1. On-premise at EY, 8 Exhibition St, Melbourne VIC 3000 and check-in at reception. Presentation followed by refreshments and networking
Description: Since 2013, the cyber threat landscape has continued to evolve, providing a much more challenging environment and one where users within organisations are much more ably targeted by threat actors. During this time, security governance frameworks like ISO 27001 have been used to help organisations manage their cyber security, and to provide assurance to customers and supply chain of the same. Now that ISO 27001:2022 has been released, the standard has a reduced set of individual controls but improves its focus on modern security landscapes within organisations. This presentation will focus on the major changes and how your IT operations can, or show how they already are discharging some of the requirements of the new ISO 27001:2022 standard.
About Stephen Zuluaga...
I’ve worked in the ICT industry for 20 years, with focus on systems and network engineering, consulting, managed services, audit and I’ve taught in the University and TAFE sectors. While I’ve worked across a very wide range of operational areas in ICT, I’ve always been interested in the security issues my teams have faced. My approach to being a security practitioner is to utilise my operational experience to help boards and other stakeholders get the best outcomes from their operational teams. I’m an ACS Certified Professional, AISA Member, ISACA CISM, ISO 27001 Lead Auditor. Outside work and family, DIY, woodworking and electronics take up most of my spare time linkedin.com/in/stephenzuluaga/