Cyber Security Committee
The Cybersecurity Committee within the Australian Computer Society (ACS) stands as a vanguard in safeguarding Australia's digital infrastructure and promoting cybersecurity excellence. Comprising a coalition of seasoned professionals, thought leaders, and experts from diverse sectors, this committee is dedicated to addressing the evolving threats and challenges in cyberspace.
In an era where cyber threats pose significant risks to individuals, businesses, and governments alike, the role of the ACS Cybersecurity Committee is paramount. Its primary mission is to advance cybersecurity awareness, education, and best practices across Australia, thereby fortifying the nation's resilience against cyber-attacks and ensuring the integrity and security of digital assets.
The primary mission of the Cybersecurity Committee is to promote cybersecurity awareness, education, and best practices across the nation. Through proactive engagement with stakeholders, policy advocacy, and the dissemination of cutting-edge research, the committee strives to foster a culture of cybersecurity excellence in Australia.
As trusted advisors to the ACS and other stakeholders, the Cybersecurity Committee plays a crucial role in shaping cybersecurity policies, standards, and practices in Australia. Its efforts are instrumental in promoting a culture of cybersecurity resilience, empowering individuals and organizations to safeguard their digital assets and protect against cyber threats in an increasingly interconnected world.
The ACS Cybersecurity Committee embodies a commitment to excellence, collaboration, and vigilance in safeguarding Australia's digital future. Through its leadership and initiatives, the committee helps ensure that Australia remains a leader in cybersecurity innovation and resilience, ready to confront the challenges of cyberspace with confidence and determination.
AACS
Mr Louay Ghashash
Chair – Cyber Security Committee
Louay is a Director with over 22 years' experience in Information security across number of industries. He has also acted as Chief Information Security Officer (CISO) across number of customer engagements including Non-for-Profit and Retails and FSI. Louay has been providing advisory services for number of industries sectors: Banking & Finance, Transport, Government, Oil & Gas, Manufacturing and Gaming sectors. He has solid experience in providing security advisory for senior managers and Board of Directors. Louay has completed and lead number of large and medium security transformation programs across industries including Finance, Emergency, Utilities sectors, Fast food, City Councils, e-commerce and others. Louay has a solid technical background in technology and security technical solutions and controls. Louay holds a Bachelor Degree in Electrical Engineering and a Master Degree in Networking Systems Engineering. He also holds the following industry certifications: CISA, CISM, CRISC, QSA and ISO27001LA.
MACS Snr CP
David Norris
Vice Chair – Cyber Security Committee
David is an accomplished professional in information technology and passionate about cyber security. He has a bachelor's degree in computer science and a master’s degree in cyber security. He has qualifications from vendors, including Microsoft, Oracle, and Blackberry Cylance. He has recently completed the ACSC Essential Eight Assessors course. David started his career at Westpac as a programmer. He then moved to IBM as a programmer, finishing as a Team Leader. In 1992, he started his own technology business, Nortec IT, and has worked there since.
The Australian Computer Society has recognised him as a Senior Member. David has also participated as a mentor in the ACS mentoring program. He writes a weekly technology column for two Western Sydney Publishing Group newspapers.
David's commitment to nurturing the next generation of cybersecurity professionals is unwavering. He is a regular presence at industry conferences, seminars, and educational forums, where he generously shares his insights on cybersecurity trends and emerging technologies. His passion for mentoring has inspired many aspiring individuals to pursue careers in this critical field, demonstrating his dedication to fostering talent and supporting others in their professional journeys.
