Join us at CISO Sydney 2023 to share insights on transformative leadership, increasing awareness, taking a holistic approach to cybersecurity, and embracing technology innovation with confidence.
CONFIRMED SPEAKERS INCLUDE

The Hon. Brendan O’Connor
Federal Minister for Skills and Training

The Hon. Victor Dominello
Minister for Customer Service and Digital Government
NSW Government

Maryam Bechtel
CISO
AGL

Wouter Veugelen
VP Global Cyber & Information Security
Santos

Keith Howard
CISO
Commonwealth Bank
FOCUS DAY EXCLUSIVE
Expand your horizons by joining our Critical Infrastructure Focus Day and our DevSecOps Focus Day. These sessions are designed to give you an in-depth understanding of two subjects that are essential for the success of your security practices.
Pre-Conference Focus Day – Monday, 20 February
ABOUT CISO SYDNEY
CISO Sydney 2023 is bringing together Australia’s most influential leaders to develop the critical strategies needed to meet government and citizens' requirements. This is your opportunity to join them and learn how to enhance your organisation's security programs to further protect it from ever-growing threats while enabling business growth.

NEW THIS YEAR
-
Largest ever speaker panel featuring 65+ leading infosec leaders in Australia
-
2-stream hands-on Focus Day, concentrating on Critical Infrastructure and DevSecOps best practices
-
VIP Think Tank – an invite-only, closed doors conversation focusing on “Too Hot to Touch” topics
-
Even more interaction with lots of VIP functions, tracks, group discussions, solutions clinic, fireside chats, panels & many more…
Topics we cover
Human Element
Cyber Strategy
Culture
Reporting Risk
Threat Intelligence
Identity Management
Network Security
Cloud Security
DevSecOps
Governance & Compliance
Privacy
Law & Regulations
KEY THEMES & TAKEAWAYS
- GOVERNMENT & INDUSTRIES PARTNERING UP FOR SUCCESS: Discover the Australian Government plans to support your organisational security and resilience strategies
- SOCI ACT: Preparing for critical infrastructure standards by understanding the full spectrum
- LESSONS LEARNED: How to implement successful ransomware protection strategies
- CEOs vs. CISOs: Find out how your peers are reporting cybersecurity risks to the board and getting senior buy-in
- IAM: learning from others and overcoming common challenges when building your strategy
- ENABLING GROWTH: Explore stronger practices to support business progress through secure innovation
- BECOMING FUTURE READY: Learn from real-life lessons and build an enhanced security program for 2023
WHY ATTEND
C-Level Networking
Expand your C-level network at our exclusive, must-attend VIP breakfast, lunch and dinner and find out how your peers are reporting cybersecurity risks to the board to achieve senior buy-in.
Focus Day
Choose between 2 streams, Critical Infrastructure and DevSecOps at this year's premiere pre-conference Focus Day. Get clarity around best-practices to comply with critical infrastructure legislation and strategies to get your DevSecOps maturity model right.
Interactive Group Discussions
Bring discussions to life and share real-world lessons to have your common problems solved in our no holds barred discussion groups and build an enhanced security program for 2023.
Cheers with Peers
Relax, continue the conversation during an informal and fun cheers with peers.
Tech Demo Exhibition
Be inspired by those delivering change and serving the community through exciting new services.
InfoSec Talks
Enable growth and make strategy happen: InfoSec leaders will share their secrets on strategy execution to promote stronger practices to support business progress through secure innovation
Fireside-chat & audience interactive
Hear from seasoned professionals and discuss topics that most interest you!
Hear what our 2022 attendees had to say about last year's event:
LEAD PARTNER
Snyk
Snyk is the leader in developer security. We empower the world’s developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by more than 1,200 customers worldwide today.
Visit websitePLATINUM PARTNERS
F5
F5 (NASDAQ: FFIV) is a multi-cloud application security and delivery company that enables our customers—which include the world’s largest enterprises, financial institutions, service providers, and governments—to bring extraordinary digital experiences to life. For more information, go to f5.com. You can also follow @F5 on Twitter or visit us on LinkedIn and Facebook for more information about F5, its partners, and technologies.
Visit websiteWIZ
Wiz secures everything organizations build and run in the cloud. Founded in 2020, Wiz is the fastest-growing software company in the world, scaling from $1M to $100M ARR in 18 months. Wiz enables hundreds of organizations worldwide, including 30 percent of the Fortune 100, to rapidly identify and remove critical risks in cloud environments. Its customers include Salesforce, Slack, Mars, BMW, Avery Dennison, Priceline, Cushman & Wakefield, DocuSign, Plaid, and Agoda, among others. Wiz is backed by Sequoia, Index Ventures, Insight Partners, Salesforce, Blackstone, Advent, Greenoaks and Aglaé. Visit https://www.wiz.io/ for more information.
Visit websiteSemperis
For security teams charged with defending hybrid and multi-cloud environments, Semperis ensures integrity and availability of critical enterprise directory services at every step in the cyber kill chain and cuts recovery time by 90%. Purpose-built for securing Active Directory, Semperis’ patented technology protects over 40 million identities from cyberattacks, data breaches, and operational errors. The world’s leading organisations trust Semperis to spot directory vulnerabilities, intercept cyberattacks in progress, and quickly recover from ransomware and other data integrity emergencies. Semperis is headquartered in New Jersey and operates internationally, with its research and development team distributed between San Francisco and Tel Aviv.
