Angela Pak
Risk Advisory Services
Executive Summary
Executive summary
Angela is a Partner in the Risk Advisory team in Perth. With over 20 years of experience, she is a recognised leader in technology risk and cyber security. Angela delivers technology-focused engagements across both the private and public sectors and is a trusted advisor on complex matters relating to technology risk, cyber security, and technology transformation.
Angela has led numerous technology transformation programs, guiding organisations through cyber security implications and the risks associated with the implementation of new technologies and evolving business model.
Angela is highly experienced in operational technologies (OTs), including train control systems, CCTV, remote traffic operations, building management, signalling systems, and individual control systems. Her expertise spans a range of sectors, including mining, oil and gas, power and utilitaies, and chemical manufacturing.
Expertise
- Technology risk
- Cyber security
- Technology transformation
- Cyber security implications and risks
- AI governance and readiness
Experience
- Performed numerous AI governance and readiness assessments for organisations across mining, power/utilities and corporate sectors
- Supported organisations across oil and gas and utilities sectors to implement requirements of the Security of Critical Infrastructure (SOCI) act, this included both assessments and development of risk plans
- Angela has deep expertise in APRA standards, including CPS 234, CPS 232, and CPS 231 having led both readiness and Tripartite audits across a number of states. Most recently, she worked with a Health Insurance organisation to support them over a two-year journey towards CPS 234 compliance providing both program management and cyber assurance services
- Led the program delivery function for a large-scale cyber transformation program at a WA based Distribution organisation, the program was centred on uplift of both IT and OT environment to Mil 3
- Numerous cyber security maturity assessments for a client in the energy and government sectors, using the National Institute of Standards and Technology Cyber Security Framework (NIST CSF). These assessments considered the controls in place within both their IT and OT environments (which incorporates their SCADA network)
- Development of cyber response, business resilience and IT recovery capability across a number of sectors, with a focus on alignment with regulatory expectations, systems that are fit for purpose, and integrated into existing processes.
Qualifications and affiliations
- Master of Business Administration
- Bachelor of Science (Information systems and commerce)
- Certified Information Systems Auditor (CISA)
- Member, Information Systems Audit and Control Association
- Member, Business Continuity Institute
- Member, Australian Institute of Company Directors (AICD)