CSA HKM Knowledge Sharing Event – August 2022

With an exploding set of cloud infrastructure services and an increasing number of stakeholders involved in infrastructure and security decisions, the cloud has formed the perfect storm for security. In the ever-evolving threat landscape, organisations need capabilities in place to help detect and respond rapidly to threats that may breach defenses. Today, many organizations use multiple, separate security layers to detect threats across their email, endpoints, servers, cloud infrastructure, and networks, leading to siloed threat information and an overload of uncorrelated alerts.

In the Knowledge Sharing Event organised by Cloud Security Alliance Hong Kong & Macau Chapter on August 11, our guest speaker, Alan Leung from Trend Micro will introduce ways to broaden an organisation’s scope of detection and response across endpoint, email, networks, servers, and cloud workloads; as well as collecting and analyzing diverse data quickly empowers teams to understand, mitigate, and respond to risk.

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants will claim 1 CPE.

DATE: August 11, 2022 (Thursday)
TIME: 12:30 – 01:30 pm
FORMAT: Webinar (in Cantonese)
TOPIC: Enhanced Visibility to Mitigate Risks on Cloud Workload
SPEAKER: Alan Leung, Consultant, Trend Micro

CONTENT:

As more organizations are moving their server workloads to the cloud to enjoy the many advantages of hybrid cloud computing, they also face more risks and threats. Organizations must ensure compliance requirements are met, and that they have unified security and visibility across all workloads such as physical servers, virtual, cloud, or containers. Join this session to understand the crucial elements of a comprehensive detection and protection and how to leverage enhanced visibility to complement the protection.

THE SPEAKER:
Alan is a Consultant at Trend Micro – a Global leader in Cyber Security solutions. He provides Security advise and Technical consultation to Enterprise Customers.

Prior to joining Trend Micro, Alan was a Technology Consultant with more than 10 years of IT experience. He has strong technical background in datacenter, cloud and network security.

He also obtained the CCIE and a number of certificates in cyber security from a number of vendors.

Registration: https://csahkmkse2208.eventbrite.hk

[CSA Report] SaaS Governance Best Practices for Cloud Customers

Prepared by the SaaS Governance Working Group under Cloud Security Alliance, the SaaS Governance Best Practices for Cloud Customers report provides a baseline set of SaaS governance best practices to help organizations leverage the full potential of SaaS environments. With the global SaaS industry estimated to reach 441 billion dollars* by 2027, a critical question grows: can organizations shift how they handle cybersecurity?

Adopting SaaS applications and solutions requires updated protocols for protecting data. This new publication provides guidance and defines three components for a cohesive strategy toward SaaS governance and security.

Organizations that fail to adopt an updated security governance mindset may experience: 

  • Breaches that disclose sensitive data 
  • Revenue loss
  • Tarnished reputation
  • Damaged customer trust
  • Regulatory consequences 

Learn how to implement practices that protect sensitive data throughout the entire SaaS lifecycle – evaluation, adoption, usage, and termination. 

Download the report: https://cloudsecurityalliance.org/artifacts/saas-governance-best-practices-for-cloud-customers/

CSA and Google Cloud Launch Survey Report on Measuring Risk and Risk Governance

In collaboration with Google Cloud, CSA released the new survey report Measuring Risk and Risk Governance to provide a deeper understanding of public cloud adoption and risk management practices within the enterprise.

The goal of this research is to assess the maturity of public cloud and risk management within enterprises. Among the survey’s key findings:

  • There is no consistency of data classification across the use of cloud platforms and services — only 21% of users are utilizing cloud service data classification.
  • More than half (52%) of organizations reported that they did not evaluate the risk of their cloud services being used after procurement as product features or business environments changed.

This study shines a light on the opportunity enterprises can take to manage and measure their risk, and will hopefully lead to improved risk management practices.

​​“Increasingly, cloud is becoming … more of a means to manage risks. Continuously evaluating your risk status allows enterprises to properly configure and maximize the effectiveness of [your] security solutions, which in turn, protects their assets and improves business productivity,” said Phil Venables, Chief Information Security Officer and Vice President of Google Cloud. 

This study confirms that IT modernization into the cloud is the best path toward viable risk management.

Download it here.

[CSA Research] – Top Threats to Cloud Computing Pandemic Eleven

Cloud Security Alliance’s Top Threats reports have traditionally aimed to raise awareness of threats, risks, and vulnerabilities in the cloud. Such issues are often the result of the shared, on-demand nature of cloud computing.

In this sixth installment, CSA surveyed 703 industry experts on security issues in the cloud industry. This year the respondents identified eleven salient threats, risks, and vulnerabilities in their cloud environments. The Top Threats Working Group used the survey results and its expertise to create the 2022 Top Cloud Threats report – the ‘Pandemic Eleven’.

Download it here: https://cloudsecurityalliance.org/artifacts/top-threats-to-cloud-computing-pandemic-eleven/

CSA HKM Supports Digital Practice Summit Asia

Cloud Security Alliance Hong Kong & Macau Chapter is elated to be an Association Partner of Digital Practice Summit Asia, part of AF Show Asia series taking place LIVE on June 15!

Digital Practice Summit Asia is the online technology event of the year for accountants in practice. With 20+ LIVE sessions across 2 Channels, it’ll offer the audience the greatest insights to help growing the accounting practice post pandemic in 2022 and beyond.

