Cyber Security concerns are the Top of Mind for ASEAN Enterprises in 2022
Initiatives from ASEAN Governments to Mitigate Cyber Incidents
Cyber Security is a key discussion point at AIBP activities
Cybersecurity and Risk Management in Thailand
26 September 2023, Bangkok, Thailand
Key Takeaways:
Taking a Proactive Approach to Cybersecurity: The panel discussion emphasized the utmost importance of integrating security measures into systems right from their inception. This forward-looking strategy is regarded as a catalyst for innovation promotion and vulnerability reduction.
Cybersecurity Talent Shortage & Funding Gap: Additionally, the panel highlighted the pressing need to address the cybersecurity challenge, which encompasses both the significant funding gap and the shortage of cybersecurity talent. To effectively combat cyber threats and vulnerabilities, there is a call to invest in cybersecurity education and training to equip individuals with the necessary knowledge and skills.
Privacy and Security Interdependence: "You cannot have security without privacy and vice versa, you cannot have privacy without security," as mentioned by Togio, Prakorn Chayanuwat, Group Data Protection Officer (Group DPO) Head of Data Governance, PDPA Compliance & DPO/Privacy Office, BDMS Group 2 – BNH Hospital and Samitivej Hospitals Group underscores the interconnected nature of privacy and security. It highlights the importance of considering both aspects in cybersecurity and data management strategies. Reflecting on privacy management is essential in ensuring a holistic approach to cybersecurity and privacy in digital transformation efforts.
Managing Digital Risks in Indonesia
19 September 2023, Jakarta, Indonesia
Key Takeaways:
More Funding for Cybersecurity Needed: Based on the in-conference survey, many Indonesian enterprises recognise the importance of cybersecurity for digital transformation but allocate a relatively small portion of their IT budgets to it. Specifically, 62% believe that more than 20% of their IT budget should be dedicated to cybersecurity, but over 50% currently allocate less than 5% to cybersecurity.
Need for Comprehensive Cybersecurity Approach: The panel discussion highlighted the critical need to incorporate cybersecurity measures into systems from their inception. There is a significant gap in cybersecurity funding, and addressing this gap requires collaborative efforts involving the government, private sector entities, and communities to fortify the cybersecurity ecosystem
Balancing User Experience and Security: Cybersecurity must strike a balance between user experience and security measures to foster adoption. This is especially important considering that employees are a critical part of the cybersecurity defense, and security awareness training and education programs are essential to establish a security-conscious culture. Cybersecurity should be viewed as an enabler of digital transformation and innovation, not as a hindrance.
Balancing Innovation & Security in Vietnam
1 August 2023, Ho Chi Minh City, Vietnam
Key Takeaways:
Cybersecurity as Priority in Vietnam: Organizations in Vietnam prioritize cybersecurity, focusing on securing applications, infrastructure, and end users. Cloud utilization, security integration in software development, and updated software testing are strategies for application security. Employee training, two-factor authentication, and conditional access enhance end-user security.
Balancing Innovation and Security: Balancing innovation with security involves layering security controls within applications for user usability. Government agencies like the National Cyber Security Center (NCSC) collaborate with local firms to secure critical infrastructure, emphasizing cybersecurity awareness and staying updated on threats and practices for innovation.
Holistic Security Approach and Culture: Adopting a comprehensive security approach includes monitoring threats, risk prioritization, and maintaining asset visibility. Organizational mindset shifts towards shared responsibility for security, incorporating initiatives like blocking malicious sites, preventing harmful content, and providing security training to enhance overall security posture.
Readiness of Malaysia's Data and Cybersecurity Ecosystem
4 July 2023, Kuala Lumpur, Malaysia
Key Takeaways:
Budget Gap and Importance of Cybersecurity: Malaysian enterprises believe over 20% of their IT budget should be allocated to cybersecurity, yet most currently allocate less than 5%. This gap highlights the need for increased investment and the significance of integrating security into systems from the outset to enable innovation.
