COSAC 2023 COSAC Connect COSAC APAC 2024

COSAC's unique format allows unparalleled access to industry experts, long after the day's sessions have finished. View our international panel of information security speakers below.

Click on a speaker below to view their profile.

Chathura Abedyeera Director – Cyber Security, KPMG (Australia)

Chathura Abedyeera

Director – Cyber Security, KPMG (Australia)

Chathura is a Director in the Cyber security and Forensic practice of KPMG Australia and leads the Cyber Attack and Response services. He is a highly technical Cyber security practitioner with over 20 years’ experience in offensive Cybersecurity and Incident Response. He is a CREST Certified Tester and an examination assessor for the CREST International. He is also an advisory board member of the CREST Australasia. He has delivered complex technical Cyber security assessment programs and Incident Response engagements for a number of high profile Australian and global organisations.
X
Gabriel Akindeju Chief Security Officer and Managing Consulting Director, Risks Consult Ltd (New Zealand)

Gabriel Akindeju

Chief Security Officer and Managing Consulting Director, Risks Consult Ltd (New Zealand)

Gabriel Akindeju is an innovative and strategic Technology Risk Management and Security Management thought leader with background in Enterprise Technology Risk Management and Enterprise Security Governance and Architecture; Information Systems Management; Instrumentations and Controls Engineering; Electronic Electrical Engineering; PRInCEII and Agile practices.His overall objectives are to help organisations leverage effective technology risk management and security for the creation of stakeholder values by optimising risk-reward dynamics.
X
Debi Ashenden Director of IFCyber, University of New South Wales - UNSW (Australia)

Debi Ashenden

Director of IFCyber, University of New South Wales - UNSW (Australia)

Debi holds the DST Group-University of Adelaide Chair in Cyber Security. In addition, she is a Visiting Professor at Royal Holloway, University of London. Debi was previously Head of the Centre for Cyber Security at Cranfield University at the Defence Academy of the UK. Her research interests are in the social and behavioural aspects of cybersecurity – particularly in finding ways of ‘patching with people’ as well as technology. She is currently researching how to fuse behavioural science with cyber deception, and secure MLOps.
X
Ahmed El Ashmawy Consulting Practice Lead, Axenic Limited (New Zealand)

Ahmed El Ashmawy

Consulting Practice Lead, Axenic Limited (New Zealand)

Ahmed is a Senior Consultant at Axenic Ltd. He has significant experience as a trainer, as well as being a hands-on practitioner. He is a CERT-Certified Computer Security Incident Handler (CSIH) and a SEI-Authorised Instructor. He has been previously a member of the technical team of Q-CERT, Qatar’s national Computer Emergency Response Team.
X
Harley Aw CISO, Phoenix HSL (Australia)

Harley Aw

CISO, Phoenix HSL (Australia)

Harley is an Information Security and IT industry veteran based in Sydney Australia with nearly 25 years in retail, tertiary education, hospitality, sport and gaming, financial, government and resources sectors. He is a certified digital forensic examiner, cybersecurity incident handler, a member of the GIAC Advisory Board, Founding Member of the SABSA Institute and a director of the SABSA Founders Bursary. He is currently the CISO of the international Phoenix Group.
X
Paul Blowers Principle Consultant, Hi-Spec Security (New Zealand)

Paul Blowers

Principle Consultant, Hi-Spec Security (New Zealand)

Paul Blowers has more than 35 years experience in security. He is a certified SABSA® practitioner and advocate, and an APMG practiced Business Change expert. He has extensive experience supporting Law Enforcement, Defence, Intelligence, Border Security, and securing critical infrastructure environments.
X
Andy Clark Director, Primary Key Associates (UK)

Andy Clark

Director, Primary Key Associates (UK)

