Hybrid Seminar -Upskilling the Workforce in the AI Era: Overview of AAIA, AAISM & AAIR Certification

Speakers:

Mr. Alan YAU

Director, ISACA Malaysia Chapter

(APMG Accredited Trainer (AAIA & AAISM))

Mr. Shigeto FUKUDA

Vice Chair, Standards Committee, ISACA Tokyo Chapter

Member, IT Risk Advisory Group and CDPSE Certification Working

Group, ISACA HQ

(Expert Reviewer, AAIA and AAIR Review Manual)

Facilitator:

Mr. Maverick TAM

Vice President, ISACA China Hong Kong Chapter

(CISA, CGEIT)

Moderator:

Mr. Terence LAW

Certification Director, ISACA China Hong Kong Chapter

(CISA)

Panelists:

Dr. Welland CHU

President, ISACA China Hong Kong Chapter

(AAIA, AAISM, CISA, CISM)

Ms. Carol LEE   

Vice President, ISACA China Hong Kong Chapter

(AAISM, CDPSE, CISM, CRISC)

Ms. Hatty SIU   

Committee Member, ISACA China Hong Kong Chapter

(AAIA, CDPSE, CISA)

Topic

Upskilling the Workforce in the AI Era: Overview of AAIA, AAISM & AAIR Certification

Speakers

Mr. Alan Yau  Director of ISACA Malaysia Chapter

With over 25 years of experience in the cybersecurity field and a strong academic foundation, Mr. Alan Yau specializes in professional training and certification coaching for global standards including ISACA, (ISC)², and PECB. As a certified and accredited trainer for multiple internationally recognized certifications, Alan has helped hundreds of professionals and organizations across the Asia-Pacific region strengthen their cyber capabilities and earn industry-respected credentials.

His mission is to bridge the gap between theory and practice-empowering individuals with real-world knowledge and hands-on insights that extend far beyond textbooks. He brings a blended learning approach, combining frameworks, tools, case studies, and simulation labs to create an immersive learning experience tailored to professionals at all levels.

Alan has trained over 1,000 cybersecurity professionals across banking, government, energy, and telco sectors, helping learners achieve 90%+ first-time pass rates across ISACA, (ISC)², and PECB certifications. As an Accredited Trainer with ISACA and PECB and an ISC2 Authorized Instructor, he has earned consistent positive learner feedback throughout. He has also developed and delivered custom bootcamps, executive briefings, and workshops to enhance both exam success and job readiness, and serves as a guest lecturer and advisor on cybersecurity modules for universities and corporate academies.

Mr. Shigeto Fukuda  Past Chair, Standards Committee, ISACA Tokyo Chapter

Member, IT Risk Advisory Group and CDPSE Certification Working Group, ISACA HQ

Mr. Shigeto Fukuda is currently a Senior Manager in the Assurance division of a Big Four firm, working in the IT Advisory team for the technology and financial sectors. Previously, he led the security and IT controls consulting team at a Japanese IT services company. Within ISACA, he served the Tokyo Chapter from 2016, first as Vice Chair of the Standards Committee and later as Secretary Chair until 2020, promoting IT governance awareness and adoption, including COBIT.

Since 2021, he has contributed to ISACA Global through roles in the CISA and CDPSE QAT teams, the CDPSE Certification Working Group, and the Governance Advisory Group.

Mr. Maverick Tam  Vice President & Treasurer, ISACA China Hong Kong Chapter

Mr. Maverick Tam is the Chief Operations Officer at Hong Kong Interbank Clearing Limited. He oversees the clearing-and-settlement operations as well as the finance and administration matters of the company. He has extensie experience in payment systems operations, risk management and regulatory compliance in financial industry. His professional qualifications include CPA, CISA, CGEIT and CIA.

Dr. Welland Chu  President, ISACA China Hong Kong Chapter

Dr. Welland Chu is a Cybersecurity Specialist at Thales with over 32 years of experience. In addition to his role at Thales, he serves as President of the ISACA China Hong Kong Chapter, a member of the Standing Committee on Technological Developments at the Office of the Privacy Commissioner for Personal Data, Vice‑President of the IT Development Committee of one of Hong Kong’s largest NGOs, and a Director of the King’s College London Hong Kong Foundation (a charity).

