elevenM brings a team approach to solving your digital risk challenges.
Since our founding in 2016, we have built a large team of passionate professionals with deep and extensive experience across privacy, cyber security, information governance and communications.
Our culture and philosophy encourages strong collaboration across these disciplines so that our clients benefit from holistic and complete solutions.
Founder of elevenM and cyber practice lead, Peter has been a cyber security practitioner for over 20 years and has provided cyber security and technology risk services to clients across Australia, the US and Europe.
Peter works with a wide range of organisations to help them understand and manage their cyber security risks. He is regularly engaged by technology and security executives to provide strategic direction and advice and to support them with practical guidance and frameworks.
Prior to establishing elevenM, Peter held the position of IT Security Assurance leader for PwC Australia. He currently holds strategic cyber advisory roles with several government and ASX listed organisations.
Peter holds a Bachelor of Science in Computer Information Systems and a Bachelor of Science in Accounting from the University of Mobile, USA. He is also an Executive Leadership graduate from INSEAD.
As privacy practice lead of elevenM, Melanie works with Australia’s most prominent brands to drive innovation and manage privacy and data governance risks.
In the field for almost 20 years, Melanie brings deep expertise and knowledge to clients at all stages, from start-ups to large corporates. She is also committed to training the next generation of privacy professionals.
Prior to elevenM, Melanie ran privacy governance programs for CBA and the National eHealth Transition Authority.
She is a former President of the International Association of Privacy Professionals in the ANZ region, served on advisory boards for Information Governance ANZ and Hello Sunday Morning and is an Expert Advisor to LexisNexis on privacy and data protection.
Melanie holds a Master of Industrial Property Law from the University of Technology, Sydney, a Bachelor of Media (Hons) and a Bachelor of Laws from Macquarie University. She is a Graduate of the Australian Institute of Company Directors.
Mark is a privacy and technology law specialist, with close to two decades of experience in the field.
Prior to joining elevenM, Mark established and led Nike’s privacy legal and program teams across the Asia-Pacific region. Starting his career as a software engineer, Mark built on his subject-matter expertise to become a technology lawyer over 15 years ago. Mark has worked internationally, including 12 years in Singapore for multinational companies with global headquarters in India, Singapore and the US.
Mark has a Bachelor of Information Technology (Computer Science) and a Bachelor of Laws from Queensland University of Technology, a Graduate Diploma in Legal Practice, Skill and Ethics from Griffith University and a Master of Laws from the University of Melbourne. Mark also holds a CIPP/A certification from the International Association of Privacy Professionals (IAPP).
Cassie is an information governance and privacy professional with over 20 years’ operational and management experience delivering results in complex government and corporate environments. Prior to joining elevenM in 2021, she was based in the US where she managed fashion retailer Gap Inc’s global information governance program and led the automation of Gap’s data subject rights program.
Cassie has extensive experience in information and data governance, with a background in recordkeeping and archives. She was the lead author of the current International Standard on records management, ISO 15489, and is a member of the Standards Australia Committee on Records Management, IT-021.
Cassie holds a Master of Information Management from the University of New South Wales and CIPP/US and CIPM certifications from the International Association of Privacy Professionals (IAPP).
Iain is a security, risk and threat expert, with significant experience in planning and leading complex and sensitive projects, both domestically and overseas. Prior to joining elevenM, Iain has 30 years’ experience working with the UK and Australian Defence Forces, supporting their ability to identify, track and counter a diverse array of threats.
Iain was awarded an MBE for his role in Counter Terrorism operations while in the British Army.
Iain holds a Masters in Intelligence and Security from the University of Leicester.
Alistair is a privacy engineer with a speciality in the intersection of technology, law and privacy.
With qualifications and experience in privacy, risk, law and software engineering, he is uniquely qualified to understand how technology can be used to simplify and automate risk, information and business processes. Alistair works across privacy, cyber security, and tooling development to deliver solutions for elevenM’s clients.
Alistair has practised law in the corporate and technology fields, and prior to joining elevenM held a senior advisory role at the Commonwealth Bank of Australia, working in privacy tooling and strategic advice.
Alistair holds a Bachelor of Laws, a Bachelor of Engineering (Software) and a Bachelor of Arts (Linguistics) from the University of New South Wales. He is CIPP/E certified by the International Association of Privacy Professionals (IAPP).
Arjun is elevenM’s communications lead and specialises in providing strategic advice and communications expertise to help organisations build trust in their cyber security and privacy programs, internally and externally.
He has extensive experience in crisis communications, board and executive engagement and training, and advising organisations in how to embed privacy and cyber security culture.
