Chairperson: Mr. Andy Ho Vice-Chairperson: Mr. Frank Chow (External Affairs) Vice-Chairperson: Mr. Frankie Wong (Internal Affairs) Vice-Chairperson: Mr. Otto Lee (Membership & Constitution) Hon. Secretary & Treasurer: Ms. Joyce Fan Program Director: Mr. Frankie Leung Program Director: Mr. Mike Lo
(ISC)2 HK Chapter Executive Committee
President: Andy Ho * Secretary: Joyce Fan * Treasurer: Frankie Leung Membership Chair: Otto Lee * Professional Development: Eric Moy Program Director: Eve Chow Program Director: Jim Shek Liaison: Frank Chow * * Automatically transferred from PISA Exco
Date: 23-24 October 2019 (Wed & Thur) Time: 09:00 – 17:35 Venue: Level 2, Hong Kong Convention and Exhibition Centre, 1 Expo Drive, Wanchai, Hong Kong Fee: Free admission (registration required) Register: https://www.issummit.org/registration.asp
Highlight: The Information Security Summit – Over the Horizon Cyber Security is a Regional Event with the aim to give participants from the Asia Pacific region an update on the latest development, trends and status in information security. As cyber attackers are growing more capable and smarter, enterprises are looking at investing in analytics and threat intelligence in order to make better decisions on investment in cyber defense to pre-empt the attacks. Advanced security technologies are increasingly integrated with threat intelligence. Overseas and Local Experts from the industry will be invited to share their experience and knowledge. Following the success of the event organised in the previous sixteen years, this year’s Summit will include a two-day conference and a number of workshops demonstrating management and technical theory, applications and practical experiences on all aspects of information security relating to securing and protecting data in borderless cloud and mobile environment, big data analytics and the Internet of Things.
The dinner drew over 300 guests, comprising of government officials, brand leaders, professionals, academia, industry experts and media last year. We believe that the dinner could help you to build relationships with your target market, strengthen your brand awareness and increase your reach and exposure to potential clients and partners.
Date: 26-Sep (Thur) Time: 7:00pm – 9:00pm Venue: Room Y403, HK PolyU, Hung Hom Language: Cantonese Fee: FREE Register: http://bit.ly/pisa190926
Agenda: 7:00pm to 7:30pm : Networking and Check-in 7:30pm to 7:35pm : PISA Announcement 7:35pm to 8:45pm : The new Macau Cyber Security Law is on its way by Mr. Terry Cheung 8:45pm to 9:00pm : Q & A
Highlight: Starting from July 2015, Macau started to prepare the law for cyber security. Eventually, the Macau Cyber Security law was published in June and will be effective in December this year. Many people may feel cyber security law is a sensitive subject and the controls may be a bit over.
You like it or not. The new law is coming. What are the requirements of the new law? What will be the challenges to the in scope organizations? Will it affect you as a person or company outside Macau? In this seminar, we will highlight the law and discuss the related issues.
This event is supported by CSA Hong Kong and Macau Chapter.
Speaker: Terry has been in IT and Information Security sectors for over 23 years. He has been working in various industries including banking, government, telecommunications and hospitality and gaming. He has experiences in security policy development, forming new security team, design and deploy various security systems including two tiers DDoS protection service, central logging system and SIEM, ISO27001 implementation, etc. He has been participated in the development and implementation of many systems including core banking systems, converged billing systems, ERP, HR, CRM, Call Center system, gaming and hospitality systems, etc.
Apart from work, Terry is also the founder of the Information Systems Audit and Control Association (ISACA) Macao Chapter and the Cloud Security Alliance (CSA) Hong Kong & Macau Chapter.
Date: 14-15 Sep 2019 (Sat-Sun) Venue: Common First Year Laboratory (Room CF004), The HK Polytechnic University Language: Cantonese and English Fee: HKD 300 (all the materials inclusive) Register: https://qrgo.page.link/REH8Y
Highlight: ISOC HK is organising the Security Bootcamp 2019 this month — hands-on workshops conducted by industry practitioners and CTF challenges for participants to build a foundation and sense of security, as well as to explore further in infrastructure and application. The program this year covers the following, including but not limited to IoT hacking, Malware analysis, Steganography, Forensic, Cryptography, Symbolic execution and Formal Proof. Targeting undergraduate students this year, it has received a vast number of registrations.
