CISO Sydney schedule

 In this 10-minute networking session, the goal is to connect with three new people. Enjoy the opportunity to expand your network! 

Cyber threat intelligence teams worldwide are observing a sharp rise in activity, from sophisticated state-linked campaigns to the growing overlap of criminal and geopolitical motives. The session will explore how global threat intelligence is evolving from state-linked activity to the growing overlap between criminal and geopolitical motives and what this means for national and regional cyber resilience.

AI agents are already provisioning infrastructure, writing code, and accessing sensitive systems, often with broad permissions and limited oversight. In effect, AI has become the most privileged identity in the enterprise. Many organisations are responding with policies and governance committees, but AI moves faster than documentation. Andrew will share how you can reframe AI security as a platform engineering problem, and not as a policy gap. CISOs can apply Zero Trust principles directly to AI, using strong identity, least privilege, and policy-as-code embedded into shared platforms to secure AI at scale without slowing innovation. 

Bridging the gap between strategy and execution is one of the toughest challenges in cyber leadership. This candid conversation explores how to turn high-level plans into clear, achievable actions that deliver measurable outcomes. From stakeholder alignment to delivery roadmaps and the metrics that matter, the discussion focuses on making cyber real across the organisation.

• What are the common pitfalls leaders face when trying to turn cyber strategy into actionable outcomes, and how can they be avoided?
• How do you create buy-in across the organisation to ensure cyber initiatives move from plan to execution?
• When cyber strategies are successfully implemented, what really makes the difference?

Moderator:

Leron Zinatullin CISO Linkly

Speakers:

David Griffiths CISO Northern Beaches Council

While security professionals are across the threats, the same can’t always be said for executive leadership and board members. Bringing together the C-suite in this panel, we explore how CISOs get meaningful cut-through with the executive suite when they’re already swamped with compliance, governance, and operational pressures.

• What was the defining moment or incident that fundamentally changed how you think about cyber resilience and your role in it?
• How do you embed security into the way the business actually operates – not just slogans but as something enduring and strategic?
• How do you, as CFO, set priorities, and where can the cyber leader add the most value? Has there been a moment or incident that shifted your view or priorities for cyber and resilience?
• As a CIO, what qualities beyond technical expertise do you value most in a cyber leader?
• What language, evidence, or framing truly resonates with non-security executives?
• How can we influence the broader business to own and act on risk, creating accountability beyond the security team?

Moderator: 
Aaron McKeown CISO NGM Group

Panellists:

Andrew Karvinen CISO NSW Department of Communities and Justice

Rajini Carpenter CTO Beforepay Group

Jon Blackburn CFO, Director Corporate Services Sydney Opera House

As digital ecosystems expand and machine identities outpace human ones, traditional, manual approaches to trust and security are reaching their limits. By 2026, organizations will face mounting pressure from shorter certificate lifecycles, growing outage risks, emerging quantum threats, and the urgent need to establish trust in AI-driven systems. In this session, we’ll explore why automation is no longer optional for managing cryptographic assets at scale, how quantum-safe cryptography is moving from theory to reality, and why AI integrity has become a critical pillar of modern security strategies. Attendees will gain practical insights into how these shifts intersect, and what security leaders should prioritize today to build resilient, future-ready trust infrastructures. 

As AI adoption accelerates, leaders face the challenge of setting clear boundaries, not only around what AI should and shouldn’t do, but also around who holds responsibility for its oversight. This panel explores governance from two critical perspectives:

• Structure and Responsibility - Where does AI sit across the organisation? Which teams shared responsibility
• Scope of AI – What tasks should AI be trusted with, and where must human oversight remain non-negotiable? How can organisations prevent over-reliance, ensure explainability, and avoid ethical or operational pitfalls?

Panellists will debate practical approaches to establishing guardrails that support innovation without undermining trust, compliance, or human judgement.

