ISRM Global Journal 2023

Security of Critical Infrastructure

“Recent events have thrust the topics of cyber and infrastructure security risk management into the limelight. Indeed, when these are paired with the recent changes to SoCI (Security of Critical Infrastructure) legislation across a number of jurisdictions, we can see a significant increase in interest in all things cyber and infrastructure by both service providers and end-users alike. Reflecting this, the 2nd Edition is a collection of articles and opinion pieces on matters relating to cyber and infrastructure security risk management in particular, and has been timed to coincide with the Cyber & Infrastructure Security (CIS) Conference 2023 held in Sydney, Australia, and streamed globally. Interestingly, however, when reviewing the articles, it became clear that discussing risk management within what is a highly technical field, involves the discussion of a wide range of issues, a significant portion of which would be classed as non-technical in nature – that is, not relating to the technology itself, but rather the way in which the same is to be actively managed.

Following this rationale, it can be confidently said that the industry is acknowledging the need for risk leadership, and not “just” risk management, when it comes to cyber and infrastructure security risk.

In this sense, there is a need for cultural and procedural change and not just technical development. Equally, the call for a truly integrated approach has never been louder, nor more important. Rapid technological change is here to stay, and with that comes a range of opportunities to be explored, and potential exposures to be managed. As a result, as risk leaders we must choose whether we are to be proactive or reactive as we continue to move forward.”

