CISO Executive Network schedule

In this 10-minute networking session, the goal is to connect with three new people. Let the questions on the screen spark your conversation. Enjoy the opportunity to expand your network!

• Fostering engagement and awareness across all departments, transcending traditional IT boundaries, and emphasising the importance of cyber hygiene.
• Understanding organisational thought patterns, conversations, and behaviour concerning risk, to tailor awareness and education strategies for a security-conscious culture alignment.
• Integrating cyber security into the organisational journey positioning as a strategic asset rather than a mere compliance requirement

Moderator:

Gaurav Vikash, Head of Security & Risk, Axon

Panellists:

• Sam Mackay, CISO, NSW Department of Customer Service
• Roxanne Pashaei, CISO, NSW Rural Fire Service
• Doug Hammond, CISO, Uniting

This presentation will cover the Security Architecture function including:

• Why is it important?
• Several misconceptions about what security architects do.
• 3 important jobs of security architect and how they differ.
• Making it easy and fast for business.

During this session, we'll show you just how easily your company's sensitive data can be exposed using Microsoft Copilot with simple prompts. We will share practical steps and strategies to ensure a secure Microsoft Copilot rollout and prevent prompt-hacking data exposure.

• Discussing the significance of conducting risk assessments to identify critical assets and allocate limited resources judiciously, focusing on high-value targets.
• Exploring the cost-effective use of open-source security tools and solutions, such as intrusion detection systems (IDS) and security information and event management (SIEM) platforms.
• Emphasising the role of employee training in reducing the attack surface by enhancing their knowledge of cybersecurity best practices and threat recognition.

Panellists:

• Daniel Aldam, CISO, Keolis Downer
• Derek Chen, Head of IT Security & Governance, Team Global Express

In this presentation, we address the critical challenges posed by supply chain attacks and third-party risks, highlighting their potential financial, reputational, and operational impacts on organisations. We delve into the anatomy of supply chain attacks, emphasising the importance of robust risk assessment, due diligence, and continuous monitoring of third-party activities. Tailored mitigation strategies, including rigorous supplier vetting and adherence to Australian security standards, are crucial for enhancing resilience against these threats. By fostering awareness and implementing proactive measures, CISOs can effectively lead their organisations in mitigating evolving supply chain risks and safeguarding against cyber threats.

• Exploring practical strategies for bolstering incident response plans and advancing cybersecurity maturity.
• Emphasising the importance of post-exercise analysis to refine response processes and highlight tools like network traffic analysis for swift incident detection and response.
• Addressing clear communication protocols, including secure channels and encryption standards
• Discussing the criticality of effective incident declaration processes for compliance and offer insights into advancing organizational maturity models.

As cybersecurity threats continue to evolve, organisations must promote cybersecurity conversations and nurture talent. Join Daminda, Sophia and Adrian from CSC as they share their experiences and insights to address these challenges. The presentations focus on empowering employees through education and communication to fortify defences and exploring innovative strategies for attracting, retaining, and nurturing cybersecurity professionals, ultimately driving organisational cyber maturity.

Speakers:

• Daminda Kumara, CISO
• Adrian Kazias, Senior Manager Cyber Defence & Resilience
• Sophia Barbour, Cyber Awareness and Intelligence Lead

• Delving into the intricacies of harnessing AI for dynamic adaptive countermeasures, including threat modelling, predictive analytics, and automated incident response orchestration.
• Discussing the potential risks associated with AI in cybersecurity, such as AI-generated phishing emails and malware attacks, adversarial attacks, data poisoning, data privacy concerns, and the need for robust model explainability and interpretability.
• Channelling AI's capabilities to amplify value realisation, enrich critical processes, empower internal capacity, streamline operations, bolster the effectiveness of existing controls, and ultimately fortify the security posture amidst an ever-evolving threat panorama.

Moderator: Chirag Joshi, Founder & CISO, 7 Rules Cyber

Panellists:

• Manasseh Paradesi, CISO, Tyro Payments
• Lee Barney, GM Technology Security, TPG Telecom

• Precisely aligning cybersecurity initiatives with strategic objectives, presenting proposals within the strategic context, demonstrating business relevance, and effectively communicating their impact to the board.
• Discussing the pivotal role of CISO in guiding boards in comprehending cyber security responsibilities and fulfilling their obligations in cybersecurity governance and risk management.
• Ensuring cybersecurity at the forefront of the board's decision-making, fostering a culture of cyber risk awareness, and driving the necessary investments to strengthen your organisation’s security posture.

Moderator:

Jess Thomas, Assistant Director Cyber Security Outreach, National Office of Cyber Security Department of Home Affairs

Panellists:

• Simon Smith, CIO, Pallion
• Anna Aquilina, CISO, University of Technology Sydney
• Vishwanath Nair, Former CISO NSW Electoral Commission
• Richard Bird, CSO, Traceable