Highlight: In the ever-changing world of the cloud computing, you will face unique security challenges every day – from new threats, sensitive data to unskilled internal team members. Take command of the Certified Cloud Security Professional (CCSP®), the premier cloud security certification, in order to address these challenges. The CCSP is a global credential representing the highest standard of cloud security expertise. It was co-established by (ISC)² and Cloud Security Alliance – the leading stewards for information security and cloud computing security.
Highlight: Prove you have what it takes to protect your organisation from malicious hackers and threats with the Certified Information Systems Security Professional (CISSP®) certification. Demonstrate your knowledge, advance your career and become a member of a 130,000-strong community of cybersecurity leaders setting the bar for professionals across the information security workforce.
Date: 12 May 2020 (Tue) Time: 8:30pm – 9:30pm Venue: Webinar – Participant shall prepare his/her own electronic device (e.g. Desktop, Notebook or Mobile, etc.) with Internet access. Speaker: Mr. Mike Lo (CCSK, CISSP, CISA, CISM, PMP, Certified SAP Consultant, MCSE) Language: Cantonese Fee: Free (Pre-registration is required.) Register: https://bit.ly/pisa200512
Highlight: As an IT professional, how do you deal with the pandemic situation while you are Work-From-Home (WFH)? Have you tried using Video Conference?
The coronavirus pandemic situation hasn’t yet under controlled in recent weeks, video conferencing tools are more frequently used to communicate with your peers and clients, as a good security practice, have you ever evaluated the security level of video conferencing tools that are being used? Are there any default settings that are vulnerable and easily exploited by the attacker? Any possibility that your sensitive meeting conversation leaks owing to the misconfiguration or poor setup.
PISA has the honor to have Mike Lo share with our members, via Webinar, his invaluable advice for using Video Conferencing Tools as an IT professional during the pandemic situation.
During the webinar, Mike will talk about the security tips for using Video Conferencing (VC) tools, there is a number of suggested rules and best practices stated in the material, as well as screen capture of different VC tools’ setting, these settings are also mentioned in the latest Securities and Futures Commission (SFC) Work-From-Home Guideline released on Apr 29th, 2020.
The Webinar is conducted in Cantonese with English Presentation Material. Please install Zoom software/app for your PC, Mobile or Tablet. For the Meeting ID and Passcode, it will be sent by a separated email after the registration.
BIO Data of Mike Mike is currently working for a Swiss-based CREST Certified Cyber Security Assessment company “wizlynx group” with the role of “Director, Cyber Security Services” looking after Hong Kong and Taiwan Markets, he is also the Program Director of PISA, Founder and Chairman of HK CTF Association, Convener of Car Hacking Village HK, frequent SSO Trainer for ISC2 HK Chapter and Founder of HITCONxCHANGE.
Mike holds professional qualifications such as CCSK, IPv6 Sage, CISSP, CISA, CISM, PMP, SAP Certified Consultant, MCSE, and MCNE.
Date: 8 May 2020 (Fri) Time: 2:30pm – 5:30pm Venue: Webinar – Participant shall prepare his/her own electronic device (e.g. Desktop, Notebook or Mobile, etc.) with Internet access. Language: Cantonese Fee: Free (Pre-registration is required.) Register: https://www.hkcert.org/my_url/en/event/20050801
Highlight: This seminar is jointly organized by the Hong Kong Computer Emergency Response Team Coordination Centre, the Office of the Government Chief Information Officer and the Hong Kong Police Force. In order to prevent the spread of coronavirus, organisations including government, enterprises and schools, ramp up remote working and e-learning. While remote working and e-learning may bring you much convenience, you should stay vigilant to prevent the risk of personal data leakage and cyber attacks by malicious attackers. The webinar will invite information security experts to share their experiences on this subject.
