You have not logged in or are not authorized!

Remember my choice for next time?

Home Press Center Connecting the Dots Cyber Security
An Exclusive Interview of Ulf Feger With ISF

News Start

An Exclusive Interview of Ulf Feger With ISF

Source: ISF
Date: August 29, 2014
Author: Manuela Matz (ISF Grey Chapter)

Ulf Feger

Cyber/Chief Security Officer (CSO) of Huawei Technologies Deutschland GmbH

CISSP, CISM, Cobit Practitioner (ISACA), ISO27001 PA

Born in 1967, Diploma in Communications Engineering from University of Applied Sciences, Aachen.

Ulf Feger started his career as IT-consultant at CSC – Computer Science Corporation. After his change to Sun Microsystems he focused on security technologies and processes for various security domains. After several years he joined IBM Security Systems Division and worked in multiple roles, e.g. as security architect in a pan-European team to position IT-GRC and security topics, as a team leader for cloud and cloud security to drive security awareness for this complex service paradigm. After a short stopover at VMware, he was offered the Cyber/Chief Security Officer (CSO) position at Huawei with its multifaceted and interesting duties and tasks. Ulf Feger is a member of the international team around the Global Cyber Security Officer John Suffolk, and in charge of implementing Huawei’s cyber security strategy in Germany, but also covers a few other countries as well.

ISF:Huawei has recently become a member of the ISF. You have known the ISF for a long time. What benefits do you think membership will bring for Huawei?

UIf:“Based on my positive experience with the ISF and the wide variety of topics that it covers – including those that affect Huawei and that we are addressing - I feel it will be a real advantage for Huawei to join the ISF. We are a private company, operating in 170 countries worldwide, with a great deal of experience and active in a multitude of security issue-related fields, which means that we are sure to be able to play an active role and to “give something back” to the ISF.

And it is precisely this aspect of sharing information, knowledge and experience that I consider to be a major benefit of the ISF. Experts talk with experts and exchange views.”

ISF:What topics of the ISF are most interesting for you and why?

UIf: “The omnipotent theme of cyber security needs to be subdivided into sub-topics – by way of making these issues manageable and controllable, based on regulations, guidelines and usable tools. As CSO the day could be one hour longer, the week could be one day longer..ok, two more days would be good least..”

ISF:Are there other topics that you feel could become important in the near future?

UIf: “Become important or rather become even more important – a perennial problem is Supply Chain Security. We live in a global producer-consumer world. This means that a product or solution is developed for the world market either separately or centrally, individual components are produced somewhere in the world, sometimes prefabricated or preassembled, then processed somewhere else in the world or added to another end product.

The end product is then made available to the consumer via the corresponding delivery channel. This might be a mobile end device or a complex infrastructure solution. How do we ensure security here – end-to-end, from the initial definition of the requirements through to final activation, and this with any number of individual components, via any number of delivery methods, including the subsequent support and maintenance cycle?

Another topic is Mobile Device Security with its many layers. Here, too, starting with the individual components, then the operating system, the kernel security, possible virtualisation solutions (compartments) for the separation of private and commercial data and applications, the application layer, data protection and data security aspects, encrypted communication etc. – the list is endless. BYOD or BYOS (Bring Your Own Security)”.

ISF:Which ISF products do you particularly value?

UIf: “The ISF has a number of powerful, experience-based tools in its portfolio which I would like to study more closely so that I can make recommendations within our corporation. The same applies to my international colleagues. Added to this are the regular reports and conclusions. This offers huge added value. Then there is the opportunity to compare notes in the ISF Chapters.”

ISF:Do you intend to take part in one of the next ISF events?

UIf: “Yes, perhaps even as sponsor and speaker – and definitely as a participant – if it fits in the calendar. It’s already planned – that’s for sure.”

About ISF

Founded in 1989, the Information Security Forum (ISF) is an independent, not-for-profit organisation with a Membership comprising many of the world's leading organizations featured on the Fortune 500 and Forbes 2000 lists. ISF is dedicated to investigating, clarifying and resolving key issues in information security and risk management, by developing best practice methodologies, processes and solutions that meet the business needs of all Members.

News End

Media Contact