Australia | CLOUDSEC 2019 PICTURE THIS! See. Secure. Go Further.

Conference

Event Speakers

Rik Ferguson

VP of Security Research | Trend Micro Global

Rik is one of the leading experts in information security. This Infosecurity Hall of Famer has over 20 years’ experience, is a Special Advisor to Europol, a project leader with the International Cyber Security Prevention Alliance (ICSPA), and Vice Chair of the Centre for Strategic Cyberspace & Security Science. Rik is actively engaged in research into online threats and the underground economy.

Conference

Event Speakers

Phillimon Zongo

Co-Founder & Director | Cyber Resilience
Head of Cyber Security & IT Risk | Crestone Wealth Management

Phil Zongo is a director and co-founder of Cyber Resilience, a cyber leadership development institute. He is the author of The Five Anchors of Cyber Resilience, an Amazon best-selling book that strips away the complexity of cyber security and provides practical guidance to business executives. The book has received widespread positive reviews and distributed to dozens of countries.

In 2017, Phil was invited to Chicago, where he was honoured with the International Best Article Award, one of ISACA’s highest global honours that recognises individuals who have made major contributions to the fields of IT governance and cyber security. ISACA is the largest IT governance professional association in the world with approximately 150,000 members across 200 countries. He has also received multiple additional awards for his thought leadership and influence.
Phil’s thought leadership articles have been featured in several respected business magazines and journals and have been distributed to more than 180 countries.

Conference

Event Speakers

Rajesh Vasa

Head of Translational Research & Development | Applied Artificial Intelligence Institute, Deakin University

Rajesh Vasa is an innovator and entrepreneur with over 2 decades of experience spanning both industry and academia with a specialisation in artificial intelligence, cyber-security, and complex software systems design. His career spans roles in technology engineering, operations and executive leadership with an international work profile. He is currently a tenured Professor at Deakin University with multiple successful start-ups and spin-outs from his lab some of which are now mature organisations spanning the globe.

Conference

Event Speakers

Magda Chelly

Managing Director | Responsible Cyber
CyberFeminist
TOP 50 Cyber Influencer

Magda Lilia Chelly is a Managing Director and a Chief Information Security Officer On Demand. Magda performs her cyber security duties during the day and hacks during the night. She reviews technical architectures, cloud migrations, and digital transformations, and provides security recommendations for her clients worldwide. She has a PhD in Telecommunication Engineering and a CISSP. Magda is also the founder of Woman in Cyber and promotes cyberfeminism or encouraging women in joining the cyber security industry.

Magda with her expertise, and technical background provides a 360 degrees cyber security support for companies; from governance to incident management, she coordinates and builds resilient businesses. Magda's latest two projected covered the roles of an ISO Lead Implementer for a Fortune 500 (ISO 27001:2013) and a business information security officer role for a regulated Fortune 500 company covering 13 countries in Asia Pacific.

She has been nominated with the below:
・ TOP 50 International cyber security influencer, internationally
・ 10 cybersecurity experts to follow on Twitter in 2018
・ 58 Women In Cybersecurity To Follow On Twitter
・ Top 17 Cybersecurity Influencers in 2018 You Must Follow

Conference

Event Speakers

Ian Christofis

Managing Principal Consultant | nCipher Security

Ian is a specialist in information security (cryptographic security, Public Key Infrastructure (PKI), identity & access management, smart cards, risk management, etc.), personal data privacy and electronic commerce. He combines a strong understanding of the commercial and strategic business issues with a detailed knowledge of the technology. He is Managing Principal Consultant with nCipher Security, driving consulting and professional services for nCipher security products in APAC.

Conference

Event Speakers

Matt Tett

Managing Director | Enex TestLab

Matt Tett is the Managing Director of Enex TestLab ( www.testlab.com.au ), an independent ISO17025 accredited testing laboratory with a 30-year history, ISO 9001 certification and a University heritage. He is also the chairman of Cyber Security firm Enex Carbon ( www.enexcarbon.com.au ).

Matt is well known globally across industry and government as a highly technical straight shooter. Effectively translating complex technology to the lay-person. His organisations objective is using science to keep tech vendors honest by rigorously testing their product claims and ensuring consumer requirements are met.

Matt is the chair of IoT Alliance Australia (IoTAA) enabler Work Stream 3 (eWS-3) – Cyber Security and Network Resilience and sits on the IoTAA Executive Council. He also serves on the Online Safety Consultative Working Group (OSCWG) for the Office of the eSafety Commissioner, the Communications Alliance Cyber Security Reference Panel (CSRP), the CSRP Fraud subgroup and the Communications Resilience Administration Industry Group (CRAIG), the Internet Australia Cyber Security SIG, and is a member of the research advisory committee for the Internet Commerce Security Laboratory at Federation University.

