Australia’s insurance sector has become a prime target for cyber attackers, and the people leading the defence are evolving their roles from technical managers to business strategists. From regulatory compliance and third-party risk to digital transformation and AI adoption, these leaders are shaping the future of insurance security in Australia.
What makes this group stand out is their ability to translate cyber risk into business outcomes; not just “keeping the lights on,” but enabling growth while strengthening resilience. Whether they’re driving board-level reporting, implementing zero-trust strategies, or transforming legacy security programs, each of these leaders is worth watching as the sector modernizes.
Harsh Rasik Busa — Chief Information Security Officer, Avant Mutual
Harsh brings 20 years of experience across identity and access management, data protection, cyber risk management and privacy. At Avant Mutual, he has led a cybersecurity transformation from a compliance-led model to a risk- and threat-based program aligned to business outcomes. Under his leadership, Avant has moved toward NIST CSF 2.0 maturity, strengthened APRA CPS 234 readiness, and improved security posture and incident readiness, all while embedding security into cloud-first transformation and responsible AI adoption.
John Ooi — Cyber Security Leader, Australian Unity
With over 32 years of experience in IT engineering, operations and technical architecture, John represents the kind of long-tenured security leadership that underpins major insurance and financial services organisations. His background in IT process and project delivery makes him a strong leader for strategic cyber programs, particularly those tied to large-scale transformation and risk management.
Vijay Krishnan — Chief Information Security Officer, UniSuper
Vijay is a seasoned security strategist with deep experience in governance, risk, architecture, security operations, and incident management. He has built security practices from the ground up and led large-scale initiatives across IT, public cloud, and critical infrastructure. At UniSuper, he oversees security governance, cyber operations, architecture and observability, shaping cyber resilience for one of Australia’s major financial institutions that operates closely with insurance-related services.
Saleshni Sharma — CISO Asia Pacific, W.R. Berkley Corporation
Saleshni is a visionary security leader who positions cybersecurity as a business enabler. She has led security across Asia-Pacific and driven innovation projects, including AI initiatives that reduced operational costs by 70%. Her focus on mentorship and future leadership roles reflects the evolving nature of cyber leadership, where strategy, culture, and transformation matter as much as technology.
Ian Pham — Chief Information Security Officer, Victorian Managed Insurance Authority
Ian is a strong strategist with deep knowledge across key security domains, particularly risk and leadership. As CISO of the Victorian Managed Insurance Authority, he represents the growing wave of security leaders who are shaping cyber resilience in state-level insurance and public-sector risk frameworks. His focus on continual improvement and adaptation to emerging threats makes him a leader to watch.
Grae Meyer-Gleaves — Chief Information Security Officer, WorkCover Queensland
Grae is a cyber specialist with over 30 years of leadership experience and multiple years serving as CISO for some of Australia’s largest insurers. He blends technical expertise with business strategy and public speaking to build mature, effective security programs. Grae is also a strong advocate for cyber awareness and talent development, making him a prominent voice in the industry.
Michael Cracroft — Chief Information Security Officer, icare NSW
Michael is a cyber leader known for translating strategy into measurable business outcomes. He brings experience in digital transformation, cloud migration and incident response, and has played a major role in building secure public-sector services. At icare NSW, he leads cyber leadership and risk management for insurance and care services across the state, helping ensure that technology advances are matched with resilient security controls.
Why These Leaders Matter and What They’re Building Next
The Australian insurance sector is in the middle of a major security transformation, and the leaders listed here are at the centre of it. They’re not only protecting sensitive data and critical infrastructure; they’re building security programs that support innovation, modernisation and regulatory compliance. As insurers continue to move toward cloud, AI, and digital platforms, these cyber leaders will be among the most influential voices shaping the industry’s future.