Daniel CHEUNG, JP

Mr Daniel Cheung JP is currently the Deputy Commissioner for Digital Policy (Digital Infrastructure) of the Government of the Hong Kong Special Administrative Region. He supports the formulation of policies and strategic initiatives for driving the development of digital government and smart city in Hong Kong by strengthening local digital infrastructure, fostering the development of local IT industry and facilitating closer collaboration with the Mainland on the connectivity of digital infrastructures and data, with a view to laying a solid foundation for accelerating the development of digital economy. In addition, he oversees and implements policies and measures relating to project governance and cybersecurity of government IT systems. As a strong advocate for digital inclusion, Mr Cheung actively promotes wider adoption of digital technologies in the community. With over 30 years of professional experience in the field of IT, his expertise contributes significantly to the continuous advancement of Hong Kong’s digital landscape.

David GEE

David has just retired in July 2024 and is building out his portfolio. He is an Advisor with Bain Advisory Network and an Advisor to JS Careers (Cyber Recruitment) and Emertel (Software Commercialization).

He is a seasoned technology executive with significant experience and has over 25 years’ experience in CIO and CISO roles across different industries and countries. At Macquarie Group David served as Global Head Technology, Cyber and Data Risk. Previously was CISO for HSBC Asia Pacific. His career as a CIO spans across multiple industries and geographies including – Metlife Japan, Eli Lilly and Credit Union Australia. He was winner CIO of the Year 2014, at CUA where he successfully completed a significant Transformation of Core Banking, Online and Mobile Banking systems.

David is past Chairman for the FS-ISAC Strategy Committee and awarded Global Leaders Award in 2023 for his contributions to the cybersecurity industry. David was appointed as Ambassador CI –ISAC Critical Infrastructure in 2025.

A regular conference keynote speaker and 150+ published articles for CIO Australia, Computerworld, ITNews and CSO (Cyber Security), David now writes for Foundry CIO.com , CSO.com and CIO.INC. His most recent bestselling book - the Aspiring CIO & CISO was published in June 2024.

Marco CECI

Marco Ceci is an accomplished cybersecurity professional with over two decades of experience spanning cyber security, technology, and management consulting. He currently serves as Chief Information Security Officer (CISO) for Société Générale's Commercial and Investment Bank with responsibility over the Asia Pacific Region. Previously, Marco worked in the UK where he held the UK CISO position for Société Générale's Commercial and Investment Bank. Marco holds Certified Information System Security Professional (CISP) and Cloud Certified Security Professional (CCSP) certifications along with a degree in Computer Science from the University of Florence.

David CHAN

David has over 18 years in the area of information security including risk management, penetration testing, application security, mobile security, DevSecOps and application development in various industries such as government, private sectors, utilities and FSI and is currently the Chief Information Security Officer (CISO) of Hang Seng Bank. Prior to joining the bank, David led a team of security consultants being part of the to deliver hands on security testing and solutions to various industries as well as led the cyber security operations center for incident management and was trained by various institutions in practical penetration testing and cyber security risk management. He has also taken various roles in the organization such as interim Head of IT for the Wholesale business within Hang Seng Bank giving him a different perspective and a holistic view of cyber security and IT as well as pragmatically breaking the virtual barriers in the organization.

Eric CHIU

Eric Chiu is the Head of Cloud and Innovative Business at China Mobile International, responsible for partnership development and innovation of new products and solutions.

Eric has over 16 years of experience in the telecommunications field, focusing on driving new technology and ecosystem development between telecom and partners, enabling enterprise customers innovate during digital transformation journey. Eric’s latest focuses are the strategy development on network-integrated emerging technologies, likes AI, Cloud Computing, Edge Computing, Cybersecurity, Software-defined Network, XaaS to address the latest challenges in Cloud-enabled and Cloud-native environments in the market among different industries.

Eric graduated from Hong Kong University of Science and Technology with a degree in Computer Engineering.

