Topic: Debiasing the Security Architect
Hosted by Bruce Large, from the AISA Brisbane Branch please join us for the Security Architecture Special Interest Group (SIG) meeting, where guest speaker Patrick Dunstan, who is on the Cyber Security Team for Southeast Queensland’s Bulk Water Authority, will be discussing his thesis on debiasing the security architect.
Good decisions are at the heart of every successful security architecture. A security architect must constantly makegood decisions and sound judgements to protect business assets from harm and keep an enterprise safe. But what if these decisions weren’t always sound? What if these judgements were just plain wrong? The truth is that making good decisions is hard.
Decade’s worth of behavioural science research has consistently shown that humans aren’t naturally wired to make good decisions. Our mental makeup is subject to many biases that impair our decision-making. In the context of SABSA security architectures, these biases can adversely influence how security architects make good risk decisions and protect business assets. Poor decision-making in this respect can be costly and jeopardise the overall value proposition of a security architecture. For complex and important architectural decisions, making the best of what we have in our heads is simply not enough. Reaching better architectural decisions requires more.
The Brisbane security architecture Special Interest Group
Security architecture considers the design and application of security controls to manage cyber security risk and it's a lot more than just boxes on a page. The objectives of the AISA Brisbane Security Architecture SIG is to:
- Provide a platform for members of AISA as well as of a SIG to gain a sense of fellowship with colleagues within the same profession and industry
- Facilitate members to network and exchange knowledge, learning or technologies with other professionals
- Generate activities or events that are targeted for the specific needs of people within the SIG or other AISA members who are likely to gain professional or personal benefit by attending.
A cocktail reception of finger food and alcoholic beverages will be served after the meeting concludes.
Leader: Bruce Large
Bruce has 15 years experience working with IT and OT in network and system engineering roles. Bruce has worked in Electricity Generation, Railway, Aviation, Emergency Services and Consulting industries. Bruce considers himself to be a security architecture enthusiast as well as an infrastructure tourist. He is a Foundation Chartered SABSA Architect (SCF), is working on his SCP paper, holds the GIAC Response and Industrial Defense (GRID) certificate and has attended Industrial Control Systems (ICS) Cyber Security training at QUT. He also graduated with a Bachelor of Engineering (Telecommunications) First Class Honours and a Master of Business (Applied Finance) with Distinction from QUT.
Speaker: Patrick Dunstan
Patrick (Pat) Dunstan leads the Cyber Security Team for Southeast Queensland’s Bulk Water Authority and has over 15 years’ experience leading cyber teams and delivering cyber strategies for ASX50 organisations. Pat has a broad background of cyber security experience including system administration, penetration testing and cyber security architecture activities. He is passionate about improving cyber security risk literacy and he challenges widely held but ineffective risk management methodologies. Pat is an engaged student of the subject of risk and enjoys the works of other thought leaders in this space, including Taleb, Hubbard and Sidorenko. Pat is a newly awarded SABSA Chartered Master and his SABSA Master Thesis Debiasing the Security Architect is available as a SABSA at Work Paper.
Date: Thursday 30 June 2022
Time: 5:30pm - 7:30pm (AEST)
Agenda:
5:30pm - 6:00pm: Registration and networking
6:00pm - 7:00pm: Meeting and presentation
7.00pm - 7:30pm: End of meeting networking drinks and finger food
Venue: Christie Spaces
Level 1, 320 Adelaide Street, Brisbane QLD
Register:
AISA members: Please sign in to register for this event. Registration closes on 29 June 2022.
Non AISA Members: If you would like to become an AISA member you can join here
For more information about other AISA events, please visit our website here
For any queries, regarding this event please contact AISA Event & Sponsorship Manager, Susanna Palermo via email [email protected]
Disclaimer:
AISA presentations are intended for educational purposes only. Statements of fact and opinions expressed are those of the participants individually and, unless expressly stated to the contrary, are not the opinion or position of AISA, its sponsors, or its partners. AISA does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented. Attendees should note that sessions may be recorded and published in various media, including print, audio and video formats without further notice.