Supporting Event: Sustainability & Smarf Retailing Summit 2019 (20 Jun 2019) PISA Security JAM 2019 x CSA (25 May 2019) (ISC)² CCSP Clinic at Cloud Expo Asia 2019 (22 May 2019) “Phishing scams? No more!” Seminar (03 May 2019) Information Security Management – Guidelines for Cyber Insurance (16 Apr 2019) DevSecOps – Web Application Firewall in a CI/CD Workflow (10 Apr 2019) Supporting Event: Asia Pacific CACS Conference 2019 (1-3 Apr 2019) PISA Spring Dinner Gathering 2019 (27 Mar 2019) Supporting Event: Cybersecurity Predictions 2019 and Advanced Technology on Endpoint Protection Webinar (6 Mar 2019) Supporting Event: Certified Cloud Security Professional (CCSP) certification (4 Mar 2019) (ISC)2 HK Chapter AGM cum Technical theme talk with hands-on (26 Jan 2019)
Supporting Event: Joint ICT Christmas Party (14 Dec 2018) Modern Endpoint Security (5 Dec 2018) Supporting Event: Building Your Open Source Intelligence Capabilities (7 Nov 2018) Supporting Event: “Hong Kong Towards Faster Payment” Conference (16 Oct 2018) Supporting Event: Certified Cloud Security Professional (CCSP® ) certification (8-12 Oct 2018) Supporting Event: “Stay Smart, Keep Cyber Scam Away” Seminar (20 Sep 2018) Information Security Summit 2018 (4-5 Sep 2018) Supporting Event: IoT Security Forum (29 Aug 2018) PISA AGM cum Feature Talk: Road to Defcon (25 Aug 2018) (ISC)2 Security Congress APAC 2018 (09-10 July 2018) (ISC)2 12th Annual ISLA Asia-Pacific (09 Jul 2018) Supporting Event: GDPR Hands-on workshop 2018 (26 Jun 2018) Supporting Event: Certified Information Systems Security Professional (CISSP® ) certification (25 Jun 2018) PISA Security Jam 2018 #pisajam2018 (26 May 2018) Supporting Event: “Stay Smart, Keep Cyber Scam Away” Seminar (25 May 2018) Supporting Event: Cloud Expo Asia 2018 (16-17 May 2018) (ISC)2 APAC Secure Webinar – Stronger Security Posture through Zero Trust and API Management (9 May 2018) Understanding What is New in China Cybersecurity Law and What We Cannot Do (26 Apr 2018) Supporting Event: VXCON 2018 (21 Apr 2018) (ISC)2 APAC Secure Webinar – Security at Network Speeds (18 Apr 2018) Supporting: (ISC)2 Online Training Options (Especially for APAC based candidates) PISA Spring Dinner 2018 (26 Mar 2018) Supporting Event: Official (ISC)² CCSP Classroom Training in Hong Kong (19 Mar 2018) (ISC)2 HK Chapter AGM cum Feature Talk: The Era of BlockChain and Smart Contract Development (20 Jan 2018) Supporting Event: How to get ready for your Cloud Security Certificates (18 Jan 2018)
Tackling System Security from the Perspective of Non-digital Components (9 Dec 2017) Supporting Event: Live Cloud Forensics (6 Dec 2017) Supporting Event: 11th Annual HTCIA APAC Training Conference 2017 (5-6 Dec 2017) The Integration of “Human + Machine” – The biggest security challenges in businesses (23 Nov 2017) Supporting Event: Cyber Security for Industry 4.0 International Conference (21-22 Nov 2017) Supporting Event: Hong Kong’s Road to Compliance (6 Nov 2017) [Limited Time Offer] CCSP Online Self-Paced Training Package (ISC)2 Upcoming Webinars in Nov (ISC)2 Safe and Secure Online – Train the Trainer and Sharing (26 Oct 2017) How does Blockchain enhance Cybersecurity (26 Sep 2017) False sense of security – “How easy to hack the physical security nowadays” (21 Sep 2017) Supporting Event: Build a Secure Cyberspace 2017 – “Smart Home, Safe Living” Seminar (20 Sep 2017) PISA AGM cum Feature Talk: DevOps Security Journey (19 Aug 2017) Co-organized Event: Information Security Summit 2017 (15-16 Aug 2017) Supporting Event: Cloud Adoption at Governments – Building Public Cloud Policy (10 Aug 2017) Technical Sharing Session: