Kathy is a cybersecurity consultant and trusted GRC advisor known for translating complex cyber challenges into practical, people-first strategies. With a background spanning privacy and information security governance, cyber risk, and resilience, Kathy has worked with organisations across critical infrastructure, government, education, and small-to-medium enterprises to uplift their cybersecurity capability. She specialises in helping organisations align security investments to risk appetite, and embed transformation through incident response planning, cyber governance, and stakeholder engagement. Kathy’s work is grounded in the belief that sustainable cyber uplift is less about controls on paper and more about clarity in leadership and cultural alignment.
Kathy has a deep interest in the human side of cybersecurity - particularly how middle managers, small teams, and non-technical leaders play a role in shaping resilience. A passionate communicator and previous CyberCon speaker, Kathy is back in 2025 to share more lessons from the field and spark honest conversations about what it really takes to transform and evolve.