Matt has a deep technical background in network and security systems and he holds the following security certifications in good standing for 15+ years: CISSP, CISM, CSEPS and CISA. He retains Government and Police Contractor security clearances.

Conference

Event Speakers

Myla Pilao

Director, Technology Market Research | Trend Micro

Myla leads security research communications at TrendLabs, Trend Micro’s Research and Development Centre. She heads the division of the company that monitors the security threat landscape, including high-profile attacks like advanced persistent threats (APTs) and prevalent digital security threats to mobile, cloud, and critical infrastructure.

She oversees a team that monitors and manages critical incidents and developments in the threat landscape. She supervises the development of information assets supporting communication plans to broaden understanding of the threat landscape.

She contributes technical guidance in nation-building exercises related to the development of strategic cyber security frameworks. Numerous public and media engagements in Europe, Asia Pacific & the Middle East has featured her expertise where she shares awareness and insights on digital threats and their real-world impact, along with countermeasure strategies for the computing public.

Myla is also an active supporter and advocate of the protection of children online. She also supports international movements that work on stopping the online commercial distribution of inappropriate images of children.

Conference

Event Speakers

Julie Cabuhat

Incident Response Analyst | Trend Micro

Julie Cabuhat is an Incident Response Analyst for the Managed Detection and Response Group in Trend Micro. She has years of experience performing digital forensic investigations across various industries. Upon joining Trend Micro, she monitored and analysed high-profile malware families, specifically focusing on arrival vectors and distribution methods. She also created in-depth technical malware family reports and provided insights for security blogs. She is a GIAC Certified Forensic Analyst (GCFA). She also currently holds the EnCase Certified Examiner (EnCE) , AccessData Certified Examiner (ACE) certifications in the field of Computer Forensics.

Conference

Event Speakers

Simon Piff

Vice President | IDC Security Practice

Simon Piff is the Vice President of IDC Asia/Pacific's IT Security Practice Business. He focuses on the needs of the chief security officer in an environment that encompasses cloud computing, the Internet of Things, and a continued and persistent attack from cybercriminals. Much has changed in this area since 1994, when Simon installed his first firewall, and the collision of Big Data with security, the move to a defense in-depth strategy, and the issues of insufficient numbers of well-trained staff make this a challenging area for businesses today.

Simon started his Asia/Pacific regional experience in 1989; since then, he has served in various sales, marketing management, and consulting roles for IT hardware, software, services, and online businesses. Having previously covered the storage system and then datacenter markets for IDC Asia/Pacific, Simon's career background and IDC experience put him in the ideal position to deliver valuable insights to both technology buyers and providers. Prior to joining IDC, Simon worked at Microsoft Asia/Pacific, defining the company's business intelligence, data warehousing, and data management go-to-market strategies for the region. He also worked at Digital Equipment Corporation to develop its IT security, Internet, ecommerce, and service provider business as well as with a medical dot-com in various business development and management roles.

Conference

Event Speakers

Miguel Carlo Ang

Threat Research Engineer | Trend Micro

Miguel Carlo Ang, a graduate of Mapua Institute of Technology, began his career in cybersecurity at Trend Micro in 2011. Starting as a member of the Web Reputation Services team, he evaluated suspicious websites and performed research and documentation for the solution delivered. He also took on a Threat Research Engineer position, where he was able to analyze different threats and make technical reports and sandboxing solutions for them. Currently an end-to-end analysis expert, he now focuses on malware research: exploring the “bigger picture” and the latest threats that are in the wild today.

Conference

Event Speakers

Nilesh Jain

Vice President | Trend Micro Southeast Asia & India

Nilesh Jain, with his capacity to plan strategically coupled with his operational competence, spearheads the Enterprise Business of Trend Micro in India & the SEA Region. Nilesh have been instrumental in scaling business through sales management, team management, retention and training of employees. As a country manager, he is currently responsible for all facets of the organisation’s region-wide enterprise operations in the India & SEA arena. He supervises profit, revenue, cash and sales in India and SEA region. With more than 15 years of experience in the IT industry, Nilesh has held various leadership roles in his tenure at Trend Micro. Extremely adept at managing sales operations and networking, he was instrumental in growing Government business by more than 250% within two years by focusing on government-specific strategic alliances, channels and end-customer. The overall business grew by around 38% YOY under his able guidance and leadership. His sales management skills also saw him being awarded “Best Sales” for two consecutive years in 2010 and 2011. He holds a Bachelor of Technology degree in Chemical Engineering from S.P. University, Ahmedabad and has completed a Postgraduate Diploma in Business Management (Marketing and Sales) from SLIMS, Ahmedabad. He has been significantly instrumental in contributing towards enterprise sales business including channel, non-named enterprise sales and government sales. Nilesh regularly participates as a key speaker at various IT security forums and events to disseminate the knowledge gained during his ten years in the IT security industry.

