We have a COVID-19 Safety Plan, and are committed to keeping you safe, with flexible, agile, registration and payment terms. Read more about our promise to you.


The event program developed by our Industry Advisory Council is designed to offer lessons learned from case studies, roundtable discussion groups with multi-disciplinary participants, and small group activities.

You will walk away with both skills and connections to prevent risk and ensure essential business continuity.


Summit Program
Registration Open
0900 - 0915

Opening remarks from the chair

Icebreaker: Scoping the cyber threats in the Australian healthcare services industry to determine your vulnerability and risk of exposure

Michael Warnock  |  Commercial Director - Daltrey Australia

0915 - 0950
International Keynote Address

Strengthening cyber security resilience across health and care in an increasingly digitised world

  • Discovering emerging challenges health and care are facing in a digitised world
  • Taking a proactive approach to foreseeable problems
  • Has the pandemic given us an opportunity to build cyber resilience?
  • Developing security awareness across NHS


Phil Huggins | National Chief Information Security Officer for Health & Social Care, NHS UK

0950 - 1015

Knowing your enemy - How attacks occur in the mission critical healthcare landscape

  • Pre-empting cyber threats with a thorough understanding of how attacks occur and the cyber criminal’s pathways
  • Under attack long before you know it. Exploring the various stages of an attack
  • How do attackers gain access and steal patient data
  • Building your due diligence measures, investment, policy, procedures and systems to proactively defend against cyber attacks


Nick Savvides | Senior Director of Strategic Business, Forcepoint Asia Pacific

Proudly sponsored by


1015 - 1040

Discovering the dark side of cybercrime

  • What is the dark web?
  • How does cybercrime affect the healthcare ecosystem?
  • What can your organisation do to mitigate risks associated with cybercrime?


Tony Kitzelmann  |  Chief Information Security Officer, Air Services Australia and Former Chief Information Security Officer and General Manager, Australian Digital Health Agency

1040 - 1100
Morning tea
1100 - 1135

Think Tank: Overcoming unique challenges brought by the pandemic and preparing your organisation in a post-COVID world

  • What have we learnt from COVID 19?
  • Understanding cyber-attack trends during times of uncertainty
  • Exploring key components of a cyber security program in a 24/7 environment, with industry wide fatigue, lack of resources, mass COVID testing and vaccination programs
  • Determining digital innovation opportunities including: cloud security, remote workforce, telehealth, end point security identity access management, mobile devices and more


Michelle Rennie | Chief Information Officer - Royal Children's Hospital

Grant Lockwood  |  Chief Information Security Officer - Virtus Health

Mitra Minai | Chief Information Security Officer - Healthscope Operations

Mazino Onibere | Head of Cyber Security, Risk and Compliance - Regis Aged Care 

Moderator: Andy Edmonds | Senior Regional Manager - Okta

Proudly sponsored by


1135 - 1200
A Green Field: A journey into Cyber Maturity

In 2018, with the ever increasing risk posed by cyber security threats, ACH Group recognised the need to establish a formal Cyber Security Program.  Jason Loveday will explore the journey that ACH Group has taken since, what's been achieved to date in terms of establishing controls and reducing risk, and how the business value was communicated back to the ACH Group Board.

Jason Loveday | Information Security Manager - ACH Group

Proudly sponsored by 
1200 - 1225

Panel discussion: Cyber Security Solutions – Key considerations when selecting  your cyber partners

Nick Shah | Director, Network and Advance Security - VMWare

Nelson Da Silva | Manager, Sales Engineering Australia and New Zealand, Zscaler

Moderator: Michael Warnock | Commercial Director, Daltrey Australia

Proudly sponsored by

1225 - 1325


Proudly sponsored by

1325 - 1425

Roundtable Discussions

Each roundtable will run two consecutive thirty minute sessions on the same topic. This will provide an opportunity for delegates to participate in two roundtables.

Roundtable One – RiskIQ

Proudly sponsored by

Threat Hunting in a multi-cloud and hybrid environment

  • Current Threat Landscape in Health Care sector
  • The fundamentals of Threat Hunting
  • Why and how you should build this practice within your Security Operation Center
  • How to measure the effectiveness of your Threat Hunting practice
  • How to bring your own Threat Intelligence to your existing SOC


Abbas Kudrati | APAC Chief Cybersecurity Advisor - RiskIQ (A Microsoft Company). Author of the best-selling book “Threat Hunting in the Cloud”.

