Category: Events

Cloud Computing is already considered to be part of the “New Normal” solution. In our last event, our speaker from Cloud Product Vendor Palo Alto Networks introduced the concept on automate multi-cloud and container security environments. If you missed the previous event, you can go back to our previous event recordings and listen to the talk as well.

In the next Knowledge Sharing Event, we will look into another direction of Cloud aspects – Cloud Transformation.

The world has moved into a new paradigm, especially since COVID-19. In a post‑pandemic world, people are the new perimeter. Transformation is everywhere : Workspaces, Clouds, Threats and networks. How can we take advantage of the IT changes and new usages to improve security and cost efficiency? And how to find the right approach to build long‑term security strategies for change?

To help you better understand the topic, Cloud Security Alliance Hong Kong & Macau Chapter invited Security Solution Director of Orange Cyberdefense – Mr. Kevin Liu to bring us to the Intelligence-led security for Cloud Transformation. In this session, Kevin will share Orange Cyberdefense’s intelligence-led approach to help our customer to face the new reality of users and applications to the cloud, in the cloud and for the cloud..

Participants will claim 1 CPE.

DATE: 17 June, 2021 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar (in Cantonese)

SPEAKER: Kevin Liu, Security Solution Director, Orange Cyberdefense

TOPIC: Intelligence-led security for Cloud Transformation

THE SPEAKER:

Kevin Liu is a Security Solution Director for Orange Cyberdefense, a security business unit for Orange Group. He has more than 20 years’ experience in providing advisory and solution consultation in cybersecurity, infrastructure and cloud for large companies across Asia Pacific region. He is a speaker and demonstrator for major industry events in the region including HK ISS, APAC O2O digital resilience workshop and RSA Conference APAC. Kevin worked for many different major IT vendors including Microsoft, RSA Security, Symantec and Hewlett-Packard. Kevin is CISSP, CEH and ITIL certified.

REGISTRATION: https://csahkmkse2106.eventbrite.hk

In April, we covered the Data Security in Cloud at our Knowledge Sharing Event. In the coming Knowledge Sharing Event in May, we will come back to cloud and container security again.

Developers and DevOps teams are building and deploying code at an increasing pace. Containers and other cloud native technologies enable digital transformation. In order to secure these growing cloud native environments, enterprises need to integrate security into the software development lifecycle and protect running applications

This time we invited Palo Alto Networks cloud security architect – Felix Cheng to bring us to their Prisma Cloud solution through in-depth technical knowledge sharing. He will look into the container solution from a technical view covering how to configure, implement necessary rules and analyze incidents through collected logs.

He will share:

1. The best practices for container security to protect running containers in production as well as secure containers across the full application life
2. Provide unified visibility & secure Cloud Native Workload
3. Deliver an integrated set of capabilities to respond to threats and protect cloud-native applications.
4. Automate the remediation of vulnerabilities and misconfigurations consistently across the entire build-deploy-run lifecycle.
5. Demo 

Participants will claim 1 CPE.

DATE: 20 May, 2021 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar (in Cantonese)

SPEAKER: Felix CHENG, Cloud Security Architect of Palo Alto Networks

TOPIC: Automate your multi-cloud and container security environments with Prisma Cloud

THE SPEAKER:

Felix Cheng is the Cloud Security Architect for Hong Kong and Taiwan at Palo Alto Networks. He designed and deployed mission critical infrastructure for service providers, airports and casinos.  Over the last few years, he focused on software solutions such as application performance monitoring and analytics, cloud services and cyber security solutions.  In his spare time, he developed a simple mobile app that helped Wi-Fi engineers to perform quick site surveys.

REGISTRATION: https://csahkmkse2105.eventbrite.hk

In April the Cloud Security Alliance Hong Kong & Macau Chapter will bring you another critical topic on cloud security – Data Security in Cloud.

When we think about data security, we will definitely focus on data encryption in the cloud.  Nowadays, data encryption and protection in the cloud is no longer just focus on one platform, but to multi-cloud and hybrid cloud environment.

Recent surveys reveal that over 80% organizations are using two or more cloud service providers. These organizations have to maintain a high operational efficiency in a hybrid and multi-cloud environment, while ensuring sound security and attaining compliance effectively, all done at the same time.  

Our April seminar will demonstrate an industry-proven way of managing encryption keys in multi-clouds to secure your cloud asset.  We have invited Wood Lam from Thales Group to lead us through this topic.  At the session you will learn:

• What are the major concerns in migrating workloads to cloud
• How to leverage the latest security guidelines from CSA and the Hong Kong Government
• How to achieve “Security by Design” in a multi-cloud environment

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants will claim 1 CPE.

DATE: 15 April, 2021 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar (in Cantonese)

SPEAKER: Wood Lam, Sales Engineer at Thales

TOPIC: Accelerating security and compliance in a multi-cloud environment

THE SPEAKER:

Wood is a security consultant who advises and provides solutions to customers to facilitate their digital transformation journey like cloud migration, data protection and key management.

