Ray Sung Joon Ahn
Director of Marketing, Sparrow Co., Ltd
Ray Sung Joon Ahn is a Marketing Director of Sparrow Co., Ltd. He has over 7 years of experience in application security testing solutions and 15 years of experience in B2B and B2C solutions, and has held senior positions at several leading companies, including Sparrow Co., Ltd., Fasoo, and Namo Interactive. In his current role as Director of Marketing at Sparrow Co., Ltd., he is responsible for the company's overall business global operations, including sales, marketing, and business development.
|
Sheeba Baskaran
Advisory Researcher - Lenovo, Motorola Mobility I Rapporteur for the 3GPP SA3 ZT TR
Dr. Sheeba Backia Mary Baskaran is an Advisory Researcher with Lenovo, Motorola Mobility, Germany. She is a delegate and key contributor to 3GPP, NGMN, ETSI, and NextG Alliance working groups. She has 7 plus years of Telecommunication technology standardization experience. In her current role, she takes care of research and development of 5G advanced security features, contributes to ICT standardization and specifications. She holds significant number of patents in 5G system, authored several whitepapers (especially NGMN, ETSI), also worked as a lead editor for various 6G topics in NextG white papers. She also takes the role of Rapporteur for 3GPP Release-18 TR33.894, ‘Study on applicability of the Zero Trust Security principles in mobile networks’. She is a Technical Editor in IEEE Network and Guest Editor in IEEE Transactions on Consumer Electronics - Special Issue. She also serves as the Standardization and International Cooperation Manager (SICM) for the Horizon Europe SNS Project - RIGOUROUS.
|
Francesco Chiarini
Chairman, ISSA.org Cyber Resilience Special Interest Group
Francesco Chiarini has 18+ years experience in cybersecurity and he is the founder of the prestigious ISSA.org Cyber Resilience specialised community with over 1800 associates across the globe. In his day-to-day, he leads cyber resilience for a major financial institution with the aim to continuously assess and evolve the organisations’ defensive posture to sustainably stay ahead of the cyber threat. Francesco has received the global innovation award from the USA Consumer Brands Association in 2018 and is the 2021 volunteer of the year from ISSA.org. Sought-after speaker who presented at global audiences including recent talks at MITRE, FS-ISAC, ISACA, ISSA, Microsoft, London Stock Exchange, FIRST, Asia Pacific CERT, Africa CERT and many others. In 2022, Francesco has co-authored multiple recognized research papers such as the World Economic Forum “The Cyber Resilience Index: Advancing Organizational Cyber Resilience”, the ASIFMA “Data Vaulting considerations for improving data recovery” and the Eurocontrol “Incident Timing Metrics, Reporting Cyber Risk to Boards. Francesco promotes and demystifies across all industries and communities the concepts of cyber resilience and threat-informed defense – proudly SABSA and TOGAF certified. From the beginning of his career, Francesco has been successful in providing international pedigree enterprises with the abilities to anticipate, withstand, respond and recover from multi-faceted attacks from advanced cyber adversaries. He had the privilege to build a best-in-class cyber resilience program vetted -among others- by experts of the US CISA cyber resilience task force. In this capacity, Francesco has coined the concept of “high value target” and developed a methodology to identify assets’ value from an adversarial standpoint.
|
Cassie Crossley
VP, Supply Chain Security, Schneider Electric
Cassie Crossley, Vice President, Supply Chain Security in the global Cybersecurity & Product Security Office at Schneider Electric, is an experienced cybersecurity technology executive in Information Technology and Product Development. She has many years of business and technical leadership experience in supply chain security, cybersecurity, product/application security, software/firmware development, program management, and data privacy. Ms. Crossley has designed frameworks and operating models for end-to-end security in software development lifecycles, third party risk management, cybersecurity governance, and cybersecurity initiatives. She is a member of the CISA SBOM working groups and presents frequently on the topic of SBOMs and Supply Chain Security.
