Executive summary
Chris is a Director in BDO's Cyber Security team in Brisbane. He is a cyber security and risk management leader with extensive management and consulting experience. He has over 20 years’ experience leading teams and programs across governance, risk and compliance, offensive security, cyber security operations, strategy and capability development.
Chris provides cyber security advisory and consulting services within a range of industries to enhance his clients’ understanding of their cyber and resiliency risks and effective management strategies to achieve business success.
Expertise
- Cyber security risk management
- Cyber and business resiliency strategy development
- Cyber security controls maturity improvement and capability uplift
- Threat and risk assessments
- Cyber security controls auditing
- Cyber security training
- ISO 27001 Implementation and ongoing compliance
- Payment Card Industry Assessment and Compliance.
Experience
- Conducted threat risk assessments in the government, transportation, energy, utilities and financial services sectors
- Led the development of cyber security strategies for a critical infrastructure provider and a next-gen health diagnostics institute
- Conducted vulnerability assessments of web applications, internal and external network security postures and physical security arrangements
- Coordinated incident response exercises for clients across government, including supporting statewide preparation for the Brisbane Commonwealth Games
- Developed an integrated risk management governance approach for Information and Communications Technology and Operational Technology environments
- Provided ongoing trusted security advisory and consultancy for clients across insurance, gaming, healthcare and IT service provider industries
- Conducted cyber security reviews and control assessments to assess compliance against privacy, the Australian Government Information Security Manual and architectural best practices
- Managed PCI DSS remediation projects and annual audits for Tier 1 and 2 merchants (government agencies and commercial) and service providers.
Qualifications and affiliations
- Bachelor of Computing (Software Engineering; Honours)
- Information Systems Auditor
- Certified Information Systems Manager
- Certified Information Systems Security Professional
- Data Privacy Solutions Engineer