Jonathan Wan Partner, Financial Services Consulting
Qualifications
- MSc in Financial Management (Distinction), The University of Manchester, United Kingdom
- Master of Accounting, Monash University, Australia
- BSc (Hons) Mathematics & Computer Engineering, Queen’s University, Canada
- Chartered Accountant, Chartered Accountants Australia & New Zealand
- Fellow of CPA Australia
- Certified Information Systems Auditor, Information Systems Audit & Control Association
- CSX Penetration Testing Overview (CPTO) Certificate, Information Systems Audit & Control Association
- Certified Internal Auditor, The Institute of Internal Auditors
- Certification in Risk Management Assurance, The Institute of Internal Auditors
- Certificate in Data Analytics, ACCA
- Councillor, Chartered Accountants Australia & New Zealand Hong Kong Overseas Regional Council
Background
Jonathan joined Financial Services team of Forvis Mazars in Hong Kong in 2023. With more than 20 years of experience in corporate advisory, Jonathan obtained extensive track records in advocating senior stakeholders for a wide spectrum of local and multinational financial institutions on the establishment of their strategic & IT transformation, governance, risk & compliance (GRC), including regulator driven compliance and system reviews, internal audit and data management frameworks; as well as on the enhancement of operation effectiveness and efficiency on those programmes.
Before joining Forvis Mazars, Jonathan held roles in Big 4 firms as well as the Hong Kong Exchanges and Clearing Ltd., American Express & Marsh McLennan. Jonathan is an active contributor in the professional arena and delivered listing requirements, GRC and Tech related speeches in seminars and training with various professional bodies. He was a guest lecturer on corporate governance, internal controls and tech-risks for courses co-organized by the Economic Times Business College and the City University of Hong Kong.
Jonathan also advised financial institutes in the adoption on emerging technologies and digital transformation for embracing of web 3, ML and GenAI technologies).
Jonathan led the services on:
- Internal audit co-sourcing with a digital bank in HK and operational resilience review under the Hong Kong Monetary Authority’s Supervisory Policy Manual.
- Securities and Futures Commission pre-inspection review for a state-owned financial conglomerate head-quartered in Beijing, operating across asset management, banking, insurance, securities, trust, and credit rating services.
- Anti-Money Laundering and Counter-Financing of Terrorism (“AML/CFT”) and system validation assessment for a prominent player in the digital payment technology space with operations spanning over 300 cities in China and more than 100 countries globally.
- IT compliance assessments under the Hong Kong Monetary Authority’s Supervisory Policy Manual (TM-E-1, TM-G-1, TM-G-2, SA-2, C-RAF 2.0),other related reviews on eKYC, transaction monitoring and cloud computing technologies, and IS Guideline (under the Hong Kong Deposit Protection Board) for banking institutions.
- Independent assessments for the Multiple Credit Reference Agencies membership application for credit providers covering consumer personal data privacy, data integrity and IT security controls under the requirements introduced jointly by the Hong Kong Association of Banks, the Hong Kong Association of Restricted License Banks and Deposit-Taking Companies, the Licensed Money Lenders Association Limited and the Hong Kong Monetary Authority.
- IT controls assessment for license corporations under the Securities and Futures Commission regime, including pre-regulator inspection assessments and ISAE 3402 reviews for asset management firms.
- Independent compliance and cybersecurity assessments (covering user application security (web-based), wallet security, physical security, network and system security (including penetration testing and vulnerability scanning) and technical review on the IT infrastructure, cloud environment and other security measures) on a crypto exchanges under the Securities and Futures Commission’s Virtual Asset Trading Platform licensing requirements.
- A cloud security assessment (incl. gap analysis on security controls and configuration setting against the international CIS and CCM standards; vulnerability scanning, penetration test on platform-related applications and API, infrastructure and external attack surface; and performing attack simulation) for a major financial institution located in Asia, serving as a central hub for trading securities, derivatives, and other financial instruments.
- Cybersecurity advisory for financial institutions on implementing/ revamping NGSOC, SIEM tools, low-code platforms and on adapting blockchain solutions.