Conference

Event Speakers

Suchit Mishra

Head of Information Security | Grab

Suchit Mishra Head of Information Security | Grab Suchit is the Head of Information Security at Grab, where he provides leadership and oversight to ensure the security of hundreds of millions of people who use the ride hailing platform in South East Asia. He is also very passionate about collaborating with the security community and building solutions to improve the ecosystem at large.

Prior to Grab, he was heading the security assurance team at Uber focusing on the enterprise products and services and drove the global technical security & compliance strategy for Uber Everything and Uber for Business. Before Uber, Suchit headed the security engineering function at Flipkart, the largest e-commerce marketplace in India, covering all aspects of secure software development, infrastructure and IT corporate security along with regulatory compliance. He has also worked at salesforce.com where he led and managed the information security programs for acquisitions and enterprise IT. Suchit spent the early years of his career at Adobe where he led the team to embed security into the engineering practices there.

Suchit is a regular speaker and panelist at security conferences worldwide. He holds multiple master's degrees in Electrical Engineering from University of Alabama, and Software Management from Carnegie Mellon University.

Conference

Event Speakers

William Malik

Vice President of Infrastructure Strategies | Trend Micro

Bill Malik’s information technology career spans over four decades. Before joining Trend Micro, he was CTO of Waveset, an Identity Management vendor. Bill worked at Gartner for twelve years where he led the Information Security service and the Application Integration and Middleware service. He co-authored the Cobit version 3 standard. During his 12-year career at IBM he worked in MVS development, testing, and business planning.

Conference

Event Speakers

Zhuang Haojie

Director of Research | CSA APAC

Haojie is Director of Research for APAC at the Cloud Security Alliance (CSA), where his current portfolio includes delivering initiatives from CSA Working Groups, CSA Corporate Members, standards developing organisations, governments, and other strategic partners.

Prior to joining CSA, Haojie was Manager at the Intelligent Computing Lab, Technology Solutions Division of the Infocomm Media Development Authority (IMDA) of Singapore. During this tenure, he led the development of artificial intelligence strategic roadmaps, and collaborative projects with industry and research community partners to co-develop machine learning driven solutions, aimed at tackling productivity and sectoral challenges. When Haojie was with the National Cloud Computing Office under the former Infocomm Development Authority (IDA) of Singapore, he conceptualized & managed data-related initiatives for industry, and led awareness creation efforts for cloud computing in Singapore.

Haojie obtained his B.Eng. (Hons) in Computer Engineering from the National University of Singapore, beginning his career with a brief stint as an events photographer, before getting involved in the research & design of networking protocols for multi-hop underwater networks at the Institute for Infocomm Research (I2R), Agency for Science, Technology & Research (A*STAR).

Whenever possible, Haojie prefers inline skating to walking.

Conference

Event Speakers

Luke de Merindol

Principal Consultant | Macquarie Cloud Services

Luke is a Cloud Hosting professional with over 20 years expereince in the design and managament of ITC systems with a particular focus on Security, Mobilty and IT Managed Services. Luke has been with Macquarie Cloud Services for 7 years, and has designed complex solutions for highly complaint and security-focussed businesses in the Financial Services and Health industries.

Conference

Event Speakers

Zhuang Haojie

Director of Research | CSA APAC

Haojie is Director of Research for APAC at the Cloud Security Alliance (CSA), where his current portfolio includes delivering initiatives from CSA Working Groups, CSA Corporate Members, standards developing organisations, governments, and other strategic partners.

Prior to joining CSA, Haojie was Manager at the Intelligent Computing Lab, Technology Solutions Division of the Infocomm Media Development Authority (IMDA) of Singapore. During this tenure, he led the development of artificial intelligence strategic roadmaps, and collaborative projects with industry and research community partners to co-develop machine learning driven solutions, aimed at tackling productivity and sectoral challenges. When Haojie was with the National Cloud Computing Office under the former Infocomm Development Authority (IDA) of Singapore, he conceptualized & managed data-related initiatives for industry, and led awareness creation efforts for cloud computing in Singapore.

Haojie obtained his B.Eng. (Hons) in Computer Engineering from the National University of Singapore, beginning his career with a brief stint as an events photographer, before getting involved in the research & design of networking protocols for multi-hop underwater networks at the Institute for Infocomm Research (I2R), Agency for Science, Technology & Research (A*STAR).

Whenever possible, Haojie prefers inline skating to walking.