DATE: June 15, 2022, Wednesday

TIME: From 9:00 am

FORMAT: Online

Get your FREE virtual pass now: https://bit.ly/3MWr9Qf

CSA HKM Supports Hong Kong ICT Award 2022

The Hong Kong ICT Awards aims at recognising and promoting outstanding information and communications technology inventions and applications, thereby encouraging innovation and excellence among Hong Kong’s ICT talent and enterprises in their constant pursuit of creative and better solutions to meet business and social needs.

The Award was established in 2006 with the collaborative efforts of the industry, academia and the Government. Steered by the Office of the Government Chief Information Officer, and organised by Hong Kong ICT industry associations and professional bodies. The Cloud Security Alliance Hong Kong & Macau Chapter is a supporting organisation this year.

There are eight categories under the Hong Kong ICT Awards 2022. There will be one Grand Award in each category, and an “Award of the Year” will be selected from the eight Grand Awards by the Grand Judging Panel. HKCS is officially appointed by OGCIO to be the Leading Organiser of the Hong Kong ICT Awards 2022 – Smart Business Award category. The Smart Business Award covers 3 streams, including Solution for Business and Public Sector Enterprise, Solution for SME as well as Emerging Technologies.

For details please visit: https://hkcs.org.hk/ictawards/

CSA HKM Announces 2022/2023 Management Team

Cloud Security Alliance Hong Kong & Macau Chapter announced a new management team for 2022/2023 after their AGM on March 31, 2022.

PositionName
ChairmanClaudius Lam
Deputy Chairman (Hong Kong)Harry Pun
Deputy Chairman (Macau)Terry Cheung
Vice Chairman – Secretarial & TreasurerOtto Lee
Vice Chairman – Membership & External AffairsVince Wan
–      Membership (Events & Activities) DirectorHenry Ng
Vice Chairman – Programs & ResearchSamuel Ng
–      Research DirectorFrank Chow
Vice Chairman – Professional DevelopmentRicci Ieong
–      Education Director (Hong Kong)Kevin Liu

The team will work together to further the development of CSA HKM in the year to come.

Member Discount for HKPC Courses: Securing Public Cloud Deployment / Securing PaaS Cloud Deployment

Cloud Security Alliance Hong Kong & Macau Chapter is the supporting organisation of these two courses organised by  the Hong Kong Productivity Council.  Our member will receive special discount when joining these courses:

Securing Public Cloud Deployment
The unforeseeable pandemic has accelerated digital transformation of many corporations. Some of them will consider migrating their company data from premise servers to cloud services. However, IT practitioners should be aware of the potential risks and security threats of this move. HKPC will soon host the “Securing Public Cloud Deployment” 2-day training course. This intensive course will cover practical knowledge to deploy web applications in typical public cloud environments as well as theories and hands-on cases of cloud-based architecture design and management.

Date: 28-29 June 2022
Time: 09:30-17:00
Venue: HKPC Building, 78 Tat Chee Avenue, Kowloon Tong, Kowloon
Details: http://u.hkpc.org/public-cloud

Securing PaaS Cloud Deployment 
There are more and more software developers use Serverless PaaS cloud computing to deploy containerised applications these days. If you want to enjoy the convenience of the cloud computing and keep your application safe, you are recommended to join the upcoming “Securing PaaS Cloud Deployment Cloud” course hosted by HKPC. Experts in the field will provide you with practical knowledge of deploying microservices with Dockers and Kubernetes securely in a public cloud environment.

Date: 5-6 July 2022
Time: 09:30-17:30
Venue: HKPC Building, 78 Tat Chee Avenue, Kowloon Tong, Kowloon
Details: http://u.hkpc.org/paas-cloud

CSA HKM Supports “Building a Cyber Security, Cloud Protection and Privacy Framework” Workshop

Cloud Security Alliance Hong Kong & Macau Chapter is a supporting organisation of the “Building a Cyber Security, Cloud Protection and Privacy Framework” Workshop organised by the Hong Kong Productivity Council.

This workshop will explain in detail the CSF & CCM frameworks and how they can be applied to protect an organisation’s critical assets and cloud usage. Practical examples will be shared to illustrate the best practices and tips of adopting these two frameworks.

Date:                     11 May 2022

Time:                     09:30-17:00

Venue:                 HKPC Building, 78 Tat Chee Avenue, Kowloon Tong, Kowloon

Details and enrolment: http://u.hkpc.org/cloud-protection.

CSA HKM members will receive special discount on the workshop fee.

CSA HKM Supports 3rd CXO Forum

The Cloud Security Alliance Hong Kong & Macau Chapter is pleased to support the 3rd CXO Forum organised by Kornerstone.

More than a year into the COVID era, there are too many businesses scorched by the impact of business + customer isolation. With the dying down of infection numbers and the advent of vaccines, the business community is ready to be reborn, rising out of the ashes. Can your business be the same?

With multiple themes include “Meeting Growth Challenges in a Digital Age”, “Think like a Technology Company – Innovation and Transformation”, “Reinvent the Organisational Model”, “Data-centric Business Strategies” and “Success in the Customer Experience Economy”, the speakers at the event will bring you all the insights for your success, or survival.

DATE: December 2, 2021 (Thursday)
TIME: 9:00 am – 12:30 pm
FORMAT: Physical event
VENUE: 7/F Cordis, Hong Kong, 555 Shanghai Street, Mongkok
DETAILS AND REGISTRATION: https://www.cxoforum.hk/