COSAC 2023 COSAC Connect COSAC APAC 2024

COSAC's unique format allows unparalleled access to industry experts, long after the day's sessions have finished. While our 2024 Call for Papers is open, our 2023 speaker panel can be viewed below.

Click on a speaker below to view their profile.

Harley Aw CISO, Phoenix HSL (Australia)

Harley Aw

CISO, Phoenix HSL (Australia)

Harley is an Information Security and IT industry veteran based in Sydney Australia with nearly 25 years in retail, tertiary education, hospitality, sport and gaming, financial, government and resources sectors. He is a certified digital forensic examiner, cybersecurity incident handler, a member of the GIAC Advisory Board, Founding Member of the SABSA Institute and a director of the SABSA Founders Bursary. He is currently the CISO of the international Phoenix Group.
X
Steven Bradley Consulting Security Architect, Cyber Enterprise Modelling (Belgium)

Steven Bradley

Consulting Security Architect, Cyber Enterprise Modelling (Belgium)

Steven is an independent security consultant based in Brussels with 25+ years in IT and has undertaken major assignments for clients in the national & European public sector, finance, telecoms & utilities. He also lends his support to local cyber initiatives. His work in recent years has broadened geographically while becoming more specialised in the field of security by design through automation and modelling, leading to the 2021 foundation of a niche consultancy in this domain. Steven holds security, architecture and privacy certifications including SABSA SCP and ArchiMate.
X
Glen Bruce Cybersecurity Consultant, GDB Cyber Security Consulting (Canada)

Glen Bruce

Cybersecurity Consultant, GDB Cyber Security Consulting (Canada)

Glen Bruce is focused on Security Strategies, Architectures, PKI and Governance supporting business and governments in their approach to managing information and cybersecurity risk. He has over 49 years of in-depth experience in IT consulting, systems management and technical positions. He has led many information security engagements, where he has helped clients establish effective strategies, governance, architectures, frameworks, policies, PKIs and infrastructure implementations in support of a wide range of business and technical requirements.
X
Andreas Dannert Principal Enterprise Security Architect, Standard Chartered (Singapore)

Andreas Dannert

Principal Enterprise Security Architect, Standard Chartered (Singapore)

Andreas is Principal Enterprise Security Architecture at Standard Chartered Bank in Singapore. At SCB he is responsible for a core Security Architecture team that is delivering the organization’s Security Architecture Framework, Strategy, and relevant Security Capabilities. Before this he was a Principal Enterprise Security Architect at Australia’s national broadband network (nbn), which is a government owned enterprise, providing critical infrastructure services to millions of Australians.
X
Dimitrios Delivasilis CEO, Qiomos (UK)

Dimitrios Delivasilis

CEO, Qiomos (UK)

Strong technology executive, specialising in business-driven security strategy, architecture and operational resilience. Dimitrios has more than 22 years of extensive experience in leadership roles predominantly within financial services (Head of Enterprise Security Architecture at Visa and Global Head of Information Risk Strategy at HSBC). He has built a success record of simplifying security decisions, delivering future proof information security strategies and helping organisations implement their digital transformation plans with a commensurate level of assurance.
X
Patrick Dunstan Head of Cyber Security, Seqwater (Australia)

Patrick Dunstan

Head of Cyber Security, Seqwater (Australia)

Patrick (Pat) Dunstan leads the Cyber Security Team for Southeast Queensland’s Bulk Water Authority and has over 15 years’ experience leading cyber teams and delivering security outcomes for some of Australia’s largest companies. Pat has a broad and deep background in cyber security and has experience working across multiple verticals, including security operations, penetration testing, cyber consulting, security architecture and management. Pat is an engaged student on the subject of risk management and enjoys the works of other thought leaders in this space.
X
Marten Gerssen Independent IAM Consultant, unConceptual (Netherlands)

Marten Gerssen

Independent IAM Consultant, unConceptual (Netherlands)

After graduating in Control Engineering, Marten started his professional career in Telecom Network Management at Alcatel in 1996, holding various pre-sales and marketing positions. In 2010, Marten founded unConceptual as an independent consulting company, growing from IT project management into IT Security. Customers include energy, telecom, government and banking sector. In those 10 years, the focus evolved to Identity and Access Management with projects in IAM overhaul, Privileged Access Management and IAM strategy.
X
Robert Laurie Deputy CISO / Enterprise Security Architect, David Lynas Consulting (Australia)

Robert Laurie

Deputy CISO / Enterprise Security Architect, David Lynas Consulting (Australia)

Rob is an Enterprise Security Architect with 17+ years’ experience in the IT, Application and Security industries and holds several security designations within the sector. He is a committee member for the Australian Information Security Associates (AISA) and is a member of the GIAC Advisory Board.
X
Bruce Large OT Cyber Security Team Leader, Powerlink (Australia)