Roundtable Two – Illumio

Proudly sponsored by

Don’t let ransomware stop Healthcare

  • Ransomware is now a cyber resilience issue
  • The combination of connected patient care and the pandemic have created a new cyber threat
  • Stopping ransomware needs a strategic approach
  • Learn how by applying a common framework the threat of ransomware can be reduced


Trevor Dearing | Director of Critical Infrastructure Solutions - Illumio

Roundtable Three – VMWare

Proudly sponsored by

The User Experience – Security v Accessibility

  •  Is security poorly impacting healthcare delivery? 
  • There’s a natural friction between managing risk appropriately and inhibiting access to information in clinical settings. What are some of the considerations and trade-offs in the real world for hospitals today?   
  • How achievable is a better user experience that supports clinical care delivery and how far can we push the boundaries of hybrid working in this new-era?   


Barbara MacKenzie | Senior Business Solutions Strategist, Healthcare - VMware

Roundtable Four – ForcePoint

Proudly sponsored by

Data Security and Protection Considerations in a Digital Healthcare Environment

  • Understanding the security challenges of healthcare evolving into a predominant digital operating environment
  • Implementing strategies to protect confidential PHI and PII data from accidental and malicious data loss risks
  • Practical tools that can be deployed to control and manage unauthorised data access
  • Approaches that can be taken to manage regulatory compliance (AHPRA and OAIC) in the digital healthcare environment.


Nick Savvides | Senior Director of Strategic Business - Forcepoint Asia Pacific

Roundtable Five - Vectra

Proudly sponsored by

Gaining visibility and response across your public, private and hybrid cloud environments

  • New technologies for better customer experience, patient safety and a rapid shift to virtual care models
  • Growing attack surface so how can organisations secure cloud data?
  • Discussing the new approaches to threat detection and response for public, private and hybrid cloud environments


Chris Fisher | Director Security Engineering, Asia Pacific and Japan - Vectra AI

Roundtable Six - Recorded Future

Proudly sponsored by

How Security Intelligence Can Stop Ransomware

  • What are the common ransomware tactics, techniques, and procedures (TTPs) employed in the Healthcare industry?
  • How can you use intelligence to stop ransomware?
  • How can you use intelligence around RaaS offerings to proactively stop ransomware?


Allan Liska | Senior Security Architect and Ransomware Specialist - Recorded Future

1430 - 1500

Fireside Chat: Using Threat Insight to Secure Patient Care

  • The latest trends and insights into phishing and other cyber threats targeting Australian healthcare organisations users based on survey data
  • Why Healthcare organisations have been, and continue to be, the top target for cyber attacks
  • How remote care, electronic record, and a more distributed business ecosystem are improving patient care—and opening new avenues of attack for cyber criminals
  • Why, as the industry evolves, security, privacy and compliance have become more challenging than ever. Although the dominant cyber risks have changed over time, one constant has remained: cyber criminals target people. 
  • Real world examples of how to build a cyber defence for today's threats.


Nicholas Hobbs | Group Manager Information Security - Epworth

Grant Lockwood | Chief Information Security Officer - Virtus Health

Host: Yvette Lejins | Resident CISO - Proofpoint APJ

Proudly sponsored by

1500 - 1525

Panel discussion: Dealing with interoperability of devices in a healthcare Environment

  • The Upside and Downside – What is the trade-off between convenience and risk
  • Managing multiple devices in a healthcare environment
  • Dealing with the interoperability of multiple person and medical devices sharing networks
  • Exploring unique challenges and solutions for both smaller and larger healthcare organisations
  • The Future – How healthcare organisations and medical device companies should be working together


Dr Lee Walsh | Founder and Managing Director - Platypus MedTech Consulting

Simon Cowley |  Principal Cybersecurity Officer - Department of Health Victoria

Moderator: David English | Executive Director, Digital Health and Informatics, Peninsula Health

1525 - 1545
Afternoon tea
1545 - 1615

Panel discussion: Navigating cyberattacks and responding to cyber security incidents

  • Legal, Forensics and Risk considerations after a cyber-attack
  • Containing the threat and mitigating the risk of further exposure
  • Forensic considerations when approaching incident response
  • Understanding your reporting obligations to the government regulator / law enforcement
  • Managing clients/individuals affected by the incident
  • Hardening your organisations attack surface and incorporating insurance considerations and considerations for the board
  • Force majeure or negligence? Evidencing your due-diligence measures to prevent the risk of legal claims from customers, patients and your supply chain