MACS Snr - CP
Mr Dilip Samji
Member
Dilip Samji is the Director of Cyber Security, Cyber Intelligence and Digital Forensics for DRC Australia, a part of the DRC International Group. Dilip specializes in Cyber Security and Digital Forensics, currently leads a team of professionals at the Data Risk and Forensics Consulting in Sydney while overseeing digital forensics and IT security projects and operations across Australia, New Zealand, and the Philippines. Since 2012 he has been part of the IT Security Team for DRC International Group drafting the company’s IT Cyber Security policies and procedures for DRC Portugal, Switzerland, Australia, and Africa. Dilip’s vast knowledge has been developed over 35 years and his career has spanned Africa, Europe, North America, Asia, South America and Australia. Holding a variety of Senior roles, nationally and internationally, in the Government and Corporate business, focusing on software development, operations, management, audit, security, more recently Dilip has moved into the specialized field of Digital Forensics and Cyber Security. This specialization in Digital Forensics has led to many invitations to speak at international conferences and forums including the IT Security Conference 2015 in Copenhagen as a guest of the Danish Embassy. Dilip is also recognized as an industry specialist by many government bodies, and have worked in IT security projects with ex-Minister of Science and Technology of Mozambique and assist the IT Security Advisory Board during the drafting of the Mozambique National Cyber Security Strategy (January -June 2017).Apart from being an active member of ACS (Australian Computer Society) for 25 years and serving as an ACS and UTS (University of Technology Sydney) mentor he is also a member of the Australian Information Security Association (AISA), Australian Security Information Society (ASIS),Digital Forensics Association (DFA-USA ) and is a Certified Digital Forensics Examiner with the International Association of Computer Investigation Specialists (IACIS-USA).Dilip holds a Masters of Information Systems Security and is currently undertaking a second Masters in Cyber Security. He has been supervising digital forensic investigations involving matters that range from bullying emails, IP theft, disgruntled employee, Cybercrime, assisting Lawyers and Barristers on both civil and criminal litigation as well testifying in Court as expert witness.
AACS - CP
Mr John Baird
Member
My passion lies in the role that technology can play in driving forward an organisation. As a technologist at heart, my career has been built on my ability to marry ICT and its broadest and most innovative applications with the needs of a business. Within the course of my career, I have had the great fortune of gaining extremely broad technical experience, and progressively senior roles in which I have gained the trust and loyalty of talented teams.
MACS Snr - CP
Associate Professor Paul Haskell-Dowland
Member
Professor Paul Haskell-Dowland is the Professor of Cyber Security Practice and Associate Dean for Computing and Security in the School of Science at Edith Cowan University, Perth, Australia. Paul has delivered keynotes, invited presentations, workshops, professional development/training and seminars across the world for audiences including RSA Security, ITU and IEEE. He has appeared on local, national, and international media (newspaper, radio and tv) commenting on current cyber issues with a global audience reach of more than three billion people. His contributions through articles published in The Conversation have reached over three million readers - joining the top-50 all-time authors in Australia/New Zealand. Paul has more than 20 years of experience in cyber security research and education leadership in both the UK and Australia. Paul is the Chair and the ACS/Australian Country Member Representative to the International Federation for Information Processing (IFIP) Technical Committee 11 (TC11 - Security and Privacy Protection in Information Processing Systems); secretary to IFIP Working Group 11.1 (Information Security Management); a member of the ACS Cyber Security Committee; a Senior Member of the IEEE and the ACS (Certified Professional); and, a Fellow of the Higher Education Academy, BCS and the Australian Information Security Association. He is the author of over 90 papers in refereed international journals and conference proceedings and edited 33 books/proceedings. Paul is a member of the editorial board for the Elsevier journal Computers and Security; and the editorial advisory board for the Heliyon journal, as well as being an active reviewer for ten journals.
MACS Snr - CP
Mr Sudheera Edirisinghe
Member
Highly accomplished executive with over a decade of leadership in various aspects of cyber security, including organization and strategy development, risk management, incident response, security operations, technology implementation, stakeholder engagement, and vendor management. A trusted advisor with a proven track record of success in protecting organizations against cyber threats. I am experienced in building cyber security organizations from the ground up and am highly dedicated to mentoring new talent entering the industry. I have hands-on experience working with various cyber security frameworks such as ISO 27001, NIST, CIS, and ASD8, and have utilised them to create comprehensive policy documents. I have a proven track record of developing both business and technical strategies to help organizations achieve their goals. In recent years, I have taken the lead in the implementation of organizationwide security awareness, governance, and compliance programs in support of the Australian Critical Infrastructure Bill.
