T3H Blog

3-3-3 Midorigaoka, Ninomiya-machi, Naka-gun, Kanagawa-ken, Japan 259-0132
▫ (H) +81 (0)463 71 7690 ▫ (M) +81 (0)90 6482 8123
jean-guy.rioux (at) triple3house.com or rioux (at) ieee.org
________________________________________

Executive Profile

Cybersecurity Technologist

36 years experience in the Information and Communications Technology (ICT) field, with nearly half at the senior and executive levels. After 20 years service with the Canadian Forces Supplementary Radio Systems (Signal Intelligence and Electronic Warfare), I specialized in ICT-related project technology management and security issues. I am skilled with ICT solution development, sourcing, procurement, and acquisition at an international level.

I am certified in the Governance of Enterprise IT (CGEIT – ISO 38500) and as a Project Management Professional (PMP); and experienced as a Lead Auditor for Security Management System (SMS), such as ISO 27001 (Information SMS) and 28000 (SMS Supply Chain).  I am a certified and experienced Qualified Security Assessor (QSA) for PCI DSS (Payment Card Industry Data Security Standard). Skillful with sustainable implementation of international standards related to SMS, Business Continuity, Disaster Recovery, and Governance – with emphasis on cybersecurity.

Currently I am TÜV Rheinland Payment Card Industry Practice Asia Pacific/Central Europe Middle-East Africa (AP/CEMEA) Manager. I specialize in ‘Insecure ICT’ related to multiple industries.

Areas of Expertise

Information Assurance/Security ~ Technology Infrastructure ~ Service-Oriented Architecture ~ Governance ~Business Continuity ~ Disaster Recovery ~ Global Standards ~ Service Outsourcing Support ~ Operations Management ~ Strategic Planning ~ ROI Strategy ~ Partnerships & Alliances ~ Sourcing and Procurement ~ Sales Support ~ Team Building & Leadership

Professional Summary

TÜV Rheinland Japan, Ltd., Yokohama, Japan,Senior Project & CCEL Manager (2005-Present) – Establish & Manage ICT Assurance, Governance, and Security Laboratory and other Services

Recruited

to establish, operate, and manage a Common Criteria (CC) Evaluation Laboratory for one of the world’s largest global technology assessment company TÜV Rheinland. Provide expertise in attaining Common Criteria certification, including ISO/IEC 17025 certification. Oversee ICT Security Techniques and Evaluation services, serve as Information Security Management System (ISMS) Auditor and PCI DSS Qualified Security Assessor (QSA), lead international Information Assurance projects, research and model ICT security life-cycle evaluation and testing principles, establish evaluators’ skills criteria and training programs, and contribute to international, regional, and local standards and regulations. Provide Service-Oriented Architecture (SOA) knowledge to align ICT services with greater efficiency to clients’ business needs; directly support and participate in sales and marketing activities; support the development and implementation of business plans and strategy.

• Developed operational environment meeting several ISO/IEC standards’ needs to meet Japan’s NITE and IPA requirements for licensing;

• Designed, sourced, and manage best of breed cybersecurity laboratory computing and test platform;
• Develop business, marketing, and operational plan for Information Assurance practice
• Assist client introducing new security technologies into the international marketplace;
• Participate in business development and advance endeavours in several business fields across AP & ME;
• Consul t on the synergy among ICT security related ISO/IEC/IEEE standards, automotive information systems security issues, and data privacy issues in the healthcare industry
• Provide IT Security related auditing and assessing services in the Asia/Middle East regions under ISO 27001 (Information Security Management System – ISMS) and Payment Card Industry Data Security Standards (PCI DSS)
• Supply Chain Security Evaluator under U.S. CPB C-TPAT programme and ISO 28000
• Rewrite, prepare, and teach training material for ISMS, PCI DSS, and ICT Security
• Support marketplace intelligence, new business opportunity development, and sales

NetRational Y.K., Ninomiya-machi, Japan & Electronic Warfare Associates, Tokyo, Japan, Principal / Managing Director (1998-2005), Solution provider to the world’s second largest IT marketplace

Founded ICT consultancy that specialized in assessing technologies, sourcing solutions, outsourcing services, assist merging technologies, and developing strategic business and technology alliances and partnerships; provided subject matter expertise and services to European, North American, Japanese and Gulf region firms related to global technology intelligence, sourcing or procurement, international business development, and outsourcing programmes. Established and supervised international business expansion and technology acquisition programmes for Asian, Canadian, and European firms.