Moderator:

Matt Keast Senior Solutions Engineer Vanta

Panellists:

Mustafa Qasim Former Global Head of Detection & Response 

Leron Zinatullin CISO Linkly

Daminda Kumara CISO Commonwealth Superannuation Corporation 

AI runs on data, and every leader knows it’s no longer enough to simply lock information down. The real challenge is scaling AI securely and responsibly, without treating protection and progress as opposing forces. Yet today, only 14% of security leaders report success in doing both. In this keynote, the Cyera team will reveal the mindset shift forward-looking enterprises are making, to thrive in the AI era. 

This session explores the landscape of human–AI collaboration, focusing on how humans and AI agents co-create value, share trust, and define oversight in agentic workflows. Explore practical approaches to managing and governing agentic systems, including accountability, monitoring, and frameworks for ethical, secure, and resilient systems. 

Security processes are hampered by the complexity of accessing data spread across many tools. This data problem limits individual tool contributions, yielding incremental instead of exponential improvement. Join us to review common suboptimal security scenarios and explore how Asset Intelligence and Actionability can resolve this. We'll also cover its impact on current operations and the future effectiveness of AI. 

AI driven attacks are escalating in speed, scale, and sophistication, overwhelming traditional defences and response playbooks. This session explores the practical techniques, tools, and decision points that matter when confronting intelligent, adaptive threats. 

As companies continue to integrate AI agents to reduce costs and improve operating efficiencies, they also face new waves of security challenges from the new workforce of "non-human identities" (NHIs). With NHIs often outnumbering human identities, they introduce significant new attack vectors. 

Join security experts from Okta and Deloitte for an in-depth discussion of the new security challenges that arise with AI adoption, and the right approaches to safely integrate AI without compromising security. In this timely session, we will cover emerging security challenges, including understanding new threats like prompt injection, data poisoning, and the challenges of managing "shadow access" created by autonomous agents, as well as addressing the risks of unintentional data leakage and the loss of traditional audit trails.  

We will also cover the following: 

• How to gain visibility to undermanaged NHIs 

• Strategies to bring access control policies to these types of unfederated NHIs 

• And considerations for using the same security framework for NHIs as human identities 

Moderator:

River Nygryn CTO CRVAA 

Speakers: 

Mathew Graham APJ CSO Okta 

Shweta Pandey APAC Cyber Risk Advisory Partner Deloitte

 Phishing and social engineering remain among the most effective attack vectors, and AI is making them more persuasive and scalable than ever. Yet traditional awareness programmes often rely on “gotcha” tests and compliance-driven training that fail to change behaviour. In this session, we explore how behavioural science and psychology can be applied to build more resilient human firewalls.

AI is accelerating faster than ever and so are the risks. As organisations race to adopt generative AI, sensitive data is becoming the unintended fuel feeding these models. In this session, we’ll break down how modern AI systems ingest and learn from corporate information, where the hidden exposure points are, and what leading APAC organisations are doing to stay in control. You’ll leave with practical strategies to safeguard your data, enforce boundaries around AI usage, and unlock value without becoming the next cautionary tale. If your business is embracing AI, this is the playbook you need before the appetites grow.

AI is already automating parts of engineering and analyst roles. In this interactive group discussion, every participant will have the chance to share their views on which skills will matter most in an AI-augmented workforce and how to reshape the talent pipeline to match.

• Which current cyber roles are most likely to be transformed or replaced by AI?
• What new roles or skills will emerge as AI adoption grows?
• How can we work with education providers to prepare the next generation of talent?

Shadow AI is moving from theory to a daily operational challenge as teams adopt tools faster than policy can respond. Corporate perimeters now stretch across OAuth grants, browser extensions, and third-party integrations that quietly connect sensitive data to unvetted AI models. This session focuses on practical observability: how to detect and score the risk of connected consent, analyse browser signals and OAuth activity, and build relative risk scores that help SecOps prioritise interventions without slowing innovation.

Supply chains are now one of the most exploited entry points for attackers and too often, organisations only discover the risk once it’s too late. When applied effectively, threat intelligence can give earlier warning of emerging exposures across these extended ecosystems. This session explores how consolidating and operationalising intelligence feeds strengthens supplier oversight, reveals adversary patterns before they strike, and improves agility in response.

