Tue, Aug 4, 2020

Kroll Expands Cyber Risk Practice in Japan with Hire of Alex Shim

Merging extensive technical and business experience, Alex strengthens Kroll’s incident response and managed detection and response solutions in the region

Tokyo – Kroll, the global leader in risk mitigation, investigations, compliance, cyber resilience, security and incident response solutions, today announced that Alex Shim has joined the firm as Cyber Risk practice leader for Japan and Korea, expanding the firm’s  capabilities in Asia Pacific in response to the rising demand for digital forensics, incident response (IR) and managed security services. Shim’s experience with endpoint detection and response technology will fuel the growth of Kroll’s managed detection and response (MDR) solutions in Japan and Korea. He will be based in Tokyo.

Shim leverages more than 19 years of experience in digital forensics and incident response (DFIR), security information and event management (SIEM) integrations, vulnerability assessment, network security engineering and cyber security consulting. He is an expert in cybercrime investigations ranging from insider threats and ransomware incidents through enterprise-wide advanced persistence threats (APT) leveraging sophisticated threat intelligence services.

Paul Jackson, Managing Director and Asia Pacific leader for Kroll’s Cyber Risk practice, commented: “Alex joining the Cyber Risk practice marks a milestone in Kroll’s growth as we boost our IR, MDR, and proactive security solutions for clients in the region. The growing cyber security threat landscape in Asia Pacific and the tightening of legal and regulatory obligations to protect data means that having someone of his caliber will greatly enhance our ability to meet this rising demand. I’m delighted to welcome Alex to our team.”

Shim joins Kroll from Cylance, Inc., where he was Director, Security Consulting for Japan and Asia Pacific. At Cylance, he led enterprise-scale APT incident response (IR) engagements for up to 50,000 endpoints in Japan and Asia Pacific. He also developed an automated IR/threat intelligence system that helped organizations identify, respond and contain threats of all complexities using advanced forensic tools. Prior to this, he worked at Mandiant, a FireEye company, where he helped establish the company’s security consulting practice in Japan, leading numerous complex cyber security incidents and managing internal and channel sales partners. He has previously worked at Ahnlab, RPA Networks and Today&Tomorrow.

About Kroll
Kroll is the world’s premier provider of services and digital products related to governance, risk and transparency. We work with clients across diverse sectors in the areas of valuation, expert services, investigations, cyber security, corporate finance, restructuring, claims administration, data analytics and regulatory compliance. Our firm has nearly 5,000 professionals in 30 countries and territories around the world. For more information, visit www.kroll.com.

M&A advisory, capital raising and secondary market advisory services in the United States are provided by Duff & Phelps Securities, LLC. Member FINRA/SIPC. Pagemill Partners is a Division of Duff & Phelps Securities, LLC. M&A advisory, capital raising and secondary market advisory services in the United Kingdom are provided by Duff & Phelps Securities Ltd. (DPSL), which is authorized and regulated by the Financial Conduct Authority. Valuation Advisory Services in India are provided by Duff & Phelps India Private Limited under a category 1 merchant banker license issued by the Securities and Exchange Board of India.

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

24x7 Incident Response

Kroll is the largest global IR provider with experienced responders who can handle the entire security incident lifecycle.


Proactively monitor, detect and respond to threats virtually anywhere – on endpoints and throughout the surface, deep and dark web.

24x7 Endpoint Detection and Response

Intelligent Endpoint detection and response: Maximum confidence in data security

Computer Forensics

Kroll's computer forensics experts ensure that no digital evidence is overlooked and assist at any stage of an investigation or litigation, regardless of the number or location of data sources.

Virtual CISO (vCISO) Advisory Services

Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.

Cyber Vulnerability Assessment

Proactively identify vulnerable systems and devices that may be exploited by an attacker or malicious software, often resulting in data loss or breach.