Mazino Onibere | Head of Cyber Security, Risk and Compliance - Regis Aged Care

Phil O’Sullivan | Partner - Allens

Brendan Read | Partner -  KordaMentha

Moderator: Tom Crampton | Managing Director, Trusted Impact


1615 - 1645
International Keynote Address 

Responding to cyberattacks and Lessons learned in building a cyber defense program

  • Developing plans to respond to a major ransomware cyberattack on the HSE in 2021
  • Establishing a multi-disciplined executive level cybersecurity oversight committee with accountability for compliance throughout your organisation
  • Designing and executing a communications plan to articulate the risks
  • Establishing an operational resilience policy to drive integration between resilience-related disciplines to facilitate robust disaster recovery capability


Fran Thompson | Chief Information Officer -  Health Service Executive (HSE) Ireland; CEO - eHealth Ireland 

1645 - 1710

Using secure thinking to maximise budget and minimise risk

  • Getting your people behind your resolute mission to avoid an exit from the trusted category
  • Understanding cyber fundamentals with less tech and more thinking
  • Thinking about what, where, how and when
  • Discussing private patient records, confidentiality, integrity, availability and what they mean in health
  • Taking the ‘leadership challenge’ for successful cyber – it’s about priorities, culture, attitude and setting the right tone


Tom Crampton  |  Managing Director - Trusted Impact

1710 - 1715

Reflection Exercise

Michael Warnock  |  Commercial Director - Daltrey Australia Pty Ltd




Regulatory Affairs Director

Abbott Medical

Sue Hunter has been involved in medical device regulatory affairs since joining an orthopaedic company, later to become Zimmer Biomet, in 2010. Sue started her professional life as a veterinary surgeon and has previous experience in varied roles including animal health sales and marketing, as well as regulatory, quality and reimbursement roles in the medical device industry. She is currently Regulatory Affairs Director for Abbott Medical, responsible for ANZ and Canada. The Abbott Medical portfolio includes cardiac arrhythmia and heart failure products, implantable neuromodulation devices targeting pain and movement disorders, as well as coronary and endovascular stents and cardiac valve replacement products.


Principal Cybersecurity Officer
Department of Health, Victoria

Simon Cowley is currently a Principal Cybersecurity Officer at the Department of Health and Human Services (DHHS), Victoria. Simon is based in the Digital Health Branch and works with the Victorian public health sector on assurance activities, cybersecurity initiatives and cyber incident response. Simon has significant experience in cybersecurity for medical devices and prior to joining DHHS, was a biomedical engineer with over 15 years of experience in healthcare technology management at public hospitals, specialising in network connected medical devices.

Katina Michael


Arizona State University

Katina Michael is a professor at Arizona State University, holding a joint appointment in the School for the Future of Innovation in Society and School of Computing, Informatics and Decisions Systems Engineering. She is also the director of the Society Policy Engineering Collective (SPEC) and the Editor in Chief of the IEEE Transactions on Technology and Society. Katina is a Public Interest Technology advocate who emphasizes privacy and security by design. She is a pioneer in the field of the un(intended) consequences of implantable technologies with an emphasis on user design in the Internet of Things and People.


Chief Information Security Officer and General Manager Australian Digital Health Agencies Cyber Security Centre

Tony Kitzelmann is the Australian Digital Health Agency’s Chief Information Security Officer and General Manager for the Agency’s Cyber Security Centre.

A strong believer that ‘cyber security is a team sport’, Tony is focussed on promoting a sustainable, resilient and holistic approach to cyber security across the digital health ecosystem. Tony leads a team of dedicated cyber security professionals who work to embed security into the design of systems and services, undertake cyber security operations functions, and promote security awareness, education and engagement.

Tony’s experience in the digital health arena is complemented by his previous work in the private sector, most recently through his role as the Senior Cyber Security Executive and Chief Information Security Officer (APAC) at Lockheed Martin for five years from 2012. In this role, he was accountable for the strategic leadership and delivery of corporate cyber security functions within the ASIA Pacific region and provided functional leadership to the various business lines in the region.

Tony is always looking to further his knowledge through new challenges working within the cyber security domain and believes that our role as leaders in this exciting field, is to challenge the status quo and look at ways in which we can shape the future and security of our respective organisations.

Tony holds numerous industry and academic qualifications and is currently studying a Masters in Cyber Security, Strategy and Diplomacy at UNSW.




Brendan has over 15 years’ experience in forensic technology and cyber investigations. Throughout his career Brendan has performed complex forensic examinations on various digital systems for businesses, government agencies, including the health sector, for both criminal matters and civil litigation.