Drawing from his experience in serving government, FSI and large enterprise sectors, Wood will explain how to comply with local and worldwide regulations, while helping the managements and security conscious customers in meeting their business goals.

View the Presentation: https://youtu.be/Wy_b74Md3pk

The Presentation File: CSA HKM Knowledge Sharing Event – April 2021

Another great event is happening at the Cloud Security Alliance Hong Kong & Macau Chapter in March. Last month, we talked about securing cloud environment using SASE and Zero Trust. This month, we switched to secure the cloud environment from a Cloud Service Provider (CSP) perspective. This round, we invited Ken Zhang, Practice Manager of Amazon Web Services (AWS) to tell us the Top Ten AWS Security Tips.

In this session, you will hear fundamental recommendations for simple to implement, low or no cost AWS security solutions that offer potentially high impact. AWS services, including Amazon GuardDuty, AWS Security Hub and AWS CloudTrail enable better detection and response capabilities – making intrusion detection and incident response simpler and less costly than typical on-premises IT environments. It time allows, there would potentially be some AWS Console demo too. This will definitely be a resourceful session for you.

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants will claim 1 CPE.

DATE: 25 March, 2021 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar (in English)

SPEAKER: Ken Zhang, Practice Manager, Amazon Web Services (AWS)

TOPIC: Top Ten AWS Security Tips

THE SPEAKER:

Ken Zhang, Practice Manager of Amazon Web Services (AWS). Ken specializes in cloud, strategy, security, transformation, architecture and change management. He has experience helping organizations with their transformation journeys in banking, insurance, retail, health service and manufacturing. He also holds a variety of widely-recognized tech certificates and an MBA from a global top 30 business school. He is passionate about helping organizations to capture value and provide better experience to their customers.

View the Presentation: https://youtu.be/WyZv99TG5Dg

The Chinese New Year is coming. The Cloud Security Alliance Hong Kong & Macau Chapter wishes you Happy Chinese New Year.

We will continue our Knowledge Sharing Event after the Chinese New Year and the topic will be “How to leverage cloud platform to transform traditional security infrastructure to Secure Access Service Edge (SASE) and Zero Trust model to facilitate digital transformation”, which will be presented by Jones Leung of Zscaler.

In the “New Normal” situation, more company has to move away from existing design and implementation of securing corporate network through VPN to SASE. How to deploy and implement SASE is a hot topic.

Thanks for the success of cloud in the past few years, now there are far more innovative ways to operate our IT platform to support business growth and increase business agility, and the same can apply to securing a new digital enterprise. Secure Access Service Edge (SASE) is one of the most popular approaches to provide different business data access experience and coverage to new threats. This session is to share common approaches to deliver SASE, their fundamental differences, pros and cons for different approaches, and also how SASE can bring you closer to adopting zero trust access model.

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants will claim 1 CPE.

DATE: 25 February, 2021 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar (in Cantonese)

SPEAKER: Mr. Jones Leung, Systems Engineering Manager, ASEAN and Greater China, Zscaler, Inc

TOPIC: How to leverage cloud platform to transform traditional security infrastructure to Secure Access Service Edge (SASE) and zero trust model to facilitate digital transformation

THE SPEAKER:

Mr. Jones Leung has been with Zscaler for more than 7 years, promoting cloud transformation to enterprises and the industry. Over the past 20 years, Jones worked for many different top IT companies, such as Palo Alto Networks, Cisco and Blue Coat, and is a very well-recognized and knowledgeable technology evangelist in the region.

REGISTRATION: https://csakse2102.eventbrite.hk

Year 2020 is over. Welcome 2021.

In this year Cloud Security Alliance Hong Kong & Macau Chapter will continue to adopt the “New Normal” arrangement for our activities. In fact, with all your support in the last few months, it seems that with the new method, communication channel and sharing session time, more members and participants can enjoy the power of cloud computing. This year we will arrange more sharing both from cloud customers, cloud service providers and other experts.

“Start Big is always better to start with Big CSP player”. As you all know, Azure Cloud is one of the largest Cloud Service Providers, we have arranged the first sharing event with Microsoft Cloud Solution Architect in Hong Kong to cover DevOps Security Best Practices in Microsoft Azure.

Ms. Wai Man HUI, cloud solution architect will lead us through Azure’s DevOps Security Best Practices. During the talk, Wai Man will tell us more about DevOps with GitHub and Azure, how to protect secrets properly in Azure cloud environment. She will also tell us how to enhance security in Azure environment through demonstration in real life too.

The topics include :

– DevOps with GitHub And Azure
– Best practices for strong secret management
– How Key Vault can be used to enhance the security of your Azure environment

Please do not miss this opportunity to learn from the expert and get connected with your peers.

This is just the beginning of our cloud security journey in 2021. More sharing and event will be coming.