|
Allan Friedman
Senior Advisor & Strategist, Cybersecurity and Infrastructure Security Agency, US Government
Dr. Allan Friedman is a Senior Advisor and Strategist at the Cybersecurity and Infrastructure Security Agency in the US Government. He coordinates the global cross-sector community efforts around software bill of materials (SBOM), and works to advance its adoption inside the US government. He was previously the Director of Cybersecurity Initiatives at NTIA, leading pioneering work on cybersecurity, including running the first public government-led collaboration on coordinated vulnerability disclosure. Prior to joining the Federal government, Friedman spent over a decade as a noted information security and technology policy scholar at Harvard's Computer Science department, the Brookings Institution, and George Washington University's Engineering School. He is the co-author of the popular text "Cybersecurity and Cyberwar: What Everyone Needs to Know," has a degree in computer science from Swarthmore College and a PhD in public policy from Harvard University.
 Ilia GerasimovResearcher, Cryptography Lab, JSRPC “Kryptonite”Ilia Gerasimov works as a researcher of cryptography laboratory in the JSRPC Kryptonite developing cryptography mechanisms for secure authentication and personal data security. He holds a degree in Applied Mathematics and Computer Science from Lomonosov Moscow State University, Faculty of Computational Mathematics and Cybernetics, department of Information Security. His sphere of scientific interests contains public-key cryptography, elliptic curve cryptography, pairing-based cryptography, homomorphic encryption, blockchain.
|
 Martin Goldberg5G Cybersecurity Standards Lead, U.S. National Security AgencyMartin Goldberg spent eight years in the private sector performing red and blue team activities before joining the National Security Agency (NSA) in 2005. Mr. Goldberg's NSA career has been focused on the cybersecurity of networks, VoIP, and mobile communications to include various devices, 3G, 4G and 5G. Mr. Goldberg holds a Bachelor of Business Administration degree in Computer Information Systems from City University of New York Baruch College, Master of Science degree in Computer Science from New York University and was a member of the National Science Foundation Scholarship for Service program.
 Jin-Bae HongDeputy Minister, Ministry of Science and ICT, Korea (Rep. of)Mr. Jin-Bae Hong is the Deputy Minister of the Office of Network Policy in the Ministry of Science and ICT of the Republic of Korea since February 2022. He began his career at the government office in 1995. Ever since then he has been working in the information and communication sector. He has devoted himself to establishing the network and security policies at the national level for the country. He was the Director of the Cyber Security Planning Division from March 2013 to March 2016, the Director-General of the Telecommunications Policy Bureau from December 2019 to April 2021, and the Director-General of the Cyber Security and Network Policy Bureau from April 2021 to February 2022 in the Ministry of Science and ICT. In 2021, he contributed himself to a great extent to set up the policy to create a safer environment for cyberspace, focusing on ransomware threat response, talent development, and industry promotion for cybersecurity, as well as strengthening response capabilities against cyber threats and resilience of the private sector. As an incumbent Deputy Minister of the Office of Network Policy, he is now responsible for coordinating overall national network and cybersecurity policy.
|
Zhiyuan Hu
WP2 Vice-Chair and Q2 Co-Rapporteur, ITU-T Study Group 17, Security | Director, Security Research, vivo Mobile Communication Co. Ltd
Ms. Zhiyuan Hu got her Ph.D. in computer science in 2002. She worked as a security researcher at Nokia Shanghai Bell Co. Ltd. from 2002 to 2021. Since July 2021, she has worked as Director of Security Research at vivo Mobile Communication Co. Ltd. Dr. Hu was nominated for Vice-Chair of WP2/SG17 (5G, IoT& ITS security) (2021-present), Co-Rapporteur of Q2/SG17 (Security architecture and network security) (2017-present) and Associate Rapporteur of Q2/SG17 (2015-2016). She acted as Chair of OMA (Open Mobile Alliance) security working group (2009-2014) and Vice-Chair of OMA security working group (2007-2008). She also acted as Vice-Chair of CCSA (China Communications Standards Association) TC5 WG5 (Wireless communication security) (2008-2021). She completed to publish more than 20 specifications.