Brendan supports client’s internal cyber investigations to ensure they are able to identify the risk of exposure of their confidential information and meet any reporting obligations they may have to regulators.

Prior to embarking on a career in consultancy, Brendan worked with the Queensland Police Service as an appointed Detective in a variety of criminal investigation roles. He was also a founding member of the High-Tech Crime Investigation Unit where he worked alongside State, Federal and International law enforcement agencies such as the United States Secret Service in combating online organised crime.

Michael Warnock

Commercial Director
Daltrey Australia Pty Ltd

As Commercial Director, Michael’s role focuses on the continued growth and evolution of Daltrey as a leading cyber security company, supporting both public and private sectors.

Across the past 25 years Michael has gained experiences in leading operations across both local and international markets. Michael is a firm believer in the notion ‘people by from people’ and he holds this value central to all he does. Recently, also taking on a voluntary role inside AustCyber’s NSW Node to assist in mentoring aspirational students in ways to enter the cyber sector.


Away from the daily excitement of being a leader within the Australian Cyber Industry you will find Michael spending time with his young family on the NSW Central Coast or pounding the pavement as he is back in training for his second marathon.


Principal Advisor, Cyber Strategy & Engagement
Victorian Department of Premier and Cabinet
Rachael is an information security evangelist, with a passion for embedding organisational change management and culture uplift into the way we think about cyber security. As Principal Advisor to the Victorian Chief Information Security Officer, her focus is on leading collaboration across Victoria’s departments and agencies, helping to assess, monitor and respond to cyber security risks, as well as engaging with Commonwealth and private sector experts to deliver a resilient and cohesive cyber security environment.

Rachael believes a culture which fosters security maturity is paramount; and her goal is to make this as holistic, engaging, seamless and effortless as possible.


Managing Associate
Allens Linklaters
I’m Phil O’Sullivan, a cyber security, privacy and data law specialist at Allens, a leading Australian law firm in the tech and healthcare space. I work with work with clients to implement digital transformation strategies and data strategies, advising them how to stay compliant when using data, and in the event of data loss, I help my clients to quickly and decisively manage data crisis situations and cyber threats.

I lead Allens’ eHealth group, working closely with our wider TMT and Healthcare sector groups of all aspects of privacy and data for major corporates, scale-ups and start-ups. For three years I also worked for the Australian Medical Council, advising it on data, privacy and technology issues.


Executive Manager – Strategy
CSIRO Health and Biosecurity

Shane is currently Executive Manager of Strategy for CSIRO’s Health and Biosecurity business unit. Prior to this, Shane was a Manager within CSIRO Futures, the strategic advisory arm of CSIRO. 

Shane has significant experience leading teams to deliver advice to senior stakeholders across government and industry, focused on the assessment of opportunities and challenges facing the health, medical technology and cyber security sectors. 

Shane has delivered work in collaboration with the Industry Growth Centres, Defence, and the Therapeutic Goods Administration (TGA). Shane has held various research roles with a focus on applied biophysics, including post-doctoral research positions at the French National Centre for Scientific Research (CNRS) and at the University of Amsterdam.



Platypus Technical – Health

Dr Lee Walsh CPEng trained as an electrical and computer systems engineer and a physiology. He spent the first part of his career doing human research and has over a decade of experience designing software and equipment for human research and clinical practice.

More recently Lee worked for the Therapeutic Goods Administration (TGA), where he had several roles including Technical Lead for Digital Health in the Emerging Technology and Reform Team. In this role he led legislative reform for software and digital health, and worked with the CSIRO to produce the TGA’s Medical Device Cybersecurity Guidance.

Lee current divides his time between advising government, supporting small and medium medical device companies with their regulatory obligations, and producing physiological instruments to win motor races.


Managing Director
Trusted Impact
Tom Crampton is the Managing Director and CEO of TrustedImpact, a specialised, boutique consulting firm focused exclusively in cyber security.

This experience has given Tom a wealth of factual insight into the important industry trends and practical challenges facing businesses in today’s fast moving cyber security environment.

Overall, Tom has 30 years of international management consulting, technology and P&L business leadership experience working successfully both in and with blue chip organisations across Asia, North America, Europe, and Australia.

Tom earned a Master’s degree in Business (MBA) with academic distinction from the McCombs School of Business at the University of Texas, and a Bachelor of Arts (BA) in Business from The Colorado College.