Almost every connection on the Internet begins with a DNS request. This session demonstrates how Infoblox Protective DNS stops threats at the moment of intent, blocking access to malicious infrastructure before connections are established. Discover how a pre-emptive DNS-based security strategy dramatically shrinks attack surfaces while protecting users, devices, and networks everywhere they operate. 

While legal teams own contracts, security teams play a crucial role in shaping the obligations that protect the organisation. This session explores how security leaders can collaborate with legal and business teams to ensure key risks are addressed in partner agreements. Learn which clauses matter most, from data protection and breach notification to audit rights and compliance obligations, and how to turn security requirements into enforceable commitments.

Moderator:
Prof. Dan Haagman CEO Chaleit & Honorary Professor of Practice Murdoch University

Speakers:

Sarah Lattimer Chief Legal and Corporate Affairs Officer I-MED Radiology Network

Jihad Zein Global Head of Governance, Risk & Assurance Toll Group

Threat intelligence should reflect an organisation’s unique risk profile. This session explores how security teams can move beyond consumed threat feeds to organisation specific threat intelligence that informs strategic decisions. Understanding immediate and impactful risks enables a more confident response and better investment choices.

As adversaries move at machine speed, the window between initial access and full-scale impact is shrinking to minutes. Organisations face a critical “Response Gap” — the time between spotting a threat and having the capability to contain it. Collecting telemetry alone is no longer enough; success depends on high-fidelity interpretation and decisive action. 

This roundtable will explore: 

•    Operational bottlenecks in modern Detection & Response (D&R) 

•    Moving from high-volume alerts to precision-based response 

•    Closing “Detection Debt” and optimising collaboration between internal teams and external MDR partners 

The rapid rise of generative AI has brought powerful new capabilities into the enterprise but also created “shadow AI,” where employees adopt unapproved tools without security review. For CISOs, the challenge is not only visibility but also accountability. Join us to share your thoughts on how to govern what is unseen, while enabling innovation.

• Oversight: How should CISOs gain visibility into AI use without creating a culture of surveillance or distrust?
• Accountability: Who should own the risks of shadow AI — security, business leaders, or individual teams?
• Governance: What frameworks or guardrails can balance compliance, ethics, and innovation at scale?

Facilitators:

Siddharth Rajanna Head of IT Security BINGO Industries

Jim Marinos Head of Security Advisory REA Group  

As generative AI accelerates digital transformation across Australia and New Zealand, identity is emerging as the critical infrastructure layer that enables trust, security, and scale. In this session, Ping Identity unpacks how organisations can modernise identity to tap into the Agentic AI opportunity as well as protecting against AI-driven threats like deepfakes and account takeover—without slowing innovation. Learn how leading enterprises are unifying identity across edge, cloud, and third-party ecosystems to support massive-scale AI workloads while enabling seamless, secure access for every user, device, and agent. 

This discussion explores how AI can help streamline workflows, automate repetitive tasks, and prioritise alerts, allowing teams to focus on high-value work.

• Which AI tools provide the biggest productivity gains for small security teams?
• How do you balance automation with human oversight to avoid missed threats?
• What tasks should be prioritised for AI-assisted workflows versus manual handling?
• How can small teams measure the impact of AI on efficiency and risk reduction?

How can organisations create the capacity for AI upskilling while ensuring regular work and operational tasks continue uninterrupted? Join us to share your thoughts and experience on balancing training, workload, and business priorities, discussing approaches to integrate AI learning into day-to-day workflows effectively.

• How can AI upskilling be integrated into existing workflows without disrupting productivity?
• What methods ensure employees apply newly acquired AI skills effectively in real projects?
• How can organisations measure the impact of AI upskilling on workforce capability, innovation, and business outcomes?
• What’s one lesson learned from failed AI 

Speakers:

 Dr Tom Gao Chief Technology & Digital Services Officer City of Sydney 

 David Norwood CIO & Director Sydney Local Health District, NSW Health 

Threat-Informed Defence has gained strong momentum over the past year, driven by regulations such as Australia’s CPS 230 / CORIE and the EU’s DORA, which require resilience testing based on real-world cyber threats. This session introduces practical, open-source tools and techniques to help organisations build a threat-informed defence strategy and strengthen their overall cyber resilience—whether operating in regulated environments or not.

