Image of Rene Morel

Rene Morel

Enterprise Security Architect @ RMIT University

Founder and CEO | AFR Fast 100 | Deloitte Tech Fast 50 | CRN Fast50 | Deloitte APAC Tech Fast 500 | AFR Fast Starters

Melbourne, Australia

Ranked #993 out of 19,860 for Enterprise Security Architect in United States

Section title

Rene Morel's Email Addresses & Phone Numbers

Rene Morel's Work Experience

RMIT University

Enterprise Security Architect

April 2012 to September 2014

Melbourne, Australia

ANZ

Lead Program Architect - Risk and Security Program

January 2010 to April 2012

Melbourne, Australia

National Australia Bank

IT Security Architect

June 2008 to September 2010

Rene Morel's Education

Industry Certifications

Bachelor of Computer Science ACS accredited

1997 to 2000

Athlone Boys High School

Rene Morel's Professional Skills Radar Chart

Based on our findings, Rene Morel is ...

Organized
Troubleshooter
Private

What's on Rene Morel's mind?

Based on our findings, Rene Morel is ...

58% Left Brained
42% Right Brained

Rene Morel's Estimated Salary Range

About Rene Morel's Current Company

RMIT University

I was brought over to RMIT as their Enterprise Security Architect to bring into the organisation my expertise within architecture, major transformation and information security. As a green field opportunity I decided to and help bring positive change into RMIT’s Information Technology division that was in the progress of transforming the way the University did business, namely...

Frequently Asked Questions about Rene Morel

What company does Rene Morel work for?

Rene Morel works for RMIT University


What is Rene Morel's role at RMIT University?

Rene Morel is Enterprise Security Architect


What is Rene Morel's personal email address?

Rene Morel's personal email address is r****[email protected]


What is Rene Morel's business email address?

Rene Morel's business email address is r****[email protected]


What is Rene Morel's Phone Number?

Rene Morel's phone (**) *** *** 397


What industry does Rene Morel work in?

Rene Morel works in the Information Technology and Services industry.


Who are Rene Morel's colleagues?

