Rachael Falk knows more than a few things about cyber security. But the Director of Technology, Security & Strategy at auDA has simplified the complex topic down to five things that every organisation should know about keeping its data safe – and she’ll be sharing this critical information with delegates at Secure Utilities.
A widely-recognised cyber security expert helping large organisations like utilities raise awareness on cyber security issues, Rachael co-authored the highly regarded The Five Knows of Cyber Security.
Its key tenets include:
- Know the value of your data
Data has value not only to an organisation and customers but also to those who might want to steal it.
- Know who has access to your data
It is important to know who can access data, such as ‘super user’ admin rights, both inside and outside an organisation.
- Know where your data is
Where is the data stored? Onshore, offshore or in a cloud? Is there a service provider and have they shared information with third parties?
- Know who is protecting your data
How is the data being protected and by whom? It is essential to know what security systems currently exist, where they are, and how they can be contacted.
- Know how well your data is protected
It is vital for organisations to know what their security professionals are doing to protect their data round the clock. But employees, business partners and third party vendors that can access the data must also be adequately protecting it.
Before her current role at .au Domain Administrator, Rachael implemented the five “knows” approach as the National Security Advisor for Telstra, leading a team who reviewed the information security practices of Telstra’s vendors, particularly focusing on vendors who handled customer information.
During her time with Telstra, Rachael also helped to develop Telstra’s internal cyber security policies and strategy, awareness training, staff advisories, and communicated on a range of topical threats and trends.
Rachael also advised on Telstra’s cyber security governance and policy settings, and worked with Telstra Legal Services on developing the first set of key Data Security clauses for all contracts with third parties.
Prior to making the move into cyber security, Rachael practiced as a lawyer for 15 years, both with Telstra and with leading law firms in Australia and overseas.
Rachael has a keen interest in legislative and policy issues surrounding cyber security and has just completed an Advanced Masters in National Security Policy with the National Security College at the Australian National University.
Rachael also holds a Bachelor of Arts from the ANU and a Bachelor of Laws (Hons) from the University of Technology Sydney.
At Secure Utilities, Rachael will be helping our audience make sense of the “knows”, and teaching delegates how to implement them to develop a sound security culture across entire organisations, from the board down.
Make sure you’re in the know. Our event, Secure Utilities, to be held at the Rendezvous Hotel in Melbourne on 23 March 2017, will ensure you’re up to date with the latest thinking and technology to keep your utility’s assets and data safe.