Edwin Kwan

An accomplished cybersecurity executive, Edwin brings a unique blend of visionary leadership, strategic acumen, and a people-centric approach. With a proven track record in steering organisations through complex cybersecurity landscapes, he excels in inspiring, motivating, and effectively communicating to foster a culture of innovation and resilience.

Edwin has successfully led organisations through significant security uplifts to meet regulatory requirements. Notably, he played a pivotal role in enhancing the security posture of an organisation to successfully obtain a banking licence.

Edwin has also presented at several events, including RSA, AISA, All Day DevOps, AppSec Day, DevSecOps Leadership Forums, OWASP, guest lectures at universities, CISO Sydney and other executive conferences.

Edwin is also a contributing journalist for the It’s 5:05 Podcast, a podcast on open source and cybersecurity news. He has also created and produces two podcasts: Cyber Bites, focusing on bite-sized cybersecurity insights, and AppSec Unlocked, which delves into application security topics. Through these platforms, Edwin continues to share his expertise and stay at the forefront of cybersecurity news and trends

• LinkedIn
• Twitter

Notable Speaking Engagements

• 2025 – Future of Financial Service – Security (Sydney & Melbourne)
• 2025 – Guest Lecture at UNSW (Sydney)
• 2025 – Hackblitz 2025 (Sydney)
• 2025 – CISO Sydney (Sydney)
• 2024 – HCK SYD (Sydney)
• 2024 – All Day DevOps (Virtual)
• 2024 – Future of Security (Sydney)
• 2024 – AISA SydneySEC (Sydney)
• 2024 – CISO Sydney (Sydney)
• 2024 – Guest Lecture at UNSW (Sydney)
• 2023 – SekuroKon (Sydney)
• 2023 – All Day DevOps (Virtual)
• 2023 – OWASP Lagos Chapter Seminar (Virtual)
• 2023 – Future of Security (Sydney)
• 2023 – CISO Sit Down Studios (Sydney)
• 2023 – Future of Security (Melbourne)
• 2023 – Guest on KBKast Podcast
• 2023 – Judge for Australia’s Got Tech Talent (Virtual)
• 2023 – Guest on Secured by Galah Cyber Podcast
• 2023 – AppSec Australia Meetup (Sydney)
• 2023 – DevSecOps Leadership Forum (Auckland)
• 2023 – UNSW Guest Lecture (Sydney)
• 2023 – CISO Sydney (Sydney)
• 2022 – All Day DevOps (Virtual)
• 2022 – OWASP Lagos Chapter (Virtual)
• 2022 – DevSecOps Leadership Forum (Sydney, Melbourne and Singapore)
• 2022 – UNSW Guest lecturer (Virtual)
• 2021 – All Day DevOps (Virtual)
• 2021 – OWASP 20th Anniversary (Virtual)
• 2021 – RSA Confernce (Virtual)
• 2020 – All Day DevOps (Virtual)
• 2020 – Curtin University Guest Lecturer (Cyber Crime and Security Enhanced Programming) (Virtual)
• 2020 – RSA Conference Asia Pacific & Japan (Virtual)
• 2020 – Cloud Security Podcast (Virtual)
• 2020 – DevSecOps Leadership Forum (Virtual)
• 2020 – SWARM Conference (Las Vegas)
• 2019 – AISA Perth Conference (Perth)
• 2019 – All Day DevOps (Virtual)
• 2019 – AppSecDay (Melbourne)
• 2019 – DevSecOps Leadership Forum (Sydney and Melbourne)
• 2019 – RSA Conference Asia Pacific & Japan (Singapore)
• 2019 – Nexus User Conference (Virtual)
• 2018 – DBS AppSecCon (Singapore)
• 2018 – All Day DevOps (Virtual)
• 2018 – DevSecOps Leadership Forum (Sydney and Melbourne)
• 2018 – Quality Engineering Meetup (Sydney)
• 2018 – RSA Conference Asia Pacific & Japan (Singapore)
• 2017 – All Day DevOps (Virtual)
• 2017 – AppSecDay (Melbourne)
• 2017 – RSA Conference Asia Pacific & Japan (Singapore)

Notable Publications

• 2025 – From Chaos to Control: Roadmap for Third-Party Risk in the Cloud (Corinium)
• 2023 – 5 Steps for Securing Your Software Supply Chain (Enterprise Security Magazine)
• 2023 – 5 Steps for Securing Your Software Supply Chain (CIO Review APAC)
• 2023 – 5 Steps for Securing Your Software Supply Chain (RSA Editorial)
• 2020 – Your Application Is Mostly Written By Strangers (CIO Advisor)
• 2020 – Your Application Is Mostly Written By Strangers (RSA Editoral)
• 2018 – Epic Failures in DevSecOps (Book)
• 2007 – Design and implementation of data stream processing applications (Journal Paper)