Conference

Event Speakers

Holly Hubert

Founder and CEO | GlobalSecurityIQ
Former Special Agent | FBI

Holly Hubert served as an FBI Agent for 25 years retiring as an Assistant Special Agent in Charge (ASAC) at FBI Buffalo Division where she had executive oversight of all Cyber, Terrorism, Counterintelligence, Intelligence, and Criminal Programs to include all Crisis Management and SWAT assets.

She has extensive experience in assessing and managing risk and has led all aspects of business continuity planning (BCP) to include physical and cyber-related continuity of operations. Hubert has proven capability in establishing order, direction, and collaborative partnerships. As the former FBI Buffalo Division Compliance Officer, she chaired the division Compliance Council to assess risk and ensure critical adherence to federal law, policy, and best practices.

She previously served as the Cyber Squad Supervisory Special Agent and founded the FBI Buffalo Cyber Task Force focusing on Computer Intrusions, Online Crimes Against Children, and Internet Frauds. Hubert secured federal funding for and was integral in the development of the Western New York -Regional Computer Forensics Laboratory (WNY-RCFL), one of only 17 FBI Laboratory Division-affiliated facilities dedicated to the science of digital forensics. She received numerous career commendations and was twice the recipient of the “Director’s Award,” the FBI’s highest accolade, to include recognition for “Outstanding Cyber Investigation.” She has experience with hundreds of cyber-related incidents and assessments. In 2017, Hubert founded GlobalSecurityIQ and the GlobalSecurityIQ Computer Forensic Laboratory (GCFL). The GCFL, modeled after the WNY-RCFL, is a privatised laboratory specialising in cyber-incident response and digital forensics.

Hubert has lectured and provided keynotes in hundreds of forums nationally and internationally on leadership and cyber threats engaging private industry, boards, law enforcement, and academia.

Conference

Event Speakers

Abbas Kudrati

Chief Cyber Security Advisor | Microsoft Asia

As the Chief Cybersecurity Advisor for Microsoft Asia’s Cybersecurity Security Groups, Abbas Kudrati, leads Microsoft’s initiatives and operations to provide thought leadership, strategic direction on the development of Microsoft security products and services and deep customer and partner engagement across Australia, India and ASEAN region. He consults with governments, critical infrastructure organisations and enterprises to enable them to secure corporate data and manage risk.

Abbas has extensive experience in consulting organisations on cybersecurity strategies and educating and mentoring cybersecurity experts. Prior to joining Microsoft in 2018, Abbas was the Chief Information Security Officer at KPMG Australia where he was responsible for leading the information security, governance, risk and privacy protection programs for more than 20 offices. His list of achievements in this role includes certifying KPMG Australia against ISO 27001 and the early adoption of the NIST Cybersecurity Framework.

Abbas is also a part-time Professor of Practice in Cybersecurity with LaTrobe University and an Executive Advisory Board Member for Cybersecurity with Deakin University. Passionate about teaching and mentoring the next generation of cybersecurity professionals, Abbas frequently speaks at cybersecurity seminars and events, and has published number of articles and case studies.

Conference

Event Speakers

Ashish Rajan

Technical Director - Security & Identity, Versent

Ashish is the Technical Director, Security & Identity in Versent. Ashish is responsible for the innovation and blueprint of Security and Identity for how Versent provides advisory on and solves enterprise security challenges. He is an international public speaker for various topics of cyber security (Cloud Security, DevSecOps, Security Strategy) and helps run Melbourne based conference ( OWASP AppSec Day, BSides Melbourne) and meetups (DevSecOps Melbourne, CyberSecurity for Startups)

Conference

Event Speakers

Jacqueline Kernot

Partner | FSO Advisory | Cyber Security, Ernst & Young

Chairperson, FiTT (Females in Information Technology & Telecommunications)

Jacqui is a senior Cyber Security, and Risk Management professional with over 20 years experience in consulting, startup and MSP management. Jacqui has just left Telstra where she grew and managed a $150M+ security services business. She won several large contracts between $10 - $50M during her four years there, and built the business across geographies from much lower revenues.

Jacqui has dealt with government, federal government, enterprise, carrier and FSI clients within Australia and the UK. She has excellent relationships with C level executives in risk and security across both countries.

Jacqui is regularly asked to present on cyber and risk at various conferences globally and in Australia. During SIBOS this year she was asked to join the debate to speak on whether a cyber 9/11 was imminent, with other experts from several countries. She has completed several podcasts and articles on security and risk and is regularly quoted in the media on both security and risk and diversity and inclusion, subjects she is passionate about.

Jacqui is a former Intelligence officer with the ADF, and has completed Special Forces Planning, NATO engagement and Information Operations, as well as technical courses required for rank including ROAC. Her roles included support to 6 Brigade, 1 Commando Regiment, SOCOM and the 1st Intelligence Battalion.

