COSAC 2022 COSAC Connect COSAC APAC 2023

COSAC's unique format allows unparalleled access to industry experts, long after the day's sessions have finished.

Click on a speaker below to view their profile.

Harley Aw CISO, Phoenix HSL (Australia)

Harley Aw

CISO, Phoenix HSL (Australia)

Harley is an Information Security and IT industry veteran based in Sydney Australia with over 20 years in multiple sectors including retail, hospitality, tertiary education, sporting and gaming multi-nationals, as well as consulting in the financial, government and resources sectors. He is a certified digital forensic examiner, cybersecurity incident handler, a member of the GIAC Advisory Board and a Founding Member of the SABSA Institute. He is currently the CISO of the Phoenix Group.
X
Paul Blowers Head of Assurance, SEQA (New Zealand)

Paul Blowers

Head of Assurance, SEQA (New Zealand)

Paul Blowers has more than 35 years experience in security. He is a certified SABSA® practitioner and advocate, and an APMG practiced Business Change expert. He has extensive experience supporting Law Enforcement, Defence, Intelligence and Border Security environments and with a wide range of private sector organisations. He has spent the last 18 years in New Zealand, he has also worked in the USA, the UK, and mainland Europe. His roles include CISO for NZ Police, managed his own consultancy company and most recently joined SEQA (SEcruity Quality Assurance) working out of Wellington.
X
Steven Bradley Consulting Security Architect, Cyber Enterprise Modelling (Belgium)

Steven Bradley

Consulting Security Architect, Cyber Enterprise Modelling (Belgium)

Steven is an independent security consultant based in Brussels with 25+ years in IT. He has undertaken major assignments for clients in the national & European public sector, finance, telecoms & utilities and also lends his support to local cyber-security initiatives. His work in recent years has broadened geographically while becoming more specialised in the field of security by design through automation & modelling, leading to the foundation in 2021 of a niche consultancy in this domain. He holds numerous security and privacy certifications including SABSA.
X
Phil Bridgham Cyber Architect, Northrop Grumman (USA)

Phil Bridgham

Cyber Architect, Northrop Grumman (USA)

Dr. Phillip Bridgham is a Cyber Architect and researcher for Northrop Grumman and applies AI, Machine Learning, and Information Fusion techniques to achieve advanced automation and risk management. Dr. Bridgham brings 25 years of software engineering and technical leadership experience across a wide range of industries, including: Aerospace, Industrial Controls, Robotics, Banking and Finance, Medical Devices, Fraud Detection, Risk Analysis, and more.
X
Glen Bruce Cybersecurity Consultant, GDB Cybersecurity (Canada)

Glen Bruce

Cybersecurity Consultant, GDB Cybersecurity (Canada)

Glen Bruce is focused on Security Strategies, Architectures, PKI and Governance supporting business and governments in their approach to managing information security risk. He has over 47 years of in-depth experience in IT consulting, systems management and technical positions. He has led many information security engagements, where he has helped clients establish effective strategies, governance, architectures, policies, PKI and infrastructure implementations in support of both business and technical requirements.
X
Andreas Dannert Principal Enterprise Security Architect, Standard Chartered (Singapore)

Andreas Dannert

Principal Enterprise Security Architect, Standard Chartered (Singapore)

Andreas is Principal Enterprise Security Architecture at Standard Chartered Bank in Singapore. At SCB he is responsible for a core Security Architecture team that is delivering the organization’s Security Architecture Framework, Strategy, and relevant Security Capabilities. Before this he was a Principal Enterprise Security Architect at Australia’s national broadband network (nbn), which is a government owned enterprise, providing critical infrastructure services to millions of Australians.
X
Bonnie Demeyer Security Consultant, Cyber Enterprise Modelling (Belgium)

Bonnie Demeyer

Security Consultant, Cyber Enterprise Modelling (Belgium)

Bonnie is a freelance Security Analyst and Information Security Manager who has been working in, and advocating for, a model-driven approach to security since 2016. She returns for her third COSAC as the co-founder of Cyber Enterprise Modelling: a niche consultancy specialising in the application and advancement of model-driven security. Bonnie holds certifications in security, information risk management, privacy and ArchiMate.
X
Patrick Dunstan Head of Cyber Security, Seqwater (Australia)

