Alex Shim is a senior vice president and Cyber Risk practice leader for Japan and Korea at Kroll, based in Tokyo. Alex leverages more than 19 years of experience in digital forensics and incident response (DFIR), security information and event management (SIEM) integrations, vulnerability assessments, network security engineering and cyber security consulting. He is an expert in enterprise-wide advanced persistence threats (APT) and developing bespoke threat intelligence systems.

Before joining Kroll, Alex was director, security consulting for Japan and Asia Pacific at Blackberry Cylance, where he played a key role in building the practice, leading internal and channel sales partners. Prior to this, he worked at Mandiant, a FireEye company, where he helped establish the company’s security consulting practice in Japan and Korea reaching consistent revenue growth in the double and triple digits. He has previously worked at Ahnlab. 

During his career, Alex developed and managed a variety of security systems, services and tools. In particular, Alex has extensive expertise leveraging modern Endpoint Detection and Response (EDR) tools to fight complex, persistent threats impacting organizations in Japan and Asia Pacific and provide greater visibility and assurance to clients in times of crisis. With frontline insight from leading enterprise-scale incident response teams, Alex can effectively guide organizations in the deployment of proactive solutions such as continuous monitoring, threat intelligence and training to significantly reduce cyber risk exposure.

At Cylance, he led enterprise-scale APT incident response (IR) engagements for up to 50,000 endpoints in Japan and Asia Pacific. He also developed an automated IR/threat intelligence system that helped organizations identify, respond and contain threats of all complexities using various open source forensic tools such as GRR Rapid Response, Plaso and Timesketch in a Kubernetes platform. In his role at Ahnlab, Alex built and managed a 24x7x365 security operations center (SOC), developed the company’s network and host security monitoring program and an inhouse threat intelligence system. Alex brings this unique mix of technical and business experience to assist clients in testing and boosting their cyber security resilience.

Shim /en/our-team/alex-shim /-/media/kroll/images/headshots/vice-presidents/alex-shim.jpg people {E39587AD-8F0B-4FE2-865F-969BC5501096} {3A077BFC-C74A-40AF-A14C-13BCF6E3873E} {E538E14D-C192-4A8E-8861-504D0EEBF99A} {7A48DD95-1A63-4784-842F-A2BE81EAFE13} {017AF13C-E8EA-412B-9488-C67D28107B27} {058CEC4B-AB74-4982-A8CC-B399FCB93BB2} {1CF418EA-8C84-4BCD-BB0A-320F07DB9AB5} {6B18A490-2227-426A-A1D0-3836822E90EB}

Other Areas We Can Help

Cyber Risk

Cyber Risk

Global, end-to-end cyber risk solutions.

Cyber Risk
Incident Response and Litigation Support

24x7 Incident Response

Compliant notifications, reputation-saving remediation, and litigation support.

24x7 Incident Response
Kroll Nominated in Two Categories at the Advisen Cyber Risk Awards

Computer Forensics

Expert computer forensic assistance at any stage of a digital investigation or litigation.

Computer Forensics
System Assessments and Testing

Cyber Vulnerability Assessment

Services using cutting-edge tools to help clients map a prioritized path to increased cyber security.

Cyber Vulnerability Assessment

Insights

Compliance

Levelling the Playing Field: Innovation in the Service of Consumers and the Market

Compliance
Compliance

FCA and Bank of England Statement on LIBOR Transition

Compliance
Compliance

Firms Should Ensure That Permissions Are Reviewed Regularly

Compliance
Compliance

FCA Launches Consultation on Long-term Asset Fund (LTAF), Designed to Invest in Efficient Long-term Illiquid Assets, and Works on Liquidity Mismatch in Open-ended Property Funds

Compliance

News