Connect with meMatt is a senior cyber security and technology risk advisor with more than 30 years’ experience supporting Boards and Executives on strategy, governance, risk and performance. He previously served as a Cyber and Technology Partner at KPMG for over two decades, specialising in financial services.
His work spans the full cyber value chain, from strategy, governance, reporting and assurance, to the design and delivery of large‑scale cyber capability uplift programs for Boards and Executive Committees. He also brings extensive experience in deep technical cyber engagements, incident response, and recovery.
Matt has operated at both regional and global levels, including leading Cyber across Asia Pacific and contributing significantly to the development of global cyber strategy.
Beyond cyber security, he has deep capability across broader technology domains, advising on technology strategy, risk and governance, complex transformation programs, and emerging technologies. He is a frequent conference speaker across the Asia‑Pacific region and has authored numerous thought leadership and opinion pieces.
Matt’s client experience includes major organisations across banking, wealth management, superannuation and insurance, as well as companies across multiple industries in Australia, the Asia‑Pacific region and globally.
At his core, Matt helps Boards and Executives maximise the value of technology investment while effectively managing risk, with a sustained and practical focus on cyber security.
- Led a 22‑person change team as part of a major, multi‑year new business acquisition and fund merger for a large wealth manager, with resources embedded across program management, technology, finance and change. The complex, multi‑stakeholder program was delivered successfully through disciplined cross‑stream execution and strong stakeholder management.
- Led multiple CPS234 tripartite reviews for financial services clients across banking, superannuation and insurance, covering independent opinions, root cause analysis and remediation planning. Engagements supported timely regulatory compliance while uplifting cyber capability within constrained financial environments.
- Led cloud and cloud cyber controls reviews for multiple financial services organisations, addressing regulatory engagement, program execution challenges, and Board‑level governance and oversight requirements.
- Led the development and execution of an enterprise Identity Strategy for a global banking group, delivering in the context of complex and evolving global regulatory and operational requirements.
- Led the design and implementation of an enhanced cyber reporting framework for a major wealth manager, balancing strategic insight with actionable operational detail for Board and Executive audiences.
- Led cyber reviews and a multi‑year uplift program for a major global insurer, operating across domestic and international environments and navigating diverse regulatory regimes.
- Led a core systems replacement transformation program for a superannuation fund, including implementation of a new CRM capability, with full executive leadership and Board reporting. The program was delivered within agreed scope, timeframe and budget.
- Led two iterations of cyber strategy and roadmap development for a regional bank over a three‑year period, including Board engagement, presentation and formal approval.
- Led resilience uplift programs across multiple superannuation funds, addressing CPS230 requirements and strengthening resilience capabilities across critical third‑party technology providers.
- WK Advisory
- Cyber Architecture
- Cyber Assessment
- Cyber Strategy
- Cyber Transformation
- Financial Services
- ISACA
- Prince2 certified