Event Overview
Southeast Asia’s digital economy is projected to reach $1 trillion by 2030, positioning the region as a critical global hub for digital innovation and economic growth. This unprecedented transformation has made the region a prime target for sophisticated cyberthreats. According to recent intelligence, Southeast Asia experienced more than 135,000 ransomware attacks in 2024. With 67% of all regional cyber incidents occurring in a single year, this marks the highest concentration of cybersecurity challenges ever recorded in ASEAN markets.
South East Asia Summit 2025 brings together the region’s most influential cybersecurity executives, thought leaders and innovators to address the complex challenges shaping Southeast Asia’s digital landscape. This premier virtual summit, centered around the theme “From Strategic Vision to Operational Excellence: Leading Cybersecurity in Southeast Asia’s Digital Future,” focuses on bridging the gap between cybersecurity strategy and practical implementation across ASEAN’s diverse regulatory and business environments.
The summit will provide actionable insights into the emerging threats affecting Southeast Asian enterprises, including AI-powered attacks, quantum computing risks, supply chain vulnerabilities and the evolving geopolitical cyber warfare landscape. Participants will explore strategic frameworks for building cyber-resilient organizations while using cybersecurity investments to drive innovation, market expansion and stakeholder trust.
Andre Shori
Charmaine Valmonte
David Gee
Jenny Tan
Jon Lau
Lim Shih Hsien
Stanley Tsang
Ananya Avinash
Marlon Sorongon
Speakers
Thought Leaders on Stage Leading Deep-Dive Discussions
Industry leaders from various sectors in the technology domain will share their experience on how the role of chief technology officers has become indispensable across organizations. They will discuss unique strategies and techniques applied in businesses, making technology an intrinsic part of their organizational DNA. Additionally, the leaders will delve into how they have redefined leadership to enhance their organization’s resilience and will share their insights on artificial intelligence, sustainability and the future of internet.
Highlight Topics
- OT Security
- SOC as a Service: Advanced Threat Detection
- Geopolitical Impact on Supply Chain Operations
- AI-Driven Attacks: Are Enterprises Ready for a Counterstrike?
- Data Localization: Cybersecurity Implications
- AI in the Cloud: Security Risks
Agenda
9:55 AM - 10:00 AM SGT
Welcome and Opening Remarks
10:00 am - 10:20 aM SGT
Keynote: Redefining Cybersecurity Leadership in the AI Era
The cybersecurity leadership paradigm is undergoing a fundamental transformation as AI reshapes both attack vectors and defense strategies across Southeast Asia.
As adversaries deploy AI that learns, adapts and coordinates faster than traditional defenses can respond, the modern CISO role demands evolution from tactical guardian to strategic architect of cyber resilience. The plenary session will dissect the evolution of the CISO role, moving beyond traditional risk frameworks to embrace a new mandate focused on building AI-driven trust, fostering resilient organizational cultures and articulating the strategic value of AI-centric security to the board.
CISOs play a crucial role in advancing cyber readiness and building organizational resilience. But how are they shifting from response to resilience?
This session will cover:
- The leadership shift: From technical expert to strategic resilience architect;
- Redefining leadership in the face of adversity;
- Building resiliency against growing incidents and navigating through AI complexities;
- Developing proactive threat intelligence capabilities and cross-functional crisis response teams;
- Reskilling security teams for AI-native operations.
David Gee
Chairman, Leadership Collective Australia
Pravin Kumar
Chief Market Information Security Officer and Data Protection Officer, National Payments Corporation Of India (NPCI)
10:20 AM - 10:40 AM SGT
Plenary: Securing the Digital Nation: Bridging the Security and Technology Gap
As Southeast Asia accelerates its digital transformation, nation-states face unprecedented complexity in securing cloud infrastructures, telecommunications networks, operational technology systems and AI-driven services - all while defending against sophisticated, cross-border cyberthreats.
The government’s experience in building a cohesive national cybersecurity strategy offers critical insights for regional leaders navigating similar challenges. This session will explore practical frameworks for building national-scale cyber resilience, coordinating cross-sector responses and fostering ecosystems that enable both security and innovation in an increasingly interconnected regional landscape.
This session will cover:
- Architecting resilience for critical information infrastructure (CII);
- Bridging the technology and security gap;
- Fostering collaboration between the government, industry and academia to co-create security solutions;
- Building the technology architecture for better defenses;
- Redefining security leadership in the AI era.