Date: 6 Apr 2020 (Mon) Time: 8:30pm – 9:30pm Venue: Webinar by Zoom. Participant shall prepare his/her own electronic device (e.g. Desktop, Notebook or Mobile, etc.) with Internet access. Speaker: Mr. Young Wo Sang (CISSP CISA CEI ECSA CHFI CIFI CEH ITIL(v3)F ISO/IEC 20000 Auditor) Language: Cantonese Fee: Free (Pre-registration is required.) Register: https://bit.ly/pisa200406
Highlight: Perhaps the most popular global topic nowadays is COVID-19…. You may have learned from TV News that one of our PISA veterans, Mr. Young Wo Sang, who was forced to stay in the cruise ship in Japan for few weeks due to other COVIN-19 infected passengers. Even returned to HK, Sang and other passengers were also required to stay in the quarantine camp for two weeks…. Started with a happy cruise trip with family but turned out with an unexpected quarantine camping, it was not an enjoyable experience. However, something’s lost but something’s gained. It gives Sang new idea on how to face with unexpected situation, continue with his connections with other people or even work remotely in the ship. PISA has the honor to have Sang to share with our members, via Webinar, his invaluable experiences and challenges as a traveler and an IT professional during such unexpected adverse situation.
BIO Data of Sang Mr. Young Wo Sang is an information security specialist with expertise in information security consultation and training. He is one of the Elected Members of the Information Technology Subsector, Election Committee of HKSAR Government receiving a high vote among all candidates in the 2006 & 2011 election. In 2008, he was elected as a Director, Hong Kong Internet Registration Corporation Limited, serviced till 2016.
Education Background Higher Diploma in Computer Engineering (CityU) Professional Qualifications CISSP, CCSP, CISA, CWSP, CWNA, CIFI Industry or Public Services Convener, Information Security and Privacy Working Group, Internet Society Hong Kong
(ISC)² offers several events throughout the year for information security professionals to advance their knowledge of emerging and current information security issues. These events are available online or in-person. Visit https://www.isc2.org/events to learn more!
The (ISC)² Think Tank is a 60-minute roundtable webinar where influential security experts present and debate on a range of thought-leadership topics surrounding today’s most pressing security challenges and take a deeper look at how they relate to a particular industry or region.
Below is a searchable library of recorded (ISC)² Think Tanks on a variety of hot topics within information security. To view the webinar, click on the PLAY button and you will receive instructions on how to activate the player.
Want to get involved with (ISC)² and earn CPEs at the same time? Consider volunteering for one of our examination development workshops, or as an Exam Proctor.
Write Test Questions for an (ISC)² Examination
(ISC)² holds several examination development workshops throughout the year in different parts of the U.S., as well as in Europe, Asia and other parts of the globe. Workshops are open to all (ISC)² members holding relevant credentials. For example, to attend a CISSP workshop, a member must be CISSP certified and in good standing. (ISC)² does not provide financial compensation to its members for attending the workshop; however, it pays volunteers’ travel costs, lodging and out-of-pocket expenses incurred while travelling to attend the workshop.
Additionally, members earn one credit of Continuing Professional Education (CPE) hour for every hour worked at the workshop. After the workshop is completed, CPE credits are submitted on member’s behalf to their account by (ISC)². Volunteer via the member website: https://www.isc2.org
Proctor (ISC)² Examinations
Earn 8 CPEs for proctoring (ISC)² exams. Volunteer with (ISC)² by sending your request to email@example.com. Please specify you’d like to volunteer to proctor (ISC)² exams.
(ISC)² Certified Information Systems Security Professional Official App
(ISC)² recently released a new CISSP app based on the bestselling Sybex study guide by James Michael Stewart, Mike Chapple and Darril Gibson. It includes flashcards, study questions, practice tests covering 100% of all exam objectives, and 450+ realistic practice questions to help students assess their exam readiness. Questions include in-depth explanations to help them understand why the correct answers are correct and the incorrect answers are incorrect. There are over 370 flashcards to help review important testable concepts. Assessments, multiple practice questions, and mock tests are available for better prepare for the exam. Test reviews with detailed explanations are also available.
Date: 16 December 2019 (Monday) Time: 2:00pm – 6:00pm (Registration starts at 1:30pm) Venue: 6/F, Happy Valley Stands, Happy Valley Racecourse, Happy Valley Language: English Fee: HKD 200 / HKD 100 (Early-bird till 25-Oct) Register: https://bit.ly/33p9l9F
Highlight: This Half-Day Seminar is the largest Enterprise Architecture seminar in Hong Kong organised by Hong Kong Computer Society Enterprise Architecture Specialist Group (HKCS EASG). Coming to the 7th year, the theme of this year is “Agility and Governance in Digital Age”. Case sharing in the use of latest technologies, such as IoT, Data Analytics, AI, Micro-services, DevOps, Containers, etc. for technology innovation and fit to digital business. How Enterprise Architects and IT leaders introduce agility and governance into such digital transformation journey. In this seminar, several experienced IT leaders in major organisations will discuss their viewpoints and real-world experience in agility and governance in the digital era. They will cover not only the best practices but also the challenges and lessons learnt. This event is also an invaluable opportunity for us to network with the speakers and other IT architects to exchange knowledge and share experience.
