World's leading conference dedicated to cyber & technology risk leaders on information security transformation in the Covid-19 era

9 - 10th June 2020 | Virtual Summit   |   8:50AM - 12:10PM AEST

Day Program Wednesday, 10th June 2020

8:50 am - 9:00 am Conference Opening – Remarks from the Conference Chairperson

9:00 am - 9:30 am Services Australia Case Study: Using Covid-19 As A Litmus Test For Cyber Security Leadership When Speed of Technology Response Is High And Traditional Communication Modes Don’t Apply

Narelle Devine - Chief Information Security Officer, Services Australia

Most CISOs have been spending time thinking about what being action oriented as a cyber-security team looks like amidst the Covid-19 pandemic. With organizations releasing new capabilities into production quickly to meet critical customer needs and an information overflow around Covid-19 response increasing social engineering and phishing risks, how should a CISO respond? This session covers:

·        How to improve infosec when pressure to respond quickly is highly

·        Re-imagining ways to communicate critical security information across a dispersed workforce

·        Taking a data-driven approach to improve cybersecurity prioritization by the business

·        Lasting implications of Covid-19 on how cybersecurity teams should operate


Narelle Devine

Chief Information Security Officer
Services Australia

9:30 am - 10:00 am Thought Leadership Session

10:00 am - 10:30 am Taking Steps To Enable A “Zero Trust” Security Environment Through Covid-19 And Beyond

Jefferson Haw - Zero Trust Architect, Okta
Paul Devis - Solutions Engineer, Okta

As BYOD and remote working operations scale, cyber security leaders are seeing an increasing importance for a Zero Trust security model, which will help improve secure access and use of sensitive company information. In this session, the speaker will share steps they’ve taken to secure the organization into the digital future by touching upon:

·        Overcoming challenges with architecting a strong zero trust security environment

·        Key considerations to ensure zero trust architecture delivery doesn’t inhibit business operations and efficiency

·        Building a strong outreach program to improve staff adoption and awareness of cyber hygiene when working remotely


Jefferson Haw

Zero Trust Architect


Paul Devis

Solutions Engineer

10:00 am - 10:30 am Break

10:30 am - 11:00 am Developing A Fit For Purpose Third Party Risk Management Framework and Controls To Detect And Manage Risks Amplified By Covid-19 And Remote Workforces

Developing A Fit For Purpose Third Party Risk Management Framework and Controls To Detect And Manage Risks Amplified By Covid-19 And Remote Workforces

At TWE Global, Barry has been thinking hard about third party risk (TPR) management as his organisation transitions to the new "normal" that we'll adopt through and likely post Covid-19 too. Traditional surveys and frameworks are not going to be fit for purpose and in this talk, Barry will reflect on his professional experiences to share insights around:

  • Re-thinking information sharing and collaboration over third party risks with vendors and partners 
  • Changes necessary to bring into the risk assessment framework to improve detection and understanding of risks
  • Emerging risk implications for cyber teams and flow on effects to business stakeholders and controls

11:00 am - 11:30 am Firming Up Your Endpoint Security And Virtual Monitoring Capability To Improve Remote Workforce Security Whilst Delivering 100% of The Work Scope

Venu Annam - Manager, Cyber Security, Risk and Resilience (CISO), SA Water

At SA Water, the bushfires and early monitoring of the Covid-19 situation led Venu to identify and prepare for cyber and business continuity risks well before the pandemic broke out. Currently, with 100% of the staff working remotely and scope of work outlined pre-Covid remaining unchanged, this session will see Venu talk you through:

·        Key considerations with building a scalable and effective endpoint security strategy

·        Creating a virtual SOC capability to improve threat monitoring and reporting across dispersed networks and devices

·        Overcoming bandwidth challenges around VPN solutions to reduce staff working experience impact caused by security processes

·        Leveraging VPN insights to help business monitor and manage staff productivity and behaviors


Venu Annam

Manager, Cyber Security, Risk and Resilience (CISO)
SA Water

11:30 am - 11:40 am Conference Closing – Remarks from the Conference Chairperson

1:30 pm - 2:15 pm WORKSHOP (Separate Booking) Improving Understanding, Governance And Management of Third Party Risks challenges during Covid-19 crisis and Beyond

Amit Chaubey - Cyber Security Risk & Compliance Manager, Ausgrid

*Please note this is an exclusive workshop that is not part of the free-to-attend event. To reserve your place, email for more information.

As organizations increase reliance on third-party providers such as vendors and service providers through outsourcing, cloud services, managed services and more, so has the risk perimeter an InfoSec leader is responsible for securing. Complexity is truly the name of the game as digital permeates into a traditional, legacy organization. With Covid-19 pushing organizations to work remotely, third party risks have been amplified with data security and privacy concerns running high across the external environments your organization is now integrated with.

This session will offer you an understanding on managing these risks and more importantly, helping you to understand the possible ways to overcome these risks.

About Your Facilitator:

Amit is a seasoned Technology & Cybersecurity professional spanning a career of over 20+ years across Asia Pacific. Amit currently work as Cyber Security Risk, Governance & Compliance Manager for Ausgrid. Amit previous extensive experience of managing IT & cyber risk are primarily in financial sector and has worked with Citibank & JP Morgan chase covering Asia Pacific operations based out from Singapore. Amit has also been accredited by Australian Computer Society (ACS) as Certified Cyber Professional (CP) and hold CRISC, ITIL, ISO27001 Auditor certification. Amit is also an AISA (Australian Information Security Association) committee member and work towards contributing & supporting the industry.

Registration & How it Works:

• The masterclass is designed to be interactive and limited to a small group of attendees to learn from the facilitator.

• We encourage attendees to come prepared with questions and challenges to share during the class.

• The masterclass will be facilitated via the Zoom platform. Upon registering, you will receive a confirmation email with your zoom login details.

• On the day, ensure your internet, microphone and video are all switched on and ready to go! If you need further information, please reach out to us at


Amit Chaubey

Cyber Security Risk & Compliance Manager