Welcome to ISACA Melbourne Chapter!

As an independent, nonprofit, global association, ISACA engages in the development, adoption and use of globally accepted, industry-leading knowledge and practices for information systems.  Previously known as the Information Systems Audit and Control Association, ISACA now goes by its acronym only, to reflect the broad range of IT governance professionals it serves.

ISACA has more than 200 chapters established in over 180 countries worldwide providing members education, resource sharing, advocacy, professional networking and a host of other benefits on a local level. 

ISACA Melbourne Chapter was established in 1980 and has over 1,000 members.

Our Melbourne Chapter provides monthly professional development sessions, training on our frameworks and study/ review sessions for all our four core certification exams, and helps to further promote and elevate the visibility of the IS audit, control and security profession throughout the Melbourne area.

This chapter is run by volunteers who are ISACA members elected at the Chapter's Annual General Meeting (AGM).  The Chapter highly encourages its member to actively participate and volunteer to the chapter.


John O’Driscoll

John O’Driscoll is Victoria's first Whole of Government Chief Information Security Officer. He was appointed to the role in October 2017, where he created and leads the Cyber Safety Unit within DPC. His team’s mission is to create a “Cyber Safe Victoria”, and deliver Victoria’s Cyber Security Strategy to assess, monitor and respond to cyber security risks, as well as engaging with the government departments, interstate counterparts, Commonwealth and private sector experts to deliver a resilient and cohesive cyber security environment.

John has over 30 years’ experience in information technology, with a focus on cyber security in financial services and the public sector. He was previously the Senior Manager, Information and Technology Risk at ANZ. He has a keen interest in growing and promoting cyber skills and has lectured in IT Risk and Security related topics at tertiary institutions including Swinburne, RMIT, Deakin and UTS universities.
John is a Board member for the ISACA Melbourne Chapter, Melbourne JCSC (Joint Cyber Security Centre), and University of Melbourne Academic Centre for Cyber Security Excellence. John is also a recently appointed Fellow of the Australian Information Security Association (AISA).


Wayne Tufek

As a Director of CyberRisk, Wayne works with a diverse number of clients from national household brands to small businesses, providing advice on how to secure their information and information systems and how to manage their risk effectively. Before CyberRisk, he formulated pragmatic business-driven strategies to establish, execute and improve cyber risk management in ASX listed companies and some of Australia’s largest organisations across the public sector, Big 4, financial services, consumer products, education, and retail sectors. Wayne brings practical hands-on experience leading security functions and successfully uplifting security maturity and capability, all the while managing budgets, resource constraints, and stakeholder expectations. He is frequently asked to present at security conferences and events in Australia and internationally, including the Australian Cyber Security Centre Conference, AusCERT, RSA APJ, ISC2 Security Congress, AISA, SACON, and CeBit.

Research Director

Mike Trovato

As an outcome-oriented, internationally recognised cyber security, privacy, risk, and technology leader, Mike has served in board and executive roles to balance risk, investment, and compliance to protect value, brand, and reputation while driving innovation. He also invests in and qualifies innovative privacy and cyber security solutions. He is specialised in Financial Services, Government, Energy, Information, Communications, and Media Industries.

Currently he is Information Integrity Solutions, Managing Director; and Internal Consulting Group (ICG), Global Practice Leader Cyber Security. Former roles include EY Cyber Security Asia Pacific, Oceania, and FSO Practice Lead Partner; NAB Group, GM Technology Risk and Security; KPMG, Northeast US Partner Information Risk Management; Salomon Brothers, Senior Internal Auditor; and MasterCard International, Principal, Program Omni.

He is an AISA Board Director, an ISACA Melbourne Chapter Board Director, a Member of the National Standing Committee on Digital Trade and a Museum of Modern Art Heide Foundation Board Member.

Post-nominals: Certified Information Systems Manager (CISM); Certified Data Privacy Solutions Engineering (CDPSE), Certified Information Systems Auditor (CISA); Graduate, Australian Institute of Company Directors (GAICD), Member Australian Information Security Association (MAISA), ICG Accredited Professional (ICGAP).