|
 Jonghyun Kim
WP1 Vice-Chair and Q4 Co-Rapporteur, ITU-T Study Group 17, Security | Principal Researcher, Electronics and Telecommunications Research Institute (ETRI)
Jonghyun Kim began participating in ITU-T SG 17 in 2006 and has actively contributed to the work of SG17 as a core member of security experts for more than 15 years. For the Study Period (2022 – 2024), he has served as a WP1 Vice-Chair and Co-Rapporteur of Question 4/17. He was a researcher with the Samsung Electronics in 1995-1998. He joined the Electronics and Telecommunications Research Institute (ETRI) in 2005. His research interests include Cyber Security, Network Forensics, Cloud Security (SecaaS) and 5G/6G Security.
 Youngrang Kim
CEO/CTO, PRIBIT Technology
Youngrang Kim has 24 years of experience in information technology with 12 years, specifically in software and network security and blockchain. He was the CTO of Everspin from 2014 to 2015 where he worked on mobile dynamic security technology development (moving target defense). At PRIBIT Technology, he serves as the CEO and CTO since 2018 where he leads the development of zero trust communication technology to solve problems of IP communication technology. He has over 130 connectivity control mechanism patent applications and registrations, was selected to lead the zero trust demonstration model by the Ministry of Science and ICT in the Republic of Korea in 2023 and has been a Member of the Industry/Technlogy Committee in the Korea Zero Trust Forum since 2022.
 Takao Kojima (LinkedIn: https://www.linkedin.com/in/takaokojima)
Cyber Security Architect, KDDI Research Inc., Japan Dr. Takao Kojima is an accomplished technologist with a Ph.D. in Information Security, spanning profound expertise in the realm of information and communication since the dawn of the computer communication era. Throughout 25-year career, with a diverse portfolio encompassing roles within Internet Service Providers and prominent Information System Integrators, He designed and deployed endpoint security and security update system on Windows platforms for government and financial institutions. In KDDI, He has applied his expertise to make mobile consumer identity "au ID" for subscription and payments make open architecture and phishing-resistant by participating in standardized bodies such as OpenID Foundation and FIDO Alliance. In KDDI Research, He has been engaged in research of Cyber-Physical Security for supply chain security with his extensive hands-on experience and in-depth knowledge in designing and implementing. He is currently in charge of the Software Bill of Materials(SBOM) trial in the telecommunication domain with the Ministry of Internal Affairs and Communications, KDDI, KDDI Research, NEC, Fujitsu, and Mitsubishi Research Institute. He received a Ph.D. degree from the Institute of Information Security, Japan.
 Manhee Lee
Professor of Computer Engineering Department, Hannam University.
