Australian Cybersecurity Summit: Privacy Compliance, Fraud, Cyber Security Regulation and Enforcement
Gain critical insight into cybersecurity and fraud prevention, crucial for safeguarding your organisation and your clients’ in today's digital landscape. Explore recent government initiatives, upcoming regulatory frameworks and best practices. Equip yourself with the knowledge and strategies necessary to protect your organisation and your clients' from cyber threats and fraudulent activities. Don't miss this opportunity to stay ahead of evolving cybersecurity challenges and regulation. WEB246V05
Description
Attend and earn 4 CPD units in Substantive Law
This program is applicable to practitioners from all States & Territories
Chair: Brenda Tronson, Barrister, Level 22 Chambers
1.00pm to 2.00pm Unveiling the Scam Epidemic: Australia’s Fight Against Fraud
- Background of the scams landscape in Australia and the current epidemic of scams
- Recent initiatives of the Australian Government to address scams
- Global governmental and legislative responses to scams
- The proposed introduction of a new Scams Code Framework in 2024, including:
- Describing the role of the Scams Code Framework
- Key features and proposed obligations of the framework
- The impact of the Scams Code Framework on different industries
Presented by Andrea Beatty, Partner, Piper Alderman
2.00pm to 3.00pm The Cybersecurity Landscape: What About Security of Critical Infrastructure Legislation
- The role of SOCI legislation in the overall cybersecurity regulatory landscape
- What is the SOCI Act and who does it capture?
- The impact of the SOCI Act on the technology sector
- The impact of the SOCI Act cyber breach notification provisions on industries that may not have otherwise been subject to mandatory breach notification processes
- The intersection of the SOCI Act cyber reporting with other / pre-existing notification obligations
- Where to from here on SOCI in the context of major law reform in this space
- The role of governance in managing a myriad of cybersecurity obligations including SOCI in a post generative AI environment
Presented by Dalvin Chien, Partner, and Ashleigh Fieldus, Senior Associate, Mills Oakley
3.00pm to 3.15pm Afternoon Break
3.15pm to 4:15pm Keeping Information Secure: The Privacy Act, What is 'Reasonable Steps' and Other Key Considerations
- The obligations which are imposed on businesses to keep information secure under the Privacy Act and other regimes
- What are the minimum standards, including what is meant by 'taking reasonable steps'
- Relevant changes expected under the proposed Privacy Act reform
- Consideration of relevant case studies and cases, including enforcement action by ASIC and the OAIC
- The role of boards, and the importance of information governance in keeping information secure
- Practical steps to meet existing obligations and prepare for the proposed Privacy Act reform and changing risk landscape
Presented by Bronwyn Furse, Partner, Thomson Geer
4.15pm to 5.15pm ASIC's Cybersecurity Crack Down & the Intersection with the OAIC's Enforcement Action in the Privacy Space
- How ASIC can and will penalise boards for not complying with a range of duties (in particular director's duties)
- The OAIC's expectation that organisations need to learn from the mistakes of previous data breaches
- What the directors' duties and disclosure obligations that ASIC are targeting in relation to data breaches and what enforcement action has taken place to date
- How organisations and boards can be prepared
- What organisations and boards need to do to handle a breach
- The simple ways boards can make changes to their privacy and cyber health to address any issues they may have with the above
Presented by Stephanie Mayhew, Privacy & Technology Lawyer, K&L Gates
Presenters
Brenda Tronson
Brenda Tronson is an Education Focused Senior Lecturer at UNSW Law and Justice and a barrister at Level 22 Chambers. As a barrister, she acts primarily in matters concerning ethics, professional conduct and administrative law, representing a range of clients in a variety of courts and tribunals. Before coming to the Bar in 2008, Brenda worked for Freehills in Sydney and as an associate to Justice Crennan in the High Court. She completed her undergraduate degrees at UNSW, where she won the university medal for Chemistry. She also holds a BCL and MPhil from Oxford University.
