31 July 2023 | 9:00 PM (ET) / 8:00 PM (CT) / 6:00 PM (PT)
1 August 2023 | 11:00 AM (UTC+10) Canberra
1 FREE CPE!
In a world where data are pervasive and increasingly connected, for security professionals, protecting the privacy of individuals and organizations could be compared to trying to put an octopus into a string bag: a constantly changing, wriggly challenge.
A breach of privacy not only puts the individual and organization at risk, but it can also damage an entire country’s global reputation. For this reason, compliance and privacy laws are updated on an ongoing basis, and privacy professionals must keep up with the changes.
In its simplest form, there are 2 key elements to privacy: the data that must be collected and how those data are protected. In other words, privacy and security are codependent and professionals in each domain must work together to achieve optimal outcomes for an organization.
A panel of experts will discuss the need for an effective Privacy and Security program and where they intersect. They will also discuss what happens when these programs are ineffective or nonexistent and specific steps companies should take to implement them.
Moderator: Jo Stewart-Rattray
Chief Security Officer
Jo has over 30 years’ experience in the IT field some of which were spent as CIO in the Utilities and as Group CIO in the Tourism space, and with significant experience in the Information Security arena including as CISO in the healthcare sector. She underpins her information technology and security background with her qualifications in education and management.
She specialises in consulting in risk and technology issues with a particular emphasis on governance and security in both the commercial and operational areas of businesses. Jo provides strategic advice to organisations across a number of industry sectors including banking and finance, utilities, manufacturing, tertiary education, retail, healthcare and government.
Jo has extensive board and committee experience. She has chaired a number of ISACA’s international committees including the Board Audit & Risk Committee, Leadership Development and Professional Influence & Advocacy. She served as an Elected Director on ISACA’s international Board of Directors for seven years and was the founder of its global women’s leadership initiative, SheLeadsTech and is Vice President, Communities for the Australian Computer Society.
Partner, Technology Risk and Cyber
Mitra is a senior Technology and Security Transformation executive with over 20 years’ experience working in the Health, Financial and Professional Services industries. Mitra is a recognised leader in successfully defining and implementing Centres of Excellence Technology and Cybersecurity functions across major International and Australian Banks and most recently in the Health Sector.
Mitra is a trusted advisor to senior stakeholders including Board of Directors and Risk and Audit Committees, enabling effective governance and insights for investment and decision making.
Mitra joined KPMG Australia in July 2022 as the National Cyber Partner to the Health Sector and Cyber Partner to the Victorian Government.Over the past 2.5 years, Mitra was the Chief Information Security Officer (CISO) at Healthscope, charged with defining and building the Cyber Security Practice for the Enterprise. During her tenure as CISO, Mitra successfully delivered Healthscope’s market leading Cyber Security function, including definition and operationalisation of the Cyber Security strategy, priorities and roadmap. She has ensured the continuous uplift of Cyber Security capability and maturity and delivered effective threat intelligence and resilient Cyber Security solutions and services across the Enterprise to 42 Healthscope Hospitals.
Mitra is an adjunct professor at Deakin University; an industry advisory member to the Australian Cyber Security Centre (ACSC); and an advisory board member and cyber industry advisor to Deakin University’s Centre for Cyber Security Research and Innovation (CSRI).
Mitra has been an active ISACA Melbourne Chapter Board member for over 17 years, leading effective governance and oversight of all operational elements of the Chapter activities to ensure the delivery of optimal value and services to the members.
Victorian Government Justice Sector CISO
Victoria’s Department of Justice
John O’Driscoll is CISO at Victoria’s Department of Justice and Community Safety. His role is to establish the appropriate people, processes and technology to adequately address the current and emerging Justice sector cyber threats and risk profile.
Prior to this John was Victoria's first CISO where he led the development and delivery of Victoria’s Cyber Security Strategy to assess, monitor and respond to cyber security risks, as well as engaging with government departments, interstate counterparts, Commonwealth and private sector experts to deliver a resilient and cohesive cyber security capability.
John has over 35 years’ experience in information technology, with a focus on IT audit and cyber security in financial services and the public sector. He has a keen interest in growing and promoting cyber skills and has lectured in IT Risk and Security related topics at tertiary institutions including Swinburne, RMIT, Deakin and UTS universities.
John is a board member for the ISACA Melbourne Chapter, Melbourne JCSC (Joint Cyber Security Centre), and University of Melbourne Academic Centre for Cyber Security Excellence. John is a Fellow of the Australian Information Security Association, and a recipient of ISACA’s Tony Hayes Award which recognises outstanding leadership and commitment to the IT Governance profession within the Oceania Region. John currently holds the CISA, CISM and CGEIT certifications.