Prof Clark is an acknowledged expert in Cryptography, I.S. Security, Systems Engineering, Information Forensics & Cyber Security. He has worked in the field of Computer and Information Systems Security and Cryptology since 1984 and is a registered expert witness with 20+ years’ experience of presenting computer and information systems evidence in a wide range of criminal & civil cases. He is a co-author of the SABSA Blue Book & was the first recipient of the COSAC award.
X
Andreas Dannert Principal Enterprise Security Architect, Standard Chartered (Singapore)

Andreas Dannert

Principal Enterprise Security Architect, Standard Chartered (Singapore)

Andreas is Principal Enterprise Security Architecture at Standard Chartered Bank in Singapore. At SCB he is responsible for a core Security Architecture team that is delivering the organization’s Security Architecture Framework, Strategy, and relevant Security Capabilities. Before this he was a Principal Enterprise Security Architect at Australia’s national broadband network (nbn), which is a government owned enterprise, providing critical infrastructure services to millions of Australians.
X
Dimitrios Delivasilis Director - Cyber Risk & Resilience, David Lynas Consulting (UK)

Dimitrios Delivasilis

Director - Cyber Risk & Resilience, David Lynas Consulting (UK)

Strong technology executive, specialising in business-driven security strategy, architecture and operational resilience. Dimitrios has more than 22 years of extensive experience in leadership roles predominantly within financial services (Head of Enterprise Security Architecture at Visa and Global Head of Information Risk Strategy at HSBC). He has built a success record of simplifying security decisions, delivering future proof information security strategies and helping organisations implement their digital transformation plans with a commensurate level of assurance.
X
Duncan Hall Strategy & Planning Manager, Ministry of Foreign Affairs and Trade | Manatū Aorere Aotearoa (New Zealand)

Duncan Hall

Strategy & Planning Manager, Ministry of Foreign Affairs and Trade | Manatū Aorere Aotearoa (New Zealand)

I’m a member of The SABSA Institute (G001093), and a SABSA Chartered Security Architect (SCF13071903). Over many years I have contributed in pro bono voluntary capacities to numerous not-for-profit civil society organisations, professional societies, and authoring and reviewing good practice guidelines for software engineering. My ResearchGate site provides further information.
X
Kirren Hartas Security Architect, On the Business Pty Ltd (Australia)

Kirren Hartas

Security Architect, On the Business Pty Ltd (Australia)

Kirren started his career in the Australian Department of Defence as a technical trainee in the mid 90’s and has worked across various elements of the Federal Government as a public servant, consulting engineer, project manager, security specialist and generalist. During this time, Kirren has developed the opinion that what the government asks for and what it needs are two very different things and so has spent much of his time trying to assist them in developing that understanding across several contexts.
X
Nigel Hedges General Manager of IT Security, Risk & Compliance (CISO), Chemist Warehouse Group (Australia)

Nigel Hedges

General Manager of IT Security, Risk & Compliance (CISO), Chemist Warehouse Group (Australia)

Nigel has been in the IT Security industry for 25 years and has a Master of Business Administration and Master of Cybersecurity from Latrobe University in Melbourne, he also carries a number of cybersecurity industry certifications. Nigel is currently the General Manager of IT Security, Risk & Compliance (CISO) at Chemist Warehouse Group, a multi-billion-dollar pharmacy retailer operating across Australia, New Zealand, China, Ireland and expanding countries. Prior to this, Nigel was the Head of Cybersecurity (CISO) at Kmart Australia Limited, looking after Kmart and Target.
X
Dane Hobson Principal Cyber Security Architect, Western Power (Australia)

Dane Hobson

Principal Cyber Security Architect, Western Power (Australia)

Dane Hobson has more than 15 years' experience working in Operational Technology environments in the transforming energy industry with a wide exposure to cyber security challenges. Dane now brings strategic direction and technical leadership to a Security Architecture and Governance role at Western Power to lay a strong and secure foundation for the State’s energy future.
X
Jaco Jacobs Director of Consulting Services, David Lynas Consulting (Netherlands)

Jaco Jacobs

Director of Consulting Services, David Lynas Consulting (Netherlands)