Richard CHIU

Richard is an accomplished Sales Engineering Manager at Thales, bringing extensive expertise in cybersecurity to clients in Hong Kong, Macau and Mongolia. With over a decade of experience, Richard specializes in architecting best-of-breed cybersecurity solutions that align with customer strategies and support their digital transformation journeys.

His background spans both technical and business development, enabling him to deliver innovative cloud and security solutions that modernize clients' operations. Richard previously served as a Cloud Solution Specialist which focused on cloud strategies and transformation for APAC enterprises.

Jackson CHOW

Familiar with the software development lifecycle for web applications, connected devices and secure communication technologies, Jackson Chow is passionate about penetration testing, red teaming and security research. His previous experience as a technical manager in a multinational laboratory group has provided him with a strong understanding of international quality standards and project management.

He is currently serving as the Cyber Security Director at Wizlynx Group, playing a key role in critical missions and high-stakes escalations while overseeing team management. He holds globally recognized certifications and continues to embrace new challenges in the field.

The major certifications he currently holds include: (ISC)² Certified Information Systems Security Professional (CISSP), PMI Project Management Professional (PMP)®, OffSec Certified Professional (OSCP), OffSec Experienced Pentester (OSEP), OffSec Wireless Professional (OSWP), Zero-Point Security Red Team Operator (RTO), Zero-Point Security Red Team Lead (RTL).

The primary types of assessments he is involved in include: Penetration Testing (Web Apps, Network, Wireless), Mobile Apps & IoT Security Assessment, Red Teaming Assessment, Social Engineering Assessment, Cloud Security Assessment.

Vincent CHU

Vincent has extensive experience in Cyber and Technology Risk, Governance, and Audit, both within the financial industry and from external advisory and auditing perspectives. In his current role as the Regional Head of IT Governance, Risk, and Compliance (IT GRC) for Daiwa in the Asia and Oceania Region, Vincent oversees the firm’s IT governance structures, risk management frameworks, and regulatory compliance initiatives. Leveraging his in-depth knowledge, Vincent also helps shape and refine Daiwa’s cybersecurity and technology governance strategies to meet the demands of a constantly evolving business environment. Prior to joining Daiwa, he held roles across all three lines of defense at major international financial institutions and a Big 4 accounting firm.

Sam COCO

Sam Coco is the Head of Global Information for Fidelity International. Based in Hong Kong since 2011, Sam oversees the information security program across the globe while also having oversight for cyber security in Asia Pacific.

Sam has over 15 years of experience in the security field. Prior to his current role, Sam was the Information Security, Senior Manager for Asia Pacific where his role focused on governance, risk and compliance well as supporting security assurance across the region. Previous to that, Sam was part of Fidelity International’s Corporate Security function where he was involved in internal investigations, background vetting and due diligence activities in addition to supporting information security in the region.

Sam started his career in Sydney, Australia in 2003 and held a number of technology roles before joining Fidelity International in 2005.

Sam holds a Bachelor of Technology degree from The University of Western Sydney. He is also a Certified Cloud Security Professional (CCSP), Certified Chief Information Security Officer (CCISO), ISO27001(2022) Lead auditor, Certified Information Systems Security Professional(CISSP) and a Certified Information Systems Auditor (CISA).

Dirk ENGELER

Dirk is a seasoned cyber security practitioner who has years of experience in developing and managing cyber security and technology risk across various industries. Based in Hong Kong for the past 16 years, he is a cyber security expert who brings a wealth of strategic, technical and operational experience to the table.

With over 28 years of experience leading information security and cybersecurity programme initiatives across the Asia Pacific region, Dirk has significant experience leading cyber security teams in large MNCs such as the Commonwealth Bank of Australia, National Australia Bank and ANZ Bank, as well as the world’s largest gaming organisations. He has led start—ups to become successful thriving organisations and has significant experience managing security teams in cyber security operations and defence, cyber threat intelligence, security strategy and architecture, and cloud security. A technical CISO with great business acumen, he excels in delivering technical solutions for cyber defense and threat intelligence to protect all sizes of organisations.