Conference

Event Speakers

Lizelle Hughes

Head of Partner Field Engagement | AWS

Lizelle is the leader of the Partner Success Manager team across Australia, and is focused on the success of AWS’s customers and partners driving innovation and ultimately delivering transformative business outcomes. Lizelle is responsible for building out the partner strategy and executing against it with a team of people, who are the quiet achievers behind the success of our Consulting Partners, Technology Partners and Global Systems Integrators – servicing AWS’s most successful customers.

With over 18 years of experience in various roles – spanning technical consultancy, technical pre-sales, product marketing, strategy, sales, technology partnerships and channel, Lizelle is passionate about the long term success of the Australian ICT channel – and how they evolve to continually deliver customer outcomes.

Conference

Event Speakers

TM Ching

Security Chief Technologist | DXC Technology

TM is the Security Chief Technologist with DXC Technology Australia. TM is responsible for all cybersecurity strategy and vision development and execution within the ANZ region. In his current role, he works closely with the clients and sales to identify technological evolution or disruptions in the horizon, and develops roadmap for both clients and DXC Security to achieve service readiness to meet the threat landscape changes happening over a period of 6 to 24 months.

TM has 20 years of extensive experience in the cybersecurity industry. He has performed numerous penetration tests, systems technical review, network architecture review, incident response, cybersecurity training, policy review and technical risk management advisory work. The clients he worked for include global financial institutions, government bodies, multi-national companies, educational institutions and network service providers.

Conference

Event Speakers

Drew Taylor

DevOps Consultant | Sourced Group

Drew has worked in the IT industry for over 15 years and has worked with any diverse technologies; VOIP, Cloud, Hosted, Development and Customer Service.

Conference

Event Speakers

Ravi Nair

Consultant | Sourced Group

Ravi has worked in the industry for over 10 years across various roles including Application Support, Build & Release, Infrastructure Operations and Application Development.

Conference

Event Speakers

Mark Wallace

Head of Cyber Security | Fortescue Metals Group

Mark is the Head of Cyber Security for Fortescue Metals Group, where he has been leading the cyber security strategy and program across corporate information technology, industrial control system and operational technology environments since 2017.

As the world's fourth largest iron ore producer, Fortescue owns and operates integrated operations spanning mining, processing, shipping and rail in Australia, and international commercial and exploration offices in Asia, Europe and South America. This includes four iron ore mine sites in the Pilbara, the five-berth Herb Elliott Port in Port Hedland operating ore carrier ships and tugs, ore processing plants, heavy haul railway, power generation and the biggest fully autonomous commercial heavy equipment fleet in the world. Innovation in exploration, process and design is a key component of Fortescue’s strategy to efficiently and effectively deliver products from mine to market.

Mark is an experienced Company Director with more than 15 years’ experience serving on boards of both private and not for profit organisations, and is founding partner of successful management consulting practice Blue Zoo (being named a WA Business News 40-under-40 Award Winner in 2014 and establishing an award winning proprietary governance software business). He has managed cyber security and technology improvement projects in the US, South America, Africa and the Asia Pacific for Fortune 500 and ASX 100 listed companies. Leveraging this experience, he recently co-authored the 'Cyber Security for Directors' Course for the Australian Institute of Company Directors (AICD) which is being delivered nationally to build cyber literacy and capacity at board-level across Australia.

Trend Micro, a global leader in cybersecurity, is passionate about making the world safe for exchanging digital information, today and in the future. Artfully applying our XGen™ security strategy, our innovative solutions for consumers, businesses, and governments deliver connected security for data centres, cloud workloads, networks, and endpoints. Our connected threat defence enables seamless sharing of threat intelligence and provides centralised visibility and investigation to make organisations their most resilient.

With over 6,500 employees in 50 countries and the world’s most advanced global threat research and intelligence, Trend Micro enables organisations to secure their connected world.
https://www.trendmicro.com.au

For 13 years, Amazon Web Services has been the world’s most comprehensive and broadly adopted cloud platform. AWS offers over 165 fully featured services for compute, storage, databases, networking, analytics, robotics, machine learning and artificial intelligence, Internet of Things, mobile, security, hybrid, virtual and augmented reality, media, and application development, deployment, and management from 66 Availability Zones within 21 geographic regions. Millions of customers—including the fastest-growing startups, largest enterprises, and leading government agencies—trust AWS to power their infrastructure, become more agile, and lower costs.
https://aws.amazon.com

nCipher Security, an Entrust Datacard company, is a leader in the general-purpose hardware security module (HSM) market, empowering world-leading organizations by delivering trust, integrity and control to their business critical information and applications. Today’s fast-moving digital environment enhances customer satisfaction, gives competitive advantage and improves operational efficiency – it also multiplies the security risks. Our cryptographic solutions secure emerging technologies such as cloud, IoT, blockchain, and digital payments and help meet new compliance mandates. We do this using our same proven technology that global organizations depend on today to protect against threats to their sensitive data, network communications and enterprise infrastructure. We deliver trust for your business critical applications, ensure the integrity of your data and put you in complete control – today, tomorrow, always.
https://www.ncipher.com

Tenable®, Inc. is the Cyber Exposure company. Over 27,000 organisations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 25 percent of the Global 2000 and large government agencies. Learn more at https://www.tenable.com.

