top of page

Security Planning &
Program Track


A Gentle Introduction to CSA Audit- based Continuous Certification

1545hrs - 1615hrs

Dr. Lee Hing Yan

Executive Vice President, APAC

Hing Yan LEE has over 30 years of ICT working experience in both the public and private sectors. He was global director of the STAR program at the Cloud Security Alliance (CSA) for 6 months in 2017.  Prior to that, he was Director of National Cloud Computing Office at Infocomm Development Authority (IDA) for 9+ years, where he was responsible for the national program for, inter alia, developing the cloud ecosystem, promoting cloud adoption by government agencies and private enterprises, and building a trusted environment (which included developing the Multi-Tier Cloud Security standards and Cloud Outage Incident Response guidelines).

He was previously Deputy Director of the National Grid Office at the Agency for Science, Technology & Research (A*STAR), Principal Scientist at the Institute for Infocomm Research (I2R), Director of Knowledge Lab and Deputy Director of Japan-Singapore Artificial Intelligence Centre at the Kent Ridge Digital Labs as well as Deputy Director at Information Technology Institute (the applied R&D arm of the National Computer Board). He oversaw and managed industry collaborations and applied R&D in machine language translation, spoken language dialogue, expert systems, knowledge discovery, data mining, data visualization, and other knowledge-driven efforts. He worked on projects with organizations such as Department of Statistics, National Archives of Singapore, Housing & Development Board, Defense Science & Technology Agency, Alta Vista, Amazon Web Services, Fujitsu, IBM, Hewlett-Packard, Microsoft, SingTel, and Platform Computing.

Hing Yan co-founded two high-tech companies - Language Tapestry and eXage.  He was an adjunct associate professor at the National University of Singapore, served on the School of Digital Media & Infocomm Technology Advisory Committee at the Singapore Polytechnic, Engineering Accreditation Board team member (2014), co-chair of the National Infocomm Competency Framework Technical Committee on Cloud Computing as well as member of the Cloud Computing Standards Coordinating Task Force of the Singapore Infocomm Standards Committee. He was also a member of the NatSteel Corporate R&D Advisory Panel, an advisor/member to the Singapore National Archives Board, and the Australia-Singapore Joint ICT Council.  Hing Yan is a Fellow and Vice President of the Cloud Chapter in the Singapore Computer Society.

He graduated from the University of Illinois at Urbana-Champaign with PhD and MS degrees in Computer Science.  He previously studied at Imperial College London in UK where he obtained a BSc (Eng.) with 1st Class Honours in Computing and MSc in Management Science.


Certifications or attestations championed through Singapore's MTCS scheme, CSA STAR program, have been a critical driver in the adoption of cloud service in SIngapore and many countries. For cloud customers that are insensitive or highly-regulated industries (e.g., banking or healthcare), these certifications or attestations are insufficient because they do not provide a continuous level of assurance as they rely on annual or bi-annual audits only.  To address such concerns, the Cloud Security Alliance (CSA) is developing a continuous auditing framework designed to assure customers on a monthly, daily, or even hourly basis. This framework can be applied either to self-assessments or third-party certifications.

GTACS 2021 Draft.jpg
  • Black Facebook Icon
  • Black Twitter Icon
  • Black Instagram Icon
bottom of page