Chris Burg

Executive summary

Chris is a Partner in our Cyber Security team with BDO in Brisbane. With more than 15 years of experience in strategic and tactical leadership roles, he has a proven track record of leading large-scale cyber security teams in both public and private sectors, steering their cyber security and operational initiatives to shape strategy and achieve significant risk reduction.

Expertise

• Strategic adviser to C-Suite executives, enhancing decision-making and aligning cyber security with business objectives.
• Developed and implemented robust cyber security frameworks to strengthen an organisation’s defences against cyber threats.
• Security and threat risk assessments to identify high-risk areas within organisations, people, processes, and systems to reduce potential vulnerabilities.
• Led cyber security governance, risk, and compliance efforts, ensuring robust technical assurance and management.
• Security awareness training to increase organisational cyber security awareness and resilience.
• Chris has extensive experience in various sectors, including:
  • Public Sector
  • Education
  • Healthcare
  • Critical infrastructure and utilities
  • Financial Services

Experience

• Tactically led and executed the cyber security strategy for a pure cloud financial analytics service, reducing core business risk through the implementation of administrative, managerial and technical controls.
• Designed and implemented cloud infrastructure for an online finance analytics application, ensuring compliance with financial data protection standards.
• Led ISO/IEC 27001 and APRA compliance reviews for various organisations.
• Developed and implemented national cyber security standards and processes to unite geographically distributed teams.
• Led large change projects during periods of transformation and built a high-performing and security-aware team culture.
• Leading large security architecture and offensive security engagement on specialised platforms (including SAP and ServiceNow), providing risk-based actionable remediation steps.
• Directed offensive security operations across all engagements for BDO Brisbane, with a focus on public sector, critical infrastructure, and utilities.
• Delivered ISO/IEC 27005 risk management training to technical audiences in public sector and financial services.
• Managed a comprehensive security architecture review and threat and risk assessment for an energy sector distributor, ensuring alignment with the Australian Energy Sector Cyber Security Framework (AESCSF).

Qualifications and affiliations

• Advanced Diploma in Management
• ISO/IEC 27001 Lead Implementer
• Diploma in Information Technology (Network Engineering)
• Affiliate Member, Australian Information Security Association (AISA)
• Australian Federal Government Security Clearance (NV1/SECRET)