Tech Policy Program: Mitigating Risk Under the Cybersecurity Law

Event Details

As China molds its new ecosystem for data and technology, multinationals must continuously adapt their operations, products and services. This year will be significant for legal, regulatory and compliance developments. What should companies prioritize in this quickly evolving landscape? And how will this shape their China and their global operations?

AmCham Shanghai and Control Risks are pleased to present a workshop on China's Cybersecurity Law (CSL) and its associated standards, regulations, and laws. Carly Ramsey, Director at Control Risks, will first give an update on China's cybersecurity regulatory landscape and how companies can mitigate compliance risk. Following this, Carly will join a panel with Kathy Shi Chief Information Security Officer at SAP China, and Roy Chen, Information Security and Risk Management Director at Abbott, to discuss how the CSL is impacting companies' domestic operations.

This workshop is part two of AmCham Shanghai and Control Risks' 2020 Tech Policy Program, which focuses on digital sovereignty risk. Digital sovereignty is the state extending and expanding regulations over information and technology within its physical borders. Digital sovereignty risk is the challenge these new controls present to companies' opportunities, management and regulatory compliance.

Speakers

Carly Ramsey
Director, Northeast Asia of Control Risks
Carly Ramsey is a regulatory risk specialist and director at Control Risks, where she leads much of the company's Asia-Pacific government affairs, government relations, and stakeholder engagement advisory projects. She has more than a decade of experience in China advising multinationals on how to engage with the government to mitigate the commercial impact of growth-restricting policies.

Prior to joining Control Risks, Carly was an Associate Director with APCO Worldwide. Her comments on China’s political developments have appeared in major media outlets, including the Financial Times and Wall Street Journal. She has a master’s degree in foreign policy and international security from Georgetown University and a bachelor’s degree in political science from the University of Western Ontario.
view more
Kathy Shi
Chief Information Security Officer at SAP China
Kathy is currently working for SAP as the CISO for SAP China, supporting all lines of business across SAP on security risk management, Chinese regulatory and security compliance, secure development and delivery etc. Kathy reports to SAP global CSO. Before that, Kathy was most recently with Oracle for over 6 years, effectively acting as the Information Security Director – North Asia to oversight security and support Oracle business in Greater China, Korea and Australia, where her responsibility covered strategic project security supporting, M&A security review, sales security support, incident response, forensic and investigation, supplier security review, regulatory security risk monitoring and assessment etc. Prior to Oracle, she spent 8 years in IT and Security consulting area, successfully led and delivered more than 20 information security, internal control, BCM, PCI-DSS compliance and IT projects to clients covering banking, internet, manufacturing, real estate industries. Kathy also held security position at Citibank as the start of her career.
view more
Roy Chen
Information Security and Risk Management Director of Abbott
Roy Chen, Information Security and Risk Management Director for Abbott, in charge of information security management in the GC & APAC Region.

Roy Chen acts as the member of a council of (ISC)2 Shanghai Chapter, is a member of ISACA, (ISC)2, CSA, IAPP and OWASP, is the expert of security and privacy, and actively participates in the information security public welfare, and won the prize of "the education of teenagers information security awareness ", and the award of the outstanding chief information security officer, CCSF 2017, and so on.
view more