Jason Lau, CISO

Jason Lau has an extensive work experience in the field of cybersecurity and data privacy. Currently, they are the Chief Information Security Officer at Crypto.com, overseeing global cybersecurity and data privacy strategy and execution. Jason played a key role in obtaining various certifications for the company, making it the first cryptocurrency company to achieve ISO/IEC 27001, ISO/IEC 27701, ISO/IEC 22301, and PCI:DSS 3.

In addition to their role at Crypto.com, Jason Lau has also worked at the World Economic Forum, where they were part of the Expert Network for cybersecurity and data privacy. Jason also contributed to the Quantum Security Initiative at the Centre for Cybersecurity.

Furthermore, Jason Lau served on the APAC Strategy Committee at FS-ISAC, a global cyber intelligence sharing community focused on financial services. Jason contributed to the organization's efforts in anticipating, mitigating, and responding to cyber threats.

Jason Lau's involvement in the field of cybersecurity and data privacy extends beyond their corporate roles. Jason served as a member of the Standing Committee on Technological Developments at the Office of the Privacy Commissioner for Personal Data in Hong Kong. Jason also held various positions at the International Association of Privacy Professionals (IAPP), including being a member of the Board of Advisors, Regional Lead for Hong Kong, Co-Chair, Official Trainer, and Privacy Training Faculty.

Additionally, Jason Lau is an official member and contributor to the Forbes Technology Council, where they provide commentary and contributions on cybersecurity and privacy topics. Jason has also been an Adjunct Professor and Industry Advisory Board Member at HKBU School of Business, focusing on cybersecurity and data privacy in the Master of Science in Finance program.

Furthermore, Jason Lau is an Advisory Board member for Tencent's Finance Academy, where they provide leadership in cybersecurity and data privacy to shape the future of Fintech in the Greater Bay Area. Prior to their current roles, they worked at Microsoft as a Cyber Security Advisor, providing trusted advice on cybersecurity best practices and GDPR initiatives.

Earlier in their career, Jason Lau held multiple roles at Argent Software, including EVP, CSO, and Board Member. Jason provided security and privacy consulting services to Fortune 500 companies and was deeply involved in healthcare security and data protection projects globally.

Overall, Jason Lau has a diverse and extensive background in cybersecurity and data privacy, with various leadership positions in industry associations, advisory boards, and corporate roles.

Jason Lau, CISO, has an extensive education history. Jason pursued an Executive Program in Corporate Governance from Stanford University and an Executive Program from Harvard University. Prior to this, they completed their Bachelor of Engineering (B.Eng.) in Mechatronics, Robotics, and Automation Engineering at The University of Western Australia. Jason also holds a Bachelor of Commerce (B.Com.) degree from the same institution.

In addition to their formal education, Jason Lau has obtained several certifications in various fields. Jason is a Full Board Member of the NACD (National Association of Corporate Directors), a Full Member of the Singapore Institute of Directors, and a Fellow of the Hong Kong Institute of Directors (FHKIoD). Jason has also obtained certifications such as ISO 27701:2019 Senior Lead Auditor, ISO 27701:2019 Senior Lead Implementer, and ISO 27001 Lead Auditor - Information Security Certification.

Furthermore, Jason Lau holds the designation of Fellow of Information Privacy (FIP) from the IAPP - International Association of Privacy Professionals. Jason is also a Certified Data Privacy Solutions Engineer (CDPSE) from ISACA and a Certified Ethical Hacker (CEH®) from EC-Council. Moreover, they have certifications in the field of information privacy, including Certified Information Privacy Manager (CIPM), Certified Information Privacy Professional / Europe (CIPP/E) (Including GDPR Core Knowledge Update), and Certified Information Privacy Technologist (CIPT). Additionally, they hold certifications such as Certified Information Security Manager (CISM®), Certified Information Systems Auditor (CISA®), Certified Information Systems Security Professional (CISSP®), Certified Network Defense Architect (CNDA®), Certified ScrumMaster® (CSM®), Certified in Risk and Information Systems Control (CRISC®), Certified in the Governance of Enterprise IT (CGEIT®), and HealthCare Information Security and Privacy Professional (HCISPP®).