The energy and utilities sector in Australia faces growing cyber threats as operational technology, digital systems, and critical infrastructure converge. Protecting these complex networks requires leaders who combine technical expertise with strategic vision, bridging IT and OT security while ensuring regulatory compliance and business resilience. From safeguarding national energy grids to modernizing utilities’ IT operations, these leaders are shaping the sector’s cybersecurity landscape.
Here are some of the CISOs and senior security executives making an impact in Australia’s energy and utilities industry today:
Alvin Rubyono — Chief Information Security Officer, Origin Energy
Alvin Rubyono focuses on delivering real business outcomes through innovative, fit-for-purpose IT and cybersecurity solutions. With over a decade of experience in IT risk management and the energy sector, he has built a strong track record in services operations, program governance, vendor management, and cloud services establishment. At Origin Energy, Alvin continues to drive operational excellence while cultivating a people-focused, outcomes-driven approach to security.
Glenn Stuttard — Chief Information Security Officer, EnergyAustralia
Glenn Stuttard brings extensive experience leading large cybersecurity teams and aligning security strategy with business objectives. Known for fostering collaboration and a culture of learning, he has expertise in risk management, application security, networking, and infrastructure. At EnergyAustralia, Glenn combines strategic vision with operational rigor to strengthen cyber resilience across the organisation.
Neil Bray — Chief Information Security Officer, SA Water
A retired Royal Air Force veteran with 18 years in IT, Neil Bray specializes in digital transformation, technology risk management, and enterprise-wide ICT policies. At SA Water, he leads cybersecurity initiatives that modernize critical utility systems while ensuring compliance and operational integrity.
David Worthington — General Manager, Digital Security and Risk, Jemena
David Worthington is a seasoned leader in cybersecurity strategy, focusing on industrial control systems and energy sector security. At Jemena, he oversees digital security and risk management, protecting critical infrastructure while guiding organisational resilience in an evolving threat landscape.
Antoinette Jago — Chief Information Security Officer, Woodside Energy
Antoinette Jago combines cloud and security expertise with a results-driven leadership style. At Woodside Energy, she leverages international experience to deliver secure, high-performing digital services and strengthen the company’s cybersecurity posture across global operations.
Tim Daly — GM Cyber Security (CISO), Australian Energy Market Operator (AEMO)
Tim Daly has more than 20 years of global cybersecurity experience, including financial services, consulting, and energy. Leading AEMO’s cyber security function, he protects Australia’s energy grids and markets while advancing sector-wide cyber capability and maturity. His holistic approach integrates cyber, physical, and organisational security practices.
Stephen Glowrey — Chief Information Officer and Chief Information Security Officer, ActewAGL
Stephen Glowrey oversees technology governance and digital transformation at ActewAGL. With deep expertise in utilities and risk management, he drives operational assurance and business transformation, balancing commercial performance with robust cybersecurity strategies.
Michael M. — Cyber Security Manager, Icon Water
Michael brings extensive experience in security risk management, architecture, and operations. At Icon Water, he strengthens cyber resilience for critical water infrastructure, leveraging his international experience to guide both strategic and operational security initiatives.
Andy Chauhan — Strategic Security Adviser, APA Group
Andy Chauhan has broad experience in IT and security risk management across multiple countries and sectors. Formerly CISO at Ausgrid, he now advises APA Group on strategic security initiatives, drawing on expertise from financial services, consulting, and critical infrastructure.
Leading the Way in Energy Cybersecurity
From energy providers to utilities and market operators, these leaders demonstrate that effective cybersecurity is not just about technology; it’s about strategy, collaboration, and resilience. As Australia’s energy and utilities sector navigates increasingly complex threats, the vision, leadership, and innovation of these professionals will continue to shape the future of critical infrastructure protection.