This event is now complete

- Prioritising tasks, ensuring cost-effectiveness, a people-centric approach, and above all, safety
- Risk mitigations
- The most practical approach to achieving compliance and threat-based risk management applicable to the government service sector

- Cybercrime trends in 2025.

- Being prepared to respond to Cybercrime.

- National and international cybercrime co-operation.

Through this session you will understand that implementing zero trust is an opportunity to improve the way your users interact with the services you provide. The agenda will show how Zero Trust makes your services more accessible, fairer and better. It will cover how zero trust can:

• Enable a seamless experience for your users
• Decrease the cost of development
• Streamline your technology, processes and data footprint

Identity Security is essential for the NSW Government to safeguard citizen data, meet compliance requirements, enable secure digital service delivery, and maintain public trust – especially in a landscape of increasing cyber threats, evolving workforce models, and complex regulatory obligations.

Join the NSW Department of Customer Service, icare and SailPoint in this fireside chat to discuss key insights on how Identity Security is a strategic enabler for public trust, inter-agency effectiveness, and secure digital service delivery.

We will explore:

• What is Identity Security? Understanding its role in workforce digital access
• What drives government investment in Identity Security?
• What are the real benefits of implementing Identity Security in the Public Sector?

Geoff McLauchlan

Director of Security Platforms and Capabilities, NSW Department of Customer Service

Neil Hong

Head of Cyber Security Services, icare

Simon Ell

Regional Vice President, SailPoint

- Tackling the cyber talent gap: Developing career pathways for cybersecurity professionals
- Collaborating with universities and industry to train the next generation of cyber experts and provide education that is supportive and continuous
- Promoting diversity and inclusion in the NSW public sector to build a resilient workforce.

Orlando Barrun

Chief Information Security Officer, Illawarra Regional Councils

Sarah Lugay

Cyber Security Manager, South Western Sydney Local Health District

Sharon Lee

A/Chief Information Security Officer, NSW Department of Creative Industries, Tourism, Hospitality and Sport

- Building resilience across critical infrastructure sectors: energy, transport, and health
- The role of public-private partnerships in protecting NSW’s most vital assets
- Developing a multi-layered approach to secure public infrastructure from advanced threats

• Understanding the impact of downtime when the unexpected happens.
• What Strategies should you implement
• What's the blueprint for success.

A trusted future relies on effectively managing third-party dependencies within critical infrastructure operations, many of which remain unseen and underestimated.

To ensure resilience, we must take a comprehensive approach to security, spanning physical, cyber, supply chain, and personnel risks. In this roundtable, we will explore:

1. The current state of Critical Infrastructure and its evolving security landscape.
2. The critical impact of third-party risks, highlighting sector-specific examples and the importance of a robust risk management framework.
3. Strategies to prioritise supplier diversification, including the role of sovereign suppliers in enhancing national security.

As nationally significant operators, Critical Infrastructure providers must cultivate strong local partnerships with vendors, service providers, and industry leaders to build a more secure and resilient future.

As the threat landscape evolves and government structures shift, ensuring the right access for the right people — at the right time — has never been more critical. Hear key insights on leveraging identity governance to enable transformation while reducing cyber risk.

This roundtable enables NSW Government leaders explore how modern identity security can strengthen cyber resilience, streamline operations, and deliver measurable risk reduction at scale.

This session will explore how identity-first security supports:

• Protection of both workforce and third-party identities
• Alignment with NSW Cyber Security Policy
• Secure implementation of Machinery of Government (MoG) changes and transitions
• AI-driven access risk mitigation and operational efficiency

• Engage with real-world challenges – Cyber attacks on NSW agencies are increasing. How prepared is your organisation?
• Vote and debate – Share your stance on key cybersecurity issues and discuss solutions with peers.
• Turn insights into action – Explore AI-driven security and best practices to strengthen cyber resilience in your agency.

• Explore opportunities to prepare for incidents before they happen. What does good incident response look like?
• Discuss key insights gleaned from more than 500 significant cyber compromise event responses across the nation in the past year
• The most dangerous threats are coordinated and synchronised. What should be on your Cyber checklist for 2025?

An open conversation on fostering agility to adapt, respond rapidly, exercise control, and continuously evolve your operational capabilities.

• Navigating the Complexity: Balancing people, technology, and processes in resource-constrained environments
• Beyond Organisational Silos: Identifying and mitigating risks across an ever-increasing attack surface, including IoT and remote workspaces
• A spotlight on Data Movement and Storage: Detecting, encrypting, and continuously assessing cloud storage and email
• Refining Priorities: Sharing experiences in adopting new strategies that align with your unique risk appetite and adapting quickly to lessons learnt

• Explore the role of government organisations in the digital age.
• Discuss how they can safeguard sensitive information and ensure democratic processes amidst increasing digitalisation.
• Address the challenges of DDoS protection and the importance of uninterrupted access to government services.
• Consider strategies for defending against sophisticated DDoS threats while maintaining transparency, accessibility, and security.
• Share insights on these critical issues.

Delve into the challenges and solutions for safeguarding data against quantum threats, ensuring regulatory compliance, and exploring quantum-resistant encryption technologies

Join experts in Australia for a roundtable session on "Protecting Sensitive Data and Achieving Compliance in the Post Quantum Era

In this session, we aim to stimulate conversation by posing questions similar to the below:

• Challenges around sharing threat intelligence across NSW Government agencies. How might AI/OSINT help or hinder that?
• Fusing intelligence from different sources (internal, commercial, open source) to get a full picture of threat activity.
• Barriers (ethical, operational, technical) to adopting AI/OSINT technologies in NSW Gov.
• Specific use cases or success stories that NSW could learn from.

Explore how emerging technologies—particularly AI—are reshaping the cyber resilience landscape. This session will examine how public sector agencies can harness innovation to enhance transparency, build trust, and turn cyber risks into opportunities. Learn practical strategies for improving operational efficiency, streamlining reporting, and advancing risk data aggregation, qualification, and scenario planning to support long-term, sustainable growth

• Learn how a scalable, long-term digital resilience strategy reduces the cost of downtime
• Discover different ways to build resilience based on industry and regulatory needs — and how to chart progress
• Understand the drivers behind successful digital resilience use cases across security and observability

• Edge-First Security Strategy: Understand how government agencies can secure data, identities, and access at the edge - where users, devices, and services now operate.
• AI-Powered Threat Defense: Explore how artificial intelligence is transforming threat detection and response across distributed government networks.
• Zero Trust for the Public Sector: Learn how to implement scalable Zero Trust frameworks that align with government mandates and legacy infrastructure.
• Data Sovereignty at the Edge: Navigate compliance, cloud adoption, and data residency challenges while maintaining control and citizen trust.