ISACA and IIA NZ Monthly Networking Forum

When:  Feb 3, 2023 from 12:00 to 14:00 (NZST)
Associated with  Wellington Chapter

ISACA session: 12 noon

Health Information Security Framework (HISF) Refresh

Te Whatu Ora - Health New Zealand is updating the existing HISO 10029 (aka HISF) 2015 version to better suit the new health operating environment in New Zealand and make it easier for organisations to understand and adopt. The framework will be designed to protect personal health information (PHI) and patient personally identifiable information (PPII). This presentation is to describe the journey that Te Whatu Ora has embarked on to refresh the HISF and share some sneak previews of what is to come for Hospitals and Primary and Community Health Care.


Mae Koh
Mae is a Senior Business Analyst with Te Whatu Ora's Cyber Security Uplift Programme working on the HISF Refresh Project. She has 20 years' experience in information security and risk within the government, consultancy, banking and telecommunication sectors. She is previously from DIA's All of Government Services Delivery Security Team, where she worked as a Security Assurance lead for Certification.

Divya Dantuluri
Divya is a Security Consultant with Te Whatu Ora's Cyber Security Uplift Programme working on the HISF Refresh Project. She has 10 plus years of experience in the field of information security and is a certified ISO Auditor. Her last role was at Axenic Security, where she worked with various clientele, including the New Zealand Government, to help improve their information security practices.

The IIA NZ session will follow the ISACA session. Details to be announced.

For catering purposes, please register by Friday 27 January.

Please note, if you are unwell or have any Covid-19 symptoms, we ask that you do not attend the event in-person.

If you have a credit to use or require assistance with registering, please email


KPMG - 10 Customhouse Quay
Level 9