Content Security is one of Australia’s largest cybersecurity firms. Established in 2,000, their extensive team of experts provide one trusted point of contact for all your company’s cybersecurity requirements.
https://www.contentsecurity.com.au

Dicker Data (ASX: DDR) is Australia’s only locally listed distributor with revenues in excess of $1B. Operating out of a purpose built facility in Sydney, Dicker Data boasts approx. 15,000m2 of warehouse capacity along with a dedicated configuration centre to assist our partners in the delivery of technology. Selling exclusively to over 5,000 resellers, Dicker Data prides itself on establishing and developing strong long term relationships with its customer base to help facilitate growth. Dicker Data’s customer-centric approach allows for proactive reseller engagement and the dynamic ability to shift with changing market conditions.
https://www.dickerdata.com.au/

AusCERT provides members with proactive and reactive advice and solutions to current threats and vulnerabilities. We’ll help you prevent, detect, respond and mitigate cyber-based attacks. As a not-for-profit security group based at the University of Queensland, AusCERT delivers 24/7 service to members alongside a range of comprehensive tools to strengthen your cyber security strategy.
https://www.auscert.org.au/

VMware software powers the world’s complex digital infrastructure. The company’s compute, cloud, mobility, networking and security offerings provide a dynamic, consistent digital foundation to deliver the apps that power business innovation. VMware is streamlining the journey to digital business for more than 500,000 customers globally, aided by an ecosystem of 75,000 partners, by unlocking value from today’s technologies while enabling the integration of tomorrow’s. With VMware, organizations are empowered to flex and harness new technology quickly, without disrupting operations or introducing risk. This year, VMware celebrates 20 years of breakthrough innovation benefiting business and society.
https://www.vmware.com/au

FitT is a not-for-profit network whose purpose is to inspire women to achieve their career aspirations and potential at all levels and disciplines within ICT, by facilitating peer networking and career support through our programmes.
https://www.fitt.org.au

As a nationally recognised not-for-profit organisation, the Australian Information Security Association (AISA) champions the development of a robust information security sector by building the capacity of professionals and advancing the cyber security and safety of the public as well as businesses and governments in Australia.

AISA caters to the information security industry with a focus on sharing expertise from the field at meetings and networking opportunities around Australia. AISA's vision is a world where all people, businesses and governments are educated about the risks and dangers of cyber attack and data theft, and to enable them to take precautions to protect themselves.
https://www.aisa.org.au/

rhipe is APAC’s leading platform for pay-as-you-go cloud subscription management, and provider of professional services and solutions for IT partners. As the Cloud Channel Company, rhipe provides partners with complete end-to-end cloud solutions and licensing through its established subscription-software vendor partnerships with Microsoft, VMware, Citrix, Veeam, Red Hat, Trend Micro, Symantec and others.

For more information about rhipe please visit:
http://www.rhipe.com

Sourced Group is a global cloud consultancy that helps enterprises make the most of cloud services with a focus on security, governance and compliance. With offices in Australia, Canada and Singapore, Sourced provides professional services for securing, migrating and managing the cloud infrastructure of large enterprise customers. The company specialises in configuration management, automation, cloud computing and data management for a wide range of industries, including financial services, media, transport and telecommunications companies.

We take the audience on a journey into the future. Not a far-fetched Orwellian dystopia, but one that we fully expect to see revealed over the next decade. This session will identity key technological and societal shifts that are changing the ways we act, interact and do business and will attempt to illustrate how these shifts could change attackers’ tools, targets and behaviours. While the motivations remain largely the same, money, intelligence and influence; the ever-accelerating pace of change means that the faster-moving, hyper-connected, artificially intelligent world of the coming decade will seem so much further removed than 2009 already does. Citing concrete examples of an all-too-plausible future we will ask the question “Is your organisation up to the challenge?”

With cloud and mobile architectures dominating the landscape for the future, the need for organisations to be able to protect, detect and secure their systems now has far more reaching revenue generation implications than ever before. Security strategy is now being embedded in the Digital Trust program in forward-thinking, successfully transforming organisations. This session will address Digital Trust as a key enabler of successful Digital Transformation and touch on a framework to take cybersecurity from a tactical implementation to a strategic asset, ensuring the ability to be secure and aware of risks to both internal and off-premise technology system, reaching out as far as partner connected networks. We will also take a look at where the cloud growth is and what that means to the security teams.

