Future of Security
The Future of Security conference is FST’s dedicated security forum for Sydney and Melbourne, exploring the most pressing issues of cybersecurity, resilience and diligence in the financial services industry.
I am proud to announce that I will be speaking in both of the events delivering a Cybersecurity session for C Suited named Cybersecurity Across The C-Suite”
Future of Security Melbourne 2022
30 August 2022 9:00 am – 4:06 pm
Registration: Melbourne Event
Future of Security Sydney 2022
1 September 2022 9:00 am – 4:00 pm
Registration: Sydney Event
I will share more info regarding Free Tickets closer to the event day. Please keep an eye here
Future of Security Melbourne and Sydney Event Snapshot
Going into 2022, cyber-attacks remain the most difficult threat and risk in the financial services industry despite significant advances by the sector to boost cyber defence, vigilance and resilience.
Cybercriminals are still one step ahead of the game, increasing the precision, sophistication and intensity of their malicious attacks along with the take-up of digital products and services providing ample opportunity for cybercrime.
Facing continuous surges in cyber threats, especially in 2021, the financial services industry recorded the second-highest number of data breaches across all sectors, leaving leaders trapped in an unending battle for control against criminal hackers.
Not only are network breaches and data loss on the line, but security teams have the ultimate duty to protect customer privacy and secure the prime assets of institutions.
Cybersecurity Across The C-Suite
- What execs are focusing on, and what they should be focusing on
- How do you communicate effectively with your board?
- Angles of the CIO, CTO and CISO
https://www.youtube.com/watch?v=lTCxj9Ymv9g&pp=ygUNZXJkYWwgb3prYXlhIA%3D%3D
Featured Topics:
- Endpoint security
- Open Banking and data security
- Digital identity and access management
- Threat intelligence and management
- Breach detection and prevention
- Mobility and device security
- Cloud security
- Data protection and information governance
- Cybersecurity and resilience
- DevSecOps
- SOC innovations
To see other events that I am speaking at click here
CISO Insight
Cybersecurity is not a product you buy or a project you complete — it is a continuous operational discipline. The organisations that achieve genuine security maturity embed security thinking into every business decision, invest in people and processes alongside technology, and build resilience for the inevitable day when preventive controls fail.
The Evolving Cybersecurity Landscape
The threat landscape continues to evolve at a pace that challenges even well-resourced security teams. AI-powered attacks, supply chain compromises, ransomware-as-a-service, and state-sponsored campaigns create a multi-dimensional threat environment no single technology can address. Organisations that defend most effectively take a risk-based approach — understanding which assets are most critical, which threats are most likely, and where investments will have the greatest impact. For CISOs, translating this complexity into actionable strategy requires quantifying cyber risk in business terms, prioritising based on risk reduction, and communicating in language that resonates with non-technical stakeholders.
Building a Defence-in-Depth Strategy
Effective cybersecurity requires layered defences addressing the full attack lifecycle — from reconnaissance through exfiltration. No single control is sufficient; every control can be bypassed by sufficiently motivated adversaries. The goal is creating enough layers that attackers must overcome multiple independent defences, while ensuring detection and response capabilities identify and contain breaches before catastrophic damage. The most common mistake organisations make is treating security as a technology problem rather than a business risk management discipline. The fundamentals — patch management, access control, security awareness, incident response planning — prevent more breaches than any advanced technology.
Frequently Asked Questions
What is the biggest cybersecurity mistake organisations make?
Buying security tools without coherent strategy, skipping basic hygiene in favour of advanced solutions, and failing to invest in people and processes. The fundamentals prevent more breaches than advanced technology.
How should CISOs prioritise security investments?
Start with risk assessment identifying critical assets and likely threats. Prioritise controls for highest-risk scenarios. Ensure basic hygiene is solid before investing in advanced capabilities. Use NIST CSF or CIS Controls to structure your programme and measure progress with board-friendly metrics.
Related reading: Visit our Cyber Resilience Hub or download the CISO Toolkit for governance templates.