Leo Chang
Moxa Inc. / Lead Cybersecurity Engineer, PSC
Currently employed at Moxa’s Product Cybersecurity Center, responsibilities include managing the product security development process and addressing regulatory compliance issues to ensure adherence to cybersecurity requirements in the maritime (E27), energy, and railway sectors. Previous roles involved assisting critical infrastructure providers with the establishment of cybersecurity management systems, conducting risk assessments, and executing audits in accordance with cybersecurity laws. Active involvement in the development of cybersecurity standards for the vPAC Virtual Substation and contributions to the JT-62443-3-2 standard further underscore a commitment to industry-leading practices. Holding several professional certifications, including ISA/IEC 62443 Cybersecurity Expert, CISSP, ISO/IEC 27001 Lead Auditor, PMP, and PMI-ACP, and possessing extensive experience in cybersecurity management and compliance, efforts are consistently directed toward enhancing the overall cybersecurity posture of products and infrastructures.
This presentation will delve into how to select the appropriate security level based on the IEC 62443 standard to meet site-specific needs, helping the audience strike the best balance between cybersecurity protection and investment effectiveness. The speaker will draw on years of practical experience to analyze the challenges industrial control systems face when applying the IEC 62443-3-3 standard, including technical limitations, organizational culture, and resource allocation issues, and will share real-life examples of how to overcome these obstacles. The presentation will cover risk assessment methods, security level selection strategies, and how to effectively implement standard requirements across different industries.
CYBERSEC 2025 uses cookies to provide you with the best user experience possible. By continuing to use this site, you agree to the terms in our Privacy Policy 。