Collaboration for Stronger Cybersecurity Ecosystem: To effectively address cybersecurity challenges, collaboration is essential among government, private sector, and communities. Emerging technologies like 5G, AI, IoT, and cloud computing introduce new risks that require appropriate controls and standards, particularly for critical infrastructure organizations.
Navigating User Experience and Security: Cybersecurity needs to strike a balance between user experience and security measures to foster adoption. Employee awareness and education are crucial, as employees can inadvertently become a weak link. The concept of "zero trust," data encryption, and segregating critical functions from corporate spaces were highlighted as effective cybersecurity strategies.
Prevention, Detection and Response in Thailand’s Cybersecurity Landscape
21 June 2023, Bangkok, Thailand
Key Takeaways:
Multifaceted Cyberthreats and Strategies: Khun Tithirat Siripattanalert, Group Chief Information Security and Data Management Officer, True Digital Group, highlighted the diverse nature of cyberthreats in Thailand, spanning from safeguarding anonymized to sensitive data, necessitating constant vigilance, security automation, and swift threat detection.
Artificial Intelligence and Machine Learning for Enhanced Security: To overcome resource limitations, the adoption of AI and machine learning emerged as crucial for cybersecurity enhancement. These technologies enable real-time responses, blocking malicious access, and identifying abnormal patterns through machine learning algorithms.
User Awareness and Private Sector Responsibility: Organizations prioritize user awareness for cybersecurity, particularly due to personal device adoption and multi-factor authentication's importance. Dr. Virat Chatdarong, Vice President, TPI Polene PLC, emphasized the rising significance of data security as digital data concentration grows.
Building a Safe Secure Digital Future for Vietnam
11 April 2023, Hanoi, Vietnam
Key Takeaways:
Strengthening cyberspace resilience is crucial for both enterprises and government agencies, as cyber threats continue to rise in countries like Vietnam and Malaysia.
A 3-pronged strategy of Processes, People, and Technology can be used to promote cybersecurity transformation and threat deterrence.
The rising prevalence of cybersecurity attacks in the mobile application space highlights the need for stronger platform security, as well as collaboration between banking institutions, government agencies, and higher education institutions to combat cyber threats in Vietnam.
2023 AIBP Malaysia Advisory Board Meeting
21 February 2023, Kuala Lumpur, Malaysia
Key Takeaways:
Cybersecurity is crucial for digital transformation success as organisations become more vulnerable to cyber threats.
Investing in proactive cybersecurity measures is essential for protecting digital assets and infrastructure.
Cybersecurity measures need to evolve in tandem with digital transformation as new technologies and cyber threats emerge.
Cyber Security Leaders Sharing their Insights include:
Together with
Threat Hunter, National Cybersecurity Center of Vietnam (NCSC)
Cybersecurity / Deputy Data Protection Officer, Philippine Amusement and Gaming Corporation
Head of Digitalization & Technology, Alam Flora Sdn Bhd
Head, Innovation & Industry Development Department, Cyberview
Assistant Vice President, Security, CIMB
Deputy Superintendant, Anti-ICT crimes Special task forces, Royal Thai Police
Chief Technology Officer, AXA Mandiri Financial Services
...and more
Knowledge Sharing & Networking Activities
Knowledge Sharing and Networking co-hosted with The Royal Thai Police
28 September 2023, Bangkok, Thailand
Networking Lunch and Knowledge Sharing co-hosted with CrowdStrike
26 September 2023, Bangkok, Thailand
Networking Lunch and Knowledge Sharing co-hosted with CrowdStrike
19 September 2023, Jakarta, Indonesia
Networking Lunch and Knowledge Sharing co-hosted with Zscaler
3 July 2023, Kuala Lumpur, Malaysia
Access the Full AIBP Content Hub
Get access to the entire library of content including videos, reports, focus group discussions, and invitations to innovation-focused networking events throughout ASEAN
Connect with Us!