Highlight: Following a successful event in 2018, Hong Kong’s premier security research group Dragon Threat Labs is hosting DragonCon, possibly the most technically-intensive security conference borne out of Hong Kong. Come to join us, make friends and see the cybercity!
Chairperson: Mr. Andy Ho Vice-Chairperson: Mr. Frank Chow (External Affairs) Vice-Chairperson: Mr. Frankie Wong (Internal Affairs) Vice-Chairperson: Mr. Otto Lee (Membership & Constitution) Hon. Secretary & Treasurer: Ms. Joyce Fan Program Director: Mr. Frankie Leung Program Director: Mr. Mike Lo
(ISC)2 HK Chapter Executive Committee
President: Andy Ho * Secretary: Joyce Fan * Treasurer: Frankie Leung Membership Chair: Otto Lee * Professional Development: Eric Moy Program Director: Eve Chow Program Director: Jim Shek Liaison: Frank Chow * * Automatically transferred from PISA Exco
Date: 23-24 October 2019 (Wed & Thur) Time: 09:00 – 17:35 Venue: Level 2, Hong Kong Convention and Exhibition Centre, 1 Expo Drive, Wanchai, Hong Kong Fee: Free admission (registration required) Register: https://www.issummit.org/registration.asp
Highlight: The Information Security Summit – Over the Horizon Cyber Security is a Regional Event with the aim to give participants from the Asia Pacific region an update on the latest development, trends and status in information security. As cyber attackers are growing more capable and smarter, enterprises are looking at investing in analytics and threat intelligence in order to make better decisions on investment in cyber defense to pre-empt the attacks. Advanced security technologies are increasingly integrated with threat intelligence. Overseas and Local Experts from the industry will be invited to share their experience and knowledge. Following the success of the event organised in the previous sixteen years, this year’s Summit will include a two-day conference and a number of workshops demonstrating management and technical theory, applications and practical experiences on all aspects of information security relating to securing and protecting data in borderless cloud and mobile environment, big data analytics and the Internet of Things.
The dinner drew over 300 guests, comprising of government officials, brand leaders, professionals, academia, industry experts and media last year. We believe that the dinner could help you to build relationships with your target market, strengthen your brand awareness and increase your reach and exposure to potential clients and partners.
Date: 26-Sep (Thur) Time: 7:00pm – 9:00pm Venue: Room Y403, HK PolyU, Hung Hom Language: Cantonese Fee: FREE Register: http://bit.ly/pisa190926
Agenda: 7:00pm to 7:30pm : Networking and Check-in 7:30pm to 7:35pm : PISA Announcement 7:35pm to 8:45pm : The new Macau Cyber Security Law is on its way by Mr. Terry Cheung 8:45pm to 9:00pm : Q & A
Highlight: Starting from July 2015, Macau started to prepare the law for cyber security. Eventually, the Macau Cyber Security law was published in June and will be effective in December this year. Many people may feel cyber security law is a sensitive subject and the controls may be a bit over.
You like it or not. The new law is coming. What are the requirements of the new law? What will be the challenges to the in scope organizations? Will it affect you as a person or company outside Macau? In this seminar, we will highlight the law and discuss the related issues.
This event is supported by CSA Hong Kong and Macau Chapter.
Speaker: Terry has been in IT and Information Security sectors for over 23 years. He has been working in various industries including banking, government, telecommunications and hospitality and gaming. He has experiences in security policy development, forming new security team, design and deploy various security systems including two tiers DDoS protection service, central logging system and SIEM, ISO27001 implementation, etc. He has been participated in the development and implementation of many systems including core banking systems, converged billing systems, ERP, HR, CRM, Call Center system, gaming and hospitality systems, etc.
Apart from work, Terry is also the founder of the Information Systems Audit and Control Association (ISACA) Macao Chapter and the Cloud Security Alliance (CSA) Hong Kong & Macau Chapter.