Arjun worked as a journalist at the Sydney Morning Herald and in senior media relations roles across government and the private sector before establishing the cyber outreach and advocacy program for the Commonwealth Bank of Australia, leading the bank’s cyber security strategy, incident response communications and security awareness programs.
Arjun holds a Master of Arts in Journalism and a Bachelor of Information Technology from the University of Technology, Sydney.
Jonathan is a cyber security risk management expert at elevenM, providing strategic cyber advisory services. He has over 20 years of frontline cyber experience across the UK intelligence services, international law enforcement agencies, and as a corporate CISO.
Prior to joining elevenM, Jonathan was Head of Information Security at Virgin Australia. He has extensive expertise in handling diverse cyber challenges, from terrorism and advanced persistent threats against critical infrastructure, through to cybercrime and corporate risk management.
Jonathan holds a Masters in Forensic Computing and Cyber Crime Investigation from University College Dublin, and a Masters in Middle East Security Studies from University of Aberdeen.
Tony is a finance executive, with over 20 years’ experience in managing organisational resources and delivering sustainable financial results. Over this time, he has worked with organisational leaders to implement business initiatives and manage change.
Prior to joining elevenM, Tony was CFO at Kathy Jones & Associates. Tony has also held senior finance roles with ISS Facility Services, Australia and within large local council authorities in New Zealand.
Tony holds a Master of Business Administration from Southern Cross University and a CMA certification from The Institute of Certified Management Accountants.
Jordan is an expert in privacy regulation, policy development and program management, with deep experience in privacy compliance, regulatory investigations, public policy, and open data. Since joining elevenM Jordan has managed complex privacy project development and implementation and helps our clients ensure they are at the forefront of privacy practice and compliance.
Prior to elevenM, he was Assistant Commissioner for Operational Privacy and Assurance at the Office of the Victorian Information Commissioner, where he established and led the investigations and assurance function.
Jordan has held leadership roles at GovHack and the Victorian Society for Computers and the Law, and holds a Bachelor of Laws and a Master of Laws from University of Melbourne.
Vruta is a cyber security professional specialising in strategy and third-party risk management.
With over 8 years’ experience, Vruta has worked with clients in the USA, UK, India and Australia in financial services & the public sector to develop and implement cyber security strategies and roadmaps, and undertake cyber maturity assessment, third-party risk management solutioning, vendor assessments and enhancements. Prior to joining elevenM, she was a Manager with KPMG.
Vruta holds a Bachelor of Technology (Information Technology) and MBA in IT Business Management from Symbiosis International University. She is certified ISO 27001 Lead Auditor and CSA Cloud Security Knowledge Professional.
Piotr is a privacy specialist with a passion for digital rights and a background in state, federal and GDPR compliance.
Since joining elevenM, Piotr has worked on a wide range of complex multi-jurisdictional projects. These include creating and running a GDPR-based privacy framework and program for a multinational client; undertaking risk assessment and implementing mitigation strategies for a client’s use of video facial recognition and fingerprint technology; implementing an Intra-Group Data Transfer Agreement, for lawful cross-border transfer between AUS, UK, EU, and ASEAN Member States; and advised on Privacy by Design for a multi-departmental initiative focused on Aboriginal children and student welfare.
Prior to joining elevenM, Piotr worked as a Senior Privacy Adviser and Conciliator at the Office of the Victorian Information Commissioner.
Piotr holds a Bachelor of Law (Honours) from Monash University, a Graduate Diploma of Legal Practice, and a CIPM from the International Association of Privacy Professionals (IAPP). He is also a Board member with Digital Rights Watch and a Young Privacy Professional with the IAPP.
Tom is a privacy consultant and lawyer with experience advising organisations on the intersection of legislative, contractual, and regulatory considerations for the use of data.
Since joining elevenM, Tom has provided ongoing privacy risk and data management advice for several of our large clients. He has also delivered a range of advice projects, such as on cloud migrations in complex multi-jurisdictional environments, data management for onboarding and offboarding business partners, and data ethics assessments. Prior to joining elevenM, Tom worked in private legal practice on complex commercial and insurance litigation. He also worked on the Royal Commission into Institutional Responses to Child Sexual Abuse as a researcher for the Department of Social Services.
Tom holds a Bachelor of Laws (Honours) and Bachelor of Commerce from the Australian National University.
Tessa is a communications and content strategist with a background in privacy, information security, and regulation. Since joining elevenM, she has developed and delivered a range of education and awareness training products, content strategies and tailored specialist content for public and private sector organisations.
Tessa was publications manager and speechwriter to the Commissioners at the Office of the Australian Information Commissioner (OAIC), and has managed events, campaigns, media and social media, and internal and external communications strategies. With over a decade of professional experience, Tessa is an expert at presenting technical and complex information in a practical and accessible manner.