Diversity Director

Reshma Devi

Reshma is an experienced Data, Security and Technology Risk specialist.
She has a Masters in Information Technology and loves anything that involves Data. With over 20 years’ experience in Banking and Financial sector in Australia and New Zealand, Reshma is very passionate about Data Security and emerging data challenges.
Reshma is the Diversity Director for ISACA Melbourne. She is also the Ambassador for ISACA’s SheLeadsTech and previous Coordinator for SheLeadsTech Melbourne. Reshma is the Women in Leadership Program Lead at Australian Women in Security Network (AWSN) and the AWSN Chapter Lead for Melbourne.
Reshma was the finalist in Women in Security Awards in 2020 for People’s Choice Award in IT Security, and was also nominated for Best Student Security Leader, AWSN Award for 2020, Australia’s most outstanding Women in Protective Security/Resilience and The One to Watch. In 2021, she has been nominated for the Best Volunteer for Women in Security Awards.
Reshma supports women transitioning between careers and is passionate about helping students with mentoring and guiding careers in Technology and STEM. Her passion has led her into assisting women in leadership roles and working on many women led initiatives.

Professional Development Director

Suzanne Dyke

Suzi is a security, governance and risk specialist with over 25 years’ experience. She has worked in IT, Standards, Risk and Security, with a focus on delivering business value, aligning governance to business strategy and managing risk.
A strong advocate of Cyber Awareness, having delivered an award winning, global, enterprise security training program for Telstra, she has presented at All Day DevOps and is a founding member of the Melbourne DevSecOps Day Organising Committee

Suzi is on the board of Moreland Community Gardens and is the ISACA Melbourne Chapter Professional Development Director

Chapter Treasurer

Greg Angelo

Greg has a background in financial accounting management and control with extensive experience over 40 years in a number of organisations spanning the full spectrum of state federal and local government financial operations as well as the private sector. He is a CPA qualified accountant with degree in economics, and MBA from Melbourne University, and is a fellow of the Australian Institute of Company Directors.
His recent experience included 5 years as a qualified Payment Card Industry Data Security Standards (PCI DSS) Qualified Security Assessor (QSA). He has assisted on PCI forensic investigations and has undertaken and completed a number PCI DSS compliance assessments for various organisations handling large volumes of credit card data.
As part of the PCI DSS QSA process, he has assisted a number of clients in clarifying and formally documenting their internal control procedures to meet PCI DSS requirements.
Previously he was a director of the not-for-profit Victoria Teachers Mutual Bank from 2006 to 2014 and chaired its Audit Committee which had oversight of the bank’s PCI DSS compliance obligations as well of the statutory obligations administered by APRA.

Immediate Past President


Anthony Rodrigues

Anthony is a technology driven, Information Security, Auditing, Assurance & Risk Management Senior Professional with proven experience in identifying risks associated with business objectives and evaluating the controls in place to mitigate those risks. He has exceptional skills in providing value-added advice and support to corporates on the creation or modification of policies, procedures, processes, or services and ensuring an appropriate level of internal control and compliance is well structured and securely maintained. He is detailed-oriented with experience in identifying opportunities to increase process and control efficiencies and simplification in line with the risk appetite of the business.
Anthony is a Certified Lead Auditor and registered with Exemplar Global for: Information Security Management Systems (ISMS); Quality Management Systems (QMS); Business Continuity Management Systems (BCMS); Information Technology Management Systems (ITMS) and Privacy Information Management Systems (PIMS).
Post-nominals: Certified Information Systems Manager (CISM); Certified Risk & Information Systems Control (CRISC); Certified Data Privacy Solutions Engineer (CDPSE); Certified Fraud Examiner (CFE), Member, Institute of Internal Auditors – Australia (MIIA); and Member, Australian Institute of Company Directors.

Marketing & Communications Director

Zahir Ali Quettawala

Certifications Director

Bharat Bajaj

Membership Director

Omar Alarcon