Future of Security, Sydney 2023

Three key technologies are changing our world, and how to start adapting now.

• Now – Deepfakes
• Soon – Generative AI
• Later – Quantum Computing

It is no secret that Australian industry continues to suffer from serious data incidents and breaches that put many leading organisations in the new headlines for the wrong reason. While we can hope that our business is not the next one, there are simple lessons to be learned from the failure of others. During this presentation, Gorge Kokinakos, Account Director for Thales Cloud Protection & Licensing (CPL), will share insights into how FSI organisations have kept their data secure as they transitioned to a cloud first or cloud only information technology framework.

• Exploring what the financial services sector can learn from Telstra’s ‘Cleaner Pipes’ initiative
• Focusing on what you’re good at: strategies for making your customers’ digital experience as safe as possible
• Assessing the most significant trend in the cyber security landscape: the industrialisation of cyber crime

The session will discuss the importance of not overloading security analysts with alerts, what is a sensible number of alerts per analyst per day, and how we leverage technology to achieve this.

Developing threat-centric and outcome-driven cyber security roadmap

• Understanding the interested parties, attack surfaces, gaps in your control posture and what matters to your business 
• Prioritising threat consequences from the outset of roadmap building, especially if your main challenges are time and complexity when responding to threats  
• Leveraging "stop the bleed" principle when uplifting or introducing new capabilities and quantifying the outstanding risks with a clear mitigation plan

• Assessing the future of security for Australia’s Financial Services Industry
• Data security, governance and privacy in a data-centric world - improving information protection tools to improve trust with stakeholders and enhance cyber resilience
• Utilising technology to govern and protect data within the constraints of compliance

• Understanding the post-AI recruitment landscape
• Acquiring talent through hiring for qualities like creativity and problem-solving
• Utilising novel strategies to protect your future data

• Mapping Cyber Threats: Global cyber security threats and insights
• Unmasking the Adversaries: Threat actors targeting financial services in Australia
• Deconstructing a Threat: Using context to drive threat detection

• Establishing a proactive post-quantum security framework that secures your data
• Evolving beyond enterprise cyber defenses like public key technology
• Become cyber resilient by protecting your cloud-based networks through encryption
• Securing your enterprise through preventative IAM measures

• Understanding the supplier fraud challenges in financial services
• How to detect and prevent supplier fraud including how to get visibility into the risk posed by your suppliers
• Best practices of combating supplier impersonation and account compromise

• Detecting cybercrime in a landscape of rapidly changing threats      
• Improving investment in cyber security through heightened board engagement   
• Strengthening your security strategy to better detect and respond to threats  
• Creating a cyber-safe culture in your organisation through security awareness and continuous improvement

• I found Tony Abbott’s passport number in the HTML of Qantas’ “manage booking” page while doing highly normal and legal things
• Wanting to do the right thing, I spent the next six months contacting the government, participating in the Do Not Get Arrested Challenge 2020
• Anyone thinking about participating in the 2023 challenge, my #1 tip is: do not commit a crime.