Patrick Dunstan

Head of Cyber Security, Seqwater (Australia)

Patrick (Pat) Dunstan leads the Cyber Security Team for Southeast Queensland’s Bulk Water Authority and has over 15 years’ experience leading cyber teams and delivering security outcomes for some of Australia’s largest companies. Pat has a broad and deep background in cyber security and has experience working across multiple verticals, including security operations, penetration testing, cyber consulting, security architecture and management. Pat is an engaged student on the subject of risk management and enjoys the works of other thought leaders in this space.
X
Marten Gerssen Security Project Manager, unConceptual (Netherlands)

Marten Gerssen

Security Project Manager, unConceptual (Netherlands)

After graduating in Control Engineering, Marten started his professional career in Telecom Network Management at Alcatel in 1996, holding various pre-sales and marketing positions. In 2010, Marten founded unConceptual as an independent consulting company, growing from IT project management into IT Security. Customers include energy, telecom, government and banking sector. In those 10 years, the focus evolved to Identity and Access Management with projects in IAM overhaul, Privileged Access Management and IAM strategy.
X
Michael Hirschfeld Director, David Lynas Consulting (Australia)

Michael Hirschfeld

Director, David Lynas Consulting (Australia)

Michael has 20 years’ experience in Information Security and is a Director of David Lynas Consulting and the Chair of the SABSA Founders Bursary. He has provided high level assistance on information security related matters to a range of clients within Australia and internationally. He was formerly the Chief Information Officer and CISO at the Australian Commonwealth Department of Finance where he had executive responsibility for ICT as well as physical security.
X
Martin Hopkins Consultant, Attributive Security (UK)

Martin Hopkins

Consultant, Attributive Security (UK)

Martin is an independent information security consultant with a current focus on security advisory to small businesses in the UK. He has over 25 years’ experience in technology, primarily in security related fields. A regular speaker on cyber security topics, he is a strong advocate of business driven security, security architecture and secure software development practices.
X
Jason Kobes Architect, Research Scientist, Professor, Northrop Grumman (USA)

Jason Kobes

Architect, Research Scientist, Professor, Northrop Grumman (USA)

Jason Kobes works as Tech Fellow Senior Architect & Research Scientist in Washington, DC for Northrop Grumman Corporation. Jason also is an adjunct professor for Marymount University teaching Cyber Crime and Digital Terrorism. Jason has over 24 years of experience concentrated in cyber digital transformation, information systems design analytics, business/mission security architecture, enterprise risk management, information assurance research, and business consulting. Jason has a Master's of Science in Information Assurance (MSIA) and a Bachelor's of Science in Computer Science.
X
Bruce Large OT Cyber Security Team Leader, Powerlink (Australia)

Bruce Large

OT Cyber Security Team Leader, Powerlink (Australia)

Bruce Large has 15 years experience working with IT and OT in network, telecommunications and system engineering roles. Bruce has worked in Electricity Generation & Transmission, Railway, Aviation, Emergency Services and Consulting industries. Bruce considers himself a security architecture enthusiast as well as an infrastructure tourist. He is a Foundation Chartered SABSA Architect (SCF), is (still..) working on his A3 SCP paper, holds the GIAC Response and Industrial Defense (GRID) certificate and has attended Industrial Control Systems (ICS) Cyber Security training at QUT.
X
Robert Laurie Enterprise Security Architect, David Lynas Consulting (Australia)

Robert Laurie

Enterprise Security Architect, David Lynas Consulting (Australia)

Rob is an Enterprise Security Architect with 17+ years’ experience in the IT, Application and Security industries and holds several security designations within the sector. He is a committee member for the Australian Information Security Associates (AISA) and is a member of the GIAC Advisory Board.
X
Marina Liu PhD Candidate, Deakin University (Australia)

Marina Liu

PhD Candidate, Deakin University (Australia)

Marina Liu is a PhD candidate at Deakin University. She is a recipient of the Deakin University Postgraduate Research Scholarship. Prior to that, she received her master’s degree in cyber security from Deakin University in 2021. Her research interests include zero trust cybersecurity, blockchain and risk management. Her research has been published in the Journal of Computer Information Systems. Her PhD topic focuses on zero trust maturity, and includes the development of a SABSA attribute-based zero trust performance and maturity model.
X
Ashling Lupiani Cognitive Solutions Developer, Cancer Treatment Centers of America (USA)

