Meet an Industry Expert
Experts: Sarah Young, Rob Smith, Allen Baranov, Lukasz Gogolkiewicz, Dr Joanna Dalton, Christopher Neal
Format: 45 mins
Track: Career Village
Location: The Studio
Time: Saturday 4:30pm
The information security industry is maturing, as demonstrated with the different areas in the Cyber Domain diagram. It can be confusing where and how to get started, also which skills and experiences are used in each areas.
We have assembled some of the best industry experts across Australia (DevSecOps, CyberDefence, GRC & Risk, Red Teaming & PenTesting, Forensics & DFIR, and CISO & Management Roles). Come loaded with your questions and spend some time with these people to help you understand your area/s of interest better and learn more about each space.
Industry Expert Bios:
DevSecOps: Sarah Young
Sarah is an Azure Security Architect working for Microsoft. Allegedly she lives in Melbourne but is more likely to be found in airport lounges across Asia. Sarah loves cloud, DevSecOps, Kubernetes and container security and spends most of her time telling people how to do it better and generally nerding about tech things. She has spoken about security at various conferences across the world and last year won her first-ever award: Security Champion at the Australian Women in Security Awards 2019.
Cyber Defence: Rob Smith
Rob has been in the security industry for nearly 20 years. He has had a wide range of roles, experiences and skills - including consulting, penetration testing, architecture, strategy and now runs Red & Blue Teams for a major Australian bank. He loves mixing the offensive to drive the defensive.
GRC/Compliance: Allen Baranov
Allen is a seasoned information security professional with over 15 years of experience in diverse industry verticals such as banking and finance, manufacturing, retail and communications. He has extensive knowledge of IT Security Management, Compliance including ISO 27001 and PCI DSS, Network Security Architecture Review, Vulnerability assessment and Security Architecture.
As a senior information security consultant (GRC) at Sense of Security, Allen brings a keen interest in IT risk assessments and risk treatment, security architecture and design, PCI-DSS gap assessments, security strategy and roadmaps as well as the creation of frameworks, policies, standards and procedures.
Supported by his Bachelor of Commerce and multiple industry-recognised certifications such as PCI QSA, CISSP, and SABSA, Allen has extensive experience across many security compliance implementations and security operation requirements. His strengths include understanding the technical intricacies of security and the need for a balanced approach to meet business objectives and addressing risks appropriately.
Red Team and Penetration Testing: Lukasz Gogolkiewicz
Lukasz is the Head of Assurance at Context Information Security and one of the co-founders of TuskCon, Australia's most disorganised conference on the beach. He regularly presents at various conferences around Australia and New Zealand and when he isn't herding pentesters, you can find him building something useless in his woodworking shop.
Forensics and DFIR: Dr Joanna Dalton
Joanna has over 13 years of experience in cyber forensics and incident response and has acted as an expert witness for the Supreme, County and Family courts. She is currently a Director at Forensic IT, where she specialises in network forensics and spends the majority of her time investigating and quantifying notifiable data breaches. She types fast, runs slow, and eats network logs for breakfast. Unfortunately she's not the useful kind of doctor (unless you've been breached).
Chief Information Security Officer (CISO): Christopher Neal
I am a displaced Canadian who's worked in the UK, the US and Australia and across a variety of industries including Higher Education, Aviation, Telco, and Healthcare. While I've mostly held information security roles, I've also done desktop support, network support and project and program management.