FACS
Emeritus Professor William Caelli
Member
Emeritus Professor William J (Bill) Caelli, AO - Retired Director of cybersecurity consultancy company IISEC Pty Ltd, Emeritus Professor of the Queensland University of Technology (QUT), Adjunct Professor at Griffith University and Advisor to the School of Business and Tourism at Southern Cross University. Chairs the Safety and Stability Advisory Committee of Australia’s Domain Name Authority (auDa). Former member of the board of the "Colloquium for Information Systems Security Education (CISSE)", USA (URL http://www.cisse.info) from 2004 to 2013. Founder of Electronics Research Australia Pty Ltd, then ERACOM Pty Ltd, in 1979 which developed/manufactured a range of computers based on Stanford University Network (SUN) architecture with added cryptographic hardware/software. Cryptographic subsystems / security modules for IBM/clone PC, mainframes and data networks/computer security products with a first hardware encryption system for the IBM PC (1984) with full hard disk encryption/trusted key management. Founding Director of the Information Security Research Centre (ISRC) at QUT in 1988, then Head of the School of Data Communications/School of Software Engineering and Data Communications. He was made an Officer in the Order of Australia in 2003. He has over 52 years’ experience in ICT with over 42 years in all aspects of cybersecurity, commercial cryptography and public policy concerns in the area. Worked for Hewlett-Packard Company and Control Data Corporation. PhD in nuclear physics / high speed data acquisition via IBM 1800/System 360/50 DACS combination. Fellow of the Australian Computer Society (ACS), Life Senior Member of the IEEE, Fellow of ISC2, Hon CISM (ISACA), Member IFIP TC-11 Specialties: cybersecurity, network / information security & assurance, policy in cybersecurity & ICT industry, cyberwarfare/conflict/defence, cybersecurity education, SCADA/DACS security, trusted systems, SELinux, Trusted/CMW Solaris, Trusted XENIX, Trusted UNIX, SEVMS.
AACS
Kaustubh Vazalwar
Member
Kaustubh is a senior resilience practitioner and executive and helps his clients enhance their ICT resilience by understanding the root causes of disruptions, and developing strategic plans for improving data security, governance, and risk mitigation for critical systems. Being a seasoned and certified resiliency professional with experience in strategic and technological aspects of business, he has worked with prestigious customers across the globe and in various industry verticals. In his current role as the Principal with RSM Consulting, Kaustubh works as an executive advisor and drives critical initiatives for the cyber security and privacy risk services division.
Kaustubh’s previous roles include Head of Technology – Enterprise Resilience at Tabcorp Holdings Ltd., and A/NZ Practice Leader – Resiliency Services at IBM Australia. He is passionate about developing intellectual property material and has published multiple whitepapers and journal articles in the domain, as well as been a speaker at the prestigious AISA Cyber Conference in Melbourne and Canberra, Gartner Security & Risk Summit Australia and the BCM World Conference in London amongst others. Kaustubh was recognised as the Continuity and Resilience Consultant in the BCI India awards in 2015.
MACS - Snr
Kristof Kazmer
Member
As the Head of Solutions at ASE, Kristof has over 30 years of experience in the technology industry. His history in cybersecurity is both extensive and diverse, aided by 20 years of hands of experience from performing penetration tests, architecture consulting to infrastructure rollouts and general awareness training. Every year, he is supporting hundreds of organisations providing technology consulting and cybersecurity services. Kristof is as an evangelist in helping organisations adapt for the future of work and advising on tech trends and cybersecurity learnings.
MACS - CP
Robyn Bailey
Member
Robyn has enjoyed over 30 years working in the IT industry, initially in infrastructure engineering and operations. For the past 25 years she has specialised in information and cyber security governance, risk, compliance, and technology. As a long-standing trusted consultant to C-level executives, Robyn has advised a diverse array of organisations, ranging from small to large enterprises, State and Federal Government entities, global cloud service providers and corporations. Robyn possesses extensive experience in integrated cyber security processes, encompassing enterprise architecture, information management, IT strategy, and infrastructure operations. This breadth of experience affords her an exceptional understanding of the inputs and outputs crucial to cyber security processes, pivotal for embedding security within organisations. For two decades, Robyn has dedicated her time to volunteering in support of youth and women entering the cyber security field. Her volunteer work includes involvement with TechGirls are Superheroes, Mensa Australia and ISACA. Robyn established Australasia’s inaugural ISC2 Chapter in 2000 and spearheaded one of Australia’s first information security networking group. Notably, she introduced the first CISSP exam to Australia in 2001, furthering the development of cyber security education and certification in the region.