Professor Lee Manhee started his career as a researcher at the Korea Institute of Science and Technology Information (KISTI). Later, he worked as a hardware engineer at Cisco Systems and held a position as a senior researcher at the National Security Research Institute (NSRI). Currently, he is a professor of computer engineering department at Hannam University. He serves as a director at the Korea Institute of Information Security & Cryptology(KIISC) and participates in academic activities as the president of the Supply Chain Security Research Society and as an editorial board member of the Journal of KIISC. He also takes on the role of a section chief for the Supply Chain Security Forum Technical/Standard Committee at the Ministry of Science and ICT and leads the Supply Chain Security Working Group at the National Security Research Institute, contributing to policies and technological advancements in national supply chain security. Professor Lee earned his bachelor's and master's degrees in computer engineering from Kyungpook National University and later obtained his Ph.D. in the field of architectural security in the computer science department from Texas A&M University. |
|
 Sokjoon Lee
Professor, Department of Computer Engineering (Smart Security), Gachon University
Professor Sokjoon Lee worked as a principal researcher at Electronics and Telecommunication Research Institute (ETRI) for 22 years. He is currently working as an associate professor at Gachon University, Korea. He serves as a director at the Korea Institute of Information Security & Cryptology (KIISC), Korean Institute of Information Scientists and Engineers (KIISE) and Korean Institute of Smart Media (KISM). He also participates in academic activities as an editorial board member of KIISE Transactions on Computing Practices. He is currently a section chief for Policy/System Committee in Korea Zero Trust Forum and developing the security policies for adopting zero trust paradigm in Korea. He received the B.S and M.S degrees in computer engineering from Seoul National University and the Ph.D. degree in school of computing from KAIST. |
 Robert Martin
Senior Principal Engineer, MITRE Corporation
Robert A. Martin, a Senior Principal Engineer at the MITRE Corporation, has dedicated his 41 year career to solving some of the world’s most difficult problems in systems and software engineering. His work focuses on the interplay of risk management, cyber security, and quality assessment and assurance. For the past 24 years, Robert has applied his expertise to international software assurance initiatives such as CVE, CAPEC, CWE, and Structured Assurance Cases, which engage with large active vendor and research communities, and is now helping standardize the Software Bill of Materials (SBOM), the Supply Chain Integrity, Transparency and Trust with the IETF, and the overall supply chain security with MITRE’s System of Trust™.
|
 Yutaka Miyake
WP2/17 Chairman | Senior Manager, Technology Strategy Department, KDDI Corporation
Dr. Yutaka Miyake has been engaged in the research on high-speed communication protocol and secure communication system at the KDD R&D Laboratories and KDDI Research, Inc. He is currently a director of Information System and Security Department in KDDI Research Inc. He began participating in ITU-T SG 17 in 2005 and has been actively contributing to its activities as information security expert. He is a vice chair of ITU-T SG17, and a chair of WP2/SG17.
|
 Yuto Nakano
Expert, Information Seucurity Laboratory, KDDI Research, Inc
Dr. Yuto Nakano is an Expert in Information Seucurity Laboratory of KDDI Research, Inc. His research interest includes information security, mobile security and cryptography. He has also been engaged in research of supply chain security.
|
 Anthony Michael Rutkowski
CEO, Netmagic Associates LLC
Tony Rutkowski is an engineer-lawyer with an extremely diverse, sixty-year professional career spanning the telecommunication, mobile, internet, satellite, and broadcasting fields in the U.S. and Europe where he has shaped major technical and legal developments in senior governmental, company, and academic leadership positions at international, national, and local levels. Over the past two decades, his roles have been focused on significant international and U.S. Federal network security initiatives relating to cybersecurity, infrastructure protection, extraterritorial security law, and lawful interception for new networks and services. Currently, as the CEO of Netmagic Associates LLC, he provides technical and regulatory analytical and consulting services to a few entities that include the Center for Internet Security. He engages actively in a broad array of governmental and industry security forums – largely internationally. Over the past several years, he has assumed rapporteur responsibilities in the ETSI Cyber Security Technical Committee for a number of major specifications and reports and served as an ENISA consultant. Over the past 20 years, he assumed rapporteur responsibilities in the ETSI Lawful Interception Technical Committee and chair of the OASIS LegalXML LI Technical Committee. He continues to serve as the liaison among multiple international network security bodies. He also writes extensively in multiple professional publications and speaks on network security related developments and history.
 Jini SungJin Park
Director/Embedded Solution Team/Solution Business Division, COONTECJini SungJin Park is a Director of Solutions Business Unit in the Embedded Solutions Team at COONTEC. He has more than 20 years of experience in the embedded field and has performed business development and sales in the field of cyber security, including source code static analysis. He is currently the Director of the Embedded Business Division at COONTEC and is responsible for business planning and development related to embedded systems, as well as identifying in-depth business opportunities from overseas market development.