Want to know more?
Pages associated to Jonathan Wan
Industries
- Financial reporting of European banks: benchmark study 2025
- Financial reporting of European banks: benchmark study 2024
- Financial reporting of European banks: benchmark study 2023
- Financial reporting of European banks: benchmark study H1 2022
- Financial reporting of European banks: benchmark study 2022
- Financial performance of European banks in the context of Covid-19: benchmark study 2021
- How 5G is going to transform digital banking in APAC by 2025
- Banking & Capital Markets Insights
- Real estate funds & investment management
- Insurance
- Banking & capital markets
- Asset management
- Financial services
Services
Insights
- The 76th National Day Celebration Dinner for the Accounting Profession (22 September 2025)
- Jonathan Wan and Paul Cheng interviewed by AB Magazine (June 2025)
- C-suite barometer: financial services sector view
- Insurance Authority Guideline on Cybersecurity (GL20) - December 2024
- Financial Services Team x QAX Cybersecurity Luncheon (11 July 2024)
- Global Financial Services Seminar in Rome (27 June 2024)
- Internal Sharing Session in CTBC Bank Hong Kong Branch (5 December 2023)
- ICAEW Hong Kong Gala Dinner (26 October 2023)
- Update on the thematic review of risk management practices related to data risks of licensed corporations by the SFC
- SFC licensing regime for virtual asset trading platform operators in Hong Kong
- Partners from Mazars in Luxembourg visit Mazars in Hong Kong (24 May 2023)
- MZHK Financial Services Consulting Roundtable Luncheon (03 May 2023)
- New Financial Services Consulting Partner strengthens technology consulting practices at Mazars in Hong Kong (3 April 2023)
- Update on Supervisory Policy Manual module IC4 on complaint handling and redress by the Hong Kong Monetary Authority
- Anti-money laundering and counter-financing of terrorism solutions
- Update on the New Regulatory Requirements for Conducting Bookbuilding and Placing Activities in Hong Kong
- Licensing Regime for Dealers in Precious Metals and Stones
- Update on the latest regulatory requirements for selling of Protection Linked Plan
- New licensing regime for Virtual Asset Service Providers in Hong Kong
- Concurrent SFC-HKMA thematic review on distribution of non-exchange traded investment products
- Regulatory framework and licensing requirements for trustees and custodians – Type 13 regulated activity
- Regulatory policy on virtual asset-related activities in Hong Kong of the SFC and the HKMA
- Establishing an effective compliance function for financial intuitions in Hong Kong
- Regulators’ expectations on corporate culture for financial institutions
- Operational resilience regulatory framework for financial services providers regulated by the HKMA and the SFC
- Responsible banking practices: benchmark study 2021
- Regulatory review /mock inspection for securities dealers and asset managers licenced by the SFC
- Update on latest regulatory requirements for insurance products and insurance-linked securities
- Regulatory standards and measures on operational resilience and remote working arrangements of the SFC
- Consultation conclusions on proposed amendments to the AML Guidelines of the Securities and Futures Commission (“SFC”)
- The launch of cross-boundary Wealth Management Connect (“WMC”) pilot scheme in the Greater Bay Area (“GBA”)
- SFC consultation conclusions on the management and disclosure of climate–related risks by fund managers
- Regulatory compliance services on conduct and governance of insurance companies, insurance agents and insurance brokers
- Regulatory compliance and risk management services for securities brokerage companies regulated by the SFC
- Regulatory compliance and risk management services for asset managers in Hong Kong
- Responsible banking practices: benchmark study 2020
- Preparation for regulators’ (HKMA / SFC / IA) on-site inspections and reviews
- Selling practices of authorized institutions in respect of investment and insurance products
- How RPA can facilitate digital transformation in financial services
- Suitability obligations/investment product selling practices
- Revised HKMA requirements on recovery planning
- Internal audit services for financial institutions
- Licence application with the Securities and Futures Commission
- Application for a banking licence with the Hong Kong Monetary Authority
- Concurrent SFC-HKMA thematic review of spread charges and other practices
- Responsible banking practices: benchmark study 2019