• Introduce d EU and North American firms into the Japanese marketplace -presented initial business, financial, marketing, and operational plans; analyzed and developed market opportunities; and established relationships with local, regional, and international trade media; implemented regional sales forces.
• Developed and implemented market-entry plans enabling European firm to enter the Asian marketplace; adapted European and American successes to local marketplaces, maximized existing R&D and technical resources, and established technical and business relationships (through sourcing, outsourcing, and procurement) with Asian software development and hardware manufacturing firms.
• Instrumental in creating and delivering international standard-level RAID (digital storage) products and solutions for Japanese firm; established and managed marketing and sales branches in China, Germany, Switzerland, and the US.
• Helped develop region’s first computer-telephony based (now called VoIP) call centre generating substantial operational savings, improving data quality and security, and simplifying training and operations;
• Consu lted on development and implementation of a cellular phone systems in several Asian countries;
• Reduced clients’ operation and insurance costs by selecting and implementing biometric systems that improved physical and cyber security and reduced internal incidents and breaches.
• Major clients: IBM Japan, EWA, Fujitsu, Hitachi, Matsushita, Mitsubishi, Ayala, Global, Infosys, HSBC, SSE

Iwatsu Electric Company Limited, Tokyo, Japan (1990-1997), Assistant General Manager-International Business (1994-1997)

• Managed merging of telecom and computer technologies, initiated cross-industry product alliances and outsourcing, and secured international technology agreements, along with several international business partnerships; established R&D centre in San Jose, California, maximizing alliances with American and Canadian companies, acquisition of new technologies, and new software development methodology with American universities.

Manager-New Business Development (1993-1994)

• Organized 12-member cross functionality team into the New Business Development department; lowered product development’s operating costs through better sourcing; improved new product quality through enhanced programming method; and, significantly sped new cross-technology ideas to marketplace

Team Leader-R&D Wireless Communications Systems (1990-1993)

• Developed “Te chnogenesis Principle” for computer telephony, resulting in two derivative patents for Iwatsu; developed print-band internal antenna for cellular phone; and, worked on the first ‘follow-me’ digital smart phone system

Electronic Warfare Associates – Canada (1989-1990), Intelligence Analyst

Worked on various Electronic Warfare (EW) and Signal Intellignece (SigInt) projects.

Canadian Forces, Canada (1970~1989)

Served as Signal Intelligence (SigInt) Analyst and Electronic Warfare (EW) Technologist; developed, deployed, operated, and commanded a broad range of sophisticated SigInt and EW-related applications and systems on land-, air-, and sea-born platforms in North America and Western Europe (NATO). Had several command responsibilities.

Education

PhD, Management, Wilfrid Laurier University, Canada, 2003
System Technology, Canadian Forces School of Communications and Electronic Engineering (CFSCEE), 1980
Signal Intelligen

ce, CFSCEE, 1975

Current Professional Certifications

Information Security Management System (ISMS – ISO 27001) Lead Auditor, TÜV Rheinland Japan (TÜV)
Certified in the Governance of Enterprise IT (CGEIT – ISO 38500), ISACA
Customs-Trade Partnership Against Terrorism, 3rd Party Supply Chain Security Evaluator, U.S. CBP
Security Management Systems for the Supply Chain (ISO 28000), Lead Auditor, TÜV
Payment Card Industry Data Security Standard Qualified Security Assessor (QSA), PCI SSC
Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE), SNC-Lavalin

Current

Professional Interests

Open Sources Information (OSIF) analysis in support to Open Source Intelligence (OSINT) and Information Peacekeeping

Management of end-to-end security technologies, especially biometrics

Professional Associations

Senior Member, Institute of Electrical & Electronics Engineers (IEEE)
Executive Member, Academy of Management (AOM)
Associate Member, Foreign Correspondents Club of Japan (FCC-J)
Member, Inf

ormation Systems Audit and Control Association (ISACA)
Member, Royal Canadian Military Institution (RCMI)

Personal Achievement

Founder, “Now, on the Spot” Charitable Organization (NOT$)

Other Details

• Canadian Citizen, Japan Permanent Resident Visa

• Fluent in English and French, conversant in Japanese – Willing to learn other languages

• Extensive people and organizations network throughout the Asia Pacific region

• Willing to relocate anywhere in Asia & Middle East and/or travel extensively