Malware Command and Control using Social Media Platform (4 Aug 2017) SafeWiFi – Public Awareness Seminar on WiFi Security 2017 (29 Jul 2017) Supporting Event: (ISC)2 Security Congress APAC 2017 (03-04 Jul 2017) Supporting Event: Cyber Security for Industry 4.0 Conference (23 Jun 2017) Supporting Event: Innovix Symposium (23 Jun 2017) Supporting Event: Security Tech Forum 2017 (16 Jun 2017) Supporting Event: The 18th Info-Security Conference 2017 (9 Jun 2017) PISA Security Jam 2017 (27 May 2017) Supporting Event: Cloud Expo Asia and Data Centre World (24-25 May 2017) Supporting Event: VXCON (28 Apr 2017) Supporting Event: The 9th InfoSecurity Summit 2017 (26 Apr 2017) Supporting Event: Build a Secure Cyberspace 2017 – “Smart Home, Safe Living” Seminar (21 Apr 2017) Supporting Event: Executive Luncheon: Greater Security Capabilities with New Microsoft Enterprise Cybersecurity Group (20 Apr 2017) Supporting Event: Implementing DevSecOps – Evolving Security Culture (20 Apr 2017) Supporting Event: Internet Economy Summit 2017 (10-12 Apr 2017) (ISC)² Member Reception@Hong Kong 2017 (7 Apr 2017) Supporting Event: ThreatMetrix APAC Digital Identity Summit 2017 (5-6 April 2017) Supporting Event: ISACA China HK Chapter Annual Conference 2017 (16 Mar 2017) Supporting Event: The 8th BankTech Executive Summit 2017 (7 Mar 2017) Tech talk “Safe Browsing & Evolving Security Threats” (06 Feb 2017) Supporting Event: The Youth Technology Crime Seminar (19 Jan 2017) Supporting Event: The Asian Financial Forum (AFF) (16-17 Jan 2017) (ISC)2 HK Chapter AGM cum Feature Talk: Remote Attacks on Vehicles by Exploiting Vulnerable Telematics (14 Jan 2017) Supporting Event: Cyber Security Professionals Awards 2016 (6 Jan 2017) Supporting Event: CSA HKM Knowledge Sharing Event (5 Jan 2017)
Hacking an ATM For Cash – ATM Company Visit and Cases Sharing (7 Dec 2016) Supporting Event: HTCIA Asia Pacific Training Conference (6-7 Dec 2016) Supporting Event: Build a Secure Cyberspace 2016 – “Protect Data, Secure Transaction” Seminar (25 Nov 2016) How Mirai Botnet & IoT took down the Internet (16 Nov 2016) Supporting Event: Asia Internet Symposium Hong Kong (11 Nov 2016) Technical Sharing from the Blackhat US 2016 (4 Nov 2016) Supporting Event – ASTRI IUCF 2016 (17 Oct 2016) Supporting Event: Welcoming Dinner for IT Legislative Councilor 2016-20 (30 Sep 2016) Supporting Event: Cyber Security Programme 2016 (23 Sep 2016) Seminar on “Cloud, IoT and Security – Connect cloud security with the physical world through AWS IoT” (20 Sep 2016) Co-organized Event: Information Security Summit 2016 (12-13 Sep 2016) Supporting Event: SecureHongKong 2016 (2 Sep 2016) LegCo Information Technology Constituency Election Forum (29 Aug 2016) PISA AGM, EXCO Election 2016 and Theme Talk (27 Aug 2016) Supporting Event: The 4th Symposium on Risk Management (25 Aug 2016) Train the Trainer Session for (ISC)2 Safe and Secure Online (24 Aug 2016) Public Awareness Seminar on WiFi Security 2016 (13 Aug 2016) Open Discussion on “Professional Development Programme for Cybersecurity Practitioners to Enhance the Cyber Resilience of Banks” (6 Aug 2016) Supporting Event: How to securely configure and use Office 365 from enterprise perspective (4 Aug 2016) PISA 15th Anniversary Dinner (28 Jul 2016) Supporting Event: (ISC)² Security Congress APAC 2016 (25-26 July 2016) Security Seminar on Security Operation Center (SOC) 3.0 and Cyber Threats (28 Jun 2016) Supporting Event: The 17th Info-Security Conference (28 Jun 2016) Supporting Event: Build a Secure Cyberspace 2016 – Protecting Data from Ransomware Attack (31 May 2016) Supporting Event: Cyber Security Conference 