Jaco is the Director of Consulting Services for David Lynas Consulting based out of the Netherlands. He has been a “security guy” for more than 25 years during which time he has provided security consulting services to many of the largest organizations around the world. He has spent most his career developing security IP, training and services for the largest global security providers as well as co-authoring several security publications.
X
Chirag Joshi Founder & CEO, 7 Rules Cyber (Australia)

Chirag Joshi

Founder & CEO, 7 Rules Cyber (Australia)

Chirag is a seasoned cyber security executive with extensive experience building and leading cyber security, risk management, and compliance programs in multiple countries across various industries. He is the Founder and Chief Executive of 7 Rules Cyber - a cyber security company focused on enabling businesses to be secure in a cost-effective and efficient manner. He has built the company on the key pillars of strategy, architecture and culture.
X
Sarit Kannanoor Consulting CISO, Digital Frontier Partners (Australia)

Sarit Kannanoor

Consulting CISO, Digital Frontier Partners (Australia)

Sarit is a highly accomplished security leader with experience in enterprise security architecture, security governance and security management. Sarit comes from an engineering, governance and technology background and looks at security from an "enterprise security as a system" view not just from an Information Security or IT Security or Cyber Security viewpoint. Sarit also has consciously gained experience in all IT functions and a number of business functions (Governance, Risk, Compliance and Assurance) to be able to provide a balanced enterprise security advice to senior management.
X
David Keene Sr Staff Cyber Architect, Northrop Grumman (USA)

David Keene

Sr Staff Cyber Architect, Northrop Grumman (USA)

David is a Cyber Architect for Northrop Grumman, based in San Antonio, Texas. He holds both INCOSE Expert Systems Engineering Professional (ESEP) and (ISC)2 Certified Information System Security Professional (CISSP) certifications, and in his 40-year career (most at Northrop Grumman) he has worked in a variety of roles in software, systems, and cybersecurity engineering. Recently, he has been working with NG’s Digital Transformation initiative to help define new approaches to engineering development processes that leverage authoritative models for integrating design and analysis workflows.
X
Jason Kobes Tech Fellow, Northrop Grumman (USA)

Jason Kobes

Tech Fellow, Northrop Grumman (USA)

Jason Kobes works as a Tech Fellow for Northrop Grumman Corporation. Jason has over 20 years of experience concentrated in security digital transformation, systems engineering, information systems design analytics, business/mission security architecture, enterprise risk management, information assurance research, and using AI for automation. Jason has a Master's of Science in Information Assurance (MSIA) and a Bachelor's of Science in Computer Science from Iowa State University. Jason holds a SABSA Practitioner of Risk and Governance as well as Architecture.
X
David Lang Senior Security Architect, Thales (Australia)

David Lang

Senior Security Architect, Thales (Australia)

David Lang is a Senior Security Architect at Thales Australia, with over 25 years of experience in software, systems and security engineering within the Defence sector. In that time, he has led the security engineering programs on a range of cyber physical systems, including Protected Mobility Vehicles, C4ISR systems, maritime sensor/combat systems and military flight simulators.
X
Bruce Large OT Cyber Security Team Leader, Powerlink (Australia)

Bruce Large

OT Cyber Security Team Leader, Powerlink (Australia)

Bruce Large has 15 years experience working with IT and OT in network, telecommunications and system engineering roles. Bruce has worked in Electricity Generation & Transmission, Railway, Aviation, Emergency Services and Consulting industries. Bruce considers himself a security architecture enthusiast as well as an infrastructure tourist. He is a Foundation Chartered SABSA Architect (SCF), is (still..) working on his A3 SCP paper, holds the GIAC Response and Industrial Defense (GRID) certificate and has attended Industrial Control Systems (ICS) Cyber Security training at QUT.
X
Robert Laurie Deputy CISO / Enterprise Security Architect, David Lynas Consulting (Australia)

