Australia’s mining and natural resources sector sits at the intersection of critical infrastructure, geopolitics, operational technology, and increasingly sophisticated cyber threats. As organisations digitise operations, integrate AI, and modernise legacy environments, cybersecurity leadership has become a board-level priority, often extending well beyond the traditional CISO title.
This list highlights CISOs and senior security leaders shaping cyber resilience across Australia’s mining and resources landscape. Some hold the CISO role today, others have moved into broader technology leadership positions, but all continue to influence how cyber risk, operational continuity, and digital trust are managed in one of the country’s most strategically vital industries.
Thomas Leen — Group Technology Officer, BHP
Thomas Leen has played a defining role in BHP’s cybersecurity evolution, spending years leading global cyber and architecture functions before stepping into the Group Technology Officer role. His tenure reflects a deep understanding of how cyber risk intersects with enterprise architecture, operational resilience, and large-scale transformation. Even after transitioning out of a pure security title, Leen remains one of the most influential voices shaping how cybersecurity is embedded into technology strategy at an industrial scale.
Daniel Evans — Chief Information Officer, Rio Tinto
Daniel Evans brings rare continuity across security and technology leadership, having previously served as Rio Tinto’s Chief Information Security Officer before becoming CIO. His background gives him a strong grasp of cyber risk across both enterprise and operational technology environments. Evans is known for building high-performing global teams and aligning digital strategy with safety, ESG outcomes, and operational excellence, making cybersecurity a core enabler rather than a parallel function.
Vannessa Van Beek — Global Chief Information Security Officer, Fortescue
Vannessa Van Beek leads cybersecurity at Fortescue during a period of rapid transformation spanning mining and green energy. With a multidisciplinary background in law, business strategy, and psychology, she approaches cyber risk through human, technical, and strategic lenses. Van Beek is widely recognised for her work in cyber resilience, AI security, and leadership under pressure, earning multiple industry awards and shaping national conversations on what modern security leadership looks like in high-risk environments.
Paul Karan — Cyber Advisor, Roy Hill
Paul Karan brings seasoned cyber leadership to Roy Hill in an advisory capacity, supporting one of Australia’s most significant iron ore operations. His role reflects a growing trend in mining organisations: leveraging deep expertise to guide governance, resilience, and risk strategy without necessarily holding the formal CISO title. Karan’s ongoing influence highlights the value of trusted advisors in complex, asset-heavy environments.
Joel Earnshaw — Senior Manager, Cyber Security, Perenti
With more than 18 years of hands-on experience across infrastructure, security, and cyber operations, Joel Earnshaw leads global cybersecurity efforts for Perenti, an ASX-listed mining services group. His work spans diverse geographies and operational contexts, balancing practical security execution with leadership at scale. Earnshaw represents the next generation of mining cyber leaders—technically grounded, operationally focused, and globally minded.
George Siemens — Cyber Security, Risk & Compliance Officer, CalEnergy Resources
George Siemens brings over two decades of experience across IT security, architecture, and governance. His current role focuses on aligning cybersecurity with risk management and compliance in an energy and resources context. Siemens’ broad technical foundation and governance-first mindset make him a steady force in environments where regulatory pressure and operational reliability go hand in hand.
Babu Srinivas — Vice President Cybersecurity & Architecture (CISO), BHP
Babu Srinivas is one of the most credentialed cybersecurity leaders in the Australian resources sector, with more than 25 years of experience across enterprise security strategy, architecture, and operational resilience. At BHP, he leads cybersecurity and architecture with a strong emphasis on ICS/SCADA environments, large-scale transformation, and board-level engagement. Srinivas is widely respected for bridging technical depth with executive communication in complex industrial ecosystems.
Spencer Lai — Principal, Information Security and Risk, CITIC Pacific Mining
Spencer Lai brings deep expertise in technology and cyber risk across mining and metals, with a strong focus on governance, controls, and operational outcomes. His work at CITIC Pacific Mining spans cyber risk management, compliance frameworks, and resilience planning in large-scale resource operations. Lai’s experience reflects the growing importance of risk-led security leadership in asset-intensive industries.
Anthony Sharpe — Lead Cybersecurity Governance, Risk and Compliance, South32
Anthony Sharpe leads cybersecurity governance, risk, and compliance at South32, bringing a strong background in infrastructure, cloud platforms, and operational IT. His role underscores the increasing maturity of cyber governance within mining organisations, where structured risk management and regulatory alignment are now central to business continuity and trust.
Anthony Licciardi — Cyber Security Manager, Newmont Corporation
Anthony Licciardi brings close to two decades of international cybersecurity and risk experience to Newmont, following senior roles across energy, finance, and global consulting. Known for translating real-world incidents into actionable resilience strategies, Licciardi focuses on strengthening cyber maturity across mining operations while maintaining a pragmatic, business-aligned approach to security leadership.
Why These Leaders Matter Now
Cybersecurity in mining is no longer just about protection; it’s about enabling safe operations, sustaining productivity, and preserving social license in a volatile threat landscape. The leaders featured here represent a mix of strategic thinkers, operational specialists, and cultural builders who understand that resilience is earned daily, often under extreme conditions.
As Australia’s resources sector continues to modernise, these CISOs and security leaders will play a critical role in shaping how trust, safety, and innovation coexist at scale.