Skip to main content

Andrew Lawrence, De.iterate

With over 20 years’ experience, Andrew is a passionate information and cyber security leader. Andrew’s expertise spans risk, governance, compliance, strategy, critical infrastructure security, and technology management and architecture.

Andrew started his career in the world of data networking and system administration, before jetting off to Europe where he worked with Japanese telco giant KDDI, and looked after a rolling communications network for Honda F1 racing.

Returning home to Australia, he tackled network operations for Credit Suisse, managed security for Commonwealth Bank, and then oversaw the Australian and New Zealand network for Deutsche Bank. From there, Andrew moved into the fin tech sector, taking on infrastructure service manager positions, before moving into CIO roles at top tech firms.

In 2020, Andrew struck out on his own, founding Secureroo. Secureroo takes the guesswork out of cyber security with its user-friendly governance, risk and compliance services. He founded de.iterate in 2022.


Presentation: Privacy Act Overhaul: Implications for Associations and their Members

The Federal Government set to make some of the most sweeping reforms to the Privacy Act in years, including removing the small business exemption. This will mean 2.3 million new businesses—associations included—will need to demonstrate data privacy and cyber security compliance.

The proposed changes will bring Australia’s Privacy Act in line with equivalent overseas laws, increasing the obligations of associations and businesses when handling personal information, as well as the penalties for privacy breaches.

Andrew will cover the key changes that will apply to associations, how to ensure compliance, and how associations can help their members comply.

Workshop: Cyber Risk Management Fundamentals: Building Your System

In this comprehensive workshop, association leaders will be equipped with the essential knowledge and tools needed to navigate the complexities of cyber risk in today's digital landscape. Participants will explore the foundational principles of cyber risk management, including risk identification and assessment, and mitigation strategies tailored specifically for associations.

Through interactive sessions, we'll delve into the development and implementation of robust management systems designed to safeguard sensitive data and ensure compliance with relevant regulations. Attendees will also learn best practices for incident response and recovery, fostering a culture of cybersecurity awareness within their organisations. This workshop is a must-attend for leaders aiming to fortify their associations against cyber threats.