Robert Laurie

Deputy CISO / Enterprise Security Architect, David Lynas Consulting (Australia)

Rob is an Enterprise Security Architect with 17+ years’ experience in the IT, Application and Security industries and holds several security designations within the sector. He is a committee member for the Australian Information Security Associates (AISA) and is a member of the GIAC Advisory Board.
X
Rahul Lobo Partner, Kordamentha (Australia)

Rahul Lobo

Partner, Kordamentha (Australia)

Rahul has over 20 years of experience in consulting with his clients to solve their cyber and technology business challenges to help create opportunity for business transformation. His career has been quite expansive and has included working across cloud security, security consulting, cybersecurity architecture, security automation, attack and penetration testing, application security, vulnerability management and assessment, cybersecurity risk management, remediation, incident response and cybersecurity audit.
X
Ashling Lupiani Cognitive Solutions Developer, City of Hope (USA)

Ashling Lupiani

Cognitive Solutions Developer, City of Hope (USA)

Ashling Lupiani ,SCF is a Cognitive Solutions Developer at the City of Hope. A neuroscientist, and biomedical engineer with experience in speech and gait research, she spent 5 years running neurorehabilitation engineering studies with human participants and conducting analysis to investigate sensorimotor systems. She co-authored 5 papers and presented at conferences in Toronto and Boston, and COSAC 28, 29 & 30. Ashling has a BA in Neuroscience from Boston University, & a MS in Biomedical Engineering from the Joint Department of Biomedical Engineering at UNC Chapel Hill and NC State.
X
David Lynas Chairman, COSAC (Northern Ireland)

David Lynas

Chairman, COSAC (Northern Ireland)

David Lynas is currently enjoying his 41st year of experience in Information Security, during which he has been invited to provide strategic advice to governments and industry clients on every continent. A globally renowned Enterprise Security Architect, Security Strategist, and Thought-Leader, he is the co-author of SABSA (the world’s leading free-use, open-source Security Architecture Methodology), CEO of the SABSA Institute and CEO of David Lynas Consulting.
X
Ross MacKenzie Head of Security Controls Assessment Information Security Group, Westpac (Australia)

Ross MacKenzie

Head of Security Controls Assessment Information Security Group, Westpac (Australia)

Ross MacKenzie is the Head of Security Architecture & Design at Westpac Banking Group, and is responsible Globally for the delivery of security architecture, design and security capabilities. Ross has over 15 years of experience in the information security field, and is based in Sydney, Australia. He is also SCF & SCP certified.
X
Kathleen Mullin CISO, My Virtual CISO (USA)

Kathleen Mullin

CISO, My Virtual CISO (USA)

Kate Mullin CISSP, CCSFP, CDPSE, SABSA SCF is an influential information security practitioner and international speaker with 25+ years of experience. Kate has been a VCISO and was CISO at various organizations, including privately owned (Cancer Treatment Centers of America), publicly traded (WageWorks), private equity (HealthPlan Services), not-for-profit (Adventist Health), and governmental entities (Tampa Airport, TPA. Throughout her career, Kathleen has volunteered and participated in maturing information security as a profession.
X
Kirk Nicholls Manager, KordaMentha (Australia)

Kirk Nicholls

Manager, KordaMentha (Australia)

Kirk is a security advisor with a focus on disaster and incident response exercises. He develops and manages exercise programs through the discipline of serious games, using research-based practice. Through the lens of serious games, simulation and a military background he enables clients to gracefully handle the unexpected.
X
John O'Leary President, O'Leary Management Education (USA)

John O'Leary

President, O'Leary Management Education (USA)

John O'Leary, CISSP, is President of O’Leary Management Education. His background spans four decades as an active practitioner in information systems, IT Security and contingency planning. He has designed, implemented and managed security and recovery for networks ranging from single site to multinational. John has trained tens of thousands of practitioners, and conducted on-site programs at major corporations and government facilities worldwide. John was the recipient of the 2004 COSAC award.
X
MZ Omarjee Head: Client Security and Moonshots, Standard Bank Group (South Africa)