This one-on-one conversation delves into stories behind the decisions, inflection points and leadership lessons that have shaped their journey. From earning trust and building influence to navigating complexity under pressure, the dialogue explores what they might approach differently today and what they still stand by. More than frameworks and controls, this session reveals how the CISO role is defined by the judgement calls that matter, focusing on the personal side of leadership in one of the most high-stakes positions in any organisation

Interviewee:

Arun Singh CISO Tyro Payments

Interviewer:

Dan Haagman CEO Chaleit & Honorary Professor of Practice Murdoch University 

In cyber security, no system is completely secure, and no plan survives every challenge. This opening keynote explores how leaders can achieve success despite uncertainty, setbacks, and evolving threats. 

• How do you choose what’s worth protecting? 

• Can failure be an advantage? 
• What if your best defence still fails? 
• What separates teams that adapt from those that crumble? 

Speakers: 

Sunil Rodhan Head of Security & IT Risk IPH  

Hank Opdam Former CISO Ausgrid  

Martin Doherty CISO Australia HSBC  

Here's the reality: 68% of data breaches happen because of human error. Even with top-tier technical defences, phishing and social engineering attacks, particularly via email, are still the #1 threat facing organisations in ANZ today. In this session, we'll explore why email remains the weakest link and how phishing and social engineering continue to be the main gateways for breaches and ransomware, with AI making attacks more sophisticated than ever before.

As organisations shift more services, data and operations into an as-a-service model, identity risk becomes a critical business concern. This conversation explores what CISOs need to know beyond the technical detail to guide strategy, investment and trust.

• What’s the hardest part of managing identity sprawl across SaaS and multi-cloud?
• What’s the most effective ways to reduce complexity and maintain positive user experience while maintaining control?
• How do identity failures affect operational resilience and regulatory standing?
• How can CISO get a clear, continuous picture of trust, privilege and lifecycle in cloud-based environments?

Moderator:

Gaurav Vikash Head of Security and Risk (APAC) Axon

Panellists:

Chris Grisdale Head of Information Security hipages Group

Sajeesh Patail Global Cyber Operations Manager & Head of Cyber Operations Orica

Siddharth Rajanna Head of IT Security BINGO Industries

Insider threats have entered a new era — fueled by AI, shaped by behavioral blind spots, and overlooked by executive leadership. In this session, we will break down the findings from Exabeam 2025 global Insider Threat Report, and provide actionable insights for security analysts, SOC leaders, and CISOs alike. Whether you're building your first insider threat program or looking to level up detection and response, this session will ground you in the data and help you reimagine your strategy for the AI era.

This interactive discussion explores how to optimise sourcing, consolidate tools, and make smarter budget decisions. Join us to share your experiences, discuss trade-offs, and uncover practical strategies to streamline operations, reduce costs, and maximise value from existing investments.

• How can organisations decide which tools to keep, consolidate, or retire under budget constraints?
• What strategies or framework help teams achieve more without increasing spend?
• How do you avoid false economises that save money but increase risk?
• How do you measure the impact of tool rationalisation on efficiency, performance, and cost savings?

Moderator:

Madhuri Nandi Head of Security Nuvei

Speakers:

Arun Singh CISO Tyro Payments

Most breaches don’t occur because a tool failed. They occur because ownership, context, or response broke down. Despite unprecedented investment in cyber security technology, many organisations remain vulnerable. This presentation explores why, now more than ever, tools alone are not enough, and how human judgement, clear ownership, and decisive action ultimately determine security outcomes. 

In a cyber crisis, technical controls matter, but leadership defines the outcome. Crises demand fast decisions and trade-offs, and incidents quickly become organisation-wide challenges. This session explores how security leaders align technical response with executive-level crisis management to ensure clarity, speed, and coordinated action, building resilience before, during, and after the storm.