Visit websiteAbnormal Security
Abnormal Security provides a leading cloud-native email security platform that leverages AI-based behavioral data science to stop business email compromise (BEC) and never-seen-before attacks that evade traditional Secure Email Gateways (SEGs). Abnormal delivers a fundamentally different approach that precisely detects and protects against the widest range of attacks including phishing, malware, social engineering, spam and graymail, supply chain compromise, and internal account compromise. The Abnormal platform delivers inbound email security, internal and external account takeover protection, and full SOC automation. Abnormal’s API-based approach enables customers to get up and running in 15 minutes and can augment a SEG or be used standalone to enhance native Microsoft security protection. Abnormal Security is based in San Francisco, CA. More information is available at abnormalsecurity.com. Visit websiteMacquarie Data Centres
Visit websiteArkose Labs
Arkose Labs is the global leader in providing account security and bot management. The company’s unique detection and mitigation platform stops bad actors from attacking a consumer’s login and/or sign-up function on a B2C company’s website and app. Arkose Labs detects the most prevalent and costly types of online attacks today: credential stuffing, account takeovers, fake new account registration, phishing, IFRS, etc. Visit websiteDragos
Visit websiteSonatype
Our developer-friendly software supply chain management platform helps more than 2,000 organizations and 15 million software developers simultaneously accelerate innovation and improve application security. Visit websiteGOLD PARTNERS
Claroty
Claroty empowers industrial, healthcare, and commercial organizations to secure all cyber-physical systems in their environments: the Extended Internet of Things (XIoT). The company’s unified platform integrates with customers’ existing infrastructure to provide a full range of controls for visibility, risk and
vulnerability management, threat detection, and secure remote access. Backed by the world’s largest investment firms and industrial automation vendors, Claroty is deployed by hundreds of organizations at thousands of sites globally. The company is headquartered in New York City and has a presence in Europe, Asia-Pacific, and Latin America.
WatchTowr
As offensive security experts, we have spent years simulating some of the world’s most sophisticated cyber adversaries and helped secure some of the most extensive and high-profile attack surfaces.Accredited by global industry bodies, the watchTowr team holds world-class offensive security knowledge and capability. Visit website
BeyondTrust
BeyondTrust is the worldwide leader in intelligent identity and access security, empowering organisations to protect identities, stop threats, and deliver dynamic access to empower and secure a work-from-anywhere world. Our integrated products and platform offer the industry's most advanced privileged access management (PAM) solution, enabling organisations to quickly shrink their attack surface across traditional, cloud and hybrid environments.
With a heritage of innovation and a staunch commitment to customers, BeyondTrust solutions are easy to deploy, manage, and scale as businesses evolve. We are trusted by 20,000 customers, including 75 of the Fortune 100, and a global partner network. Learn more at www.beyondtrust.com.
Illumio
Illumio, the Zero Trust Segmentation company, stops breaches and ransomware from spreading across the hybrid attack surface. The Illumio ZTS Platform visualizes all communication and traffic between workflows, devices, and the internet in one console, automatically sets granular segmentation policies to control unnecessary and unwanted communications, and isolates high-value assets and compromised systems to proactively or reactively stop the spread of a breach.
ZTS is proven to help organizations of all sizes, from Fortune 100 to small business, stop breaches and ransomware in minutes, save millions in application downtime, and accelerate digital transformation projects.
Assume breach. Minimize impact. Increase resilience.
Visit websiteForgeRock
Our mission is to create identity experiences for people at work, at home, or on the go, that are so simple and secure that two things happen:Identity recedes into the background completely and users never have to log in again. This means no more usernames and passwords, and no more awkward registration processes.
Our customers become more secure than ever before and no longer have to worry about fraudulent account takeovers or identity breaches. Visit website
Synopsys
Software risk is business risk
Synopsys builds trust in software by enabling you to manage application security, quality, and compliance risks at the speed your business demands. Our next-generation application security (AppSec) solutions provide a comprehensive view of software risk across your portfolio, allowing you to go from reactive vulnerability response to proactive risk management and focus on what matters most to your organization.
Ping Identity
Seamlessly and securely connect any user to anything using Ping’s identity solutions or other third-party services.