Cybersecurity Trade Mission - Indonesia
Sharing Session :
- Ministry of Communication and Information Technology (KEMKOMINFO) - Introduction to Indonesia, overview and advice on doing business in local market
- National Cyber and Crypto Agency (BSSN) - Indonesia’s Cyber Security Policy and Regulation Landscape
- Indonesian Chamber of Commerce and Industry (KADIN) - Overview of KADIN & Latest developments on cybersecurity policies, developments
- Sharing of Telkom Indonesia’s Cyber Security Business Solutions
- Sharing of Astra Financial’s IT Priorities
- PLN ICON + - Discussion on Cybersecurity Priorities for Indonesia’s Critical Infrastructure
- Jakarta Smart City - Sharing on e-government and Digitalisation for Public Services in Indonesia
I Knew You Were Trouble : Cyber Resilience Workshop
AIBP ASEAN Innovation Retreat
Key Takeaways:
- Cybersecurity Solutions: Choosing the Right Approach
- AI in Cybersecurity: Challenges and Opportunities
- The Different Worlds of IT and Security
- Security vs. Budget: Striking a Balance
AIBP ASEAN B2B Growth Podcast
Axiata Group: Navigating Cyber Risks in a Fast- Changing Digital Landscape
In this episode, Mr. Suresh Sankaran Srinivasan, Group Head of Cybersecurity & Data Privacy, discusses Axiata's approach to structuring cybersecurity functions and selecting solutions based on risk-based methodology. He also explores the risks posed by emerging technologies in the cybersecurity landscape.
27 Jun 2024, Singapore
21 Nov, Kuala Lumpur, Malaysia
Key Takeaways:
Roundtable Workshop with
CyberSecurity Malaysia
Building Cyber Resilience: Strategies for Cybersecurity Preparedness and Recovery
- In the dynamic landscape of cybersecurity, the responsibility for safeguarding an organisation's digital assets transcends traditional boundaries. While rooted in the IT domain, cybersecurity is not solely the purview of technology professionals. Instead, it has evolved into a shared responsibility that spans across the entire business landscape.
- Effective cybersecurity demands a collaborative approach, where IT professionals and business leaders work hand-in-hand to create a robust defence strategy. It necessitates a shared understanding of risks, proactive measures to fortify digital infrastructure, and a commitment to fostering a cybersecurity-aware culture throughout the organisation.
- Despite governmental initiatives, the collective effort remains imperative to forge a cyber-resilient society. Holistic cyber hygiene practices, continuous learning, collaboration, and information sharing are vital components of this collective endeavour.
Hybrid Workshop with Cybersecurity Malaysia, National Cybersecurity Agency Malaysia
Focus group discussion with Singapore cyber security companies and Malaysia industry leaders, about the opportunities and challenges of doing business in Malaysia, with key questions:
Unlocking Cybersecurity Opportunities in Malaysia: Insights from Industry Leaders
Managing Risks in the Digital Age, Thailand
Panel Discussion and Private workshop on Cyber Resilience
17 July, Bangkok Thailand
Key Takeaways:
- Organisations must prepare not only for protection but also for response and recovery, including managing social media misinformation.
- Gaining business leaders' support and financial commitment for cybersecurity initiatives is essential but often challenging.
- Simple policies, procedures, governance, communication, and awareness can be as effective as expensive tools in reducing risk.
- Cybersecurity should be justified and implemented based on business risk rather than just technical risk.
Panelists (From Left to Right)
- Athikom Kanchanavibhu, Executive VP of Digital & Technology Transformation, CISO, DPO, Mitr Phol
- Dr. Chalee Vorakulpipat, Principal Researcher, Information Security Research Team, National Electronics and Computer Technology Center (NECTEC)
- Chatchawat Asawarakwong, CISO, KASIKORNBANK (KBank)
- Noppachai Tungsinpulchai, Risk & Compliance Advisory, NXZ Group
Managing Risks in the Digital Age, Indonesia
17 August, Jakarta, Indonesia
Key Takeaways:
- There’s a demand for "cybersecurity excellence" to maintain customer trust and minimise business disruption
- Open banking APIs can serve as a platform to enhance data integrity and transparency
- Industry-wide collaboration and national-level initiatives are necessary to enable secure implementation of any projects
Panelists (From Left to Right)
- Raditio Ghifiardi, Vice President - Head of IT Security Strategy & Architecture, Indosat Ooredoo Hutchison
- Fachry Rozy Oemar, Deputy Director of Information System Planning, Indonesia National Single Window Agency, Ministry of Finance
- Sigit Budiono, Head of Information Security, Bank Woori Saudara
- Krisna Kurniawan, VP Operational & IT Risk Management, KB Bank
Managing Risks in the Digital Age, Malaysia
Panel Discussion and Private workshop on Cyber Resilience & the Latest Cybersecurity Act
5 Sept, Kuala Lumpur, Malaysia
Key Takeaways:
- Embed Cybersecurity in Strategy: Cybersecurity should be a core part of the organisation’s strategy, not an afterthought.
