Category: Events

Cloud Security Alliance Hong Kong & Macau Chapter is proud to support the PISA JAM 2017, an one day security conference to gather security buddies and share their knowledge and information.

In the morning section, experts from different areas of security will talk about the up-to- date security trends and their research and experience. In the afternoon section, each security interested group will provide a closed sharing, discussion or even workshop to the participants. Participants can join any groups to discuss and share, based on their interests. Everyone can gain and give through the platform of PISA Security Jam.

Date: 27 May, 2017 (Saturday
Time: 9:30 – 17:00
Venue: Y302, Hong Kong Polytechnic University, Hung Hom

For details, please visit the event page: https://goo.gl/umQn5I

Cloud Security Alliance Hong Kong & Macau Chapter will hold its annual summit in conjunction with the Cloud Expo Asia on May 24-25.

The year the CSA HKM Summit will divide into two days.  On May 24 there will be a Financial Cloud Forum where speakers from the banking and finance industry will talk about various aspects of cloud adoptions and security issues.

On the second day the Hong Kong Summit will focus more on cloud security, including its concerns, application, latest development and best practices.

Cloud Expo Asia Hong Kong is one of the biggest technology event in Asia.  It brings visitors an unrivalled line up of world-class vendors, hundreds of hours of free content from the industry’s leading practitioners and first class peer networking opportunities.

 

Date:               24-25 May 2017 (Wednesday to Thursday)
Time:               9:00am – 5:00pm
Venue:            Hong Kong Convention and Exhibition Center

For details of the Hong Kong Summit, click HERE

Presentation files:

Using Cloud Services to Enhance Mobile Apps Security in Minutes – Bernard Kan, Senior Consultant, HKCERT

Data-centric End-to-end Protection in the Cloud – Ian Christofis, Board Member, Cloud Security Alliance Hong Kong & Macau Chapter

Easy and Hard Points to Audit a Cloud Environment from Enduser Prespective – Ricci Ieong, Vice Chairman – Professional Development, Cloud Security Alliance Hong Kong & Macau Chapter

Using Cloud Services to Enhance Mobile Apps Security in Minutes – Frankie Leung, President, ISC2

CSA Knowledge Sharing Event provides an excellent opportunity for cybersecurity professionals to discuss the latest trends and developments in IT and in the process build a close-knitted cybersecurity community in Hong Kong and Macau.

This month we have invited Mr Iolaire McKinnon, Senior Consultant – Security, Risk and Complaince, at Amazon Web Services to deliver a talk entitled “Implementing DevSecOps – Evolving Security Culture”.

TOPIC
In this talk, Mr McKinnon will introduce the concept of DevSecOps; how using it can enable continuous compliance while allowing developers to deliver fast; and discuss the implications of applying DevSecOps strategies to a cloud environment, where infrastructure is also code.

THE SPEAKER
Iolaire McKinnon is the Senior Consultant for Security, Risk and Compliance for AWS in Hong Kong & Taiwan. He has a wealth of experience in financial services and online gaming, with roles as diverse as risk manager, web developer, and datacenter construction manager. Iolaire welcomes the new cloud future, and is glad that going to the datacenter at 2am to replace failing hard drives no longer has to be a thing.

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants can claim 1.5 CPE.

 

DATE: April 20, 2017 (Thursday)

TIME: 4:00 – 5:30 pm

VENUE: Room Z507, Core Z, The Hong Kong Polytechnic University, Hung Hom

Presentation File: CSA Knowledge Sharing Event – AWS Talk on DevSecOps 170420

CSA, PISA, ISC2 (HK Chapter), PolyU and Google jointly organised a security tech talk. Parisa Tabriz of Google (Google’s “Security Princess”) will be in Hong Kong to share her experience on Safe Browsing and browser security on Feb 6 2017 (Mon) from 7pm – 9pm.

Details of the Event:

Event	Safe Browsing & Evolving Security Threats
Speaker	Parisa Tabriz, Head of Chrome Security, Google (LinkedIn profile)
Date	February 6, 2017 (Monday)
Time	7:00 PM – 9:00 PM (1.5 CPE)
Venue	Room V322, Jockey Club Innovation Tower, The Hong Kong Polytechnic University, Hung Hom, Kowloon, Hong Kong (Map)
Language	English

Please register here

 

CSA Knowledge Sharing Event provides an excellent opportunity for cybersecurity professionals to discuss the latest trends and developments in IT and in the process build a close-knitted cybersecurity community in Hong Kong and Macau.

This month we have invited Mr Jeffrey Lau, Platform Lead of Ribose to deliver a talk entitled “Management of SaaS-specific risks”.

TOPIC:

SaaS providers have exploded in numbers in recent years. Practically every organization today has adopted SaaS services in one way or another. However, given the ease of adoption, coupled with a consumer-driven and instant gratification mindset, organizations often onboard SaaS services without necessary precaution and scrutiny.

By nature of the cloud, SaaS services are subject to much greater threats than traditional IT. Without proper management of SaaS risks, SaaS services can easily become the weakest link in your organization, potentially endangering organization survival. In this session, we will enumerate risks and mitigation measures of adopting SaaS services from the cloud customer’s perspective to help protect your organization from SaaS-specific threats.

Presented by Jeffrey Lau, co-lead of the privacy practice at Ribose and member of CSA’s SaaS Governance workgroup, this session explains the notion of SaaS-specific risks including privacy risks, and best practices in managing them in this age of uncertainty.

THE SPEAKER

Jeffrey is Ribose’s Platform Lead, responsible for service-wide improvements of the Ribose secure collaboration platform. With a decade of software engineering experience, he holds bachelors and masters degrees in Computer Science from the University of Cambridge. He is passionate in protecting individual privacy rights, particularly on the privacy impact of technology as well as methods to mitigate them through technology. Jeffrey is a part of the CSA SaaS Governance and Internet of Things working groups, serves technical committees at the OpenID Foundation and is a lead auditor in information security management systems (ISO/IEC 27001), IT service management (ISO/IEC 20000-1) as well as business continuity management systems (ISO 22301).

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants can claim 1.5 CPE.

DATE: January 5, 2017 (Thursday)

TIME: 4:30 – 6:30 pm

VENUE: Room Z414, Core Z, The Hong Kong Polytechnic University, Hung Hom