Visit websiteSecuriti
Securiti is a leader in Unified Data Controls for data security, privacy, governance and compliance. Its DataControls Cloud™ delivers unified visibility and controls for data across public clouds, data clouds, private clouds and SaaS, enabling organizations to fulfill their obligations around data. Securiti was named Gartner Cool Vendor in Data Security, Forrester Wave Leader in Privacy Management and “Most Innovative Startup” at RSA.
Visit websiteLacework
Lacework is the data-driven cloud security company. The Lacework Polygraph® Data Platform delivers end-to-end visibility and automated insight into risk across multicloud environments so organizations of all shapes and sizes can innovate with speed and safety. Customers depend on Lacework to drive revenue, bring products to market faster and safer, and consolidate point security solutions into a single platform. Founded in 2015 and headquartered in San Jose, Calif., Lacework is backed by leading investors who believe in the mission of changing security with automation and data. Get started at www.lacework.com.
Visit websiteGuardRails
GuardRails is an end-to-end security platform that empowers developers to find, fix, and prevent vulnerabilities in their web and mobile applications.Trusted by hundreds of teams around the world to build safer apps, we easily integrate into the developers’ workflow, quietly scan as they code, and show how to fix security issues on the spot via Just-in-Time training. We keep the noise low and only report high-impact vulnerabilities that are relevant for your organization.GuardRails helps you shift security everywhere and build a strong DevSecOps pipeline, so you can go faster to market without risking security.
Visit websiteAxonius
Visit websiteMyCiso
MyCISO is the World’s first SaaS application that will vastly simplify security management for all.The MyCISO platform makes cyber security more accessible to businesses worldwide. Assess your current security posture. Improve it. Manage it. Comply to your chosen framework. This is what MyCISO can do for your business.
The platform then delivers powerful metrics to measure your maturity over time. You’ll find automation wherever possible, simplifying a once arduous but high necessary task. Visit website
Splunk
Splunk helps make organizations more resilient. Leading organizations use our unified security and observability platform to keep their digital systems secure and reliable. Organizations trust Splunk to prevent security, infrastructure, and application issues from becoming major incidents, absorb shocks from digital disruptions and accelerate transformation
Visit websiteCocktails In The Cloud Sponsor
Orca Security
Orca Security provides instant-on security and compliance for AWS, Azure, and GCP - without the gaps in coverage, alert fatigue, and operational costs of agents or sidecars. Simplify cloud security operations with a single CNAPP platform for workload and data protection, cloud security posture management (CSPM), vulnerability management, and compliance.
Orca Security prioritizes risk based on the severity of the security issue, its accessibility, and business impact. This helps you focus on the critical alerts that matter most. Orca Security is trusted by global innovators, including Databricks, Autodesk, NCR, Gannett, and Robinhood. Connect your first account in minutes: https://orca.security or take the free cloud risk assessment.
Visit websiteVIP DINNER SPONSOR
Silverfort
Silverfort pioneers the first Unified Identity Protection platform that enables enterprises to implement Zero Trust security in the identity control plane for proactive detection and prevention of attacks that employ compromised credentials to access targeted resources. Utilizing agentless and proxyless technology.
Silverfort extends MFA protection to all users, systems and environments, including legacy applications, command line access tools, OT environments, as well as automates the discovery, monitoring and protection of service accounts.
SILVER PARTNERS
Duo
Duo Security, now part of Cisco, is the leading multi-factor authentication (MFA) and secure access provider. Duo comprises a key pillar of Cisco Secure’s Zero Trust offering, the most comprehensive approach to securing access for any user, from any device, to any IT application or environment. Duo is a trusted partner to more than 25,000 customers globally, including Bird, Facebook, Lyft, University of Michigan, Yelp, Zillow and more. Founded in Ann Arbor, Michigan, Duo also has offices in Austin, Texas; San Francisco, California; and London. Try it for free at duo.com.
Visit websiteCisco
Cisco (NASDAQ: CSCO) is the worldwide technology leader that has been making the Internet work since 1984. Our people, products, and partners help society securely connect and seize tomorrow's digital opportunity today.
Visit websiteDelinea
Delinea is a leading provider of privileged access management (PAM) solutions that make security seamless for the modern, hybrid enterprise. Our solutions empower organizations to secure critical data, devices, code, and cloud infrastructure to help reduce risk, ensure compliance and simplify security. Delinea removes complexity and defines the boundaries of access for thousands of customers worldwide, including over half of the Fortune 100. Our customers range from small businesses to the world’s largest financial institutions, intelligence agencies, and critical infrastructure companies.
Visit websiteCohesity