- Transparency with Customers: It is vital to keep customers informed about the reasons behind increased security measures.
- Industry-Wide Collaboration: Cybersecurity requires coordinated efforts across industries and authorities to effectively manage evolving threats.
Panelists (From Left to Right)
- Dr. Chalee Vorakulpipat, Principal Researcher, Information Security Research Team, National Electronics and Computer Technology Center (NECTEC)
- Irfan Amer, CISO, AEON Bank
- Dato Dr Amirudin Abdul Wahab Dato' Dr Amirudin Abdul Wahab, Chief Executive Officer, CyberSecurity Malaysia
- Aishah Farha Mohd Raih , CISO, Permodalan Nasional Berhad
- Ts. Saiful Bakhtiar Osman, Head of IT - Shared Services, PNB Commercial
Navigating Digital Risks in the Philippines
18 Sept, Manila, Philippines
Key Takeaways:
- Banks are leveraging technologies like AI and biometrics to enhance security in digital services.
- The healthcare sector faces unique challenges in balancing rapid digitalization with cybersecurity needs.
- Finding the right balance between stringent security controls and operational efficiency is crucial across industries.
- Adaptive security measures, powered by AI and behavioral analytics, are becoming increasingly important in managing evolving cyber risks.
Panelists (From Left to Right)
- Jed Kenley Chua ,Chief Information Security Officer, Asia United Bank
- Jojo Nufable, CISO, St. Luke's Medical Center
- Carlos Tengkiat, CISO, Rizal Commercial Banking Corporation (RCBC)
- Albert (Abet) Dela Cruz, Head of Enterprise Security Architecture, Security Bank
Axiata Group: Driving Digital Innovation
with a Robust Risk Strategy
In this episode, Mr. Abid Adam, Chief Risk and Compliance Officer at Axiata Group, shares his journey from South Africa to Malaysia. He discusses the concept of Ubuntu and his role in leading digital transformation, cybersecurity, data privacy, and ESG initiatives.
AIBP ASEAN B2B Growth Podcast
Future Proofing Cyber Defense & Sentinels: Mastering Tomorrow's Threat
27 November , Manila, Philippines
Key Takeaways:
Cloud Adoption and Security: A Delicate Balance
- Cloud adoption offers scalability and flexibility but introduces new security challenges and may not guarantee long-term cost savings. Regulatory constraints often necessitate a hybrid approach, combining cloud and on-premise resources. This complexity underscores the need for a dedicated cloud security strategy and specialized expertise to manage third-party configurations effectively.
The Rising Importance of Identity Security
- The rise of cloud environments has elevated identity-related threats to a primary cybersecurity concern. Organizations must prioritize identity security by implementing zero-trust models to prevent unauthorized access. Managing identity security demands a sophisticated blend of technology, processes, and expertise, along with constant vigilance against evolving threats.
AI In Cybersecurity: A Double- Edge Sword
- Artificial Intelligence is transforming cybersecurity, offering enhanced threat detection and response capabilities while also presenting new challenges. While AI improves security measures, it requires human oversight for accuracy and context. Simultaneously, adversaries are leveraging generative AI to create more sophisticated social engineering attacks and efficient malware, highlighting the evolving nature of cybersecurity threats.