Skip to content

New Official CISSP Study App!

(ISC)² Certified Information Systems Security Professional Official App

(ISC)² recently released a new CISSP app based on the bestselling Sybex study guide by James Michael Stewart, Mike Chapple and Darril Gibson. It includes flashcards, study questions, practice tests covering 100% of all exam objectives, and 450+ realistic practice questions to help students assess their exam readiness.  Questions include in-depth explanations to help them understand why the correct answers are correct and the incorrect answers are incorrect.  There are over 370 flashcards to help review important testable concepts.  Assessments, multiple practice questions, and mock tests are available for better prepare for the exam.  Test reviews with detailed explanations are also available.

Get the Official CISSP App at Google Play or from the App Store today.

Supporting Event: HKCS Enterprise Architecture Specialist Group Seminar 2019 (16 Dec 2019)

Date: 16 December 2019 (Monday)
Time: 2:00pm – 6:00pm (Registration starts at 1:30pm)
Venue: 6/F, Happy Valley Stands, Happy Valley Racecourse, Happy Valley
Language: English
Fee: HKD 200 / HKD 100 (Early-bird till 25-Oct)

This Half-Day Seminar is the largest Enterprise Architecture seminar in Hong Kong organised by Hong Kong Computer Society Enterprise Architecture Specialist Group (HKCS EASG). Coming to the 7th year, the theme of this year is “Agility and Governance in Digital Age”. Case sharing in the use of latest technologies, such as IoT, Data Analytics, AI, Micro-services, DevOps, Containers, etc. for technology innovation and fit to digital business. How Enterprise Architects and IT leaders introduce agility and governance into such digital transformation journey.
In this seminar, several experienced IT leaders in major organisations will discuss their viewpoints and real-world experience in agility and governance in the digital era. They will cover not only the best practices but also the challenges and lessons learnt. This event is also an invaluable opportunity for us to network with the speakers and other IT architects to exchange knowledge and share experience.

For detail:

Supporting Event: DragonCon 2019 (7 Dec 2019)

Date: 7 December 2019 (Sat)
Time: 10:00am – 6:30pm
Venue: Function Room 2, Level 3, Core E, Cyberport 3
Language: English
Fee: HKD 1,200 / (Please approach for limited free ticket)

Following a successful event in 2018, Hong Kong’s premier security research group Dragon Threat Labs is hosting DragonCon, possibly the most technically-intensive security conference borne out of Hong Kong.
Come to join us, make friends and see the cybercity!

For detail:

PISA Executive Committee 2019-2020

PISA Executive Committee

Chairperson: Mr. Andy Ho
Vice-Chairperson: Mr. Frank Chow (External Affairs)
Vice-Chairperson: Mr. Frankie Wong (Internal Affairs)
Vice-Chairperson: Mr. Otto Lee (Membership & Constitution)
Hon. Secretary & Treasurer: Ms. Joyce Fan
Program Director: Mr. Frankie Leung
Program Director: Mr. Mike Lo

(ISC)2 HK Chapter Executive Committee

President: Andy Ho *
Secretary: Joyce Fan *
Treasurer: Frankie Leung
Membership Chair: Otto Lee *
Professional Development: Eric Moy
Program Director: Eve Chow
Program Director: Jim Shek
Liaison: Frank Chow *
* Automatically transferred from PISA Exco

Honorary Advisors

Mr. Chester Soong
Mr. Wilson Yuen
Mr. Andrew Law

Supporting Event: Information Security Summit (23-24 Oct 2019)

Date: 23-24 October 2019 (Wed & Thur)
Time: 09:00 – 17:35
Venue: Level 2, Hong Kong Convention and Exhibition Centre, 1 Expo Drive, Wanchai, Hong Kong
Fee: Free admission (registration required)

The Information Security Summit – Over the Horizon Cyber Security is a Regional Event with the aim to give participants from the Asia Pacific region an update on the latest development, trends and status in information security.
As cyber attackers are growing more capable and smarter, enterprises are looking at investing in analytics and threat intelligence in order to make better decisions on investment in cyber defense to pre-empt the attacks. Advanced security technologies are increasingly integrated with threat intelligence. Overseas and Local Experts from the industry will be invited to share their experience and knowledge.
Following the success of the event organised in the previous sixteen years, this year’s Summit will include a two-day conference and a number of workshops demonstrating management and technical theory, applications and practical experiences on all aspects of information security relating to securing and protecting data in borderless cloud and mobile environment, big data analytics and the Internet of Things.

