2014 SRI Security Congress
"Security on the Move"
1-3 December, 2014
Perth, Western Australia
Director, CERT Australia
David has worked in Government security for the past fifteen years, and has held a range of positions related to electronic and cyber security. He developed the Defence Signals Directorate’s Infosec-Registered Assessor Program and managed Australia’s participation in the first International Cyber Storm exercise in 2006, and has participated in the Cyber Storm 2, 3 and 4 exercises. David led the Australian Government Computer Emergency Readiness Team (GovCERT.au) as part of the Attorney-General’s Department, for four years. David has been in his current role as Director - CERT Australia, the national computer emergency response team, for the past five years. David has a Masters degree from the Australian National University, and is an Adjunct Associate Professor within Edith Cowan University’s Security Research Institute.
CEO, Canada's Health Informatics Association (COACH)
Mr. Don Newsham is the CEO of COACH, Canada’s Health Informatics Association, the 1800 member association taking health informatics mainstream in Canada. His leadership is focused on advancing COACH as the voice for the health informatics profession in Canada and building the professionalism, practices and adoption of health informatics across the Canadian health care system.
COACH, under Don’s direction, provides the collaborative, career and connecting home for health informatics and telehealth professionals across Canada and co-hosts the highly successful annual eHealth conference featuring also next year the Global Telehealth 2015 Conference and Clinical, CIO and Emerging Professionals symposiums along with a renown keynote, concurrent session and trade show lineup. COACH also provides a set of professional leading practices in privacy, security, eSafety and other priority topics in health informatics.
Don is a health care executive, senior consultant, national and international health information and technology leader, featured eHealth conference speaker and a former CIO , CFO and Health Practice Director with over 37 years’ experience in Canadian and global healthcare, both in the public and private sectors.
He also currently undertakes numerous standards roles on behalf of Canada at ISO/TC215 as standard developer, expert lead and Head of Delegation, at the Canadian Standards Collaborative and Partnership and as a member of the international Joint Initiative Council of collaborating international standards development organizations.
Senior Analyst, Defence Science and Technology Organisation
Abstract: Achieving Security on the Move in Defence: A Symphonia Securitas in Five Movements
Achieving acceptable INFOSEC outcomes in any enterprise is an inherently complex and challenging undertaking. The specific circumstances faced by the Australian Department of Defence (‘Defence’) – to varying extents – produces additional challenges beyond those faced by a typical private or public enterprise. That said, such additional challenges might arguably characterised as ones of degree rather than genuinely uniqueness. Specifically, the INFOSEC challenges faced by Defence ought not be overstated on the basis of uncontested (and incontestable) special pleading.
In this paper, I provide an overview of the INFOSEC challenges posed by Defence’s operating environment. Reflecting the theme of this year’s Congress – ‘Security on the Move’ – the paper employs the orchestral metaphor of a symphony in five movements. The paper examines the consequences of ‘movement’ in data, networks, technology, threats and people for the conduct of INFOSEC in the Defence environment. The paper closes with some concluding remarks on the genuine distinctiveness – or otherwise – of the INFOSEC challenges faced by Defence.
Jeff Malone is a career national security professional who has held appointments in the Australian Army, the private sector, the public sector, and academia. He holds a Bachelor of Arts (Honours) and Masters degrees in Political Science, and is currently completing a PhD on the reception, incorporation and employment of Information Operations by the Australian Defence Force (ADF).
During his service in the Australian Army (where he remains a member of the Standby Reserve), Jeff was intimately involved in the acceptance of Information Operations by the Australian Defence Force. This included the development of the ADF's first published joint Information Operations doctrine, and the redesign of the ADF Warfare Centre's joint Information Operations Staff Officers' Course. Jeff was the principal Australian contributor to Information Operations: The Hard Reality of Soft Power, which was the textbook for the US joint information operations course conducted at the Joint Forces Staff College, Norfolk, and also for courses conducted within the US intelligence community. For his work relating to Information Operations, Jeff was appointed the Chief of Defence Force Fellow in 2003.
During his work in the private sector, Jeff was involved in the development of the 2005 and 2007 Network Centric Warfare Roadmaps for the ADF. These documents provided the strategic guidance and conceptual underpinning for the transformation of the ADF into a network-enabled force. He was also a contributor to the training needs analysis for the ADF's Counter-IED Task Force, with a personal focus on the introduction into service of land force protection countermeasures systems.
Since 2007, Jeff has held a number of appointments in the public sector, including work on communications sector critical infrastructure protection, and transportation sector security. At present, Jeff is a Senior Analyst in the Defence Science and Technology Organisation, undertaking analytical work on the technical maturity of defence systems, in support of the capability development and acquisition processes.
Jeff has held academic appointments at the University of Western Australia (School of Politics and International Relations), Queensland University of Technology (School of Justice Studies, Intelligence and Security Program) and the University of New South Wales – Australian Defence Force Academy (School of Engineering and Information Technology, where he is presently the unit controller of the Information Operations unit). He has published extensively on Information Operations, critical infrastructure protection, IT security, and other national security issues.