Tessa holds a Bachelor of Arts (Hons, English) from the University of New South Wales and a Graduate Certificate in Editing & Publishing from the University of Technology, Sydney.
Emma is a privacy professional with broad experience supporting businesses in achieving data-driven goals whilst building consumer trust.
Prior to joining elevenM, Emma led the privacy program at Australia Post, where she partnered with the business to provide pragmatic and actionable solutions and develop ethical data handling practices. Emma has hands-on experience navigating the operational challenges facing privacy compliance in complex corporate environments.
Emma holds a Bachelor of Laws and Bachelor of Commerce from Australian Catholic University, is CIPM accredited by the International Association of Privacy Professionals (IAPP) and is a co-chair of the IAPP Melbourne KnowledgeNet Chapter.
Laura is an information management and privacy specialist with a background in health information. Prior to joining elevenM, Laura worked as a senior information management specialist at Mater in Queensland where she worked to ensure information management and privacy compliance for day-to-day operations and digital health projects.
Laura holds a Bachelor of Health Science (Health Information Management) from Queensland University of Technology, a Graduate Certificate in Health Management from University of New England and a Master’s in Public Health from University of Queensland.
Rahul is a cyber risk specialist, with more than 8 years’ experience in providing risk and cyber security services for clients across India, the USA, Europe and Australia.
Prior to joining elevenM, Rahul developed extensive experience managing cyber risk as a Senior Associate Manager with Eli Lilly and Company, and for EY, KPMG and Tech Mahindra. Rahul’s client experience spans the financial services, telecommunications and healthcare industries.
Rahul holds a Bachelor of Computer Science & Engineering and an MBA in IT Business Management from Symbiosis International University. He is also a certified ISO 27001 Lead Auditor, AWS Cloud Practitioner, and an ISAC India registered Cybercrime Intervention Officer.
Brett is a privacy professional with extensive regulatory and service delivery experience across state and federal government in Australia.
Prior to elevenM, Brett co-managed the privacy program at Service NSW, providing privacy advice and assurance across a range of digital and non-digital service delivery processes. Brett was also the primary privacy advisor at Service NSW for the NSW Government’s digital identity program. Brett has also held senior regulation and compliance roles at NSW Police and at the Office of the Australian Information Commissioner, where he was responsible for the OAIC’s privacy assessment program.
Brett holds a Bachelor of Arts in Communications (Journalism) and a Bachelor of Laws from University of Technology, Sydney and is CIPM accredited by the International Association of Privacy Professionals.
Nick is a specialist in cyber security and data analytics. Coming from a formal sciences background in Mathematics, Nick brings analytical and technical thinking to our clients’ data challenges.
Since joining elevenM, Nick has designed a risk-based vulnerability assessment scoring system, and as part of the team who deliver elevenM’s vulnerability management offering, he has developed and implemented automated vulnerability reporting and workflows for a range of clients. Nick also brings expertise in strategic analysis of vulnerability and threat assessments.
Nick holds a degree in Mathematics from the University of New South Wales and has completed the OffSec Network Penetration Testing Essentials.
Sulan is a privacy specialist, with a focus on ensuring the integration between privacy, cyber and product development.
She has considerable experience in operational privacy, spanning governance, process and training. Prior to joining elevenM, Sulan worked for New Zealand Ministry of Business, Innovation and Employment.
Sulan holds a Bachelor of Arts from Lanzhou University, a Graduate Diploma in Marketing from Manukau Institute of Technology and a Masters in International Relations from the University of Wellington, New Zealand. Sulan is an IAPP Certified Information Privacy Technologist (CIPT) and Certified Information Privacy Manager (CIPM).
Cavill is a privacy specialist and an admitted solicitor with a background in process-driven solutions, governance and project management. Prior to joining elevenM, Cavill has nearly a decade in the financial services industry, where he has worked on remediation and uplift programs.
Cavill holds a Bachelor of Laws from University of New England and certification in Data Privacy Management from RMIT University.
Jonathan is a privacy specialist with extensive experience in policy and regulation.
A former journalist and lawyer, Jonathan has over a decade of experience in privacy and technology policy development and implementation. His policy experience includes the Australian Communications Consumer Action Network, NSW Department of Finance, Services and Innovation and Cyber Security NSW.
Prior to commencing with elevenM, Jonathan worked in operational privacy roles at IAG and AMP. He has authored many submissions to government and represented consumers before parliamentary committees and at international forums.
Jonathan holds a Bachelor of Arts (Hons) and an LLB from the University of New South Wales.
Deepa is a regulation and compliance specialist with a background in risk, compliance and implementing organisational uplift projects.
