Kok-Tin is a Partner in PwC’s Risk Assurance practice with over 12 years of experience. Kok-Tin’s key areas of expertise and experience include Cyber security strategy, framework, IT governance, IT security framework, application and data security, IT risk, security management, security / technology architecture and ethical hacking. Kok-Tin is extremely well versed with a number of security technology solutions (such as identity, data loss prevention, firewall, security analytics, etc.), attack / cybercrime scenarios, payment security, and security assessment framework (such as PCI-DSS, PA-DSS, ISO 27001:2005/2013, CoBIT, OWASP, OWASP Mobile etc.), relevant technology regulatory guidelines (e.g., HKMA, SFC, MAS, AMCM’s guidelines and other guidelines in the Asia Pacific region), using both automated and manual penetration testing techniques, source code security review tool, and risk management procedures pertaining to security assessment. Kok-Tin has led ~300 small to large size of security assessment / transformation engagements and has worked across different continents including, Asia, America, Europe and Africa.