At Cohesity, we believe that simplicity is the foundation of modern data management. Our mission is to radically simplify how organizations secure and manage their data and unlock limitless value.
Visit websiteLastPass
LastPass simplifies access management for companies of every size, with the tools your entire organisation needs to manage and centralise control of employee passwords and apps. In addition to the increased security provided by our cloud-based password vaulting and single sign-on solution, LastPass increases employee productivity by removing the time lost in password resets.
LastPass Business includes a cloud-based administrative console for the management and oversight of the program, allowing you to enforce policies, track usage through detailed reports and take control of employee access. Join the more than 300,000 businesses worldwide who use LastPass Business to create, enforce, and measure a meaningful access management policy.
Visit www.lastpass.com to start your free trial today.
Visit websiteGoTo
Since day one, we’ve helped people and businesses do their best work – simply and securely – from anywhere. Today, work and life are intertwined. At GoTo, we like to think of ourselves as your go-to. We help you focus on the things that matter most throughout the day: your projects, your professions, and even your personal passions.
Visit websiteGlobalSign
GlobalSign is a global Certificate Authority (CA) and leading provider of digital signing, identity and security solutions for the IoT. We pride in enabling businesses, large enterprises, cloud service providers and IoT innovators worldwide to conduct secure online communications, manage millions of verified digital identities as well as automate authentication and encryption.
GlobalSign is recognised for its leadership in innovative PKI security & digital identity technologies, as well as premium user experiences with the Frost & Sullivan Best Practice 2022 Global Competitive Strategy Leadership Award. Also named an IoT Device Identity Management market leader by ABI Research, our IoT Edge Enroll offering is accredited as one of the very best tools in today’s market to keep IoT devices secure.
GlobalSign is now certified on four ISO standards, being the only CA worldwide to achieve this. The latest certifications are ISO 27701:2019 for Privacy Information Management System (PIMS) and ISO 27017:2015 for Cloud Security. We first achieved ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management) in 2019, making it one of the first CAs in the world to retain them.
SecurityScorecard
Funded by world-class investors including Evolution Equity Partners, Silver Lake Waterman, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings with more than 12 million companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard's patented rating technology is used by over 30,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight. SecurityScorecard is the first cybersecurity ratings company to offer digital forensics and incident response services, providing a 360-degree approach to security prevention and response for its worldwide customer and partner base. SecurityScorecard continues to make the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees and vendors. Every organization has the universal right to their trusted and transparent Instant SecurityScorecard rating. For more information, visit securityscorecard.com or connect with us on LinkedIn.
Visit websiteErmetic
Ermetic’s holistic cloud infrastructure security platform reveals and prioritizes security gaps in AWS, Azure and GCP, and enables you to remediate them immediately. Founded in 2019, Ermetic was a pioneer and the market leader in Cloud Identity and Entitlement Management (CIEM) and today offers a unified Cloud Native Application Protection Platform for organizations of all sizes.
Visit websiteGitLab
GitLab is the most comprehensive DevSecOps platform for software innovation. As the DevSecOps Platform, GitLab provides one interface, one data store, one permissions model, one value stream, one set of reports, one spot to secure your code, one location to deploy to any cloud, and one place for everyone to contribute. The platform is the only true cloud-agnostic end-to-end DevOps platform that brings together all DevOps capabilities in one place.
With GitLab, organizations can create, deliver, and manage code quickly and continuously to translate business vision into reality. GitLab empowers customers and users to innovate faster, scale more easily, and serve and retain customers more effectively. Built on Open Source, GitLab works alongside its growing community, which is composed of thousands of developers and millions of users, to continuously deliver new DevOps innovations.
Varonis
Varonis is a pioneer in data security and analytics, specializing in software for data protection, threat detection and response, and compliance. Varonis protects enterprise data by analyzing data activity, perimeter telemetry, and user behavior; prevents disaster by locking down sensitive data; and efficiently sustains a secure state with automation.
Visit websiteSocial Impact Partner
Meet Magic
Visit websiteINDUSTRY & MEDIA PARTNERS
AIIA
The AIIA represents the depth and breadth of Australia’s innovation technology companies.
Given the numbers of tech professionals employed by these companies, the AIIA represents a significant portion of the 750,000+ workforce of the Australian technology sector.
Visit websiteAIPIO
The AIPIO goal is to advance the professionalisation of intelligence.