Participants will claim 1 CPE.

DATE: 28 January, 2021 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar (in Cantonese)

SPEAKER: Wai Man HUI, Cloud Solution Architect, Microsoft, Hong Kong

TOPIC: DevOps Security Best Practices with Microsoft Azure 

THE SPEAKER:

Wai Man HUI is a Cloud Solution Architect in Microsoft (Hong Kong) team that specialised in DevOps area. She worked on development and implementing business solution for company size from 50+ employees to 50,000+ employees. She also helps company in transforming their development and development workflow from traditional environment to cloud platform.

PRESENTATION FILE

Christmas is coming and we all wish Covid-19 will be over soon. Cloud Security Alliance Hong Kong & Macau Chapter is arranging another Knowledge Sharing Event on December 17, 2020, a week before Christmas.

As a continuation of the last two Knowledge Sharing Event, we continue to focus on hot cloud security topic – PaaS and Microservices Security topics.

Security microservices provide security functionality, such as encryption and authentication, to calling applications. As microservices (e.g. ‘serverless’ RESTful JSON APIs) become more common in both the cloud and internal architectures, there is a trend towards including hardware security module (HSM) based services, making strong security functionality readily available to applications. In this session, you will learn:

* Why microservices are becoming fashionable
* How security microservices make security easier
* Examples of security microservices

This talk will be delivered by Ian Christofis, Principal Managing Consultant, nCipher Security (an Entrust company).

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants can claim 1 CPE.

DATE: December 17, 2020 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar

SPEAKER: Ian Christofis, Principal Managing Consultant, nCipher Security (an Entrust company)

TOPIC: Security Microservices – A New Trend

THE SPEAKER:

Ian Christofis is a specialist in information security, including cryptographic security, Public Key Infrastructure (PKI) and identity & access management. He combines a strong understanding of the commercial and strategic business issues with a detailed knowledge of the technology.

He is a Certified Information System Security Professional (CISSP), a Founding Board Member of the Cloud Security Alliance (CSA) Hong Kong & Macau Chapter, sits on the Editorial Board of the Professional Information Security Association (PISA) Journal, and a member of the International Association for Cryptologic Research (IACR).

WATCH PRESENTATION: https://youtu.be/dga_gxwfftQ

PRESENTATION FILE: https://bit.ly/2KvbKM2

In last month’s knowledge sharing event, we focused in the methodology to develop and secure our PaaS environment. Do we still need to secure the cloud stem? Do we still need to secure the cloud architecture? How to secure that environment?

The common security challenges faced in the cloud stem from misconfiguration, compliance, and an exploding set of cloud infrastructure services. This session will cover how to combat these challenges and gain visibility into security, compliance, and governance vulnerabilities on your public cloud infrastructure.

We will go over the latest security offering that helps teams build a better cloud architecture. You can also look forward to hundreds of out-of-the-box, step-by-step remediation guides, enabling DevSecOps teams and cloud architects to quickly resolve vulnerabilities.

This upcoming knowledge sharing event, we invited Tony Lee, Head of Consulting of Trend Micro will lead us to the “Cloud operational excellence – Guardrails to build exceptional architecture & avoid misconfigurations“.

Please do not miss this opportunity to learn from the expert and get connected with your peers.

Participants can claim 1 CPE.

DATE: November 05, 2020 (Thursday)

TIME: 12:30 – 01:30 pm

VENUE: Webinar

SPEAKER: Tony Lee, Head of Consulting of Trend Micro

TOPIC: Cloud operational excellence – Guardrails to build exceptional architecture & avoid misconfigurations

THE SPEAKER:

Tony Lee is the Head of Consulting at Trend Micro – a global leader in cyber security solutions. He is responsible for the provision of security advice and solution consultation for large scale IT users and key channel partners in Hong Kong.

Tony has more than 13 years experiences in strategic planning and requirements analysis, with special focus on cloud security deployment, cyber threats response and emerging technologies analysis. As a technology evangelist for Trend Micro, he has been acting as a high profile speaker for major industry events in the region, specialized in evolving cyber threats such as ransomware and APT attacks.

Tony is a graduate of the Hong Kong Baptist University, where he received a Bachelor of Science degree in computer science.

REGISTATION: https://csakse2011.eventbrite.hk

Earning the globally recognized #CCSP cloud security certification is a proven way to build your career and better secure critical assets in the cloud. Join ISC2’s 60-min live info-session on September 10 (Thursday) at 14:00 to learn more about the CCSP, its exam domains, experience requirements and available study resources. And, get to ask any question that will support your certification journey!

(ISC)² Info Session

Topic: CCSP – The Industry’s Premier Cloud Security Certification
Date: September 10, 2020 (Thursday)
Time: 14:00-15:00

Register now: https://www.isc2.org/News-and-Events/Webinars/APAC-Webinars?commid=432478&utm_source=csahk