Johan FANTENBERG

Johan Fantenberg is an experienced technologist with a keen eye for emerging technologies and technology driven business opportunities. With more than 30 years of experience from the high tech industry he brings insight and innovation to Ping Identity, our customers and the digital identity market place. His career has seen him working with iconic companies such as Nokia, Ericsson and Sun Microsystems across industries such as financial services, telecommunications as well as international standardization.

Tom HUANG

Tom has extensive experience in financial service industry, with expertise in risk management particular in fintech solutions, AI, cybersecurity, cloud, and operational resilience. Tom is currently the Head of Technology and Operational Risk Management in Livi Bank, focusing on the risk management of innovative solutions that enhance customer experience in day-to-day banking. Prior to Livi Bank, Tom worked in global financial services companies, advising and transforming their technology and operation related risk management and business processes.

Paul JACKSON

Paul Jackson is a distinguished leader in digital forensics, cyber investigations, and incident response, with over 30 years of experience spanning public and private sectors. As the CEO of THEOS Cyber, Paul brings unparalleled expertise to the forefront of cybersecurity, having previously held pivotal leadership roles at Kroll, JPMorgan Chase, and the Hong Kong Police Force.

Paul’s career achievements include serving as Global Head of Cyber Investigations at JPMorgan Chase and Regional Managing Director of Cyber Security & Investigations for Kroll in APAC. He is renowned for his strategic handling of complex investigations, technology fraud, insider threats, and compliance programs, consistently delivering impactful results.

An active member of the global cybersecurity community, Paul has played key roles in developing international training standards and advancing the field through leadership positions with Interpol and the International Organization on Computer Evidence (IOCE). Beyond his executive duties, Paul remains dedicated to advancing digital forensics and cybercrime investigation, regularly contributing to industry conferences and publications.

Paul is also the host of THEOS Cybernova Podcast, where he engages with industry experts to explore emerging cyber threats, digital forensics, and cybersecurity strategies.

Eva KWOK

Ms. Kwok is a cybersecurity expert with more than 23 years of experience in the information system industry. She advises clients on cybersecurity strategy, cloud governance and security, identity and access management, data governance, privacy and protection, and security analytics.

Ms. Kwok leads the Cybersecurity practice in Hong Kong and continues the expansion of the firm’s cybersecurity capabilities in the Asia-Pacific region. She specializes in cybersecurity readiness, specifically implementation services, to help clients bolster their cybersecurity protections ahead of incidents.

Prior to joining FTI Consulting, Ms. Kwok served as the Cyber Lead of Deloitte China – Hong Kong, focused on cybersecurity and technology risk consulting. For more than 16 years, she worked as a Partner of the Risk Advisory practice in the Deloitte Hong Kong office. There, Ms. Kwok led and supervised cyber projects for clients across the financial services and public sector.

Ms. Kwok has significant experience with Hong Kong Monetary Authority (HKMA) regulatory-related assessments, including the Cyber Resiliency Assessment Framework (CRAF), TME-1 assessments, customer data protection (CDP) assessments, TMG-1, and SWIFT assessments.

Ms. Kwok holds a B.S. in Computer Science from the University of Waterloo. She is a certified PMP, CCSK, CISSP, and ITIL Practitioner. Ms. Kwok completed the ISO/IEC 42001 certification, further underscoring her commitment to ethical and responsible AI development.

Lanis LAM

Lanis is a Partner in the Technology Risk and Cybersecurity Consulting practice of KPMG. She is an experienced leader in the field of technology risk and cybersecurity risk management with over 18 years of IT consulting and industry experience. She has a proven track record in helping financial institutions in designing, implementing or reviewing technology risk management framework, cybersecurity strategy and controls. Her expertise spans across various areas such as technology outsourcing, cloud technology, third party management, cyber security, data protection, system resilience, data analytics, business continuity plans, etc.