To achieve our vison and goal, AIPIO works to sustain and grow a community of intelligence practitioners' through advocacy, thought leadership and partner engagement.
The Institute's membership reflects all domains of intelligence practice including: national security, defence, law enforcement, regulation, compliance, business, industry and academia.
Visit websiteAiSP
AiSP is an independent cybersecurity association that believes in developing, supporting and enhancing industry technical competence and management expertise to promote the integrity, status and interests of Information Security Professionals in Singapore. Through promoting the development, increase and spread of cybersecurity knowledge, AiSP aims to create a safe cybersecurity ecosystem.
Visit websiteAPAC CIO Outlook
APAC CIO Outlook magazine connects the Enterprise IT Community in Asia Pacific Countries. It gives a platform where CIO and other technology decision-makers come together to share thought leadership across industries along with their visions and talk about the ongoing and upcoming technology trends. This Knowledge platform brings together CIO, CXO's and other technology decision-makers to deliberate over critical market challenges and the current technology trends across industries.
ng and upcoming technology trends. This Knowledge platform brings together CIO, CXO's and other technology decision-makers to deliberate over critical market challenges and the current technology trends across industries.
Visit websiteAusCert
At AusCERT, we’re passionate about data security and keeping your information safe. That’s why we deliver 24/7 service to our members alongside a range of comprehensive tools to strengthen your cyber security strategy.
From the start of AusCERT, we’ve continued to develop our systems and our culture to be the best it can be. Our range of services accommodate all areas of network security for your organisation.
Our culture will be the reason you love us though. If you’re looking for a CERT or for a company that really gets you you’re looking in the right place.
Visit websiteCIO Review APAC
CIOReview is a leading technology magazine that is at the forefront of guiding enterprises through the continuously varying business environment with information about the solutions and services. The magazine serves as a trustworthy knowledge source as well as a platform for the C-suite executives, industry experts, technology buyers, and other decision-makers to share their valuable insights about new technology trends in the market. Visit websiteThe Victorian Security Institute
The primary objective of the VSI is to provide a forum for the advancement of security professionals and the industry in which they work.The Victorian Security Institute (VSI) was established in 1973 by security professionals in order to develop the science of security management and to develop and direct the professional standards of the security industry. Today, the membership consists of security practitioners and educators from a broad range of industries who share a common belief in the value of high professional and ethical standards for the security industry. The Institute has initiated and developed educational and professional development programs to assist its membership and the security industry. Visit website
ISACA Sydney
Our Chapter has over 1,900 members and is one of over 225 global chapters. ISACA has 165k+ members globally and has issued 268k+ certifications in Auditing, Risk, Governance, Privacy, and Security.
The membership of the Sydney Chapter has recently elected a new board of volunteer directors, who endeavor to improve board governance and teamwork. We have enhanced and implemented a robust Strategic Planning process to help develop leadership, improve succession planning and increase transparency. Further, we have significantly expanded the roles of our directors to achieve outcomes in favor of our membership. As a chapter, we have invested in team building and strengthened our mentoring program for board directors.
Visit websiteWHAT PEOPLE SAY ABOUT CISO SYDNEY

"Successful event - fruitful discussions with great leaders in the Security industry"

"Thoroughly enjoyed the CISO 2022 event in Sydney which ran effortlessly with a great agenda, fantastic networking and insightful break out sessions facilitated by highly knowledgeable leaders in security. Most impressed by the diversity in the room that represented the evolving landscape of Cyber Security professionals - a great cross cultural and balanced attendance and line up. Not too tech heavy in flow and refreshingly addressed the business resilience and uplift that cyber security provides. Can’t wait for the next event!"

"Some great presenters and good knowledge and insights shared."

"A well organised event with excellent sessions and content, looking forward to similar events in future."

"Very informative, and insightful details discussed by senior members in cyber community."

"Great event with good content and unique networking opportunities with like minded people."

"The CISO event is always exceptionally managed and organised. From registration to the speakers, to the meals, everything is of an exceptional standard."

"Great experience, good to collaborate with like minded people. Overall excellent event"

Conference Director
Michelle Ribeiro
Conference Director
Our events are all carefully created from scratch. The whole process from research to post-production is crafted by our team, so we are always available to assist with any queries! We look forward to meeting you at the event!