Bruce Large

OT Cyber Security Team Leader, Powerlink (Australia)

Bruce Large has 15 years experience working with IT and OT in network, telecommunications and system engineering roles. Bruce has worked in Electricity Generation & Transmission, Railway, Aviation, Emergency Services and Consulting industries. Bruce considers himself a security architecture enthusiast as well as an infrastructure tourist. He is a Foundation Chartered SABSA Architect (SCF), is (still..) working on his A3 SCP paper, holds the GIAC Response and Industrial Defense (GRID) certificate and has attended Industrial Control Systems (ICS) Cyber Security training at QUT.
X
Marina Liu PhD Candidate, Deakin University (Australia)

Marina Liu

PhD Candidate, Deakin University (Australia)

Marina Liu is a PhD candidate at Deakin University. She is a recipient of the Deakin University Postgraduate Research Scholarship. Prior to that, she received her master’s degree in cyber security from Deakin University in 2021. Her research interests include zero trust cybersecurity, blockchain and risk management. Her research has been published in the Journal of Computer Information Systems. Her PhD topic focuses on zero trust maturity, and includes the development of a SABSA attribute-based zero trust performance and maturity model.
X
Ashling Lupiani Cognitive Solutions Developer, City of Hope (USA)

Ashling Lupiani

Cognitive Solutions Developer, City of Hope (USA)

Ashling Lupiani ,SCF is a Cognitive Solutions Developer at the City of Hope. A neuroscientist, and biomedical engineer with experience in speech and gait research, she spent 5 years running neurorehabilitation engineering studies with human participants and conducting analysis to investigate sensorimotor systems. She co-authored 5 papers and presented at conferences in Toronto and Boston, and COSAC 28 & 29. Ashling has a BA in Neuroscience from Boston University, & a MS in Biomedical Engineering from the Joint Department of Biomedical Engineering at UNC Chapel Hill and NC State.
X
David Lynas Chairman, COSAC (Northern Ireland)

David Lynas

Chairman, COSAC (Northern Ireland)

David Lynas is currently enjoying his 41st year of experience in Information Security, during which he has been invited to provide strategic advice to governments and industry clients on every continent. A globally renowned Enterprise Security Architect, Security Strategist, and Thought-Leader, he is the co-author of SABSA (the world’s leading free-use, open-source Security Architecture Methodology), CEO of the SABSA Institute and CEO of David Lynas Consulting.
X
Kathleen Mullin CISO, My Virtual CISO (USA)

Kathleen Mullin

CISO, My Virtual CISO (USA)

Kate Mullin CISSP, CCSFP, CDPSE, SABSA SCF is an influential information security practitioner and international speaker with 25+ years of experience. Kate has been a VCISO and was CISO at various organizations, including privately owned (Cancer Treatment Centers of America), publicly traded (WageWorks), private equity (HealthPlan Services), not-for-profit (Adventist Health), and governmental entities (Tampa Airport, TPA. Throughout her career, Kathleen has volunteered and participated in maturing information security as a profession.
X
Kirk Nicholls Director, No Duff Security (Australia)

Kirk Nicholls

Director, No Duff Security (Australia)

Kirk is a security advisor with a focus on disaster and incident response exercises. He develops and manages exercise programs through the discipline of serious games, using research-based practice. Through the lens of serious games, simulation and a military background he enables clients to gracefully handle the unexpected.
X
Alfie Oloo Product Designer, IoT.nxt (South Africa)

Alfie Oloo

Product Designer, IoT.nxt (South Africa)

Alfi is a Product designer specialising in design systems. Being dyslexic, among other challenges, Alfi eventually dropped out of university, which eventually led to him building his own education through auditory learning (100s of audiobooks). Realising that he had an unusual capacity for auditory communication, He also co-founded the “Edit Undo” Podcast.  Alfi is a lifelong student in the field of mentorship having played the role of a mentor at Jack Academy’s UX Bootcamp and a coordinator with Sprint, a student work-readiness program based in Pretoria, South Africa. 
X
Alex Parkinson Senior Security Architect, Thales (Australia)

Alex Parkinson

Senior Security Architect, Thales (Australia)

Alex Parkinson is a senior cybersecurity architect at Thales Australia. Qualifications include a Master of Science (Internetworking), a Graduate Diploma in Applied Finance and CISSP, CRISC and SABSA Practitioner (SCP) professional certifications. Alex has 30+ years of experience in understanding and dealing with complex systems and organisations in multiple sectors, including Defence and National Security, Trading and Financial Services and Mission Critical Engineering projects.
X
Andy Prow Founder and Tech Entrepreneur, RedShield Security (New Zealand)

Andy Prow

Founder and Tech Entrepreneur, RedShield Security (New Zealand)

