Industries
I work in industries where the rules are real.
Three sectors where I've spent most of my career — not because the work is glamorous, but because it's the work I know well enough to help quickly. If your industry isn't listed here, say so on the discovery call and I'll tell you honestly whether I can help.
Sector 01
Federal & State Government
Programs that serve citizens, sit inside Machinery of Government changes, and answer to ministers and parliamentary committees.
The challenges I see most often
- Programs scoped before requirements are understood, locked in by MYEFO or PBS cycles
- PSPF, Essential Eight and IRAP uplift running parallel to delivery, with no-one coordinating
- Machinery of Government change mid-program, splitting accountability overnight
- Vendor panels that make the right supplier hard to engage and the wrong one easy
- Ministerial risk appetite that can't be discussed in a steering committee
How I help
I come in either as an independent program lead or as an assurance reviewer. My job is to convert political constraints into delivery constraints in a way a steering committee can work with — and to give the senior executive a truthful read on where the program actually is.
Compliance context I work in
- Protective Security Policy Framework (PSPF)
- Essential Eight maturity uplift
- Information Security Manual (ISM) and IRAP assessments
- Privacy Act and Australian Privacy Principles
- Commonwealth Procurement Rules and ICT panels
Organisations I've delivered for
Services Australia and other federal agencies. References available under appropriate arrangements.
Sector 02
Banking & Financial Services
Programs run under the watchful eye of APRA, ASIC and internal audit — where delivery and regulation are the same conversation.
The challenges I see most often
- APRA-reportable programs where the plan hasn't been re-baselined in nine months
- Regulatory commitments that were sold to the regulator before delivery was scoped
- Risk, compliance, audit and delivery each running separate governance for the same program
- Legacy systems where "modernisation" means five different things to five different teams
- Vendor delivery partners who report to the CIO in green while the program is amber
How I help
I act as the accountable delivery lead on regulatory uplift, core system change, and remediation programs. The first deliverable is almost always an honest re-baseline that the sponsor, risk, and delivery can all sign.
Compliance context I work in
- APRA CPS 230 (Operational Risk Management), CPS 234 (Information Security)
- ASIC regulatory guides relevant to operations and disclosure
- AML/CTF program uplift and remediation
- Consumer Data Right (CDR) delivery obligations
- Internal audit and model risk frameworks
Organisations I've delivered for
National Australia Bank and other Tier-1 Australian financial institutions.
Sector 03
Telecommunications
Programs spanning billing, network, customer, and enterprise delivery — in environments that change faster than any other sector I work in.
The challenges I see most often
- Enterprise customer delivery where the customer's PM outranks the carrier's
- Billing and order management programs that span five internal stacks
- Network modernisation running alongside customer migrations with no cross-program view
- Security and compliance obligations (SOCI, TSSR) that arrive mid-program
- A vendor ecosystem where every partner has an opinion on the critical path
How I help
I lead enterprise customer delivery programs or act as program director across internal modernisation efforts — usually brought in when the joining of internal roadmaps and customer commitments has stopped making sense.
Compliance context I work in
- Security of Critical Infrastructure Act (SOCI) obligations
- Telecommunications Sector Security Reforms (TSSR)
- Customer data obligations under the Privacy Act
- Consumer Safeguards and ACMA requirements
Organisations I've delivered for
Telstra and other Australian carriers and enterprise customers.
Different industry? Ask anyway.
Health, utilities, resources, higher education — the patterns are often the same. I'll tell you honestly whether my experience translates.