Program

All tutorials are face to face only - virtual conference registrations cover Thursday and Friday sessions only.

All delegates MUST preregister for tutorials in order to gain access (certain sessions will have limited availability).

9 May

10 May

11 May

12 May

9 May

TUESDAY 9TH MAY - TUTORIALS

9:00am

SouthPort 1	Design Thinking for Cybersecurity: An Approach for Human-Centred Security	BOOKED OUT
	Ivano Bongiovanni
SOUTHPORT 2&3	Conducting Cyber Tabletops – A Practical Guide on How to Develop a Scenario Exercise
	Ben Di Marco, Rob Wiggan, Leah Mooney
GOLD COAST	Intermediate Cyber Security
	Gary Gaskell
SURFERS PARADISE 1	Thank Your Future Self : Learn to create and test an incident management framework so you don't need a DeLorean when that 'great scott' moment hits.
	JP Haywood
SURFERS PARADISE 2&3	Going back to the basics of API security
	Kyle Jackson
COOLANGATTA 1 & 2	Leading Cyber Security Assurance	BOOKED OUT
	Dr Mark Carey-Smith, Alex Webling
COOLANGATTA 3/4	AWS Security Event Simulation, Detection, and Investigation	BOOKED OUT
	Matthew Gurr, Richard Billington

12:30pm

LUNCH

1:30pm

SouthPort 1	Design Thinking for Cybersecurity: An Approach for Human-Centred Security (Continued)
SOUTHPORT 2&3	Conducting Cyber Tabletops – A Practical Guide on How to Develop a Scenario Exercise (Continued)
GOLD COAST	Intermediate Cyber Security (Continued)
SURFERS PARADISE 1	Thank Your Future Self : Learn to create and test an incident management framework so you don't need a DeLorean when that 'great scott' moment hits. (Continued)
SURFERS PARADISE 2&3	Going back to the basics of API security (Continued)
COOLANGATTA 1 & 2	Leading Cyber Security Assurance (Continued)
COOLANGATTA 3	AWS Security Event Simulation, Detection, and Investigation (Continued)
COOLANGATTA 4	Palo Alto Security Posture Assessment Workshop (Continued)

5:00pm

SESSION END

breaks

10:30am

Morning tea

12:30pm

LUNCH

3:00pm

Afternoon Tea

10 May

wEDNESDAY 10TH MAY - TUTORIALS

9:00am

SOUTHPORT 1	ICS/OT Security Workshop for ANZ (Management Focus)
	Peter Jackson
SOUTHPORT 2&3	Social Engineering - Practical Red Teaming Lessons from the Field Join the Red Team (All Day)	BOOKED OUT
	Oliver Greiter, Jesse Keen, and Chris Gatford
GOLD COAST	Cyber Security Risk Management (All Day)
	Gary Gaskell
SURFERS PARADISE 1	Gloves Off:Hands on Threat Simulation and Detection Engineering with Splunk	BOOKED OUT
	James Young, David Garner, and Dean Luxton
SURFERS PARADISE 2 & 3	Scaling threat detection and response in AWS	BOOKED OUT
	Zohreh Norouzi, Alice Farr
COOLANGATTA 1 & 2	Australia and Japan Cyber Security Workshop 2023 – UQ Cyber
COOLANGATTA 3 & 4	How to make (better) decisions in security teams	BOOKED OUT
	Hinne Hettema

12:30pm

LUNCH

1:30pm

SOUTHPORT 1	ICS/OT Security Workshop for ANZ (Technical Focus)
SOUTHPORT 2&3	Social Engineering - Practical Red Teaming Lessons from the Field Join the Red Team (Continued)
GOLD COAST	Cyber Security Risk Management (Continued)
SURFERS PARADISE 1	Tackling imposter syndrome: using psychology to disrupt (cognitive) malicious activity	BOOKED OUT
SURFERS PARADISE 2 & 3	Incident Response with Velociraptor	BOOKED OUT
COOLANGATTA 1 & 2	Australia and Japan Cyber Security Workshop 2023 – UQ Cyber (Continued)
COOLANGATTA 3 & 4	Sniffing out lateral movement attack paths: an introduction to Bloodhound for defenders	BOOKED OUT

5:00pm

Session END

Welcome Reception - Conference Exhibition

breaks

10:30am

Morning tea

12:30pm

LUNCH

3:00pm

Afternoon Tea

11 May

THURSDAY 11TH MAY - conference

9.00 am

Opening remarks

9.20 am

Rachel Tobac - Exploiting Trust - The Human Element of Security

10.00 am

Fernando Serto - The Good, The Bad and The Ugly – Cloudflare’s observations on what has been going on in the world

10.20 am

MORNING TEA

10.50 am

SOUTHPORT ROOM	GOLD COAST ROOM	SURFERS PARADISE ROOM	COOLANGATTA ROOM
Cybercriminals and Serial Killers - the similarities may astound you!	Looking Back to the Future of Technical Threat Intelligence - Revisiting approaches and applications of Indicators of Compromise (IOCs)	The state of cyber insurance in 2023, and its impact on overall cyber risk management	The Reality of Data Responsibility: How to secure and protect your data on M365, SharePoint, Salesforce, Google, Dropbox and more
Brian Hay	Jorell Magtibay	David Rudduck , Ben Di Marco	Ryan Hosken

11.35 am

Traditional crime versus cyber crime. Pulling away the media 'persona', who is actually attracted to cyber crime? Can you predict who would be the hacker in your high school now? How does it help your defence to know what motivates cyber criminals?	Digging for Coper: Unseen findings of infamous Android malware.	Threat actors are diversifying: You should be too	Moving to the Future with XDR Use Cases — Solving for Modern Challenges
Kylie Watson	Fernando Diaz	Jack Reis, Cody Meakin, Jon Robertson	Corien Vermaak