Andy is a cyber-security veteran with 28 years of IT experience, over half of which has been in cyber security. From being a software developer for global giants such as IBM, Ericsson & Vodafone, to pen testing and vulnerability research, to more recently as a tech entrepreneur founding 5 firms, including Aura InfoSec (purchased by Kordia in 2015) and RedShield Security which now protects thousands of web apps and critical systems across globe. Andy is a previous winner of the EY NZ Entrepreneur of the Year, and his recent passion is as a tech investor and an advocate for Digital Safety.
X
Andrew Reeves Director of Organisational and Behavioural Research, Cybermindz (Australia)

Andrew Reeves

Director of Organisational and Behavioural Research, Cybermindz (Australia)

Andrew Reeves is a psychologist with a focus on the human aspects of cyber security. He is Director of Organisational and Behavioural Research for Cybermindz.org, a peer informed not-for-profit organisation dedicated to providing evidence-based mental health support to cyber teams. He has 9 years of experience in the defence and ICT industries and has recently completed a PhD in the area of cyber security employee motivation and fatigue.
X
Mattia Rossi Enterprise Security Architect, Ignitize (Australia)

Mattia Rossi

Enterprise Security Architect, Ignitize (Australia)

Mattia Rossi is a freelance consultant currently active in the Cybersecurity space. What you would call an Enterprise Security Architect, he is providing businesses with expertise in not just security analysis and solution security work, but most of all driving the implementation and application of security frameworks. He recognises that while there is a high number of frameworks available, and very good documentation on how frameworks and processes SHOULD be applied, most enterprises lack the skills and knowledge to actively implement or apply them.
X
Dan Schoemaker Information Security Officer, Phoenix HSL (Australia)

Dan Schoemaker

Information Security Officer, Phoenix HSL (Australia)

Dan Schoemaker has been working in the IT support, Infrastructure/Operations and Security fields for the past 8 years. At the end of 2021, he decided to change his career path and move into the Information Security field. He has formal degrees from UNSW, Western Sydney University and certification from CISCO. He is a self-driven techie that ultimately believes in learning by doing and having a crack.
X
William Schultz Senior Director, Enterprise Cybersecurity, Vanderbilt University Medical Centre (USA)

William Schultz

Senior Director, Enterprise Cybersecurity, Vanderbilt University Medical Centre (USA)

Bill Schultz is a practicing security architect who has worked in the Information Technology field for over 16 years, with the past 12 focused on Enterprise Architecture, Security Architecture, Risk Management, and Compliance. Bill has built security programs, risk management programs, and developed strategic organizational architectures and technical system architectures. Bill has led multiple risk management and security architecture initiatives.
X
Malcolm Shore PhD Supervisor, Deakin University CSRI (New Zealand)

Malcolm Shore

PhD Supervisor, Deakin University CSRI (New Zealand)

Dr Shore completed a BSc in Computer Science at the University of London before emigrating to New Zealand where he held positions with RNZAF & Government Communications Security Bureau before completing his PhD at Otago University. He has held Head of Security positions in both Telecom New Zealand, and in NBN Co, where he was responsible for satisfying compliance with the Australian Protective Security Policy Framework. Malcolm was also the Technical Director for BAE Systems Australia.
X
Maurice Smit Principal Security Architect, David Lynas Consulting (Netherlands)

Maurice Smit

Principal Security Architect, David Lynas Consulting (Netherlands)

Maurice is a Principal Security Consultant and SABSA Instructor at David Lynas Consulting, with over 15 years of experience in IT Security operations, management, governance and architecture, in a variety of industries including finance, healthcare and pharmaceuticals. Maurice delivers accredited SABSA training in Europe, India, Africa and the Middle East and is a founding member of the SABSA Institute Board of Trustees.
X
Shane Tully Global CISO, A24 (Australia)

Shane Tully

Global CISO, A24 (Australia)

Shane is the Global CISO of A24 and previously was an enterprise security architect with experience in Australian state government agencies, transport and financial services industries. His interest is in the security of international businesses. Shane was the founder of the oneworld® airline alliance IT Security Forum; a founding member of the board of management of the global security thought leadership group, The Jericho Forum; an invited attendee at the APEC 2007 data privacy seminars; and an invited SCADA representative to the Australian Government ITSEAG.
X
Pete Wolski Head of Information & Cyber Security, MYOB (Australia)

Pete Wolski

Head of Information & Cyber Security, MYOB (Australia)

Peter is an experienced security professional, currently Head of Information and Cyber Security at business management platform MYOB. With 18 years’ experience in various roles and industries, Peter has supported a variety of public, commercial, regional and global clients. In his most recent roles Peter has focused on engaging with business and technology management, enhancing risk awareness and mitigation through planning, strategy and technology architecture. He is focused on discovering pragmatic solutions to adversary rich problems.  
X