Mustafa Qasim Former Global Head of Detection & Response 

AI agents, automation, and non-human identities are reshaping how enterprises operate—but they are also breaking the assumptions that identity security has relied on for decades. Boards are rightly asking whether AI can be trusted to make decisions. Yet a more fundamental risk often goes unaddressed: do we have visibility into which identities are actually acting inside the enterprise, at machine speed, and with what authority?

Identity is no longer a static access control function. It has become a dynamic, distributed system—executing continuously across cloud platforms, legacy infrastructure, APIs, SaaS, and autonomous AI agents. Managing identity as configuration rather than behavior creates blind spots that traditional IAM, PAM, and CIEM platforms cannot close.

This session introduces Identity Visibility and Intelligence Platforms (IVIP) as a necessary evolution of identity security in the AI era. IVIP treats identity as an observable system, collecting authentication telemetry across environments, applying behavioral intelligence, and enabling adaptive Zero Trust enforcement in real time.

Using Silverfort’s evolution as an illustrative case study, this talk demonstrates how identity visibility becomes a foundational capability for AI trust, cyber risk resilience—without requiring application rewrites or operational disruption. quantification, and digital 

Small and medium enterprises often face tough security challenges without the resources of larger organisations. In this interactive discussion, we’ll explore three critical areas to strengthen security posture—from access control and data protection to incident response and vendor risk. Participants will share experiences, practical tips, and examples to protect their businesses effectively without overburdening teams or budgets.

The shift from perimeter-based defence to Zero Trust marks a fundamental transformation in cybersecurity thinking. Rather than relying on static boundaries, Zero Trust requires a reimagining of how trust, identity, and access are governed. This talk examines how such shifts reshape the mental models of practitioners, emphasising the socio-technical dimensions that drive sustainable security change.

• Explore how trust is redefined as contextual, provisional, and continuously evaluated.
• Identify shifts in practitioner mental models and the cognitive load of adopting Zero Trust logic.
• Examine the socio-technical integration required for cohesive, organisation-wide Zero Trust implementation.

Today, the primary function of cybersecurity is to boost resilience. In this session, we'll look at how leading enterprises are evolving from detect and respond cyber ‘whack-a-mole’, to positions of confidence in sustaining operations under inevitable attack. Transforming reactive operations and proactive security architecture through cyber cartography and Zero Trust. 

This session examines how security operations can move beyond volume and noise to focus on outcomes that actually reduce risk. This session reflects on prioritisation, decision-making, and what makes SecOps effective when resources are limited and everything appears urgent.

Quantum computing promises groundbreaking capabilities, but also the potential to break today’s encryption and security assumptions. In this debate, leading experts will explore whether quantum is an imminent cyber risk, a distant concern, or an overhyped distraction. We will explore what security leaders should be doing now to prepare.

Moderator:

Cathy Foley CSIRO Board Member & Former Australia’s Chief Scientist

Panellists:

Adam Byrne Group CSO The Adecco Group

Saba Bagheri Cyber Threat Intelligence Manager Bupa

Henry Huang Head of IT - Digital Service Delivery & Operations UBank

Dr Andreas Sawadsky Technology & Innovation Manager Quantum Brilliance 

AI is amplifying both innovation and adversary capability, widening the gap between disruption and defence. To stay ahead, organisations must anchor their security strategy in threat intelligence that reveals intent, exposes tradecraft, and drives precise action. By leading with real-time insight, enterprises can prioritise what matters most, strengthen resilience, and outpace attackers in an environment where the rules are being rewritten.

Has cyber really changed, or are we still fighting the same battles in new ways? This closing session pairs two perspectives, one deeply experienced and the other earlier in their career, to spark a candid conversation about what defines a “good” cyber strategy today. Together, we’ll explore:

• What has truly changed in cyber strategy over the past 20 years, and what hasn’t?
• Can you share a strategy that failed and the key lesson you took from it?
• Where should organisations go “back to basics” and where is bold innovation needed?
• If you had to define the top marker of a “good” strategy in 2026, what would it be?

Moderator:

Chirag Joshi Founder & CISO 7 Rules Cyber

Speakers:

Sanja Petrovic GM Cyber Security & Governance HUB24

Abhishek Singh GM – Enterprises System, ICT, Data Analytics & Cyber Security New Horizons