12.15 pm

Lunch break

1.15 pm

Navigating Incident Response: The Art of Effective Cybersecurity Communication	The glorious theory and sometimes bitter reality of crafting cyber threat intel (CTI) packages for sharing with humans and machines	TLS or GTFO: Analysis of SMTP TLS Implementations	Tales from an Incident Responder
Colby Prior , Sasenka Abeysooriya	Chris Horsley	Jamie Gillespie	Peter Stewart

2.00 pm

Writing with clarity: Simple steps to become a faster, more effective communicator	Secure DevOps, Shift Left Security	Exploring the wireless landscape of an urban littoral	Are we safe? Three words every CISO should be prepared for
Darren Pauli	Brendan D’Arcy	Edward Farrell	Rob Dooley , Jamie Gillespie

2.45 pm

Celebrating neurodiversity: Understanding and harnessing neurodiverse team members superpowers	APIs: All the ways it can go very wrong	The Five ICS Cybersecurity Critical Controls for ANZ	Artificial Intelligence and the Evolving Threat Landscape: Preparing for What's Next
Mark McPherson, Shelly Mills, Andrew Hooley, and Trinity McNicol	Kyle Jackson	Peter Jackson	Ashwin Ram

3.25 pm

Afternoon tea

3.55 pm

Joseph voros - The future as an ever-evolving attack surface

4.30 pm

BEN CAISLEY - Transform your cybersecurity with frontline intelligence and cloud innovation

5.00 pm

BIRD OF A FEATHER SESSIONS

6.30 pm

Pre AusCERT2023 Gala Dinner drinks

12 May

FRIDAY 12TH MAY - conference

9.00 am

Opening remarks

9.05 am

Data Governance and Cyber Security: Building a Resilient Future through Collaborative Strategies

9.45 am

Riccardo Galbiati - The Security Operations Centre of the Future

10.05 am

MORNING TEA

10.35 am

SOUTHPORT ROOM	GOLD COAST ROOM	SURFERS PARADISE ROOM	COOLANGATTA ROOM
Cybercrime in Australia - 20 years of in-action	“AusCERT This is your Life” - the first decade of operation	Building cloud native (Dev)SecOps for fintechs	Practical Allowlisting
Nigel Phair	Eric Halil, Mark McPherson	David Jorm , Kevin Caballero	David Cottingham

11.20 am

Staying ahead of evolving threats from the get-go with proactive intelligence	What we do in the shadows - and why we need to come out from the shadows when it comes to engaging everyday people on cyber security.	Securing Cryptography for the Future	Info Stealer Malware: A Primer for Defenders
Tara Dharnikota	Jane O’Loughlin	Georg Lippold	Peter Watson

12.05 pm

“Remember, all I’m offering is the truth. Nothing more.” Cyber Enabled Disinformation: Old Tricks, New Channels	It’s not just the Tech: a Socio-Technical Approach to Identify Root-Causes for Cyber-Breaches	Decentralised, multi-stakeholder and non-linear cyber incident response with the Incident Command System	The ACSC’s Cyber Threat Intelligence Sharing Service (CTIS) and the practical Implementations of using CTIS threat intelligence with SOC toolsets
Angelo Friggieri, Meg Tapia	Ivano Bongiovanni	Jonathon Topham, Pukhraj Singh	Prescott Pym, Darryl Shields

12.45 pm

Lunch break

1.45 pm

You Can't Ask That: Women in Cyber Security	One-off, once-a-year, ‘tick-the-box’ compliance-oriented cyber security training is not doing the job: A report on Australian Organisation’s Cyber Culture 2022	Lessons learned from creating a 24x7 SOC on a budget
Vanessa Wong, Shelly Mills	Dr James Carlopio	Richard Billington

2.30 pm

The Infosec Talent Hiding Right Under Your Nose	From Analog to Digital Spycraft - an interactive "Show and Tell" that uses real espionage equipment to show how adversarial environments drove rapid technical innovation.	Insights into Deakin University's Data Breach	Ransomware Crisis Simulation with You in Control
Jess Dodson	Cheryl Wong, Mike Pritchard	Dushyant Sattiraju	Gavin Brown

3.10 pm

AFTERNOON TEA

3.45 pm

Speed debate

4.45 pm

CLOSING REMARKS

Program

All tutorials are face to face only - virtual conference registrations cover Thursday and Friday sessions only.All delegates MUST preregister for tutorials in order to gain access (certain sessions will have limited availability).

TUESDAY 9TH MAY - TUTORIALS

9:00am

12:30pm

LUNCH

1:30pm

5:00pm

SESSION END

breaks

10:30am

12:30pm

3:00pm

wEDNESDAY 10TH MAY - TUTORIALS

9:00am

12:30pm

1:30pm

5:00pm

breaks

10:30am

12:30pm

3:00pm

THURSDAY 11TH MAY - conference

9.00 am

9.20 am

10.00 am

10.20 am

10.50 am

11.35 am

12.15 pm

1.15 pm

2.00 pm

2.45 pm

3.25 pm

3.55 pm

4.30 pm

5.00 pm

6.30 pm

FRIDAY 12TH MAY - conference

9.00 am

9.05 am

9.45 am

10.05 am

10.35 am

11.20 am

12.05 pm

12.45 pm

1.45 pm

2.30 pm

3.10 pm

3.45 pm

4.45 pm

All tutorials are face to face only - virtual conference registrations cover Thursday and Friday sessions only.

All delegates MUST preregister for tutorials in order to gain access (certain sessions will have limited availability).