How Boards Can Address the Security Risks of Over-Confidence
Sep 21, 2023

James McLeary is a managing director in the Cyber Risk practice of Kroll, based in Hong Kong. James joins Kroll after a distinguished career spanning 25 years as an accomplished and results-driven chief information security officer (CISO). He has extensive international experience, including 19 years in Asia Pacific, in global risk governance, risk management, IT strategy and leadership, cyber threat incident response and IT security.
James is a modern CISO with a strong risk and technical background, who has exemplary crisis management skills and cyber response capabilities. In his new role, James will lead Kroll’s Virtual CISO (vCISO) engagements in Asia Pacific by establishing technology risk frameworks and governance and boosting cyber security maturity across organizations.
After moving to Thailand in 2011, James helped shape and mature the technology risk and cyber security industry in the local financial services market. As one of the first CISOs in the Thai industry, he managed complex security incidents and security operations.
Before joining Kroll, James worked at TMB Bank in Bangkok as Group Head of Information Security Office and Executive Vice President. In this role, he was responsible for administering IT security, physical security and business continuity, and fraud monitoring. James successfully led incident response against one of the largest targeted cyberattacks in Asia Pacific history. His previous experience includes those at Siam Commercial Bank, Credit Suisse, Morgan Stanley, HSBC, Barclays Wealth Management, GE and Mitel Telecom.
He holds an MSc/PGDIP in software engineering and technology from University of Stirling in Scotland and a B.A. in business information technology from University of West Scotland/University of Extremadura Spain. Additionally, James is an Ethical Cyber Hacker, is CISSP Certified, is C-CISO Certified and is a Certified Information Security Auditor. He’s also a certified Six Sigma Master Black Belt (CSSMBB).
Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.
Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.
Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.
Kroll's data privacy team provide DPO consultancy services to help you become and stay compliant with regulatory mandates.