Executive Panel Discussion: Examining security challenges through the CISO lens

· What exactly does cyber resilience look like, and what does it take to make it effective?
· Alert fatigue in cybersecurity – what are the key proven steps to eliminate this?
· Disruptive Cloud Technologies – How do CISOs manage the cybersecurity impacts?
· Executive visibility – what effective ways can CISOs measure the value of security success and communicate security awareness to the board?

Recent news headlines have been full of major global data breach incidents and ransomware attacks. What most people don’t understand is that these critical security incidents could all have been avoided by eliminating the underlying vulnerabilities upon which all these attacks depend.

Unfortunately, with the expansion of the modern attack surface and an ever increasing number of new vulnerabilities discovered, effective vulnerability management faces an “N-Squared” scaling challenge. According to recent polling, 80% of infosec professionals want an efficient and effective way to prioritize vulnerabilities based on risk. Of those polled, 50% are attempting to risk rate vulnerabilities, but finding the process really hard. Tenable is resolving the vulnerability prioritization challenge with a new process we call Predictive Prioritization.

Join this session to learn:
· How to overcome the limitations of CVSS scoring for risk rating vulnerabilities
· How you can effectively identify the vulnerabilities that will most likely be exploited in the near term
· Ways to dramatically improve your remediation efforts by focusing on the the highest risk vulnerabilities
· How your security team can provide immediate protection from critical risks via “Virtual Patching”

The world is increasingly digital, with mobile devices, IoT, and cloud services dominating. But as the data volumes grow, and our dependence on the digital world increases, the threats to information security are also increasing, and regulators are placing more stringent compliance requirements on companies (e.g. GDPR and other privacy laws). Data breaches are increasing and of increasing impact. Security solutions need to be up to the challenge. Hardened security, using Hardware Security Modules (HSM) is vital to protect important data, on-premise and in the cloud. Software-only solutions cannot match the levels of assurance that hardware can provide.

Today’s cyber-attacks are designed to evade detection. They are complex, stealthy, and often built specifically for its target. And while there is no such thing as 100% protection against attacks, being able to detect and respond to them as soon as possible helps prevent minimize their impact. In this session, an Incident Response Analyst from the Trend Micro Managed Detection and Response (MDR) team will share details from past incidents and key learnings that may help enterprises in the future. They will also be talking about the difference of incident response from MDR, and the benefits of having MDR as part of a company’s security framework.

Today's Cyber threat landscape is highly complex, ever-changing, and all organisations are at risk. Executives face extraordinary challenges - sophisticated nation-state attacks, shortage of cybersecurity skills, talent retention, applying organisational risk tolerance, and even insider threats. In this presentation, Hubert takes on these issues and more. Regardless of your organisation's size, you'll leave with must-do Cyber-risk mitigation strategies.

In this session, Mark will talk about the use cases for expanded protection, detection and response technologies and how to put these in practice. Andrew will then lead a discussion on tackling issues such as how to structure the security in a way that allows faster response to threats; challenges in SOC operations; EDR/MDR/XDR jargon; and how to increase visibility for investigation.

In recent years, an increasing number of organisations have embarked on a digital transformation journey to change the way their business operates. The increase in new digital technologies, the new millennial work force, and changing consumer behaviour, has compelled organisations to transform their business operations and services to respond to the market more quickly and cost-effectively. This session addresses the ten key areas that impact most digital transformation processes, the security implications, and benefits, that all organisations should be aware of.

Traditional security measures are struggling to keep up with the rise of cloud, containerised and serverless workloads. With the majority of traffic now encrypted and thousands of ephemeral instances across multiple clouds, a new approach to application security is required. In this session, we will discuss the challenges traditional security teams are facing then take a look at how enterprises can overcome them by integrating security into the heart of their applications.

Security never sits still. We live in a rapidly changing world with technology and data now spread across disparate platforms and compliance requirements flow through the supply chain. Luke will look at some key landscape and technical challenges with ensuring a holistic approach to Security, supported by customer case studies to highlight host based security across private and public Clouds like Azure as well as address security expectations with SIEM and SOC.

AI (Artificial Intelligence) is being touted as the answer for many hard problems, in different contexts. However, most AI projects struggle to move beyond proof-of-concepts. The issues that cause these AI projects to struggle to realise their potential can be addressed – very early in their life-cycle. This session presents an overview of what makes robustness hard in the context of AI infused systems, and how to consider and evaluate AI in the context of both cloud and cyber-security. The talk will also reflect on the new threat vectors that can be created using AI technology & implications.

