Turning SABSA Theory into Executive Decisions: An Interactive Role-Play Workshop
Date: 19 February 2026
Time: 5:30 to 7:30PM
In-person: NTT Data Office, Level 21, 35 Collins Street, Melbourne | 1.5 CPE
Please provide your ISACA Membership Number AND ISACA Membership Email when you register so our volunteers can upload your CPEs for you to apply.
** To enable us to deliver an enriching workshop for our participants, seats are limited. We have initially set the General Admission tickets to Waitlist. Please proceed with your registration as Waitlist and we will confirm your tickets by 17 February 2026. **
Abstract:
In this in-person-only, interactive role-play workshop aimed at SABSA Foundation graduated security solutions architects will move beyond "knowing the matrix" to using it. The session will demonstrate a live discovery with a CEO and CISO, translating business objectives and constraints into a SABSA-aligned attributes-driven security architecture with clear traceability from business requirements to architectural outcomes and investment decisions.
Attendees will see how to structure the right questions, surface and prioritise business attributes, and turn the resulting architecture narrative into defensible budget justification - connecting strategy to design and measurable outcomes in a way that resonates with senior leadership. SABSA Foundational course gave you knowledge; this session will show you how it is used in practice.
The session is for SABSA Foundational graduates. It will be run in two parts: part one in February and part two in March.
Facilitators:
Gareth Watters, Director - Cyber Risk & Resilience at David Lynas Consulting Pty Ltd
Gareth Watters is a strategic ICT leader and cybersecurity expert with over 2.5 decades of experience driving security transformation and business-aligned outcomes across global enterprises. Combining decades of technical acumen with a strong foundation in Governance, Risk, and Compliance (GRC) and experience in enterprise security architecture, cloud, and operational technology, Gareth combines strategic vision with practical execution to deliver security that enables—not hinders—innovation.
A Chartered SABSA Architect and GAICD-qualified board director, Gareth offers a balanced mix of governance insight, technical mastery, and commercial acumen. Passionate about mentoring and supporting the next generation of cybersecurity leaders, he champions integrity, trust, and inclusion as the foundations of secure digital transformation and acceleration. Gareth currently sits on the board of directors for The SABSA Institute.
Richard Magalad, Managing Director at ITR Australia
Richard is a 30-year ICT veteran who began his career with the Commonwealth Bank before leading global IT operations as an IT Director in the mining sector. As a founder and principal consultant, he has delivered complex architecture for federal government agencies, global telcos, and critical infrastructure projects across Australia and Southeast Asia.
A former executive committee member of the Australian Computer Society and current Chair of the Cloud Branch at AISA, Richard was recognised as Australia’s top CISM candidate in 2022. He brings a deep-seated philosophy that cybersecurity is inseparable from information technology. For SABSA graduates, Richard provides the vital link between "knowing the matrix" and deploying it within critical network infrastructure, business continuity planning, and international government advisory missions.
Ross Khan, Previous Group CTO at the Wired Corporation (South Africa)
Ross s an experienced IT operator with extensive international exposure across the retail, finance, and higher education sectors. With a deep technical foundation in data protection, virtualisation, and network management, they bring a pragmatic "ground-truth" perspective to security architecture. By combining broad operational expertise with a rigorous focus on IT governance and service excellence, Ross specialises in ensuring that architectural designs are not just theoretically sound, but operationally viable. During this workshop, he will help attendees bridge the gap between complex infrastructure realities and the structured traceability required to satisfy business objectives.
Rustam Teregulov, Manager – Security Consulting at NTT DATA
Rustam is a security architecture professional and consultant manager at NTT DATA with extensive experience advising organisations on risk, security architecture, and strategic budgeting decisions. His background has given him a deep understanding of real cyber threats, how they are countered, and how to translate technical and risk considerations into business stories, measurable outcomes, and investment justifications. With his hands-on track record, Rustam is in an ideal position to share insights on applying security architecture concepts in real business situations.
PS:
ISACA Melbourne Chapter is committed to delivering events that truly meet the needs of our community. To help us shape impactful initiatives in 2026, we’d appreciate your support in providing some demographic information during registration.
Your participation is completely optional, and any details you share will be used solely to improve our programs and engagement. Thank you for helping us make our events even more relevant and inclusive!