Governments across the APAC region are tightening cyber regulations, expanding obligations beyond critical infrastructure, raising penalties and accelerating enforcement. The challenge for security leaders is converting complex, multi-jurisdictional legal requirements into practical, defensible programs without draining budgets or stalling operations.

In this insightful discussion, Jenny Tan, Jayapalan K V, Dominic Boh and Sekhar Pidathala discuss:

• How to prioritize security investment against divergent national compliance deadlines, using a risk-led rather than regulation-led budget framework;
• Which frameworks - from NIST CSF and ISO 27001 to CIS baselines and zero trust - best translate regulatory text into layered, actionable technical controls;
• How to standardize cross-border data transfer compliance using data inventory, contractual monitoring and APAC-specific frameworks such as the ASEAN Model Contractual Clauses.