For enquiry, please contact Ms Tracy Choy at tel. 2788 5884 or by email to directly.

Supporting Event: RTIA Annual Members Dinner and Hong Kong Retail Innovation Award Presentation Ceremony 2019 (27 Sep 2019)

Date: 27 Sep 2019 (Friday)
Time: 6:00 pm (Cocktail), 7:00 pm (Dinner & Ceremony)
Venue: ClubONE @ La Plaza, B/2, Auto Plaza, 65 Mody Road, Tsim Sha Tsui
Fee: $1,200 (Single Seat)

The dinner drew over 300 guests, comprising of government officials, brand leaders, professionals, academia, industry experts and media last year. We believe that the dinner could help you to build relationships with your target market, strengthen your brand awareness and increase your reach and exposure to potential clients and partners.

For detail:
Should you require any further information, please feel free to contact Miss Jessica Lee at (852) 8101 2339 or email at

The new Macau Cyber Security Law is on its way (26 Sep 2019)

Date: 26-Sep (Thur)
Time: 7:00pm – 9:00pm
Venue: Room Y403, HK PolyU, Hung Hom
Language: Cantonese

7:00pm to 7:30pm : Networking and Check-in
7:30pm to 7:35pm : PISA Announcement
7:35pm to 8:45pm : The new Macau Cyber Security Law is on its way by Mr. Terry Cheung
8:45pm to 9:00pm : Q & A

Starting from July 2015, Macau started to prepare the law for cyber security. Eventually, the Macau Cyber Security law was published in June and will be effective in December this year. Many people may feel cyber security law is a sensitive subject and the controls may be a bit over.

You like it or not. The new law is coming. What are the requirements of the new law? What will be the challenges to the in scope organizations? Will it affect you as a person or company outside Macau? In this seminar, we will highlight the law and discuss the related issues.

This event is supported by CSA Hong Kong and Macau Chapter.

Terry has been in IT and Information Security sectors for over 23 years. He has been working in various industries including banking, government, telecommunications and hospitality and gaming. He has experiences in security policy development, forming new security team, design and deploy various security systems including two tiers DDoS protection service, central logging system and SIEM, ISO27001 implementation, etc. He has been participated in the development and implementation of many systems including core banking systems, converged billing systems, ERP, HR, CRM, Call Center system, gaming and hospitality systems, etc.

Apart from work, Terry is also the founder of the Information Systems Audit and Control Association (ISACA) Macao Chapter and the Cloud Security Alliance (CSA) Hong Kong & Macau Chapter.

For any questions, please contact us at

Supporting Event: Information Security and Privacy Issue for Business Conference (24 Sep 2019)

Date: 24 September 2019 (Wed)
Time: 2:15-5:00pm
Venue: Conference Hall, 4/F, HKPC Building, 78 Tat Chee Avenue, Kowloon Tong
Language: Cantonese

Guest of Honour & Keynote Speaker: Mr. Tony Lam, Acting Privacy Commissioner for Personal Data


Supporting Event: Security Bootcamp 2019 (14-15 Sep 2019)

Date: 14-15 Sep 2019 (Sat-Sun)
Venue: Common First Year Laboratory (Room CF004), The HK Polytechnic University
Language: Cantonese and English
Fee: HKD 300 (all the materials inclusive)

ISOC HK is organising the Security Bootcamp 2019 this month — hands-on workshops conducted by industry practitioners and CTF challenges for participants to build a foundation and sense of security, as well as to explore further in infrastructure and application. The program this year covers the following, including but not limited to IoT hacking, Malware analysis, Steganography, Forensic, Cryptography, Symbolic execution and Formal Proof. Targeting undergraduate students this year, it has received a vast number of registrations.