MACS Snr CP
Mr Richard Magalad
Member
Richard Magalad started his career at the Commonwealth bank as a cadet in the late 80s where he was trained in COBOL and IBM mainframes. This followed several years in the tax accountancy sector specialising in Novell Netware, which lead to starting his network consultancy firm that continues to operate today. He was also a 10-year IT director from 2010 working at a mining company with gold and diamond projects in Australia, Laos and Canada. His is currently in a multi-year systems integration project with two large telcos and several agencies in the Australian federal government.
He is a hands-on tech with a philosophy to never separate Cyber Security from Information Technology and is ISACA certified as a CISM and CRISC, and an ACS Certified Professional (Snr ) in Cyber Security.
Richard consulted and trained cyber security to SE Asia governments and critical infrastructure enterprises on missions for Dept of Foreign Affairs and Trade and with RMIT University, where he now teaches cyber security to professional students.
He was in the Branch Executive Committee and Secretary at the Victoria ACS until 2022 and the current chairperson of Cloud Branch for the Australian Information Security Association.
AACS
Mr Adam Green
Member
Having worked with some of the world’s best forensic investigators and ethical hackers, Adam’s disruptive view of cybersecurity allows him to advise the industry’s most progressive CIO’s and CISO’s with a unique perspective of the cyber threat landscape and adversary behaviour. As the Founder and CISO of Cybersecurity advisory, Green Cyber Consulting, Adam uses his experience and exposure to some of the leading Higher Education, Critical Infrastructure, Airports, Airlines and Medical Service Providers across the Globe, to collaborating with our most vulnerable sectors to address complex cybersecurity challenges.
AACS
Mr Benjamin DiMarco
Member
Ben has over 14 years of legal and advisory experience specialising in cyber risk, privacy, technology law, financial insurance and dispute resolution. He has acted in over 300 data breaches providing triage, privacy, strategic and claim support to companies.
Ben leads Willis Towers Watson's Australia and New Zealand cyber and technology risk team providing insurance, assessment and consulting services to domestic and international clients. Ben focuses on helping clients understand their exposure and developing responsive risk and resilience strategies matching business objectives and support needs.
He regularly conducts workshops for client covering topics such as scenario tabletops, executive awareness, data and privacy governance, breach quantification, applied case studies, consensus-based action plans, third party risk, supply chain due diligence and insurance alignment.
Ben is the National Cyber Risk and Governance stream leader for the Australian Society of Computers & Law and their Queensland Chair. He also sits on the Privacy and Data Law Committee for the Queensland Law Society, and is a regular guest lecturer at the Queensland University of Technology.
Ben is a leading privacy and technology risk speaker and has in recent years delivered papers and presentations to bodies including the Australian Institute of Company Directors, the Office of the Australian Information Commissioner's Asia Pacific Forum, the Association of Corporate Counsel, the AusCERT National Security Conference, the Australian Information Security Association National Conference and to the Association of Superannuation Funds of Australia.
His recent work includes drafting manuscript cyber insurance wordings, managing complex data breach liability claims, advising on cyber security policy and procedure documents, helping organisations strengthen approaches to data privacy, coordinating complex client insurance placements and delivering risk consulting projects.
Until late 2018 Ben's legal practice involved a broad range of litigated and non-litigated matters. Ben assisted in the drafting of numerous cyber wordings used in the Australian market and designed incident response and privacy frameworks used by Australian and International organisations.
From 2016 to 2018 Ben worked with a leading San Francisco legal team on international cyber and technology claims involving data breaches, malware, mandatory notification laws, class actions, regulatory actions and PCI assessments.