Chris Chan
Founder & CEO Β· Chief Penetration Tester
Founder & CEO of DracoSec and its Chief Penetration Tester, Chris Chan is one of Hong Kongβs most decorated offensive security practitioners. He leads red teams that think and act like real attackers, evaluating enterprise security products and advising banks, government bodies, multinational groups, schools and NGOs on exactly where they are exposed and how to close the gap.
Having taught himself the craft, Chris grew into an industry authority who has responsibly disclosed vulnerabilities to global technology leaders including ASUS, Yahoo, eBay and Apple, and has presented research credited with CVE identifiers on stage at HITCON and the Information Security Summit. He holds the complete OffSec certification suite, including OSEE, one of the hardest credentials in the field, which he was among the first in Hong Kong to earn and which remains held by only a handful of local experts, and he is an Authorized OffSec Instructor.
His years in senior roles at UDomain, ASTRI and Potai Bullion give him a rare read on how attackers think and where organisations truly break. Every finding he delivers is backed by proof and a practical fix his clientsβ developers can act on immediately, because the systems he tests protect their most valuable data.
Professional Affiliations
BSidesHK Founder
OffSec HK Ambassador
Primary Certifications
Authorized OffSec Instructor (PEN-100 & PEN-200)
CISSP
OSCE
OSCEΒ³
OSEP
OSWE
OSED
OSEE
OSMR
OSCP
OSWP