Ashling Lupiani

Cognitive Solutions Developer, Cancer Treatment Centers of America (USA)

Ashling is a neuroscientist & biomedical engineer with experience in speech and motor research. She has spent 5 years running neurorehabilitation studies with human participants. As part of this work, she co-authored 5 papers and presented at international conferences in Toronto & Boston. She also has an interest in hacking & social engineering, attending conferences such as DEFCON for 8 years. She earned a BA in Neuroscience from Boston University in 2017, and a MS in Biomedical Engineering from the Joint Department of Biomedical Engineering at UNC Chapel Hill and NC State.
X
David Lynas Chairman, COSAC (Northern Ireland)

David Lynas

Chairman, COSAC (Northern Ireland)

David Lynas is currently enjoying his thirty-eighth year of experience in Information Security, during which he has been invited to provide strategic advice to governments and industry clients on every continent. A globally renowned Enterprise Security Architect, Security Strategist, and Thought-Leader, he is the co-author of SABSA (the world’s leading free-use, open-source Security Architecture Methodology), CEO of the SABSA Institute CEO of David Lynas Consulting.
X
Kathleen Mullin CISO, Cancer Treatment Centers of America (USA)

Kathleen Mullin

CISO, Cancer Treatment Centers of America (USA)

Kate Mullin CISSP, CCSFP is CISO at Healthmap Solutions, Inc. & an influential information security practitioner with 30+ years of experience. Kate has been a VCISO and was CISO at various organizations, including publicly traded (WageWorks), private equity (HealthPlan Services, HPS), not-for-profit (Adventist Health), and governmental entities (Tampa Airport, TIA); establishing the role at TIA and HPS. Throughout her career, Kathleen has volunteered and participated in maturing information security as a profession. Kate currently volunteers with ISC(2).
X
Alfie Oloo Product Designer, IoT.nxt (South Africa)

Alfie Oloo

Product Designer, IoT.nxt (South Africa)

Alfi is a Product designer specialising in design systems. Being dyslexic, among other challenges, Alfi eventually dropped out of university, which eventually led to him building his own education through auditory learning (100s of audiobooks). Realising that he had an unusual capacity for auditory communication, He also co-founded the “Edit Undo” Podcast.  Alfi is a lifelong student in the field of mentorship having played the role of a mentor at Jack Academy’s UX Bootcamp and a coordinator with Sprint, a student work-readiness program based in Pretoria, South Africa. 
X
Alex Parkinson Senior Security Architect, Thales (Australia)

Alex Parkinson

Senior Security Architect, Thales (Australia)

Alex Parkinson is a senior cybersecurity architect at Thales Australia. Qualifications include a Master of Science (Internetworking), a Graduate Diploma in Applied Finance and CISSP, CRISC and SABSA Practitioner (SCP) professional certifications. Alex has 30+ years of experience in understanding and dealing with complex systems and organisations in multiple sectors, including Defence and National Security, Trading and Financial Services and Mission Critical Engineering projects.
X
Andy Prow Founder and Tech Entrepreneur, RedShield Security (New Zealand)

Andy Prow

Founder and Tech Entrepreneur, RedShield Security (New Zealand)

Andy is a cyber-security veteran with 28 years of IT experience, over half of which has been in cyber security. From being a software developer for global giants such as IBM, Ericsson & Vodafone, to pen testing and vulnerability research, to more recently as a tech entrepreneur founding 5 firms, including Aura InfoSec (purchased by Kordia in 2015) and RedShield Security which now protects thousands of web apps and critical systems across globe. Andy is a previous winner of the EY NZ Entrepreneur of the Year, and his recent passion is as a tech investor and an advocate for Digital Safety.
X
Andrew Reeves Director of Organisational and Behavioural Research, Cybermindz (Australia)

Andrew Reeves

Director of Organisational and Behavioural Research, Cybermindz (Australia)

Andrew Reeves is a psychologist with a focus on the human aspects of cyber security. He is Director of Organisational and Behavioural Research for Cybermindz.org, a peer informed not-for-profit organisation dedicated to providing evidence-based mental health support to cyber teams. He has 9 years of experience in the defence and ICT industries and has recently completed a PhD in the area of cyber security employee motivation and fatigue.
X
Mattia Rossi Enterprise Security Architect, Ignitize (Australia)

