Steven Taub
Advisor at Flexischools
Greater Sydney Area
Overview
Work Experience
Founder, CISO
2024 - Current
White Knight Cyber (WKC) provides expert cybersecurity and technology consulting services, in the form of fractitional vCISO / vCIO / vCRO. Everything from GRC, technical implementation (cloud security / MDR monitoring, security analysis), risk assessment, process improvement and audit preparation, cyber certification, managing and improiving operational processes etc
Cybersecurity Advisor to Flexischools Board
2022
Cybersecurity Advisor role at Flexischools. I chair Flexischool's Information Security Advisory Board (ISAB).
Cybersecurity VC Advisor
2018
Chapter Lead, Sydney Chapter
2018 - 2024
Chief Information Security Officer (CISO)
2022 - 2024
I transitioned to HICAPS as CIO/CISO, as part of NAB's acquisition of LanternPay and merger with HICAPS. HICAPS is part of the Merchant Services business unit, in NAB's Business & Private Division. Responsible for maintaining and improving HICAPS cybersecurity framework (ISMS), maintaining our ISO27001 certification, compliance with NAB security framework, incident management, maintaining the security of our cloud environment including security operations and reporting. A big focus on APRA CPS 230/234 compliance as well as third party vendor management, working closely with NAB cybersecurity , architectuyre and technology teams. As CIO, responsible for maintaining the Transitional Services Agreement (TSA) with InLoop, and managing the integration with NAB technology and cyber frameworks and processes.
Head of Technology / CTO (acting)
2023 - 2023
Responsible for exiting the Transitional Services Agreement (TSA) with InLoop and migrating to the NAB environment - laptops, DevOps, change and incident management processes, complying with NAB infrastructure and security standards, risk management, vendor management, positive engagement with NAB teams. Responsible for maintaining staff engagement, performance and morale and co-developing the future team structure and interface with the business product and cutomer operations teams. From Nov 2023 helped to hire and onboard the new CTO. Supported the new CTO and leaderhip team with completing the migration plans to NAB systems. Also provided ongoing people leadership support.
Cybersecurity Industry Advisor
2022 - 2023
Help CyRise build the Australian cyber security startup ecosystem by sharing knowledge, experience and practical support to entrepreneurs and founders
Chair InLoop Risk Committee
2020 - 2022
Re-established the InLoop Risk Committee, Risk framework and reporting to the Board
CIO / Chief Information Security Officer
2018 - 2022
Responsible for developing, implementing and overseeing InLoop’s Cybersecurity, internal Technology and infrastructure strategy and operational practices. Delivered and maintained ISO27001 certification, PCI-DSS certification.
Associate Director
2009 - 2018
Variety of roles including Head of Security Consulting, Lead Technology Risk Management Director (Line 1) for a variety of Technology teams
Macquarie Infrastructure Company Owns, operates and invests in a diversified group of infrastructure businesses.
Group Head IT Audit, Asia Regional Head of Internal Audit
2008 - 2009
Co-ordinate the provision of IT audit, assurance and advisory services across the B&B group, to ‘add value’ to B&B’s business operations
Babcock & Brown is a consulting firm that provides financial advisory and strategies for various clients.
Regional Security and IT Risk Officer
2004 - 2008
Responsible for co-ordination and provision of IT security and risk services to regional IT and business management. Regional IT Risk Manager for CS Asset Management (AM) Asia, IT Risk Manager for Australia branch across all Divisions.
Credit Suisse Group is a financial services company that advises clients in all aspects of finance.