Prof Jason LAU

Jason is currently appointed to ISACA’s global Board of Directors as well as ISACA’s official Innovation and Technology Committee. Jason is a seasoned cybersecurity and data privacy professional with over 23 years of experience working with global Fortune 500 companies, where he currently serves as the chief information security officer for a global FinTech company, and previously held cybersecurity advisory leadership positions at Microsoft. In addition, Jason serves as an adjunct professor for cybersecurity and privacy at the HKBU School of Business and an elected official member of the Hong Kong Standing Committee on Technological Developments for the Privacy Commissioner for Personal Data (PCPD).

Jason is part of the World Economic Forum expert network, Centre for Information Policy Leadership (CIPL), APAC Strategy Committee for FS-ISAC, and is a contributor to the Forbes Technology Council is a sought after industry speaker on Cybersecurity and AI.

Jaewon LEE

Jaewon is currently Chief Information Security Officer / Head of Risk and Control for APAC at Mizuho Bank, responsible for driving and running APAC-scale cybersecurity and technology risk initiatives to establish good security posture in the region. Prior to working at Mizuho, he worked in various multinational banks such as ABN AMRO Bank, Citibank, ING Group, Morgan Stanley, and Standard Chartered Bank, where he focused on Information Security, Technology Risk and IT Audit and applied the best practices to his global / regional assignments. He has great interest in Artificial Intelligence, Machine Learning, and Data Management and contributed articles of various topics to ISACA. He is also currently a chapter officer of this organization.

John LEE

John Lee has 18 years of experience in cybersecurity and IT operations, building holistic expertise spanning architecture and design to operations and leadership. As an Associate Director at AIA, he is responsible for first-line cybersecurity functions and processes, ensuring robust protection of critical assets.

Since relocating to Hong Kong in 2019, John has led large technology transformations, successfully introducing AI/ML and automation to streamline security processes and enhance threat detection. He has also effectively managed major incidents and crises, safeguarding the organization's reputation and minimizing potential damage.

Tony LEE

Tony Lee is the Head of Consulting at Trend Micro – a global leader in cybersecurity solutions. In this role, he oversees the delivery of security counsel and solution consultations to prominent IT entities and key channel partners in Hong Kong.

With a career spanning over a decade at Trend Micro, Tony has cultivated a 15-year history as a cybersecurity technical consultant. His expertise extends across strategic planning, requirements analysis, and a specialized focus on cloud security deployment, cyber threat response, and the analysis of emerging technologies.

As a technology evangelist at Trend Micro, Tony is a distinguished speaker at major industry events throughout the region. His reputation is built on expert insights into evolving cyber threats, including modern attack techniques, annual security forecasts, phishing technologies, contemporary cybercrime trends, ransomware, and APT attacks.

Witt LIN

Witt has over 10 years of experience in network and security. With a broad knowledge of technology and a deep understanding of the market, Witt can always understand customers’ needs and develop customer-centric solutions to improve customers’ business security. Excels in crafting tailored solutions that not only address immediate challenges but also align with long-term goals.

Alva MAK

Alva is a cybersecurity expert with over 19 years of information security experience including risk management, penetration testing, application and mobile security, threat hunting and incident management in FSI. He is the Chief Information Security Officer (CISO) of Airstar Bank and responsible for establishing and maintaining robust security governance framework and controls to protect the bank assets and response to the latest security threats.

Prior joining the Airstar bank, Alva served as the regional technology risk lead and cyber security head in different banks and insurance companies, focused on enhancing the security and operational risk processes and controls in holistic view.

Alva also serves as the part-time lecturer for cybersecurity in HKU Space. And he holds an MSc of IT (Cybersecurity), CISA, CISSP and CSSLP.

