Our Speakers

Catherine is an accomplished senior executive with extensive expertise in cyber security, risk management, technology, law, and governance. She has a proven track record of leading cyber security operations and transformation initiatives, specialising in protecting businesses from evolving cyber threats and implementing effective risk management strategies.

As a trusted advisor to senior leaders, Catherine works closely with executives, boards and regulators to drive strong customer and business risk outcomes.

Most recently, she served as the Global CISO for QBE Insurance Group. Prior to that, she held senior leadership roles in the finance industry, where she led the delivery and transformation of enterprise-wide critical cyber security controls, as well as programs of work to uplift non-financial risk governance across board and senior executive teams.

Catherine began her career as a lawyer, spending 15 years in both private practice and in-house roles, advising major corporations and government entities on technology, cyber security, outsourcing and compliance.

Her unique blend of legal, technical, and strategic expertise positions her as a dynamic and influential leader in the ever-evolving cyber security landscape.

David has just retired in July 2024 and is building out his portfolio. He is an Advisor with Bain Advisory Network and also an Advisor to JS Careers (Cyber Recruitment) and Emertel (Software Commercialization). ​

He is a seasoned technology executive with significant experience and has over 25 years’ experience in CIO and CISO roles across different industries and countries. At Macquarie Group David served as Global Head Technology, Cyber and Data Risk. Previously was CISO for HSBC Asia Pacific. His career as a CIO spans across multiple industries and geographies including – Metlife, Eli Lilly and Credit Union Australia. He was winner CIO of the Year 2014, at CUA where he successfully completed a significant Transformation of Core Banking, Online and Mobile Banking systems.​

David is past Chairman for the FS-ISAC Strategy Committee and awarded Global Leaders Award in 2023 for his contributions to the cybersecurity industry. A regular conference keynote speaker and 150+ published articles for CIO Australia, Computerworld, ITNews and CSO (Cyber Security), David now writes for Foundry CIO.com and AICD.​

His most recent book – the Aspiring CIO & CISO was published in June 2024 and David is writing his second – A Day in the Life of a CISO with a number of CISOs from around the world for 2025.​

Greg Rattray is Partner and Co-Founder of Next Peak LLC, a cybersecurity and risk management firm. He is also currently the Executive Director of the Cyber Defense Assistance Collaborative (CDAC), as well as the Chief Strategy and Risk Officer for Andesite. Dr. Rattray works closely with Andesite’s senior management team and Board to shape corporate objectives, guide product evolution, and drive go-to-market strategy. In addition, he is a senior advisor to the Red Cell Partners Cyber practice, supporting the evaluation of cyber start-ups for potential investments and providing strategic guidance on growth and management initiatives.

Dr. Rattray previously served as the Global Chief Information Security Officer (CISO) at JPMorgan Chase and established their cyber defense strategy and program. As head of Global Cyber Partnerships, he led key industry initiatives including the establishment of the Financial Systemic Analysis and Resiliency Center (FSARC) and the Financial Cybersecurity Profile. Prior to JPMC, Dr. Rattray was founding partner and CEO of Delta Risk LLC, a cybersecurity risk management. He served as the ICANN Chief Internet Security Advisor from 2007-2010. He has also served as Director for Cybersecurity in the White House, commanded the Operations Group of the Air Force Information Warfare Center, pioneered the Department of Defense (DoD) and US national cyber exercise programs, and initiated Air Force and DoD partnership with defense industry.

I am an award-winning cybersecurity leader and board advisor with more than 20 years of experience across IT and OT security, critical infrastructure, government, and enterprise transformation.

My work sits at the intersection of cyber resilience, operational technology, supply chain risk, and responsible AI governance. I have led in complex environments where cyber decisions carry operational, regulatory, and societal consequences. That experience has shaped how I see leadership. Security is never only about technology. It is about judgement, accountability, resilience, and the ability to build trust when it matters most.

Over the course of my career, I have helped organisations strengthen resilience, navigate disruption, and manage risk in increasingly interconnected systems. My background across both IT and OT has given me a practical understanding of how cyber risk affects operations, governance, public trust, and long-term organisational stability.

I am particularly interested in the broader implications of cybersecurity leadership, including critical infrastructure resilience, digital trust, responsible AI adoption, and the governance challenges emerging from connected systems. Through leadership roles, public speaking, mentoring, and my work with TISP, The Innocent Souls Project, I continue to contribute to conversations that connect security, trust, and social responsibility.

I value clarity, integrity, and calm decision-making under pressure. I believe the purpose of security is not only to protect systems, but to protect people, organisations, and the conditions that allow communities to function safely and confidently in a digital world.

Alex Loizou is a seasoned cybersecurity leader with a proven track record of building and leading high-performing security teams. He has extensive experience as a Chief Information Security Officer (CISO) for major organisations such as Medibank, Flybuys, and Bupa. Notably, he served as the CISO at Medibank during their 2022 cyber incident, where he played a crucial role in leading the response and recovery efforts. Since departing Medibank in January 2025, Alex has founded Intrinsic Security, a boutique cybersecurity consultancy with the goal of improving security practices in Australian companies.

Jim is well known in the local market for delivering on his promise and his entire career has been spent connecting the right people at the right time in roles across Europe, China and Australia.

He founded ADAPT to deliver quality outcomes with integrity and since 2011, growth has been consistent. Jim is still positioned across sales and account management where he delivers innovative results and programs and leads by example.

He also runs entrepreneurial product development and the evolution and clear differentiated value of ADAPT’s offerings. As well as a NSW Small Business Excellence nomination, ADAPT were 55th in BRW’s 2014 Top 100 Start Ups – Jim’s 3rd time there – previously as Founder of Strategic Path, an award-winning ICT publisher, he steered the company to make the list in both 2009 and 2010.

Gabby’s primary role is managing ADAPT’s overall strategy for Data Analytics. He has extensive experience in using data to identify trends in technology that help shape Australian organisations. Utilising modern Data Science techniques, he provides ADAPT and their customers with confidence in the accuracy and validity of the information used for ADAPT’s Research, Advisory, and Events.​

With a passion for creating stories with data, Gabby is consistently rated as one of the top speakers at ADAPT Events. In round table discussions, he specialises in using statistics to initiate thought-provoking discussions. Gabby is effective in translating information into insights, enabling ADAPT’s customers to become more data-driven.​

Gabby’s primary areas of expertise are: ​

– Advanced AI and ML practices, including AI ethics.​
– Building models to benchmark and predict IT performance.​
– End-user behaviour and human-centred design.​
– Cross-functional team design and value, such as DevSecOps.​