Providing Clients with Time-Sensitive, Seamless Service

Kroll names Paul Jackson Asia-Pacific Leader, Cyber Security and Investigations Practice, Hong Kong.

Recently, global leader in risk mitigation, investigations, compliance, cyber resilience, security, and incident response solutions, Kroll announced the appointment of Paul Jackson as Asia-Pacific Leader for its Cyber Security and Investigations Practice, based in Hong Kong. From a career spanning more than 25 years of service in some of the region’s highest levels of law enforcement and corporate enterprise, Jackson brings a stellar record of achievement as a cyber security practitioner, strategist, and thought leader.

“I am excited to have Paul leading Kroll’s Cyber Security practice in Asia. Not only does he possess deep knowledge regarding the region’s diverse geopolitical and cultural complexities, he has developed a highly nuanced view of global cyber security challenges from working with organisations such as Interpol, the U.S. Secret Service’s Electronic Task Force, and Microsoft’s Digital Crimes Consortium,” said Jason Smolanoff, Senior Managing Director and Global Cyber Security Practice Leader for Kroll. “This background combined with his experience leading large, high-performing teams dovetails perfectly with our goal of providing clients with the expertise and resources necessary to address their most complex cyber security needs, wherever they might arise in the world.”

“Paul is a leader who possesses an invaluable perspective on the evolving cyber security threat landscape, from the most high-level strategic considerations to the most detailed operational components, all within a framework informed by regional and global realities,” said David Fontaine, Chief Executive Officer of Kroll and its parent, Corporate Risk Holdings. “Having worked in law enforcement, a large corporate environment, and, most recently, as an external advisor to enterprises with global operations, Paul’s experiences are well-suited to the needs of Kroll’s clients in the APAC region and around the world. The addition of Paul to our team of Cyber professionals further reinforces our commitment to the global expansion of our Cyber Security practice.”

Jackson started his career with the Hong Kong Police Force and over 22 years, rose through the ranks to become Chief Inspector and Head of the IT Forensics Practice, Investigation Team, and Training in the force’s Technology Crime Division. In this role, he led multiple teams of cyber investigators, computer forensics examiners, and police college trainers, and was policy manager for digital evidence for the entire police force of 27,000 members. His accomplishments included overseeing the design and construction of a multimillion-dollar project to build the IT forensic laboratory and all associated IT security infrastructure; heading an internal “think tank” that provided top-level police management with strategic planning and policies relating to technology crime trends and IT security matters; leading the government incident response capability against cyber threats to critical infrastructure during major events such as the Olympics, WTO meeting, ITU Conference, and East Asian Games; and implementing an innovative incident response methodology for live (compromised) system analysis, which was ultimately adopted by Interpol and police forces worldwide. During his tenure, Jackson was also appointed by Interpol as course director for the Asia-Pacific Region to develop and deliver IT investigation and forensics training to law enforcement. His design and management of an advanced training facility for the HKPF was later used as a template by Interpol and the Korean Police University. Jackson brought to these training efforts a tremendous range of practical, frontline experience from his earlier roles as Head of the Computer Security Unit in the Crime Prevention Bureau, Head of the Telecommunications Liaison Office in the Criminal Intelligence Bureau, and a uniformed officer for eight years.

After leaving the HKPF in 2010, Jackson became APAC Head of Fraud and High Tech Investigations for JP Morgan Chase Bank, and from 2012-2014, he relocated to New York where he served as the bank’s Global Head of High-Tech/Cyber Investigations. In this role, Jackson managed a global team of cyber investigators and responders throughout the United States, Europe, and Asia, focused on addressing the pressing needs of managing the evolving threats faced by a global financial institution. Executing on these objectives involved among other efforts, redesigning global cyber laboratories and introducing new forensic technologies to enhance the efficiency and capacity of the team. In addition to serving as a strategy leader, Jackson personally conducted numerous investigations, successfully resolving several major incidents that included, among others, a well-publicized breach, data exposure, reputational issues, employee misconduct, insider threat, and electronic fraud.

Most recently, Jackson was APAC Managing Director for Stroz Friedberg. In this role, Jackson developed several of the firm’s products and services with an APAC focus, and personally led client engagements in cyber security assessments, C-level cyber incident table-top exercises, and data breach investigations. He also served as a thought leader and represented the firm in numerous venues, forums, and major public events.

Jackson earned advanced diplomas in Computer Forensics at the University of Science and Technology in Hong Kong, and a Bachelor of Engineering degree, with honors, in Engineering Science and Industrial Management at the University of Liverpool. In addition to holding a number of technical certifications, Jackson has been a Professor at the University of Defence, Science and Technology in Beijing since 2007, and a member of the China Computer Forensics Research Centre since 2008. He was also the only member selected from Hong Kong by the prestigious Network Security Professionals (NSP) Group, an organization of influential leaders from the world’s largest network backbone providers; members are able to provide instant mitigation response to large-scale denial of service attacks. Jackson’s other past and present affiliations include Asia Crisis and Security Group; the National Cyber-Forensics and Training Alliance, a leading U.S. group coordinating law enforcement and private sector collaboration against cyber crime; International Organisation on Computer Evidence; High Technology Crime Investigation Association; U.S. Secret Service Electronic Crimes Task Force; U.S. Financial Services Information Sharing & Analysis Center; and Microsoft’s Digital Crimes Consortium.