 Manoj Sharma
Global Head, Security Strategy Symantec Enterprise Division, Broadcom
Manoj Sharma, a technology industry veteran with over 24 years of experience, has dedicated 22 years to Symantec Corporation. His multifaceted journey encompasses roles spanning IT operations, strategic customer advisor, compliance, and robust cybersecurity strategy development. Leading a team of security strategists, he partners with the largest enterprises to craft innovative, compliance-aligned strategies. This approach ensures the seamless integration of Security-in-the-Cloud and Security-from-the-Cloud solutions, bolstering cybersecurity measures while taking complexity from cybersecurity architectures. With a hands-on approach to evolving challenges, Manoj steers organizations toward a more secure digital landscape. Manoj is wholeheartedly dedicated to spearheading progress in cybersecurity and standards practices on global level.
 Duncan Sparrell CISSP, CSSLP, CCSK
Chief Cyber Curmudgeon, sFractal Consulting
Duncan's mission is to make the world a safer place. He has 45+ years of expertise in conceiving, developing, and delivering state-of-the-art software platforms. He has been involved in cybersecurity since 1990 and retired as AT&T's Chief Security Architect. Currently, Duncan enjoys a semi-retired status while serving on various boards, including OASIS Open. He volunteers most of his time to cybersecurity-standards organizations including chairing the OASIS OpenC2 TC and the Open Cybersecurity Alliance Cybersecurity Automation Sub-Project. He has been advocating software bill of materials (SBOM) literally for decades. Duncan has been contributing to the ITU since 1980 including roles as editor, rapporteur, and Working Party Chair. He has served on the ITU Kaleidoscope Technical Program Committee for many years. He was awarded the US Intelligence Community Seal Medallion (1994), the AT&T Science and Technology Medal (2010), and the OASIS Distinguished Contributor Award (2021). He holds 18 patents, authored numerous papers, is an IEEE Senior Member, and is a Guest Editor of this month's IEEE Communications Magazine on telecom policy. Duncan's tagline is "Think evilly, act ethically".
|
 Arnaud Taddei
CEO, Vice-chairman, ITU-T Study Group 17, Security | Broadcom
Mr. Arnaud Taddei is a Global Security Strategist at Symantec by Broadcom. He is an executive advisor on Security Strategy and Transformation for the top 150 Symantec customers. As part of his mission, M. Taddei participates in specific Standardization Defining Organizations and in particular, was elected ITU-T SG17 Vice Chairman representing the UK and works at the IETF. He started his career in 1993 at the famous CERN IT Division in Geneva which created the World Wide Web and where he led the team responsible for Communication, Authentication and Authorization. In 2000, he joined Sun Microsystems where he became one of the 100 elected global Principle Engineers. In 2007 he joined Symantec and hold Chief Architect roles up to Director of Research as direct report to Dr. Hugh Thompson, Symantec’s CTO and actual RSA Conference Chairman. Graduated as Telecom Engineer from the Ecole Nationale Supérieure de Télécommunication de Bretagne, France, M. Taddei owns a DEA with INRIA, which led him to the Institute of Control Sciences, Russian Academy of Sciences, Moscow in 1992. |
 Xiaoya YangITU-T Study Group 17 Counsellor
Xiaoya Yang serves as the Counselor of ITU-T Study Group 17 ‘security’ since 2017. With 20+ years of professional experience in telecommunication regulation, legislation and international standardization and coordination, she was the Head of the WTSA Programmes Division in the Telecommunication Standardization Bureau of the International Telecommunication Union (ITU-TSB) from 2010 to 2016, Co-counsellor of ITU-T Study Group 2 on 'Operational aspects of service provision and telecommunications management' and Study Group 3 on 'Tariff and accounting principles including related telecommunication economic and policy issues' from 2009 to 2010; Counselor of ITU-T Study Group 17 on 'Telecommunication security' from 2007 to 2008; and Workshop Project Coordinator from 2004 to 2006. Before joining ITU, she worked in the Ministry of Information Industry of China from 1998 to 2004. There she was the Division Director responsible for regulation of Internet and information security. From 1997 to 1998 she worked in China Telecom as a network engineer and service manager in their Internet service department. She has a M.S. in Computer Science from Tsinghua University, China and a MBA from Polytechnic University, Hong Kong.