Murrey MAK

Murrey is an experienced leader in systems development and deployment, cybersecurity, risk governance and control advisory, corporate auditing, process transformation and project management, spanning in the global and domestic banks in the Asia-Pacific and Latin American regions, based in Tokyo, Shanghai, Mexico City and Hong Kong. In his professional acumen behind technology and operational risk strategies at Bank of East Asia, he currently leads particularly in the realms of operational resilience and third-party risk management. With a notable tenure as Chief Administration and Risk Officer at HSBC and Hang Seng Bank, Murrey consistently showed his outstanding leadership in financial management, corporate security, business continuity and incident management. In addition to his corporate achievements, he actively mentors at Hong Kong Science and Technology Park and offers strategic counsel to several innovative FinTech companies specializing in artificial intelligence business solutions.

Paul ONG

Paul Ong is a seasoned cybersecurity expert based in Hong Kong SAR, renowned for his strategic vision and execution in navigating complex cybersecurity landscapes. With over 15 years of experience in the technology sector, he has built a strong reputation as a trusted advisor, helping enterprises strengthen their cyber resilience.

Currently, Paul is the Associate Director of Cyber & Network Solutions at Singtel, where he leads cybersecurity initiatives across Greater China, Japan, and South Korea. His expertise and commitment to excellence have earned him multiple industry accolades, including the Cyber Security Professional – Bronze Award for Communication Management and the Cyber Security Service Excellence Award, jointly presented by the Hong Kong Police Force (CSTCB), GovCERT.HK, and HKCERT.

Vivian POON

Before joining CLSA as Head of Information Security, Vivian worked at start-up’s in Silicon Valley and financial institutions such as Goldman Sachs and Morgan Stanley. She held various roles such as Global Head of Networks, Chief Information Security Officer, and Data Security Engineer. Vivian is passionate about security and speaks at local schools to promote security awareness.

Perry POW

Perry Pow is the Vice President of Global Cybersecurity at State Street Bank & Trust for Asia Pacific. He is based out of Hong Kong and leading a team to oversee key aspects of cybersecurity and data protection, run mature programs in vulnerability management and prioritization, regularly conduct penetration testing and red- and blue-team exercises, support incident management and run 24x7 security operation centres (SOC) by developing data loss prevention and cloud security alerts handling procedures for SOC to follow. He collaborates with a global team to help adept and evolve the security posture to build a sound governance model that all of these components work well together.

He has over 20 years of experience in financial services and telecom industries spanning across technology auditing, enterprise risk management, IT governance, risk and compliance, as well as cyber resiliency. He was one of the standing committee members of Hong Kong Whole Industry Simulation Exercise (WISE) in 2015 who contributed to infrastructure design and cyber-themed scenarios. Prior to State Street, he worked for PCCW and Telstra on fraud investigation and revenue assurance.

Perry serves as the Chair of the Hong Kong Corporate Citizenship Council of State Street which is responsible for oversight of community programs including grant making, volunteering and STEM education activities. The HKCCC accomplishments brought the CEO’s Excellence Award for Perry in 2019, 2022 and the Volunteer Honour Roll in 2021 and 2024.

Perry graduated from the University of British Columbia with an honour degree in Computer Engineering. He holds an MBA and is married with two children.

Anthony WAI

Anthony Wai is the APAC Security Sales Engineer for Check Point External Risk Management (formerly Cyberint). Anthony is responsible for all pre-sales activities in the APAC Region. Anthony is a cyber security veteran who brings 20+ years of experience working for various large companies like McAfee, HPE Aruba Networks and Sophos. Anthony has been the trusted advisors for his customers with extensive knowledge of security solutions from endpoint to network to cloud and from compliance to mobile to applications.