MZ Omarjee

Head: Client Security and Moonshots, Standard Bank Group (South Africa)

Muhammed Zubair (Mz) Omarjee, is a former Enterprise Security Architect providing advisory to leading banking institutions in South Africa and abroad. He is instrumental in crafting technology strategies as it relates to digital transformation, mobile banking and cyber security. He plays a pivotal role in shaping information technology practices as a transformative business driven and risk-oriented discipline.
X
Alex Parkinson Senior Systems & Security Architect, Thales (Australia)

Alex Parkinson

Senior Systems & Security Architect, Thales (Australia)

Alex Parkinson is a senior cybersecurity architect at Thales Australia. Qualifications include a Master of Science (Internetworking), a Graduate Diploma in Applied Finance and CISSP, CRISC and SABSA Practitioner (SCP) professional certifications. Alex has 30+ years of experience in understanding and dealing with complex systems and organisations in multiple sectors, including Defence and National Security, Trading and Financial Services and Mission Critical Engineering projects.
X
Andy Prow Founder, Qubit Cyber (New Zealand)

Andy Prow

Founder, Qubit Cyber (New Zealand)

Andy is a cyber-security veteran with 28 years of IT experience, over half of which has been in cyber security. From being a software developer for global giants such as IBM, Ericsson & Vodafone, to pen testing and vulnerability research, to more recently as a tech entrepreneur founding 5 firms, including Aura InfoSec (purchased by Kordia in 2015) and RedShield Security which now protects thousands of web apps and critical systems across globe. Andy is a previous winner of the EY NZ Entrepreneur of the Year, and his recent passion is as a tech investor and an advocate for Digital Safety.
X
William Schultz Senior Director, Enterprise Cybersecurity, Vanderbilt University Medical Centre (USA)

William Schultz

Senior Director, Enterprise Cybersecurity, Vanderbilt University Medical Centre (USA)

Bill Schultz is a practicing security architect who has worked in the Information Technology field for over 16 years, with the past 12 focused on Enterprise Architecture, Security Architecture, Risk Management, and Compliance. Bill has built security programs, risk management programs, and developed strategic organizational architectures and technical system architectures. Bill has led multiple risk management and security architecture initiatives.
X
Malcolm Shore Consultant, Offensive Security (New Zealand)

Malcolm Shore

Consultant, Offensive Security (New Zealand)

Dr Shore completed a BSc in Computer Science at the University of London before emigrating to New Zealand where he held positions with RNZAF & Government Communications Security Bureau before completing his PhD at Otago University. He has held Head of Security positions in both Telecom New Zealand, and in NBN Co, where he was responsible for satisfying compliance with the Australian Protective Security Policy Framework. Malcolm was also the Technical Director for BAE Systems Australia.
X
Bethany Sinclair-Giardini Principal Consultant, Votar Partners (Australia)

Bethany Sinclair-Giardini

Principal Consultant, Votar Partners (Australia)

Hurtling towards the end of her third decade in the profession, Bethany is a time served information governance professional, passionate, and energetic about assisting organisations to better manage their information security risks by championing effective information governance. Bethany is a Principal Consultant at Votar Partners, a small boutique information governance consultancy in Melbourne, specialising in assisting firms with their information security and governance challenges, with a particular interest in raising awareness and education within organisations.
X
Jack Sussmilch Principal Cybersecurity Consultant, Tawfik Consulting (Australia)

Jack Sussmilch

Principal Cybersecurity Consultant, Tawfik Consulting (Australia)

Jack Sussmilch has over 25 years’ experience in the definition and enablement of both strategic and operational cybersecurity domains. He has a proven track record in working with business and IT leadership to mitigate cyber security risks in a measurable, scalable, repeatable and sustainable way across a broad range of technologies, compliance and cultural environments in the context of historical, current and emerging threats.
X