Heung You l Youm
Chairman,ITU-T Study Group 17, Security | Professor, Department of Information Security Engineering, Soonchunhyang University, South Korea
He is Chairman of ITU-T SG17 (Security). He is working as a professor for the Department of Information Security Engineering of the Soonchunhyang University, Korea from September 1990. He is currently the Director of SCH Cybersecurity Research Centre from Dec. 2013. He was a Commissioner for Personal Information Protection Commission from August 5 2020 to August 4 2023. He began participating in ITU-T SG 17 in 2003 and has actively contributed to the work of SG17 as a core member of security experts. He was an associate Rapporteur of SG 17 Question 10/17 from 2003 to 2004. For the Study Period (2005 – 2008), he served as a Rapporteur of Question 9/17. He was a Vice Chairman of ITU-T Study Group 17 from 2009 to 2016. He was a Chairman of Working Party 2 (Application Security) of SG17 for the Study Period (2009–2012) and was a Chairman of Working Party 3 (Identity management and cloud computing security) of SG17 for the Study Period (2013–2016). He has been a Project Editor for many approved ITU-T Recommendations or agreed Supplements in DLT security, authentication/application protocols, de-identification techniques, USN/IoT security, 5G security, and cybersecurity. He is a Chairman for the ISMS/PIMS certification committee in Korea since 2007, and a Board director for Korea Information/Security agency from May 2020. He was a member of advisory committee to the Korea national security office for the Office of the President, Republic of Korea from October 2018 to May 2022, a president of KIISC (Korea Institute on information security and cryptology) in 2011 and is an emeritus president of KIISC. He had worked for ETRI as a senior research engineer from 1982 to 1990. He had been involved in developing high speed transmission system. He had been involved in many (advisory or self-performance evaluation) committees for the Korea Communications Commission (KCC) from 2008 to 2016, the Ministry of Science, ICT and Future Planning (MSIP) from 2013 to 2017, the Ministry of Industry and Energy (MoTIE) from 2015 to 2017, Ministry of Science and ICT from 2017. He had been involved in self-performance evaluation) committees for the Ministry of Science and ICT since 2017 to 2019. He had been the chairman for the committee on information security in the PyeongChang Organizing Committee for the 2018 Olympic & Paralympic Winter Games from January 2015 to May 2018. He received a bachelor's degree in 1981, a Master degree in 1983, and a Ph.D. degree in 1990, all in Electronics Engineering from Hanyang University, Korea.
Sounil Yu 
Author, Cyber Defense Matrix
Sounil Yu is the CISO and Head of Research at JupiterOne. He created the Cyber Defense Matrix and the DIE Triad, which are reshaping approaches to cybersecurity. He's a Board Member of the FAIR Institute; is a visiting fellow at GMU Scalia Law School's National Security Institute; guest lectures at Carnegie Mellon; and advises many startups. Sounil previously served as the CISO-in-Residence at YL Ventures and Chief Security Scientist at Bank of America. Before BofA, he helped improve information security at several Fortune 100 companies and Federal Government agencies. Sounil has over 20 granted patents and was recognized as one of the most influential people in security in 2020 by Security Magazine, Influencer of the Year in 2021 by SC Awards, a 2021 Top 10 CISO by Black Unicorn Awards, and for Lifetime Achievement in 2022 by the SANS Institute. He has an MS in Electrical Engineering from Virginia Tech and a BS in Electrical Engineering and a BA in Economics from Duke University.
Chen Zhang  R&D Director of Security, China Mobile Group Design Institute, China
Chen Zhang, a professorate senior engineer, has more than 15 years experience in the area of security area. In recent years, he has been focusing on the network security operation, including zero trust, software supply-chain security, and security aspects of AI.
|