Welland holds a Ph.D. from King’s College London and is certified as CISA, CISM, AAIA, and AAISM. He frequently lectures in postgraduate programs and speaks to both public‑ and private‑sector audiences, including international organizations such as INTERPOL.

Ms. Carol Lee   Vice President of ISACA China Hong Kong Chapter. 

She is well-respected in the cybersecurity field, is appointed as member of Appeal Panel Under Hong Kong Protection of Critical Infrastructure Ordiance, also the CISO Board members of Hong Kong Computer Society.

Her accolades include the 2021 Global 100 CEH (Certified Ethical Hacker) Hall of Fame, the 2016 Hong Kong Cyber Security Professionals Awards, the 2023 Women in IT Asia Award, and CSO50 Award. These awards reflect her dedication to ensuring cyberworld security and validate her expertise in the field. 

In addition to the above community service volunteer role, she is also leading an HK-listed company's Cyber Security & Risk Management function.   She has substantial experience leading enterprise-wide security programmes to support cloud and digital transformation strategy, specialising in adopting proven change management methodology in the AI governance, security & privacy management program.   She has more than 25 years of working experience serving retail, insurance, supply chain, public utilities, manufacturing, property development, and consultancy industries.

Carol holds several information security and privacy designations, including C|CISO, AAISM, CDPSE, CISM, CRISC, CIPM, AIGP, CCSP, CSSLP, and CEH.  She is also a Certified Change Management Practitioner. 

Ms. Hatty Siu is a Program Committee Member of the ISACA China Hong Kong Chapter, bringing over 13 years of experience in technology risk management, data privacy, cybersecurity, and IT audit.

She has built a distinguished career as an external consultant, advising clients across public and private sectors on IT governance, regulatory compliance, and data protection. Her work has focused on cybersecurity and privacy, supporting organizations in navigating complex risk and compliance challenges.

Her expertise spans data privacy governance, protection assessments, internal controls review, and regulatory compliance. Hatty is also recognized for her growing contributions to AI governance, reflecting her commitment to advancing responsible and secure technology practices.

She holds a Bachelor of Business Administration in Information Systems and Marketing from The Hong Kong University of Science and Technology, as well as ISACA certifications including Certified Data Privacy Solutions Engineer (CDPSE) and Advanced in AI Audit (AAIA).

Mr. Terence Law is the Certification Director of ISACA China Hong Kong Chapter. He is well-respected across the financial services and technology community and is dedicated to advancing industry-leading standards in auditing, risk, and emerging technologies.

In his professional capacity, Terence serves as Head of Innovation and Data within the Internal Audit department of a leading financial institution, where he spearheads the integration of cutting-edge technologies into audit practices to drive greater efficiency, insight, and resilience. He has substantial experience leading enterprise-wide initiatives at the intersection of internal audit, digital transformation, and risk management, specialising in the application of artificial intelligence, data analytics, cybersecurity, and cloud computing to strengthen governance and control frameworks.

Beyond his professional achievements, Terence has a strong commitment to the community and generously volunteers his time and expertise to promote the adoption of industry-leading practices. As Certification Director of ISACA China Hong Kong Chapter, he plays a pivotal role in supporting professionals in their pursuit of internationally recognised qualifications and in raising the overall standard of the industry in Hong Kong.

Terence holds several prestigious industry certifications, including CISA, CISSP, CFA, CPA, and Certified Banker, reflecting his exceptional breadth of expertise across technology, finance, and risk disciplines.

Abstract

As AI continues to reshape the risk and control landscape, professionals across audit, security, and risk functions are increasingly expected to understand how AI systems are governed, assessed, and secured. This CPE-qualifying hybrid session delivers a practical and authoritative overview of ISACA's three newest AI-focused certifications — AAIA, AAISM, and AAIR — presented by certified trainers, curriculum reviewers, and local practitioners who bring firsthand expertise to each topic.