PISA Events Archive 2016-2019mid

Supporting Event: Sustainability & Smarf Retailing Summit 2019 (20 Jun 2019)
PISA Security JAM 2019 x CSA (25 May 2019)
(ISC)² CCSP Clinic at Cloud Expo Asia 2019 (22 May 2019)
“Phishing scams? No more!” Seminar (03 May 2019)
Information Security Management – Guidelines for Cyber Insurance (16 Apr 2019)
DevSecOps – Web Application Firewall in a CI/CD Workflow (10 Apr 2019)
Supporting Event: Asia Pacific CACS Conference 2019 (1-3 Apr 2019)
PISA Spring Dinner Gathering 2019 (27 Mar 2019)
Supporting Event: Cybersecurity Predictions 2019 and Advanced Technology on Endpoint Protection Webinar (6 Mar 2019)
Supporting Event: Certified Cloud Security Professional (CCSP) certification (4 Mar 2019)
(ISC)2 HK Chapter AGM cum Technical theme talk with hands-on (26 Jan 2019)

Supporting Event: Joint ICT Christmas Party (14 Dec 2018)
Modern Endpoint Security (5 Dec 2018)
Supporting Event: Building Your Open Source Intelligence Capabilities (7 Nov 2018)
Supporting Event: “Hong Kong Towards Faster Payment” Conference (16 Oct 2018)
Supporting Event: Certified Cloud Security Professional (CCSP® ) certification (8-12 Oct 2018)
Supporting Event: “Stay Smart, Keep Cyber Scam Away” Seminar (20 Sep 2018)
Information Security Summit 2018 (4-5 Sep 2018)
Supporting Event: IoT Security Forum (29 Aug 2018)
PISA AGM cum Feature Talk: Road to Defcon (25 Aug 2018)
(ISC)2 Security Congress APAC 2018 (09-10 July 2018)
(ISC)2 12th Annual ISLA Asia-Pacific (09 Jul 2018)
Supporting Event: GDPR Hands-on workshop 2018 (26 Jun 2018)
Supporting Event: Certified Information Systems Security Professional (CISSP® ) certification (25 Jun 2018)
PISA Security Jam 2018 #pisajam2018 (26 May 2018)
Supporting Event: “Stay Smart, Keep Cyber Scam Away” Seminar (25 May 2018)
Supporting Event: Cloud Expo Asia 2018 (16-17 May 2018)
(ISC)2 APAC Secure Webinar – Stronger Security Posture through Zero Trust and API Management (9 May 2018)
Understanding What is New in China Cybersecurity Law and What We Cannot Do (26 Apr 2018)
Supporting Event: VXCON 2018 (21 Apr 2018)
(ISC)2 APAC Secure Webinar – Security at Network Speeds (18 Apr 2018)
Supporting: (ISC)2 Online Training Options (Especially for APAC based candidates)
PISA Spring Dinner 2018 (26 Mar 2018)
Supporting Event: Official (ISC)² CCSP Classroom Training in Hong Kong (19 Mar 2018)
(ISC)2 HK Chapter AGM cum Feature Talk: The Era of BlockChain and Smart Contract Development (20 Jan 2018)
Supporting Event: How to get ready for your Cloud Security Certificates (18 Jan 2018)