Andrea Beatty
Andrea specialises in financial services, banking and corporate law. Andrea brings legal capability and insight into regulatory matters, corporate governance, compliance and risk management. She assists her clients to adapt to the changing regulatory landscape to ensure they meet the expectations of their customers and shareholders and regulators. Andrea’s expertise extends to designing and conducting a broad range of financial services training for financial services providers, their senior executives and responsible managers, legal & compliance officers, consumer advocates and lawyers. Andrea advises domestic and foreign institutions on acquiring financial services and credit licences and exemptions. She specialises in advising on structuring and establishing financial services and credit businesses including licence obligations, drafting plain English documents, procedures, systems audits and online web application processes. She also advises on regulatory compliance projects and audits, regulatory enforcement defences, and regulator investigations and disputes. Andrea’s experience includes advising clients on financial products and channels, including FinTech solutions, peer to peer lending platforms, crowd funding, payment systems, crypto currency, reward programs, gift cards and financial services acquisitions, disposals and alliances. Andrea also has in-depth knowledge of privacy laws and regularly advises clients on data and privacy security and breach remediation. Andrea regularly develops and conducts independent reviews of AML/CTF programs. Andrea has been appointed an AUSTRAC authorised external AML/CTF auditor, regularly developing and conducting independent reviews of AML/CTF programs. Andrea regularly conducts training programs and full day workshops for clients including Australian Credit Licence and Australian Financial Services Licence compulsory responsible managers training, privacy training, regulatory updates and “Back to Basics” credit law, privacy, anti-money laundering and other training workshops. Andrea is widely published and her authorships include 7 editions of the leading consumer law text ‘Annotated National Credit Code’ the most recent edition published published on 22 December 2023 by LexisNexis, the ‘Australia’ chapters in the ‘Consumer Finance Law Review’ and the ‘Banking Regulation Review‘ (The Law Reviews, Law Business Research Ltd UK). Andrea is also a member of numerous financial services professional associations. She is the Deputy Chair of the Law Council Business Law Section Privacy Committee.
Dalvin Chein
Dalvin is a leading technology and digital lawyer with over 20 years’ experience. Dalvin has deep expertise in technology contracting, privacy, cybersecurity, security of critical infrastructure, data sharing, e-commerce and emerging technology including Artificial Intelligence. He has led deal teams for significant technology transactions and advised on novel and complex cybersecurity and technology issues for clients in various sectors including banking, government, technology, logistics and health sectors. Dalvin helps clients come up with solutions to manage legal risks with the use of technology from large scale enterprise solutions all the way to Artificial Intelligence tools He also helps clients navigate complex regulatory issues with the collection, storage, use, and disclosure of data, as well as data breaches. He is renowned for his industry knowledge, understanding of technology, and pragmatism, and is often called upon to run workshops and provide training to Boards and senior managers on technology and data security law issues.
Ashleigh Fieldus
Ashleigh is a Senior Associate in the ICT & Digital Law team at Mills Oakley. Ashleigh has both in-house and private practice experience and specialises in technology contracting, privacy, cybersecurity and Security of Critical Infrastructure. Ashleigh has assisted clients in highly regulated industries, including banking and insurance, and advised various government clients on data and privacy (including during her secondment to a Commonwealth government agency). In addition to her work with large, mature organisations, Ashleigh also has a keen interest in the technology start-up and scale up space, fostered by her time working as Legal Counsel for a technology scale up.
Bronwyn Furse
Bronwyn Furse is a commercial lawyer with specialist expertise in the areas of privacy, data protection and cybersecurity, and intellectual property amongst others. Her practice traverses public and private industry sectors including financial services, government, health, health tech and other technology providers, manufacturing, automotive, higher education, health, manufacturing, energy and resources, from start-ups through to multinational groups. Working with multinational groups means Bronwyn's work involves complex cross border work, and understanding of relationships between various local and offshore privacy regimes. In relation to privacy, data protection and cybersecurity she routinely provides advisory services, manages data breaches, complaints and investigations, assists with contractual negotiations, develops compliance frameworks, undertakes audits, conducts privacy impact assessments, and delivers tailored training. Bronwyn is on the Australia and New Zealand advisory board for the International Association of Privacy Professionals, as well as the Licensing Executives Society. She is routinely recognised by her peers as one of the Best Lawyers in Australia in the areas of Privacy and Data Security Law, Intellectual Property Law and Franchise Law, and in Doyle’s Guide as a recommended lawyer in the areas of Intellectual Property and in Technology, Media & Telecommunications Law.
Stephanie Mayhew
Stephanie is a lawyer in the corporate practice area focusing on technology, sourcing, and privacy in the Sydney office. Prior to joining K&L Gates, Stephanie worked as an associate at an Australian law firm. This included a secondment to the Department of Home Affairs' Information Law team and Services Australia's Privacy Programmes Branch. Stephanie has also worked as a regulatory officer (legal) at the NSW Information & Privacy Commission and as an assistant review & investigations adviser (legal) at the Office of the Australian Information Commissioner (OAIC).