In this session you will hear from AWS and Trend how you can apply cloud security best practices across the three types of compute from EC2 instances to containers and serverless functions. You’ll see how Trend Micro solutions work in conjunction with AWS to help you raise the bar for cloud security.

Cloud Adoption & Digital Transformation have been hot topics for a few years with many development teams already moving a lot of workloads and applications into various cloud providers. Security teams are being asked to respond in the same speed and agility as the development/operations aka DevOps teams. Your team has either been planning to respond to the demand or you see this as a not so future problem for your team. The challenge for most of the security teams, especially the enterprise security teams, today is to split focus between on-premise data centre and public Clouds while doing BAU. In the talk we would be going through a roadmap template approaches that my team and we have seen work and the time we have seen an effective program take. The talk is intended for someone planning security team roadmap or contributing to one how they can respond, and scale with the ever increasing demand pipeline of new tools and services that your development team wants to use. Lastly, this talk is also for those who are asking, if your security team is ready and equipped for Cloud?

Learn how to use OPA to provide flexibility for your developers to deploy workloads to public clouds, whilst adhering to security policies defined by your SecOps teams.

CLOUDSEC 2019

PICTURE THIS!See. Secure. Go Further.

CLOUDSEC Sydney 2019 Highlight Video

Agenda

2019 Speakers

Rik Ferguson

VP of Security Research | Trend Micro Global

Simon Piff

Vice President | IDC Security Practice

Phillimon Zongo

Co-Founder & Director | Cyber Resilience Head of Cyber Security & IT Risk | Crestone Wealth Management

Ashish Rajan

Technical Director – Security & Identity | Versent

Drew Taylor

DevOps Consultant | Sourced Group

Holly Hubert

Founder and CEO | GlobalSecurityIQ Former Special Agent | FBI

Ian Christofis

Managing Principal Consultant | nCipher Security

Jacqueline Kernot

Partner | FSO Advisory | Cyber Security, Ernst & Young Chairperson, FiTT (Females in Information Technology & Telecommunications)

Julie Cabuhat

Incident Response Analyst | Trend Micro

Lizelle Hughes

Head of Partner Field Engagement | AWS

Luke de Merindol

Principal Consultant | Macquarie Cloud Services

Magda Chelly

Managing Director | Responsible Cyber CyberFeminist TOP 50 Cyber Influencer

Matt Tett

Managing Director | Enex TestLab

Mark Wallace

Head of Cyber Security | Fortescue Metals Group

Myla Pilao

Director, Technology Market Research | Trend Micro

Paul Hawkins

Security Solutions Architect | Amazon Web Services

TM Ching

Security Chief Technologist | DXC Technology

Rajesh Vasa

Head of Translational Research & Development | Applied Artificial Intelligence Institute, Deakin University

Ravi Nair

Consultant | Sourced Group

"Exposure to industry news & experience"

- NAB -

"Strong speakers, good networking"

- KPMG -

"Engagement with peers and learning from industry specialists"

- Tronox -

"Evolution and the most common goals in the resolving cloud security issues"

- Vodafone -

Sponsors

Hosted By:

Platinum Sponsor:

Gold Sponsors:

Silver Sponsors:

Barista Sponsor:

Supporting Organisations:

Media Partners:

Interested in becoming a sponsor?

Grand HyattMelbourne

Location

5th SeptemberThursday

Grand Hyatt Melbourne

Location

5th September Thursday

Conference

Event Speakers

Rik Ferguson

VP of Security Research | Trend Micro Global

Conference

Event Speakers

Phillimon Zongo

Co-Founder & Director | Cyber Resilience Head of Cyber Security & IT Risk | Crestone Wealth Management

Conference

Event Speakers

Rajesh Vasa

Head of Translational Research & Development | Applied Artificial Intelligence Institute, Deakin University

Conference

Event Speakers

PICTURE THIS!
See. Secure. Go Further.

CLOUDSEC Sydney
2019 Highlight Video

Co-Founder & Director | Cyber Resilience
Head of Cyber Security & IT Risk | Crestone Wealth Management

Founder and CEO | GlobalSecurityIQ
Former Special Agent | FBI

Partner | FSO Advisory | Cyber Security, Ernst & Young

Chairperson, FiTT (Females in Information Technology & Telecommunications)

Managing Director | Responsible Cyber
CyberFeminist
TOP 50 Cyber Influencer

Grand Hyatt
Melbourne

5th September
Thursday

Co-Founder & Director | Cyber Resilience
Head of Cyber Security & IT Risk | Crestone Wealth Management

Managing Director | Responsible Cyber
CyberFeminist
TOP 50 Cyber Influencer

Founder and CEO | GlobalSecurityIQ
Former Special Agent | FBI