I hold several industry certifications (e.g. MCSE, MCDBA, CISSP-ISSAP, CCSP, CISA, CRISC, CISM, CEH, CHFI, ISO 27001:LI, SABSA)
I do have working experience with big 4 banks and big 4 consulting firms (Westpac and EY).
My area of expertise is in the Governance, Risk and Compliance (GRC).
I completed several security advisory engagements across industry covering Information Security Management Systems based on ISO 27001, developing security strategy, do risk assessments, developing enterprise security architecture...etc.
Project Abstract
Cyber Attacks on The Australian Government
Problem Domain
Considering the criticality of the services provided by government organisations and the sensitivity of the information stored, and processed by them, I'm interested in this project.
This project is to identify the most recent attack(s) on the Australian Government and to research the possibilities of future cyber attacks too.
Background
Considering my area of expertise in Governance, Risk and Compliance (GRC), I want to identify any gaps in the security governance and framework model that caused recent attacks and that could lead to any possible future attacks.
This project is to identify the most recent attacked on the Australian Government and to research the possibilities of future cyber attacks too.
Objectives
To research the possible improvements that the government could take to prevent or mitigate future cyber attacks.
Deliverable and Resources
Research will relay on publicly available resources and statistics such as news websites, government websites, journal articles, well-known international frameworks, google scholar, and industry research whitepaper.
Deliverable from this research will be a report that will highlight the research findings and recommendations.