification Board (PCB) Regional Award in 2014. He was instrumental in achieving the K. Wayne Snipes Award in recognition of the ISACA Singapore Chapter being the best very large chapter in Asia. IDG and CEO|CIO Club presented Ong with ASEAN CSO Honoree in 2015. In 2017, Ong is recognized with the Paul Williams award for his inspirational leadership in achieving strategic results and/or driving ISACA’s strategy forward.
As technology becomes an increasingly essential driver of business success for enterprises around the world, determining how to effectively and securely pursue digital transformation is of critical importance. Organizations must strike the appropriate balance of proactively seeking to deploy new and emerging technologies while still taking care to address the new risks and threats that these technologies may introduce.
Read more