Programme Outline

Parts 1 & 2 — Facilitated by Maverick Tam

• Part 1 — AI Certifications in Practice: Alan Yau (APMG Accredited Trainer, ISACA Malaysia) examines the structure, domain coverage, and professional relevance of AAIA and AAISM from a practitioner-trainer perspective, offering concrete insight into what each certification demands and delivers.
• Part 2 — Inside the AAIA Manual & AAIR Preview: Shigeto Fukuda (AAIA Manual Reviewer, ISACA Tokyo) provides an insider perspective on curriculum design and offers an early look at the emerging AAIR certification — what it covers, who it is for, and why it matters.

Part 3 — Local Experience & Certification Journey — Moderated by Terence Law

ISACA China Hong Kong Chapter leaders Welland Chu, Carol Lee, and Hatty Siu share their firsthand certification experiences, offering candid reflections on exam preparation, practical application, and the relevance of these credentials within the Hong Kong and broader APAC professional context.

Part 4 — Live Q&A with All Speakers

An open Q&A session — inclusive of all online panellists — giving attendees the opportunity to engage directly with speakers across all three certifications.

Who Should Attend

This session is suited to professionals who are navigating or overseeing AI adoption within their organisations, including:

• Internal and external auditors looking to build structured AI audit competency
• IT and cybersecurity professionals responsible for AI system governance and security
• Risk and compliance professionals managing AI-related regulatory and operational exposure
• ISACA members considering the AAIA, AAISM, or AAIR certification pathway
• Business and technology leaders seeking a grounded understanding of AI governance frameworks

What You Will Learn

• AI Audit Fundamentals (AAIA) — Core domains of AI auditing, including AI risk identification, audit methodology, model explainability, and bias and fairness as audit risk factors.
• AI Security Management (AAISM) — The AI security threat landscape, adversarial machine learning, data integrity controls, AI supply chain security, and security governance frameworks for AI systems.
• AI Risk — What's Coming (AAIR) — An early preview of ISACA's emerging AAIR certification, covering AI risk taxonomy, systemic risk considerations in financial systems, and adaptive risk management frameworks for GenAI adoption.
• Real-World Application — How AAIA and AAISM knowledge translates into practical professional roles across Hong Kong's financial and enterprise sectors.
• Certification Journey — Firsthand insights on exam preparation strategies, study approaches, and the career value of these credentials in the APAC market.

Date

14 April 2026 Tuesday

Time

4:30 PM – 6:20 PM

Format

Hybrid Seminar

On-site Venue

14/F., Fairmont House, 8 Cotton Tree Drive, Central, Hong Kong

(Exit B of Admiralty MTR Station)

(Please indicate your preference for on-site attendance. Due to limited seats, registrants beyond the maximum capacity will be assigned to Zoom)

Online Platform

Zoom

Language

Conducted in English

CPE Hour

(Two hours)

Only for those who have participated in the event for 100 minutes or more

The Chapter will report your CPE Hour directly to the ISACA HQ. To facilitate the process, please ensure the registration form is correctly completed with:

[Attention: For CPE Entitlement]

1. Provide a valid ISACA ID (6 or 7 digits, but not certification number)

2. Name (Identical to ISACA record)

3. Email (Identical to ISACA record)

4. Apply your CPE hour after the chapter has uploaded your CPE hour to ISACA website (Email notification from the chapter will be sent within a week after the event)

5. If you provide an invalid ISACA ID, you will be removed from the registration list.

We will keep you informed once CPE recording to ISACA is completed. To check your ISACA ID, please log in your account at www.isaca.org.

Fees

·       ISACA Member: Free of Charge

·       Member of ACFEHK/ HKCS/ HKICPA/ CPA Canada/ IIAHK/ ASISHK: HK$150

·       Non Member: HK$300

Deadline

By 5:00 PM on 12 April 2026

Registration

Registration for In-Person Session

Registration for Online Session

Remarks

·       The seminar starts at 4:30 PM sharp. If you signed in the zoom meeting before 4:30 PM, please wait for admission at the ‘Waiting Room’.

·       Please do not share the zoom details to third party as the provided information is exclusive to registrants only.

·       Please be reminded that for CPE hour entitlement, you have to be present for the event for at least 100 minutes.

Enquiry

Please contact our Administrative Team at (+852) 2528 3772 or email to events@isaca.org.hk