Regional Leader, Hong Kong, IAPP; CISO

Jason Lau is currently the Chief Information Security Officer at Crypto.com where he drives the global cybersecurity and information privacy strategy. Lau led his team to become the first cryptocurrency company in the world to have company-wide certifications in ISO 27001:2013, PCI:DSS 3.2.1 and to conform with the Cryptocurrency Security Standard. Prior to this, Lau was a regional Cybersecurity Advisor at Microsoft, leading Microsoft’s cybersecurity and GDPR initiatives in Asia Pacific. Lau is also an Adjunct Professor of cybersecurity and data privacy at one of Asia’s leading business schools, and the regional lead, co-chair and faculty member of the IAPP. 

Lau has over 20 years in consulting experience for Fortune 500 companies in the fields of management consulting, cybersecurity, IT governance, privacy and risk management, and holds certifications such as CISSP, CGEIT, CISA, CISM, CIPP/E, CIPM, CEH, CNDA, CSM, HCISPP and more. Lau was one of the first worldwide to achieve ISO27701:2019 Senior Lead Auditor and Senior Lead Implementer status and is an ISO27001:2013 Lead Auditor and a Fellow of Information Privacy.

Lau has won multiple awards including the “Cybersecurity Professional Award” and “Outstanding Financial Technologist of the Year (Data Privacy),” and voted a “Top 50 global thought leader and influencer on cybersecurity.” Lau also sits on industry advisory groups and participates on various global security and privacy think tanks like the Centre for Information Policy Leadership. Lau has over a decade of experience in the Healthcare industry across five continents safeguarding highly sensitive Protected Health Information for hospitals and healthcare providers, and is a certified HealthCare Information Security and Privacy Professional. 

Lau holds a bachelor’s degree in engineering (Honors) and a bachelor’s degree in commerce, and completed executive programmes at Stanford and Harvard.


Contributions by Jason Lau