Dr Paul Johnston FARPI FISRM ChFInstP RPP, Journal Editor

Complete your details below to download a copy of the journal

Journal Authors

DR GAV SCHNEIDERCEO, Risk 2 Solution Group
Dr Gavriel (Gav) Schneider is a leading figure in security and risk management, known for his concept of Presilience®. He’s an entrepreneur since 2001 and was awarded Risk Lead of the Year 2023 by RMIA and has made the IFSEC Global Influencers list for three consecutive years. With business experience in 17 countries, he has served diverse clients, including heads of state. Dr Gav is an esteemed academic, international speaker, and author of the acclaimed book “Can I See your Hands.” He holds master grades in multiple martial arts systems and currently serves as Group CEO for the Risk 2 Solution Group and ISRM ANZ President.
BRETT DOBBIEAssociate of the Australian Risk Policy Institute
Brett Dobbie has 20+ years of experience in security risk management, specialising in operational and strategic risk. He is driven by innovation and exploring leadership foundations. Brett is a seasoned counterterrorism practitioner, integrating traditional risk for Critical Infrastructure and Crowded Places in New South Wales. He holds a Master’s degree in Terrorism Safety & Security, an Executive MBA, and a Post Grad Psychology of Risk. Brett is a Member of the Institute Strategic Risk Management (M.ISRM) and an Associate of the Australian Risk Policy Institute (AARPI).
JOE SAUNDERSState Manager (VIC/TAS) & National Practice Lead - Violence Prevention, Risk 2 Solution
Joe Saunders is the State Manager (VIC/TAS) and National Practice Lead – Violence Prevention at Risk 2 Solution. He is a recognised expert in occupational violence, regularly presenting at local and international events. Joe co-authored the ASRC’s research paper on Occupational Violence, Aggression, and Duty of Care and has contributed to various journals and publications. With 15+ years of frontline conflict management experience and post-graduate research in psychology, workplace safety, and security risk management, Joe is a skilled presenter and educator. He is a Fellow of the Institute of Strategic Risk Management (ISRM), an Associate of the Australian Risk Policy Institute (AARPI), and a Member of the International Law Enforcement Educators and Trainers Association (ILEETA).
STEWART HAYESConsultant, Security and Risk Management Industry
Stewart has extensive experience in Security and Risk Management covering cyber, physical and personnel protective measures, specialising in integrated services and converged security capabilities. This leads to a co-ordinated governance and compliance infrastructure meeting and enabling business needs and objectives. Stewart has worked in multiple international environments – Europe, Middle East, North and South America and Australasia and across multiple business sectors including telecoms, finance, healthcare, defence forces, emergency services, air transport and retail. He has defined effective strategies to mitigate risks, support business growth and ensure continuity of business functions in the event of an incident.
DR PAUL JOHNSTONLead Risk Consultant, Risk 2 Solution
Editor of the ISRM Journal, Dr Paul Johnston is a Lead Risk Consultant and Behavioural Scientist with Risk 2 Solution, and is the Academic Lead at the Institute of Presilience. He holds a PhD in Public Safety Risk Management, a Graduate Certificate in Occupational Hygiene Engineering, and a Bachelor of Behavioural Science. With 30 years of HSES (Health, Safety, Environment & Security) Risk Management experience in both the public and private sectors, Paul has provided operational, management system consulting, research & analysis, and training services to a wide range of industry groups throughout Australia and internationally.
NICHOLAS DYNONEnterprise Security Risk Manager, Optic Security Group
Nicholas Dynon is Enterprise Security Risk Manager at Optic Security Group. A licensed security consultant, he has served as a diplomat and military officer and has held several roles in the private security sector. Nicholas is Chief Editor of the New Zealand Security Magazine, Deputy Chair of ISRM NZ, Secretary of ASIS International’s NZ Chapter, and a member of the NZ Crowded Places Security Advisory Commitee and the editorial board of Massey University’s National Security Journal. Holding postgraduate degrees from the ANU and University of Sydney, he is a Certified Counter-Terrorism Professional and recipient of the 2022 NZ Outstanding Security Performance Award (OSPA) for Lifetime Achievement.
VANESSA LEITEPrincipal Strategy and Consultancy
Vanessa is a Security Expert with a decade of experience in cyber security program management, operations, and security architecture design. She has delivered various corporate initiatives with the successful implementation of cyber strategies and controls, in alignment with business context and drivers. Vanessa has extensive expertise in leading security reviews and implementing cyber remediation programs for operational technology (OT) environments. Above all, she says she is a compassionate
individual with a passion for continuous learning and making a positive impact on the world.
CHRISTOPHER DOUGLASGeneral Manager - Training and Education, Risk 2 Solution Group
Having worked in the training industry for well over 10 years, both as a trainer and a Company Director of one of the largest regional training providers in the security industry, he has developed and implemented training standards that have set both “Brand” and Industry standard. Based on his extensive experience in security, Federal law enforcement, entrepreneurial skills, and educational acumen, he is accustomed to meeting and achieving goals. He is client-focused, developing business and educational strategies to help and develop outcomes. Chris has experience in the corporate, state, and federal sectors, with experience in tailoring results to align with agency and legislative requirements.
CHARLES W. TEELPresident, Chief Cyber Security Consultant
Charles is an experienced Cyber and Information Security Professional with a history of working in both the private and public sectors. In 2019 he graduated with a Masters Degree in Homeland Security from Texas A&M University – The Bush School of Government and Public Service with an emphasis in Critical Infrastructure Protection. Charles also earned a Masters of Business Administration from the Lamar University MBA Program. He’s been a member of the FBI’s Infragard program since 2017. Additionally, Charles is a Certified Professional Fellowship Member of the Institute for Strategic Risk Management (ISRM).
Ronnie Faulkner has 20 years of experience as an electrical distribution tradesman, specializing in construction, maintenance, and operational contracts. He prioritises health and safety, with a strong safety record attributed to thorough risk assessments and value-based decision-making. Ronnie is a proven leader and actively develops his skills through professional institutions like the Institute of Strategic Risk Management (M.ISRM) and the Australian Risk Policy Institute (AARPI). He holds qualifications including an Executive Master of Business Administration, Graduate Certificate in the Psychology of Risk, Advanced Diploma of Electrical Engineering, and Level 5 Award in Presilience, Leadership & High Performance.
MAHER MAGRABILicensed Security Consultant
Dr Maher Magrabi is a Licensed Security Consultant with over 20 years of experience. He is an accomplished risk management professional and engineer with extensive security and ICT project experience across infrastructure, commercial, defence, civil defence and industrial sectors. Dr Magrabi holds credentials in criminology, engineering, cybersecurity, and risk management.