Mattia Rossi

Enterprise Security Architect, Ignitize (Australia)

Mattia Rossi is a freelance consultant currently active in the Cybersecurity space. What you would call an Enterprise Security Architect, he is providing businesses with expertise in not just security analysis and solution security work, but most of all driving the implementation and application of security frameworks. He recognises that while there is a high number of frameworks available, and very good documentation on how frameworks and processes SHOULD be applied, most enterprises lack the skills and knowledge to actively implement or apply them.
X
Dan Schoemaker Information Security Officer, Phoenix HSL (Australia)

Dan Schoemaker

Information Security Officer, Phoenix HSL (Australia)

Dan Schoemaker has been working in the IT support, Infrastructure/Operations and Security fields for the past 8 years. At the end of 2021, he decided to change his career path and move into the Information Security field. He has formal degrees from UNSW, Western Sydney University and certification from CISCO. He is a self-driven techie that ultimately believes in learning by doing and having a crack.
X
William Schultz Senior Director, Enterprise Cybersecurity, Vanderbilt University Medical Centre (USA)

William Schultz

Senior Director, Enterprise Cybersecurity, Vanderbilt University Medical Centre (USA)

Bill Schultz is a practicing security architect who has worked in the Information Technology field for over 16 years, with the past 12 focused on Enterprise Architecture, Security Architecture, Risk Management, and Compliance. Bill has built security programs, risk management programs, and developed strategic organizational architectures and technical system architectures. Bill has led multiple risk management and security architecture initiatives.
X
Malcolm Shore PhD Supervisor, Deakin University CSRI (New Zealand)

Malcolm Shore

PhD Supervisor, Deakin University CSRI (New Zealand)

Dr Shore completed a BSc in Computer Science at the University of London before emigrating to New Zealand where he held positions with RNZAF & Government Communications Security Bureau before completing his PhD at Otago University. He has held Head of Security positions in both Telecom New Zealand, and in NBN Co, where he was responsible for satisfying compliance with the Australian Protective Security Policy Framework. Malcolm was also the Technical Director for BAE Systems Australia.
X
Maurice Smit Principal Security Architect, David Lynas Consulting (Netherlands)

Maurice Smit

Principal Security Architect, David Lynas Consulting (Netherlands)

Maurice is a Principal Security Consultant and SABSA Instructor at David Lynas Consulting, with over 15 years of experience in IT Security operations, management, governance and architecture, in a variety of industries including finance, healthcare and pharmaceuticals. Maurice delivers accredited SABSA training in Europe, India, Africa and the Middle East and is a founding member of the SABSA Institute Board of Trustees.
X
Gokul Srinivasan CEO, ARInnovate (Australia)

Gokul Srinivasan

CEO, ARInnovate (Australia)

Gokul is a cyber security expert specialising in cyber incident response, business continuity planning, security operations, secure software development and cyber security strategy. With more than 18 years of cyber security experience, Gokul now is the Founder and CEO of ARInnvate, a cyber security consulting firm based out of Australia. Through ARInnovate, Gokul serves organisations in Australia, Singapore and India.
X
Shane Tully Global CISO, A24 (Australia)

Shane Tully

Global CISO, A24 (Australia)

Shane is the Global CISO of A24 and previously was an enterprise security architect with experience in Australian state government agencies, transport and financial services industries. His interest is in the security of international businesses. Shane was the founder of the oneworld® airline alliance IT Security Forum; a founding member of the board of management of the global security thought leadership group, The Jericho Forum; an invited attendee at the APEC 2007 data privacy seminars; and an invited SCADA representative to the Australian Government ITSEAG.
X
Pete Wolski Head of Information & Cyber Security, MYOB (Australia)

Pete Wolski

Head of Information & Cyber Security, MYOB (Australia)

Peter is an experienced security professional, currently Head of Information and Cyber Security at business management platform MYOB. With 18 years’ experience in various roles and industries, Peter has supported a variety of public, commercial, regional and global clients. In his most recent roles Peter has focused on engaging with business and technology management, enhancing risk awareness and mitigation through planning, strategy and technology architecture. He is focused on discovering pragmatic solutions to adversary rich problems.  
X