Cybercrime as a Service: The Global Underground Economy

ASEAN is not only a target but a launch-pad for various cybercrime services. This session will explore how cybercrime has industrialised, how ASEAN organisations are exposed via services rather than only individual attacks, and what this means for threat intelligence, defence architecture, partner ecosystem monitoring, and law-enforcement collaboration.

Building a Cyber-Resilient Supply Chain

It focuses quite tightly on how to build resilience into the supply chain: from vendor screening, partner onboarding, ecosystem monitoring, and third-party risk analytics to recovery planning for supply-chain failures. In ASEAN this is critical; many enterprises depend on cross-border supply chains, third-party vendors in multiple markets, and regional logistics networks.

Trust in the AI-powered enterprise

As many ASEAN enterprises adopt cloud-first strategies, trust in the cloud becomes core. This session explores how cloud architectures can be trusted: cloud-native security, shared responsibility models, sovereignty and localisation issues, hybrid/multi-cloud management, and how security leaders in ASEAN can ensure that cloud adoption delivers both agility and trust not trade-offs.

Boardroom Security: How to Speak the Language of Risk and Value

A key challenge in ASEAN is translating technical security issues into business risk and value conversations at the board level. This session will focus on how CISOs and security leaders can craft narrative, build metrics, align with business KPIs, speak the language of risk, and secure board / investor buy-in

AI-Driven Threats: The Rise of Automated Attacks

The threat landscape in ASEAN is rapidly evolving. AI-driven attacks, automation of threat campaigns, deep-fake phishing, autonomous ransomware, and supply-chain exploitation. This session delves into how security teams must prepare: new detection models, threat intelligence integration, automation in response, resilience design and continuous learning.

Redefining Security Priorities in the Age of Generative and Agentic Intelligence

As generative AI and agents become operational in ASEAN businesses, the security implications are profound. This session explores how security priorities must be redefined: from protecting known perimeters to securing autonomous systems, agent-driven processes, large language model (LLM) risk, generative phishing, deep-learning exploitation, and how to govern and audit these models.

Quantifying Trust: Turning Cybersecurity into Measurable Business Value

This sub-topic explores how to define, measure, and communicate the business value of cybersecurity through KPIs and risk-quantification frameworks. It covers metrics such as avoided loss, uptime improvement, compliance confidence, and customer trust scores.