Chien-Sheng．Huang (Abbot)

iTop Digital Technology Co., Ltd. / CEO

Taiwan International Certified Information Security Experts Association / Vice President

ISC2 Taipei Chapter / Membership chair

Huang Chien-Sheng, widely known as ""Abbot"" is the founder and general manager of iTop Digital Technology. With a deep expertise and extensive hands-on experience in cybersecurity, he has dedicated himself to the field for years. From 2010 to 2020, he was consecutively recognized as a Microsoft Most Valuable Professional (MVP) and holds multiple international cybersecurity certifications, including CISSP-ISSMP and CEH, making him one of Taiwan’s most respected cybersecurity experts.

Huang also serves as the Chapter Chair of ISC2 Taipei Chapter, actively contributing to the international cybersecurity community and advocating for the development of professional security certifications. He specializes in Microsoft security solutions and offensive security strategies, covering Azure AD, Microsoft 365, and Identity & Access Management. A frequent speaker at cybersecurity forums, universities, and community events, he shares his insights to promote security awareness and enhance the digital resilience of both enterprises and individuals in today's rapidly evolving threat landscape.

SPEECH

4/16 (Wed.) 14:00 - 14:30 1F 1B Zero Trust Forum

Zero Trust!! If you can't even manage accounts properly, how can you trust anything?!

Focusing on Zero Trust: Security Challenges in Cloud and On-Prem Identity Integration & Single Sign-On (SSO)

As enterprises accelerate the adoption of Microsoft Authentication and Google Authentication with Multi-Factor Authentication (MFA), authentication mechanisms have improved in both convenience and security. However, these advancements also introduce new security risks.

Cybercriminals exploit phishing websites and social engineering tactics to steal user credentials, disguising their attack devices as legitimate authentication endpoints. By doing so, they successfully bypass MFA protections and gain unauthorized access to both cloud and on-premises systems. Worse still, they leverage lateral movement techniques to expand their attack reach within corporate networks, further exposing weaknesses in identity verification frameworks.

This session will provide an in-depth analysis of these evolving threats, the root causes of security risks in current identity authentication models, and the long-term impact on cybersecurity. Attendees will gain critical insights into how these security challenges affect enterprise operations and develop a deeper understanding of the core value of Zero Trust in future security architectures.

This talk is designed for security professionals and decision-makers interested in cloud integration and security, equipping them with the knowledge to develop comprehensive security strategies for their organizations.