The founder of CrossWise InfoTech Limited as full member of HKCS, recently attended an online seminar titled “Let’s Secure as we Digitalise”, jointly organised by the HKDPO, co-organised by the CSTCB/HKPF, supported by the HKCS. During the event, professionals from each participating organisation shared real-life cyberfraud cases and practical countermeasures from their respective areas of expertise.

Cyberfraud has been a persistent issue in Hong Kong in recent years, with victims losing increasingly large sums of money — a trend that many readers are likely already aware of. The reason this seminar was named “Let’s Secure as we Digitalise” is that frequent fraud incidents can significantly affect businesses, especially small and medium-sized enterprises (SMEs), that are planning or undergoing digital transformation. These scams may even hinder the government’s broader efforts to promote digitalisation across society.

However, a seminar is just the beginning. For enterprises that are considering or have already embarked on the path of digital transformation, taking the first step towards cyber fraud prevention is crucial. In reality, however, many business owners struggle to identify exactly what that first step should be.

From the perspective of CrossWise InfoTech’s founder, the answer lies in the ancient wisdom of Sun Tzu’s “Art of War“: “Know yourself and know your enemy, and you will never be in peril.“

Since we are already aware of the various fraud tactics used online, it makes sense to evaluate whether our own defences are strong enough.

Therefore, the right first step is to conduct a cybersecurity audit — a comprehensive assessment of an enterprise’s cyber defence capabilities based on industry standards. Through such an audit, companies can identify the risks they face in daily operations, with particular focus on areas most vulnerable to cyberfraud or other cyber threats. Based on the audit findings, and taking into account the company’s risk tolerance and financial resources, appropriate cybersecurity management measures can be designed and implemented, along with necessary technical safeguards.

CrossWise InfoTech Limited offers customised cybersecurity audit services tailored specifically for SMEs and organisations across different sectors. Leveraging the founder’s extensive experience in enterprise IT governance and threat response, we provide actionable and effective recommendations to help clients strengthen their cyber resilience.

At its core, cybersecurity is a battlefield of attack and defence. Thus, age-old military wisdom like that found in Sun Tzu’s “Art of War” remains highly relevant today. Both cybersecurity professionals and business leaders would benefit from reflecting deeply on these timeless strategies.

• HKDPO: Hong Kong Digital Policy Office
• CSTCB/HKPF: Cyber Security and Technology Crime Bureau (CSTCB) of Hong Kong Police Force (HKPF)
• HKCERT: Hong Kong Computer Emergency Response Team Coordination Centre by HKPC
• HKCS: Hong Kong Computer Society

Photo of this article is shot by CrossWise InfoTech Limited.