2016 (30 May 2016) PISA Security Jam 2016 (21 May 2016) Supporting Event: Cyber Security Summit 2016 (16-18 May 2016) Supporting Event: VXCON 2016 黑白對決 (Blackkungfu Vs Whitekungfu) (22-24 Apr 2016) Supporting Event: Mobile App Development Forum on Privacy and Security (21 Apr 2016) Supporting Event: Hong Kong Cloud Forum 2016 (7 Apr 2016) Supporting Event: Software Defined Network and how can it help enhancing Cloud Security (7 Apr 2016) Just Hacker things with Jayson (15 Mar 2016) CopperDroid: Automatic Android Malware Analysis and Classification (4 Mar 2016) Ethical Hacking Workshop – Deep dive of Exploit Writing (20 Feb 2016) Information Security Talk – The Road to DEFCON (19 Feb 2016) ISC2 Hong Kong Chapter AGM and Advanced Persistent Threat (APT) Techniques and Case Studies (16 Jan 2016)
Date: 31-Aug (Sat) Time: 2:00pm – 5:00pm Venue: Staff Club Restaurant, 5/F Communal Building, HK Polytechnic University, Hung Hom Language: Cantonese Fee: FREE & including Tea Buffet (PISA members only) Register: http://bit.ly/pisaagm2019
Agenda: 2:00pm to 2:30pm : Networking and Check-in 2:30pm to 3:15pm : Seasonings to Improve Sustainability of your Information Security Programme 3:15pm to 5:00pm : PISA/(ISC)2 Joint AGMs & Exco Elections
Feature Talk Highlight: Choosing international/ industry best practice information security frameworks (e.g.ISO/IEC27000 family, COBIT, CIS, NIST CSF) helps information security practitioners to identify the key ingredients (scope, objectives, security and control requirements, etc.) of any IT/OT Security Programme. However, to put the programme into actionable and sustainable for years, it will take some seasonings to improve the flavor. In this sharing, Carol would provide her key seasoning tips to address cyber talent shortage issue and make a popular programme amongst stakeholders.
Speaker: Carol Lee, Professional Development Director, ISACA China HK Chapter
Agenda: 7:00pm to 7:30pm : Networking and Check-in 7:30pm to 7:35pm : PISA Announcement 7:35pm to 8:45pm : Deep analysis and lessons learned from SingHealth Incident by Mr. Matthew Wong 8:45pm to 9:00pm : Q & A
Highlight: In Singapore’s worst cyber attack, hackers infiltrated the databases of SingHealth, the largest group of healthcare institutions here. The personal particulars of 1.5 million patients, including the outpatient prescriptions of Prime Minister Lee Hsien Loong and a few ministers, were stolen. What happened? How did it happen? What happens next? What we can learn?
Speaker: Matthew Wong brings to FireEye with more than 20 years of IT experience. He has been in Regional Technical Consultant role in Asia Pacific Region covering team development for 21 people. He also acted as Pre-sales and Product Management positions in various listed companies. He was involved in many regional sizable Network/Security projects and he was also invited to speak at many major seminars, conferences and press releases.
He holds more than 30 IT certificates majorly from Cisco, Juniper, Websense, Bluecoat, Ciphertrust, Packeteer and Allied Telesis. He holds Master of Philosophy (M. Phil) in The Hong Kong Polytechnic University research on Network QoS/Routing Algorithm with released Journal paper. He also gains his Bachelor of Electrical and Electronic Engineering in University of Auckland during his 6 years stay in New Zealand.
Chairperson: Mr. Andy Ho Vice-Chairperson: Mr. Frankie Leung (External Affairs) Vice-Chairperson: Mr. Otto Lee (Internal Affairs) Vice-Chairperson: Mr. Frankie Wong (Membership & Constitution) Hon. Secretary & Treasurer: Ms. Joyce Fan Program Director: Mr. Mike Lo Program Director: Mr. Frank Chow