Tackling System Security from the Perspective of Non-digital Components (9 Dec 2017)
Supporting Event: Live Cloud Forensics (6 Dec 2017)
Supporting Event: 11th Annual HTCIA APAC Training Conference 2017 (5-6 Dec 2017)
The Integration of “Human + Machine” – The biggest security challenges in businesses (23 Nov 2017)
Supporting Event: Cyber Security for Industry 4.0 International Conference (21-22 Nov 2017)
Supporting Event: Hong Kong’s Road to Compliance (6 Nov 2017)
[Limited Time Offer] CCSP Online Self-Paced Training Package
(ISC)2 Upcoming Webinars in Nov
(ISC)2 Safe and Secure Online – Train the Trainer and Sharing (26 Oct 2017)
How does Blockchain enhance Cybersecurity (26 Sep 2017)
False sense of security – “How easy to hack the physical security nowadays” (21 Sep 2017)
Supporting Event: Build a Secure Cyberspace 2017 – “Smart Home, Safe Living” Seminar (20 Sep 2017)
PISA AGM cum Feature Talk: DevOps Security Journey (19 Aug 2017)
Co-organized Event: Information Security Summit 2017 (15-16 Aug 2017)
Supporting Event: Cloud Adoption at Governments – Building Public Cloud Policy (10 Aug 2017)
Technical Sharing Session: Malware Command and Control using Social Media Platform (4 Aug 2017)
SafeWiFi – Public Awareness Seminar on WiFi Security 2017 (29 Jul 2017)
Supporting Event: (ISC)2 Security Congress APAC 2017 (03-04 Jul 2017)
Supporting Event: Cyber Security for Industry 4.0 Conference (23 Jun 2017)
Supporting Event: Innovix Symposium (23 Jun 2017)
Supporting Event: Security Tech Forum 2017 (16 Jun 2017)
Supporting Event: The 18th Info-Security Conference 2017 (9 Jun 2017)
PISA Security Jam 2017 (27 May 2017)
Supporting Event: Cloud Expo Asia and Data Centre World (24-25 May 2017)
Supporting Event: VXCON (28 Apr 2017)
Supporting Event: The 9th InfoSecurity Summit 2017 (26 Apr 2017)
Supporting Event: Build a Secure Cyberspace 2017 – “Smart Home, Safe Living” Seminar (21 Apr 2017)
Supporting Event: Executive Luncheon: Greater Security Capabilities with New Microsoft
Enterprise Cybersecurity Group (20 Apr 2017)
Supporting Event: Implementing DevSecOps – Evolving Security Culture (20 Apr 2017)
Supporting Event: Internet Economy Summit 2017 (10-12 Apr 2017)
(ISC)² Member Reception@Hong Kong 2017 (7 Apr 2017)
Supporting Event: ThreatMetrix APAC Digital Identity Summit 2017 (5-6 April 2017)
Supporting Event: ISACA China HK Chapter Annual Conference 2017 (16 Mar 2017)
Supporting Event: The 8th BankTech Executive Summit 2017 (7 Mar 2017)
Tech talk “Safe Browsing & Evolving Security Threats” (06 Feb 2017)
Supporting Event: The Youth Technology Crime Seminar (19 Jan 2017)
Supporting Event: The Asian Financial Forum (AFF) (16-17 Jan 2017)
(ISC)2 HK Chapter AGM cum Feature Talk: Remote Attacks on Vehicles by Exploiting Vulnerable Telematics (14 Jan 2017)
Supporting Event: Cyber Security Professionals Awards 2016 (6 Jan 2017)
Supporting Event: CSA HKM Knowledge Sharing Event (5 Jan 2017)

Hacking an ATM For Cash – ATM Company Visit and Cases Sharing (7 Dec 2016)
Supporting Event: HTCIA Asia Pacific Training Conference (6-7 Dec 2016)
Supporting Event: Build a Secure Cyberspace 2016 – “Protect Data, Secure Transaction” Seminar (25 Nov 2016)
How Mirai Botnet & IoT took down the Internet (16 Nov 2016)
Supporting Event: Asia Internet Symposium Hong Kong (11 Nov 2016)
Technical Sharing from the Blackhat US 2016 (4 Nov 2016)
Supporting Event – ASTRI IUCF 2016 (17 Oct 2016)
Supporting Event: Welcoming Dinner for IT Legislative Councilor 2016-20 (30 Sep 2016)
Supporting Event: Cyber Security Programme 2016 (23 Sep 2016)
Seminar on “Cloud, IoT and Security – Connect cloud security with the physical world through AWS IoT” (20 Sep 2016)
Co-organized Event: Information Security Summit 2016 (12-13 Sep 2016)
Supporting Event: SecureHongKong 2016 (2 Sep 2016)
LegCo Information Technology Constituency Election Forum (29 Aug 2016)
PISA AGM, EXCO Election 2016 and Theme Talk (27 Aug 2016)
Supporting Event: The 4th Symposium on Risk Management (25 Aug 2016)
Train the Trainer Session for (ISC)2 Safe and Secure Online (24 Aug 2016)
Public Awareness Seminar on WiFi Security 2016 (13 Aug 2016)
Open Discussion on “Professional Development Programme for Cybersecurity Practitioners to Enhance the Cyber Resilience of Banks” (6 Aug 2016)
Supporting Event: How to securely configure and use Office 365 from enterprise perspective (4 Aug 2016)
PISA 15th Anniversary Dinner (28 Jul 2016)
Supporting Event: (ISC)² Security Congress APAC 2016 (25-26 July 2016)
Security Seminar on Security Operation Center (SOC) 3.0 and Cyber Threats (28 Jun 2016)
Supporting Event: The 17th Info-Security Conference (28 Jun 2016)
Supporting Event: Build a Secure Cyberspace 2016 – Protecting Data from Ransomware Attack (31 May 2016)
Supporting Event: Cyber Security Conference 2016 (30 May 2016)
PISA Security Jam 2016 (21 May 2016)
Supporting Event: Cyber Security Summit 2016 (16-18 May 2016)
Supporting Event: VXCON 2016 黑白對決 (Blackkungfu Vs Whitekungfu) (22-24 Apr 2016)
Supporting Event: Mobile App Development Forum on Privacy and Security (21 Apr 2016)
Supporting Event: Hong Kong Cloud Forum 2016 (7 Apr 2016)
Supporting Event: Software Defined Network and how can it help enhancing Cloud Security (7 Apr 2016)
Just Hacker things with Jayson (15 Mar 2016)
CopperDroid: Automatic Android Malware Analysis and Classification (4 Mar 2016)
Ethical Hacking Workshop – Deep dive of Exploit Writing (20 Feb 2016)
Information Security Talk – The Road to DEFCON (19 Feb 2016)
ISC2 Hong Kong Chapter AGM and Advanced Persistent Threat (APT) Techniques and Case Studies (16 Jan 2016)