Stanley Tsang
Distinguished Engineer and Senior Director (Special Projects), Cyber Security Agency of Singapore
Jenny Tan
Professionalisation Advisory Group - Member, Cyber Security Agency of Singapore (CSA)
10:40 am - 11:10 am SGT
Panel: OT Security: Building Strategic Cyber Defenses
Operational technology environments underpin critical infrastructure and industrial processes across Southeast Asia - from manufacturing floors and energy grids to water utilities and transportation networks.
As the region accelerates digital transformation and Industry 4.0 adoption, OT environments face a rapidly expanding and sophisticated threat landscape, requiring cybersecurity leadership that transcends traditional IT approaches.
This fireside chat will explore how leading cybersecurity executives are elevating OT security from a technical challenge into a strategic imperative – aligning governance frameworks, regulatory compliance and risk management to build resilient, mission-critical defenses against nation-state actors, ransomware campaigns and supply chain compromises.
This session will cover:
- Unified IT-OT cybersecurity strategies;
- Network segmentation and access control;
- Incident response and crisis management for OT.
Andre Shori
APAC Cybersecurity VP and CISO, Schneider Electric
Lim Shih Hsien
Executive Vice President - IT, OT and Cyber, Seatrium Limited
Steven Sim Kok Leong
Chair, Advisory Committee, OT-ISAC
11:10 AM - 11:25 AM SGT
Networking Break
11:25 AM - 12:00 PM SGT
Spotlight: Building Cybersecurity Resilience: A CISOs Journey
In Southeast Asia’s increasingly volatile threat landscape, resilience is the defining trait of effective cybersecurity leadership.
Cyberattacks, regulatory change and business transformation are relentless forces – and it is the CISO’s ability to anticipate, absorb and adapt that determines organizational survival.
It is critical to understand how CISOs are building the required resiliency by navigating major incidents, forging business trust and leading the human and technological transformation necessary for today’s high-stakes risk environment.
This session will cover:
- Defining resilience beyond recovery;
- Building a resilient defense architecture across platforms;
- Regulation vs. resilience: Where is the challenge?
- Adaptive risk management in dynamic environments;
- Navigating through disruptive technologies.
Charmaine Valmonte
FVP and Chief Information Security Officer | Data Protection Officer, Aboitiz Group
12:00 PM - 12:30 PM SGT
Panel: AI-Powered BFSI: The Security Promise
As Southeast Asia’s banking and financial sector races to harness artificial intelligence for instant payments, lending and digital finance, AI has become both the engine of transformation and a vector for new, complex threats.
Yet, this AI-powered transformation comes with a dual promise: unprecedented efficiency and innovation, alongside a formidable new frontier of security risks. This panel assembles leading CISOs and security executives from Southeast Asia’s BFSI landscape to explore the tangible security dividends of AI adoption, including enhanced identity governance, automated compliance and resilient ecosystems that balance innovation with trust.
This session will cover:
- Securing the AI development life cycle;
- AI governance and compliance in a multi-jurisdictional region;
- Architecting an AI-native security operations center.
Anya Avinash
Head of Cybersecurity, Bank First, Australia
Marlon Sorongon
CISO, Maybank
Ray Lay
Head of Cyber Risk - India and SE Asia, PayPal
12:30 PM - 12:50 PM SGT
Exclusive: The Quantum Storm Ahead: Why Cyber Leaders Must Act Now
As quantum machines edge closer to cracking widely used encryption standards like RSA and ECC, attackers are already launching "harvest now, decrypt later" campaigns, banking on encrypted information to unlock once quantum power arrives.
Waiting is not an option: Leaders must act today to accelerate post-quantum readiness, future-proof cryptography, and champion new approaches to cyber governance before the quantum storm hits. This session clarifies the technical landscape, regulatory imperatives and urgent CISO actions essential for building quantum-resilient enterprises throughout Southeast Asia.
This session will cover:
- “Harvest now, decrypt later”: The evolving risk model;
- Vulnerabilities of RSA, ECC and other foundational protocols;
- Accelerating post-quantum readiness: Practical steps for CISOs.
Jon Lau
CISO, A*STAR - Agency for Science, Technology and Research
Mathan Babu
Chief Technology Security Officer and Data Privacy Officer, Vodafone Idea
12:50 PM - 1:00 PM SGT
Closing Remarks
The Summit Experience
CPE Credits
ISMG Summits offer Continuing Professional Education Credits. Learn informative and engaging content created specifically for security professionals.