Before joining Cyberint, Anthony was working for another Israeli startup that focuses on Cyber Threat Intelligence (CTI) solution which helps customers understand their exposure in the deep and dark web and helping them with integration with their existing investment like TIP, SIEM or SOAR platforms to provide better visibility and play book remediation. After joining Cyberint, Anthony has been focusing on External Risk Management solutions which not only include CTI but also leverage Attack surface Monitoring (ASM) that helps customer discover their attack surface as well as leverage Digital Risk Protection that detects active phishing websites and impersonation attacks on social media.

Anthony brought a diverse working experience working from large corporations to small start-ups. Anthony has cross-cultural experience managing large teams of sales engineers across different countries and regions within APAC. Anthony holds a Bachelor Degree of Computer Science from University of British Columbia in Vancouver, Canada, and a Master degree of Business Administration from Hong Kong University of Science and Technology.

Jonathan WONG

Jonathan is currently the Head of Security and Resilience for Invesco based in HK primarily responsible for driving the information security and resilience strategies and initiatives, risk reduction and improving the overall security maturity in the Asia Pacific region. Prior to Invesco, he has held various security roles in information risk management and consultancy serving various industries including financial services, technologies services and manufacturing over a course of more than 20 years.

Ricky WOO

Ricky is currently the Executive Director, Chief Information Security Officer of DBS Hong Kong. In his current role, he is responsible for establishing and maintaining robust security governance framework to make sure that information and digital asset of the bank are adequately protected. Before joining DBS, Ricky was the Head of Technology Risk Management of Bank of China (Hon Kong) overseeing the entire technology risk governance framework and various control measures of the institution. During his tenure, the institution won the First Computer IT Governance Achievement Award from the Information Systems Audit and Control Association (ISACA), and it was the only winner of non-public sector.

Mr Woo has held senior management positions in various international consulting firms, heading the technology risk consulting, IT auditing and consulting services in Mainland China and Hong Kong. He was appointed as the Convenor of Cyber Security Specialist Group of Hong Kong Computer Society from 2018 to 2022 and he is now the advisor of the group. He has shared his insight and advice on cybersecurity topics in many newspapers and publications. In addition, he is the organizer of several large-scale cybersecurity forums and seminars, and contributed in promoting cybersecurity and experience sharing in the industry.

Wilson YAN

With experience in IT security industry over a decade, Wilson has developed the necessity of knowing and working with not just security solutions but all technology that supports a business, from networks to databases, to server platforms and on to applications, then web security and mobile. His greatest work passion is identifying and solving problems! Knowing technology is great but marrying technology to solve problems, that’s the secret to building effective solutions. Communication and story telling is essential to building human connections, esp. to anyone without technical background.

Ask me about my “briefcase demo” explaining PKI.

Dr Richard ZHAO

Dr Richard Zhao has 20+ years of professional experience in telecom and network security, and is CISSP, ITIL, and BS7799 certified. Currently, he works for NSFOCUS Inc. as Chief Operating Officer, International Business, responsible for the overall business operations outside of China, including NA, APAC, EMEA, LATAM, etc. He worked for NSFOCUS as Chief Technology Officer and SVP Global Threat Research previously. Before joining NSFOCUS in Sept. 2009, he was the Director of Architect and Security Operations at Lenovo. Prior to Lenovo, he worked for Computer Associates as Principal Consultant in China from 2003 to 2006. From 2000 to 2003, he worked for iS-One as Chief Strategy Officer, responsible for R&D, security consulting service and more. From 1997 to 2000, he worked for China Telecom as the head of network security affairs. Dr Zhao obtained his B.Sc., M.Sc. and Ph.D. degree from Peking University in 1991, 1994, and 1997 respectively, majoring in physics and electronics.

Dr Zhao is an active contributor to Cloud Security Alliance, the founder of Greater China Chapter, winner of Ron Knode Service Award in 2012. He was Board Member of Silicon Valley Chapter of Cloud Security Alliance. His research interests include enterprise security strategy, cloud computing and security, security compliance and metrics, etc. More details about his career and thoughts could be found at LinkedIn (http://www.linkedin.com/in/zhaol).