top of page

Architecting Cybersecurity Excellence & Community in Asia’s Tech Sphere With Dr. Kawin Boonyapredee


laila-al-hadhrami Tech Leaders Spotlight

In the ever-evolving landscape of cybersecurity and information technology, leaders like Kawin Boonyapredee stand as pillars of innovation and expertise. With over two decades of distinguished experience spanning business management and pioneering roles in information security, Kawin has left an indelible mark across North America and Asia.


As a trailblazer in his field, Kawin has held key positions, from steering the cybersecurity helm as the Chief Information Security Officer at a prominent FinTech startup to charting new territories as the Chief Cyber Technologist at Booz Allen Hamilton. His leadership extended further as the CEO of Cybertron, fortifying the cybersecurity framework in Thailand.


Beyond his professional commitments, Kawin dedicates his time to fortify communities of information and cybersecurity professionals. His co-founding of the (ISC)2 Singapore Chapter and the Singapore CIO Network (SCION) highlights his commitment to fostering knowledge sharing


and collaboration within these dynamic spheres. Kawin’s active involvement in the Cyber Risk Subcommittee for the Singapore Fintech Association underscores his dedication to steering industry-wide initiatives toward greater resilience and security.


An academic journey enriched by a Bachelor of Arts in Economics from the University of Pennsylvania, a Master's in Business Management and Systems from New York University, and a Ph.D. in Cybersecurity Leadership from Capitol Technology University, attests to Kawin’s unyielding commitment to academic excellence and professional growth.




JOIN US FOR KAWIN'S SPOTLIGHT STORY


Q. Your journey in the tech industry has been diverse and impactful. Could you share some key moments or experiences that have shaped your career, making it unique and inspiring?


Besides working during the summer period during my undergraduate years, I started my main journey in New York City, being fortunate enough to work for a major Internet Service Provider (ISP) in the IT Technical Support Call Center. Within 6 months I was promoted to Supervisor, where at the age of 23 I started supervising and managing a team of professionals. This led me to build up my people skills very early in my career, leading me to hone my management and people-centric skill set which would later mold how I build and lead effective teams 20 years later.

Another career high was given the opportunity to build an Information Security program from the ground up within the first decade of my Cybersecurity career. The responsibilities to be able to build and optimize the program for a global financial firm provided me with the necessary vision and strategy that I continue to drive today.

After a decade working in the United States, I found my way to Asia, where I was able to utilize my experience to build various teams, business units and programs for several regionally and globally dispersed companies. In becoming entrenched in the Cybersecurity community, my network of professionals exponentially expanded after co-founding the ISC2 Singapore Chapter, as well as more recently co-founding the Singapore CIO Network (SCION). I will continually commit my time to promote these non-profit organizations to tackle the largest Cybersecurity challenge today, the talent shortage.

Throughout my career in Asia, I have become an avid public speaker, promoting and sharing my experience and knowledge to build Cybersecurity awareness regionally and globally. I am featured in several articles and magazines, and notably was recognized as Corninium's Global Top 100 Leaders in InfoSec in 2022.


I also recently completed my doctorate degree in Cybersecurity Leadership, and currently Chair PhD students at my University. My hope is to strengthen the bridge between Academia and Industry.


Q. As someone with extensive experience across various security roles, what future trends do you foresee in the realm of information security, particularly in Asia and North America?


  • AI took the main stage in 2023 after the release of ChatGPT. The utilization of AI within the Cybersecurity domain will continue to grow and evolve, enhancing how we can better improve our people, processes and technology stack.

  • As a double-edged sword, AI will also be a challenge for Cybersecurity and CISO's, since bad actors are exploiting the systems for malicious activity against organizations.

  • Quantum Computing is currently overshadowed by AI, but needs to be a focus talking point in 2024 and beyond. QC, coupled with AI, will effectively change the entire way we envision the Cybersecurity and IT domains.

Q. You've been involved in significant positions like CISO of a FinTech startup and CEO of a Cybersecurity MSSP in Thailand. What strategies or approaches do you find most effective when establishing robust information security programs?


  • Build a Cybersecurity culture within the organization as well as awareness for our users, customers, and partners

  • Follow best practices that are readily available to the Cybersecurity community to benchmark the maturity and strengths ( as well as weaknesses) of the organization

  • Knowledge and Information Sharing is key to understanding and building situational awareness to the risks of your firm

  • Always keep up to date with the rapid change of technology, continually looking to optimize and improve your systems, networks and infrastructure


Q. Your involvement in founding organizations like (ISC)2 Singapore Chapter and SCION showcases a commitment to building communities of cybersecurity professionals. How crucial is this networking and collaboration in the industry's evolution?


Absolutely top priority. Without knowing the community, you are missing out on the importance of knowledge and experience that others within the Cybersecurity community share, thereby preventing you from learning from them. In addition, collaboration and coordination are key elements in ensuring you understand and manage the risks to your organization, especially in the Cyberworld, where borders and geofencing do not apply.


Q. With your educational background spanning economics, business management, and a Ph.D. in Cybersecurity Leadership, how have these diverse disciplines contributed to your approach in leading and strategizing information security programs?


I received my Bachelor's degree in Economics and Master's degree in Management & Systems. These two degrees built my foundation to understand the importance of building Cybersecurity programs and the need to align to the Business.

By the time I obtained my Doctorate degree in Cybersecurity Leadership, I was able to deep-dive in the crucial components on balancing business, IT and Cybersecurity - Stakeholder management, Culture and Digital Transformation.


Q. For aspiring tech leaders, what advice would you offer in terms of embracing innovation and staying ahead in the ever-evolving tech and cybersecurity domains?


  • If you love technology, stay hands-on and up-to-date on the latest technologies that can help your teams and organization work more efficiently and effectively. If you are responsible for a large organization with many reports, ensure you have your technical teams stay current and hands-on and ensure you are continually informed.

  • Subscribe to many of the leading Cybersecurity gurus, whether on our online podcasts or videos to stay current.

  • With AI in center stage of Cybersecurity, look into how AI can help you in your program and journey, and at the same time, work closely with special interest groups and Cybersecurity nonprofits to understand the threat landscape (Information Sharing and Collaboration - ISACs, ISC2, SANS, CIS).

Q. Lastly, in this era of rapid digital transformation, what do you perceive as the most significant challenges and opportunities for tech leaders in maintaining robust cybersecurity measures?


  • Build your cyber culture. I cannot stress enough on the importance of this point as we face a Cybersecurity talent shortage and budget cuts worldwide. A small investment in Cybersecurity awareness in turn will make your operational effectiveness much more optimal (and also reduce the stress on the already reduced budget and resources).

  • Measure, measure, measure - What I mean is build metrics into your operational security program to ensure you continue to improve upon your practices and processes. This also will prove the effectively to the Board, ensuring they are supportive of the overall program (and can build your business case to continue investing in Cybersecurity).

  • Stay current with technology as it changes yearly (or less). New tech, tech that has been acquired or decommissioned - all these will help drive your strategy in the long run.



Comments


bottom of page