Joint AGMs 2019 cum Feature Talk: Seasonings to Improve Sustainability of your Information Security Programme (31 Aug 2019)

Date: 31-Aug (Sat)
Time: 2:00pm – 5:00pm
Venue: Staff Club Restaurant, 5/F Communal Building, HK Polytechnic University, Hung Hom
Language: Cantonese
Fee: FREE & including Tea Buffet (PISA members only)

2:00pm to 2:30pm : Networking and Check-in
2:30pm to 3:15pm : Seasonings to Improve Sustainability of your Information Security Programme
3:15pm to 5:00pm : PISA/(ISC)2 Joint AGMs & Exco Elections

Feature Talk Highlight:
Choosing international/ industry best practice information security frameworks (e.g.ISO/IEC27000 family, COBIT, CIS, NIST CSF) helps information security practitioners to identify the key ingredients (scope, objectives, security and control requirements, etc.) of any IT/OT Security Programme. However, to put the programme into actionable and sustainable for years, it will take some seasonings to improve the flavor. In this sharing, Carol would provide her key seasoning tips to address cyber talent shortage issue and make a popular programme amongst stakeholders.

Carol Lee, Professional Development Director, ISACA China HK Chapter

For any questions, please contact us at

Deep analysis and lessons learned from SingHealth Incident (22 Jul 2019)

Date: 22-Jul (Mon)
Time: 7:00pm – 9:00pm
Venue: ADC 309, HKU Space, Admiralty
Language: Cantonese

7:00pm to 7:30pm : Networking and Check-in
7:30pm to 7:35pm : PISA Announcement
7:35pm to 8:45pm : Deep analysis and lessons learned from SingHealth Incident by Mr. Matthew Wong
8:45pm to 9:00pm : Q & A

In Singapore’s worst cyber attack, hackers infiltrated the databases of SingHealth, the largest group of healthcare institutions here. The personal particulars of 1.5 million patients, including the outpatient prescriptions of Prime Minister Lee Hsien Loong and a few ministers, were stolen. What happened? How did it happen? What happens next? What we can learn?

Matthew Wong brings to FireEye with more than 20 years of IT experience. He has been in Regional Technical Consultant role in Asia Pacific Region covering team development for 21 people. He also acted as Pre-sales and Product Management positions in various listed companies. He was involved in many regional sizable Network/Security projects and he was also invited to speak at many major seminars, conferences and press releases.

​He holds more than 30 IT certificates majorly from Cisco, Juniper, Websense, Bluecoat, Ciphertrust, Packeteer and Allied Telesis. He holds Master of Philosophy (M. Phil) in The Hong Kong Polytechnic University research on Network QoS/Routing Algorithm with released Journal paper. He also gains his Bachelor of Electrical and Electronic Engineering in University of Auckland during his 6 years stay in New Zealand.

For any questions, please contact us at
Our new Telegram channel:

Issue 29, March 2019

Topic: Hardware Devices for Cryptographic Security, Secure your assets from Blockchain Galaxy to Fintech Universe, International Standard on Cyber-Insurance, How to Build a CSOC for SME

Download Version: PDF

Online Version: Link