This event is now complete

Settle in, grab a coffee, and meet a few friendly faces before we begin.

A short welcome, plus a few quick tips to help you connect, share, and get real value from the day. We’ll also run a couple of quick polls to see what everyone’s interested in and what people are working on right now.

A short briefing from the Chair to get everyone aligned, comfortable, and ready for a great day of ideas and connection.

Cybercrime that drains wallets and steals identities is personal, immediate and unforgettable. This session uses real, high-impact case studies to explore how South Australian agencies can responsibly uplift cyber literacy, drive behavioural change and translate citizen-impact lessons into stronger workplace security ownership.

• Partnering with the AFP JCP3 to surface credible, citizen-focused cybercrime lessons
• Using human-centred, ethics-led storytelling to improve staff awareness and everyday security behaviours
• Turning investigations into practical culture-change frameworks that improve resilience, reporting confidence and delegate engagement

Michael Billett

Deputy Director, Cyber Threat Intelligence and Incident Management, Office of the Chief Information Officer, Department of Treasury and Finance SA

Adrian Daly

Detective Chief Inspector Financial and Cybercrime Investigations Branch, South Australia Police

Michael Newman

Detective A/Superintendent Mike Newman, Queensland Police Force

As South Australian Government agencies work to meet the priorities of the SA Cyber Security Strategy 2025–2031 and the mandated requirements of the South Australian Cyber Security Framework (SACSF) — including information security governance, personnel security, Zero Trust enablement, and whole-of-government cyber uplift — identity security is emerging as the critical foundation upon which cyber resilience is built.

This plenary session explores how SA Government agencies can strengthen security outcomes by gaining greater visibility and control over human, privileged, third-party, and non-human identities — including AI agents, service accounts, and contractor access across complex multi-agency environments.

We will examine how identity intelligence helps agencies reduce excessive access, enforce least privilege, meet SACSF compliance obligations, and provide security operations teams with the critical context needed to respond faster to identity-centric attacks — protecting the citizens and services that depend on them.

Designed for CISOs, Chief Information Officers, and senior cyber leaders across SA Government, this session positions identity security as a strategic capability for reducing whole-of-government cyber risk, supporting the "Stronger Cyber, Future Ready" program, and delivering on South Australia's ambition to be a cyber-resilient state by 2031.

One year into delivering South Australia’s Cyber Security Strategy, this session will explore how the state developed a forward‑looking, outward‑focused approach that moves beyond traditional government‑centered cyber strategies. It will highlight what’s working well so far and outline the unexpected benefits emerging from a whole‑of‑state focus on cyber resilience.

• Enhancing cross‑government collaboration to accelerate maturity and capability
• First‑year progress and insights
• Maintaining momentum into the next year and beyond

It's time to grab a coffee - connect, recharge and explore our exhibition floor before the next discussions begin!

SA is on track to be the first state with a single electronic medical record across every regional and metro hospital. This session explores the cyber, privacy and resilience implications of turning hospitals into one connected digital system.

• Protecting patient data and clinical systems in a fully integrated EMR environment’
• Ensuring availability and incident response for a statewide health platform
• Celebrating delivery while being honest about risk, lessons and next steps

Alastair McDonald

Director, Strategy and Architecture, Digital Health SA, Department for Health and Wellbeing

Wendy Sutton

Director Clinical Information Systems, SA Health

Bryan MacDonald

Lecturer/Course Co-ordinator - Digital Health, RMIT University

Ransomware remains a critical threat to citizen data, but the rapid internal adoption of AI creates new, unmanaged pathways to those "crown jewels." To maintain service continuity, agencies must move beyond traditional roles and ensure that every access point is governed in real-time. This session explores how to harden your environment:

• Rules to Real-Time: Govern internal AI access to prevent both accidental data exposure and the malicious exploitation of sensitive credentials.
• Resilient Infrastructure: Secure multi-cloud environments by centralising identity to close the security gaps that ransomware actors exploit.
• Automated Isolation: Use dynamic, identity-centric controls to instantly isolate compromised accounts and stop lateral movement before ransomware payloads can be deployed.

Cyber resilience is not a static state but a continuous operational pursuit. This session explores how piloting local nodes of global initiatives, by translating international best practices, from the UK’s real-time detection models to Hong Kong’s proactive scam disruption, can move us from reactive reporting to proactive protection, creating a safer digital environment for every agency and citizen.

• The "Fire Alarm" for Industry
• The Operational Engine Room
• Real-Time Citizen Protection

The cyber profession is a broad, fast evolving and collaborative field, spanning risk, technical, strategic and people-centred roles that are critical to organisational resilience. This session brings together perspectives from women in SA Government cyber security to explore:

• the strategic value of diverse career pathways in building capability across the profession
• the skills, judgement and leadership mindsets required to meet emerging challenges
• the role of inclusive culture in strengthening workforce attraction, retention and performance
• how greater collaboration across teams and agencies can support a more connected and resilient workforce

Emily Wingard Moderator

Director, Cyber Security Cyber Security/ICT Services, Department for Education, SA

Geetika Bassi

Cyber Security Specialist and ITSA, SACE Board

Lina Condon

Security Architecture and Engineering Manager, South Australia Police

Ritu Sharma

Principal Cyber Security, Industry Development Adviser, Critical Technologies, Department of State Department

Sarah Mason

Deputy Director, Cyber Strategy, Policy and Engagement, Office of the Chief Information Officer, Department of Treasury and Finance

Grab lunch, have a wander, and chat with industry partners and peers about practical ideas you can take back to work. Arguably the most important part of the day!

The cyber threats facing government in five years are already being shaped by decisions made now. This panel looks ahead to emerging risks—from legacy system exposure to AI-enabled attacks—and how South Australian agencies can future-proof their services without slowing delivery.

• Anticipating new threat vectors while modernising ageing systems
• Building flexibility and resilience into long-term digital programs
• Aligning policy, investment and capability for future cyber readiness

Julie Wadham

Director of Partnerships South Australia, Australian Cyber Security Centre

Scott Julian

SA Lead, Cyber Security Engagement, National Office of Cyber Security

Miranda Shaw

Chief Information Security Officer, Australian Bureau of Statistics

Rami Tawil

Senior Security Solutions Engineer, Rapid7

We’ll pull out a few highlights from the day, share what’s coming next, and point you to ways to stay connected.

Wrap up the day with good conversation and a few new connections. Thanks for making GIW your one-stop shop for benchmarking, industry updates, and great conversations.