Australia’s universities sit at the intersection of open academic collaboration and high-value research data, making them prime targets for cyber adversaries. In response, the sector is increasingly hiring seasoned security executives who can balance risk, governance, and operational resilience while still enabling the university’s core mission of teaching and research. These leaders are driving major security transformations, building cyber programs at scale, and strengthening the sector’s collective defense.
Below are ten CISOs and senior cybersecurity leaders shaping the future of security in Australian higher education. While not all hold the formal title of “CISO,” each has a significant role in protecting some of the nation’s most important research institutions and student ecosystems.
Derek Winter — Chief Information Security Officer, University of New South Wales
Derek Winter is a seasoned cyber risk executive known for translating technical risk into business terms for boards and senior leaders. At UNSW, he led a multi-year cyber transformation program, scaling the cyber function from fewer than 10 staff to around 75 professionals. Winter’s leadership reflects a strong focus on enterprise resilience, governance, and sustained investment in security capability.
Damien Mathieson — Chief Information Security Officer, University of Sydney
With over two decades of experience advising federal and state governments, Damien Mathieson brings deep expertise in strategic security leadership to one of Australia’s largest universities. Since being appointed CISO in 2025, Mathieson has been responsible for driving a comprehensive security strategy across the University of Sydney’s complex digital environment.
Dan Maslin — Group Chief Information Security Officer & Head of Infrastructure Strategy, Monash University
Dan Maslin leads Monash’s cyber risk and resilience function while also overseeing infrastructure strategy across a global organisation. He manages a combined team of roughly 150 staff and is responsible for protecting a network of 500,000 active devices and 250,000 user accounts. Maslin is widely recognised across the industry and has been named among global “CISOs to Watch” lists in recent years.
Anna Aquilina — Chief Information Security Officer, University of Technology Sydney
Anna Aquilina brings deep international cybersecurity and governance experience to UTS. She has served as the university’s CISO since 2021 and is known for her leadership in risk management and security transformation in higher education.
Vanessa Tsaccounis — Chief Information Security Officer, University of Wollongong
Vanessa Tsaccounis is a technology leader with strong architecture and solution design experience. As UOW’s CISO, she has guided security strategy and transformation across the university’s infrastructure and systems since 2024.
Benjamin Wise — Chief Information Security Officer, Western Sydney University
Benjamin Wise leads Western Sydney University’s information and cybersecurity agenda, embedding security-by-design into enterprise transformation and aligning security with institutional priorities. He has also been a prominent voice in sector-wide security forums and collaborations.
Tara Dharnikota — Chief Information Security Officer, Victoria University
Tara Dharnikota is known for her pragmatic, people-centred approach to security. With experience spanning operations, intelligence, governance, and cultural change, she now leads cybersecurity strategy and resilience at Victoria University. She is active in industry panels and community initiatives.
Rajitha Udayanga — Group Manager, Cyber Security Operations, Monash University
While not a CISO, Rajitha Udayanga plays a critical role in defending one of Australia’s largest universities. He leads cyber security operations at Monash, overseeing the SOC, threat intelligence, and incident response teams.
Bob Watson — Head of Cyber Security, University of Canberra
Bob Watson leads the University of Canberra’s cybersecurity program and is responsible for strengthening security posture, governance, and operational resilience. His role is highly influential within the university’s broader risk management framework.
Julian Doak — Chief Information Security Officer, Australian National University
Julian Doak heads cybersecurity at ANU, one of the nation’s premier research institutions. He is known for balancing robust risk governance with the unique demands of academic freedom, research collaboration, and high-impact innovation.
Why These Leaders Matter
The universities on this list are not just defending systems; they’re protecting the future of Australian research, innovation, and education. These CISOs and security leaders are building programs that can withstand sophisticated threats while supporting the open, collaborative culture that defines academia. Whether through transformation programs, operational excellence, or strategic governance, they are shaping a more resilient future for the sector.