iTGRC Security & Compliance Advisory Group
Group of Companies: iTGRC Asia (S) Private Ltd Reg.No. 201615545D, iTGRC Asia (M) SDN BHD, Johor Reg.No. 1239968-K

Frank CHIN 陈盖

Chief Security and Compliance Advisor/Managing Partner
CISM 2016-2017, Practitioner of COBIT and IT Governance
A  Member of Regional ISACA and Singapore chapter
 
Email : frankchin@itgrc.asia
WhatsApp +65 93384818 Skype: Frankchin888
 
Frank possesses more than 26 years Information Technology industry practice experiences. He tenured as the Regional Chief information Security Officer (CISO), Senior Head of Risk Management for a group of companies under a healthcare and pharmaceutical conglomerate in Asia Pacific
 
Among other responsibilities, he strategically championed Corporate Governance, Risk Management and Compliance topics. These include setting the tone of Risk Governance from the top, defining Risk and Control Objectives, raising Risk Awareness, determining Risk Appetite and improving overall Risk Stature. In addition, Frank oversees periodic Compliance and Security Reviews, Audits and Investigations to ensure adherence to corporate regulatory needs and requirements. 
 
Frank is also an active Mentor for a community of "MedTech and BioTech" Start-Ups in Singapore. Besides, he is widely connected to the Asia Pacific regional markets, and he continuous to advocate the central theme of Governance, Risk Management and Compliance in various non-profit organizations, forums and councils.  
 
* A Contributing member to CSCC Council – Cloud Standards Customer Council
 
* Facilitator to ISACA, CISO Forum Asia Pacific 2017, first regional CISO forum Webinar
 
* A Community Mentor, Information Risk and Security, Compliance to A*START Central by ETPL under A*STAR

_________________________________________________________________________________
 
 
 
 
 
 
 
iTGRC Technology is an Information Risk, Security and Regulatory Compliance Management advisory and consulting firm. Our main service is to assist customers from public and private sectors, strategize, design, plan and implement a conventional and holistic Information Risk & Security Management Systems using the known and proven approach and methodology to strengthen the control framework and information (Cyber)Security. 
 
Our Differences... pragmatic practitioner services done via CISO-as-a-service, enable enterprises and organizations to achieve painlessly their Cyber Security (Cyber Essentials) and ISO27001 certifications, which are of great demand by Chief Information Security Officers (CISO) from corporate and organizations of all business sectors. With the increasing demand, we sustain them to the Standards & Certifications, regardless of the changing landscape or requirements. 
 
Our Competencies...the practitioner opinion and work done to quickly bring our clients on board to Information Risk and Security Management landscape, done in favor of their business context and budget, by converting their historically high CAPital EXpense (CAPEX) to a low and sustainable OPeration EXpense (OPEX) to gain competitive advantage for their businesses. Ultimately, to protect their key information assets, infrastructure and architecture that support the core businesses.  
 
Our Commitment... Today, we heartily deliver to our clients with commitment the necessary Risk Assessment, Internal Control Systems & Compliance Plan Review. In return, our clients put their trust on us. Our service & effort further assist them constantly identify gaps in management process and control deficiencies, re-mediate them with industry practices, give our clients the confidence and privilege to clear their Information Technology or Cyber Security Audits, as well as Regulatory Audits. Ultimately, meeting the regulatory compliance requirements and exceeds the expectation.  
 
Our Credibility... Our expertise comes with industry views that directly apply to our clients’ environment using practitioner approach most specific and relevant to their business context and organization outlook. We enable them to strengthen the internal control system specific to their appetite and risk profile in a preventive and responsive manner. We consciously ensure a necessary balance of transparency & independence that shall free business owners/clients management to focus on their core business, leave the rest to iTGRC to secure them their most needed Risk Assurance and Cyber Security Readiness.