Agenda Day 2
8:50 am - 9:00 am
Chair's Opening Remarks
9:10 am - 9:40 am
Panel Discussion: Privilege Creep Is Inevitable, Exposure Is Not
Carol Ostos -
Head of Identity and Access Management,
Origin Energy
Key Takeaways:
- Role sprawl, excessive entitlements and misaligned policies across hybrid estates.
- How organisations are tightening least privilege without paralysing productivity.
- Practical approaches to continuous entitlement review at scale
- Tooling and process combinations that are actually working in complex enterprise environments
9:40 am - 10:00 am
Case Study: Access Management Without Borders: Governing Identity Across Cloud, SaaS & Federated Estates
Key Takeaways:
What modern access governance looks like when there's no single perimeter to defend
Why access policy needs to travel with the identity, not live in the platform
Practical approaches to entitlement visibility across dozens of disconnected systems
Where automation helps access decisions — and where it quietly creates new risk
10:00 am - 10:20 am
Privileged & Access Management Solutions
Reserved for Partner Reserved for Partner
10:20 am - 10:40 am
Case Study: Securing Identity Data in Motion
Moh Rezaee -
Engineering Lead - Identity,
AGL Energy
Why real-time authentication flows, not data at rest, are where modern identity breaches actually happen
How distributed systems create hidden trust gaps that attackers exploit during authentication and transitions
Practical architecture principles for securing identity assertions, MFA enrolment, and session hand-offs at scale
Balancing strong security with the reality of diverse customer behaviours, from passkeys to shared households and legacy constraints
10:40 am - 11:10 am
Morning Recharge in the Expo
11:10 am - 11:40 am
Case Study: Verifiable Credentials & Digital ID in Production
Adnene Guabtni -
Principal Research Scientist/Engineer, Architecture and Analytics Platforms,
CSIRO Data 61
Key Takeaways:
- How Macrokey's decentralised identity architecture is enabling verifiable credentials to operate across institutional boundaries without centralised intermediaries
- Where decentralised identity, wallets and national Digital ID frameworks are delivering operational value, and where centralised models still dominate.
- The technical and governance conditions that need to be in place before decentralised identity moves from pilot to mainstream
- A candid assessment of where digital wallets are genuinely adding value versus where centralised models remain the more pragmatic choice
Adnene Guabtni
Principal Research Scientist/Engineer, Architecture and Analytics PlatformsCSIRO Data 61
11:40 am - 12:10 pm
Case Study: VicRoads' Identity Journey in Practice
Crispin Blackall -
Chief Technology Officer,
VicRoads
Key Takeaways:
- What identity means now — building deeper levels of trust and providing individuals with greater security
- Building selfie-capture capability and continuous improvement of the verification experience
- Moving identity away from the physical card and why that transition is now genuinely tangible
- Edge cases and real-world friction encountered along the way
12:10 pm - 12:40 pm
Case Study: Identity Reinvented: Preparing for the Credential Revolution
Brian Lee -
Principal Solution Architect, Digital Identity and Verifiable Credentials,
Service NSW
Key Takeaways:
- What governments, businesses, and citizens must know as digital wallets become the new norm.
- How verifiable credentials are reshaping the relationship between identity providers, relying parties and end users
- Practical considerations for organisations planning to accept or issue digital credentials in the next 12–24 months
- The standards landscape: what to build to now and what to wait on
Brian Lee
Principal Solution Architect, Digital Identity and Verifiable CredentialsService NSW