Deepa worked in the investigation and prosecution of serious and complex fraud for the UK Serious Fraud Office, before moving to Australia to work on remediation and uplift in the risk and compliance space for NAB and Rabobank. As part of the elevenM privacy team, Deepa brings her investigative skills, compliance experience and passion for implementing efficient processes and policies to support our clients with their commitment to privacy compliance.
Deepa holds a Bachelor of Laws (Honours) and a Master of Laws from the University of Hertfordshire and certification in Data Privacy Management from RMIT University.
Valerie is an information management specialist with hands on experience in business system implementations, as well as in business improvement and compliance projects. She is driven by an interest in solving complex digital information problems, and applying information-based solutions to achieve better outcomes for individuals and organisations.
Prior to joining elevenM she held information specialist roles with a number of State Government agencies including the Sydney Opera House and Sydney Metro.
Valerie holds a degree in history from Macquarie University and Master of Business Information Systems from Monash University. She also holds an RMIT certificate in Data Privacy Management and is a DAMA Certified Data Management Professional Associate.
Georgia is a privacy specialist and admitted solicitor with a background in plaintiff litigation and crisis management.
Georgia’s professional experience has been in providing strategic guidance on privacy and data protection to organisations, including advice on contractual and regulatory obligations in the aftermath of a data breach. Prior to joining elevenM, she worked at Slater and Gordon on the Optus and Medibank data breach class actions, as well as providing advice on risk, notification obligations, and multi-jurisdictional compliance.
Georgia holds a Bachelor of Laws and a Bachelor of Arts (Media, Culture, and Communications) from Macquarie University and is currently completing a Master of Administrative Law and Public Policy at the University of Sydney.
Theo is a cyber security specialist with practical and policy development experience in cyber uplift programs.
Theo manages large-scale cyber security and vulnerability management programs, bringing to elevenM’s clients extensive regulatory knowledge and a hands-on approach to implementing cyber frameworks.
Theo is a Certified Information Systems Security Professional (CISSP) and a member of the International Information System Security Certification Consortium (ISC2). He holds degrees in Electrical Engineering and Chemistry from the University of New South Wales.
Chaitalee is a multi-faceted privacy professional with experience integrating policy, privacy and technology. Prior to joining elevenM, Chaitalee worked in governance and risk as part of ServiceNSW’s Cyber Incident Taskforce team, responding to major data breaches as well as conducting privacy reviews, contributing to strategic planning, and developing policy recommendations.
Chaitalee holds a Master of Public Policy from University of Sydney and a Bachelor of Technology from Amity University. She also holds a Certified Information Privacy Technologist (CIPT) certification from the International Association of Privacy Professionals (IAPP).
Angela is a privacy specialist with over a decade of experience in privacy regulation and communications.
Prior to joining elevenM, Angela spent ten years at the Office of the Australian Information Commissioner (OAIC), working as a solicitor in the legal team and, prior to that, in the communications team. Angela has extensive experience in regulation and compliance, the development and implementation of privacy processes, and privacy and security awareness activities.
Angela holds a Bachelor of Arts, Media and Communications from the University of New South Wales and a Juris Doctor from the University of Technology, Sydney.
Quentin is a cyber security specialist with extensive experience in security technology solutions and operations.
He has worked with many large transport and government organisations to uplift operational security posture, as well as develop and maintain their own cybersecurity frameworks. In addition to building security eco-systems from the ground up for several large organisations in Australia, he has hands-on experience with incident handling and remediation.
Quentin holds a Bachelor of Finance/Economics from the University of New South Wales and a Graduate Certificate in Networking & Cyber Security from RMIT University.
Georgia is a privacy consultant and admitted solicitor with an interest in the intersection of individual rights and the globalisation of information.
Prior to joining elevenM, Georgia worked in individual and commercial conveyancing law and has experience working as in-house legal for a large hotel chain. Before moving into law, Georgia had over a decade of experience in hospitality and events management.
Georgia holds a Bachelor of Laws from the University of the Sunshine Coast.
Millie is a privacy consultant with experience in developing tailored solutions to ensure compliance with evolving data privacy laws and regulations.
Since joining elevenM, Millie has provided privacy advice across a range of projects involving new products and service offerings, emerging business partners, contractual and licensing permissions, safeguarding sensitive information, and restrictions on data use.
Prior to joining elevenM, Millie completed internships at the International Criminal Court, International Development Law Organization, and Human Rights in Practice in the Hague. She also brings experience in private practice, having worked in property and commercial law for Dentons and Patten & Prentice.
Millie holds a Law degree with Honours from the University of Edinburgh.
We’re always looking for talented people from a range of professional backgrounds to join our team.