Rene Morel's colleagues are Matthew Jurgens, Dan Makovec, and Andrew Pham


About Rene Morel

📖 Summary

Rene is a motived individual who values his team and those he works with. He commits 100% to any challenge and ensures that desired outcomes are achieved that are in the best interest of the client, and strategic intent of the organisation. His strength is building successful partnerships with business stakeholders and delivering business objectives through technology enablement. Rene has a broad depth of experience in senior information technology roles for large international organisations primarily in the Banking and Financial Services. He has been involved in Information Technology for over 20 years covering several areas such as Enterprise Architecture, Enterprise Security Architecture, Security Architecture & Design, Lead Program Architecture, Consulting, Technology Risk, Strategy, Infrastructure, Operations Management, Security Analysis and IT Engineering. Career highlights include founding a growing specialist consulting company, delivering the enterprise security architecture for RMIT, Program Architect for ANZ’s Global Security Transformation Program, his engagement at Royal Bank of Scotland London, Global Banking and Markets where he was responsible for the Information Security Architecture of the Global Banking and Markets platforms (UK, Asia and US) and Lead Security Architect for NAB’s Retail Investments Platform - WealthHub. Rene has worked closely with Senior & C Level Management to help define IT Strategy & Architect for large international organisations yet he can easily work at the detailed level. He previously held a partnership in a successful security consulting firm but has now established his own successful company built on solid practical experiences and personal reputation. Specialisations: Information Security, Innovation, BYOD, Enterprise & Solution Architecture, Cloud Services and General Technologist.Enterprise Security Architect @ I was brought over to RMIT as their Enterprise Security Architect to bring into the organisation my expertise within architecture, major transformation and information security. As a green field opportunity I decided to and help bring positive change into RMIT’s Information Technology division that was in the progress of transforming the way the University did business, namely Anywhere, Anytime computing. In the time I have been at RMIT I have delivered the organisations security ISMS across; Compliance, Risk, Awareness, Policy and Standards development, security Strategy, Security Architecture, Consulting, Assurance, Design and Security Services Management. I have also successfully delivered the 3 year security strategy and roadmap, 2012 - 2015 security budget forecast, Enterprise Security Architecture methodology, blueprints, reference architecture, pattern development and worked on redefining solution delivery models from a security perspective. I have also been involved in the following initiatives: Network security architecture • Multi-store storage architecture • Firewall and secure networking architecture • Intrusion Detection and response capability • Secure shared infrastructure • SDN pilot Remote Access • Netscaler Access Gateways • Dedicated and On-Demand Access (SSLVPN, IPSEC) • Virtual desktop, services and application streaming (Xendesktop, Xenserver, Xenapp, vServer) • Access profiling and user class based services (Smartaccess) Anywhere, anytime computing • BYOD & MOE • GoogleApps Integration • Security architecture for XenDesktop (UCS Flexpod) services • Network Access Control • Underlying network infrastructure such as RADIUS, Wi-Fi, GRE, authentication etc. Public Private Cloud • XenServer • CloudBridge • Rightscale • Private and Hybrid cloud capability • AWS integration and VPC VDI • Cisco UCS framework (Nexus, Netapp, Move-AV, Cirtix) • Private cloud • XenApp, XenServer, XenDesktop From April 2012 to September 2014 (2 years 6 months) Melbourne, AustraliaLead Program Architect - Risk and Security Program @ My role at ANZ was Lead Architect for the Risk and Security Program (RaSP) sponsored under the Information Security Office. My role was to lead the Architecture & Security Technology function across 33 technology projects within 5 streams of work, namely Threat and Vulnerability Management, Secure Information Handling, Identity and Access Management, PCI-DSS and Governance, Risk Compliance. My team delivered solution architecture to the program and provided security diligence on the technology stack from a security, strategy, risk, roadmap and blueprint perspective. We also ensured architecture governance through the broader ANZ architecture governance domains and councils, business case development and funding submissions, develop business & technology requirements, budgetary estimates, roadmaps, strategy papers, options analysis, audit remediation, risk management and architectural decisions. I ensured successful delivery of a large technology uplift of security capability for ANZ, developed the program roadmap and reference architecture as well as worked closely with the security strategy function to help define ANZ’s security capability as part of the broader “Towards 2017” technology strategic agenda. Capabilities &/or architecture successfully delivered includes: • Global Enterprise SIEM • Access Management capability • Wireless security enhancement • PKI strategy • Mobility strategy • 3yr Security roadmap • Governance, Risk and Compliance platform • Remote HSM management • Outsource SOC • Laptop Encryption • DLP • User Access Revalidation • PCI-DSS compliance • Global IPS • Emailm Content Filtering • Web Content Filtering • Data Masking I was also fortunate to lead a very professional and skilled team consisting of Solution Architects, Security Architects, Infrastructure Architects, Security Analysts and Security Consultants. From January 2010 to April 2012 (2 years 4 months) Melbourne, AustraliaIT Security Architect @ My role at the NAB was in the Security Architecture function within Information Security Services. I was the Lead Security Architect for a major Capital Markets (MLC and NABWealth) platform as well as the security architect for a global Acquiring programme, both of which have been long term engagements. My embedded involvement in these projects was to provide security architecture, governance, design and risk management through delivery of solution architecture and solution definition. My responsibilities include solution design, risk and threat identification, risk remediation & mitigation, treatment strategies, security requirements, security assurance, due diligence, compliance (APRA, PCI, MasterCard) and working closely with both technology and business stakeholders. In addition to security & enterprise architecture there was a certain level of consulting covering policy, standards, patterns and design, legislative, company & industry compliance requirements, application architecture and security process. From June 2008 to September 2010 (2 years 4 months) IT Security Architect @ My primary objective was to initiate and deliver the E-Commerce & Market Data Security Review project. The scope of works was identification, analysis, documentation and mitigation of risks within the Global Banking and Markets E-Commerce processes and environments. This was achieved through a detailed review and analysis of the environments and producing a detailed report of the findings. Through these findings I initiated the Risk Remediation and Action Plan to address the findings through a defined mitigation strategy and project definition for the various streams of effort. The risks that could be addressed were scoped into the secure network perimeter (SNP) project that I was also responsible for delivery as well as the BAU remediation activities. The SNP project was to redesign the GBM perimeter environment that aligns the organisation with a long term secure and strategic solution. The project addressed my core classes of technology identified for GBM security: Authentication, Authorisation, VPN, Proxy, Web Services, Interoperability, IDS, Topology & Design, Access Control, Extranet, Acceptable Use, Enrolment, Confidentiality, Integrity, Availability, Management, Audit & Monitoring, Data Flow and Termination and Presentation Services. Other major projects that I was also responsible for included: • E-Commerce Globalisation Project, the rolling out of E-Commerce trading environments in America and Asia. • Integration of Royal Bank of Scotland and Renaissance Capital Moscow (RBS acquisition). • Royal Bank or Scotland Marketplace (re-branding of RBS Markets) • New Data Centres. • Global DDOS RFQ and requirements for US and Asia regions. • Analysis and recommendations for the Web Services & XML security infrastructure. • OS Hardening, Firewall and Web Services Standards. • Review of the secure FTP infrastructure. • Definition of VA and Pen Testing requirements and scope on trading systems. From June 2007 to June 2008 (1 year 1 month) Security Consultant @ I was on contract to Vodafone Group within the Policy, Security and Assurance division as security consultant. I was responsible for information security assessments of projects within the Vodafone group through a defined Risk Management methodology. Some of the projects I was responsible for included: • Upgrade of SAP XI Business Objects • CiscoWorks implementation • National HR internet facing portal • MQSI project • Tibco Integration Security • MMS Messaging Infrastructure Relocation • Mobile TV • Aggregates • Business Objects consolidation and security model implementation • New product development of business proposition On average my engagement was over 25 simultaneous projects. Within the scope pf my engagement I provide the business with assurance and risk mitigation strategies to realise business objective. Scope includes review of RFI’s, High Level Designs, detailed design security requirements, architecture and security guidance throughout the gated project delivery methodology & lifecycle. In addition I have introduced a formal & accountable security requirements method to capture requirements for projects to sign-off and deliver as part of the project deliverable's and business requirements. I have also input my experience & methods on risk management and analysis based on AS/NZS 4360 standards and I also defined security standards for Vodafone UK’s Tibco Integration Layer (EAI). In conclusion as a SOX regulated environment there was a strong focus on legislative and regulatory requirements and I have been able to leverage of my financial services background within a telecoms business. From May 2006 to May 2007 (1 year 1 month) Enterprise Security Architect @ I was responsible for the Information Security at the enterprise level, this included strategic planning, framework development, reference architecture, risk management, architecture design, policy & compliance, security operational services and assurance. Deliverables within my time at HBF included: • Defining a risk management framework for all technology dependent projects; • Provide guidelines to stakeholders during project delivery lifecycle to ensure compliance to group policy, legislative requirements and industry standards; • Impact analysis on risk realisation and likelihood of risk based on AS/NZ 4360 Risk Management methodologies; • Identify and mitigate risks within the IT Services group technologies and strategy; • Ensuring project compliance to relevant policies to maintain corporate and legal governance, best practice and strategic direction; • Review all current group polices and standards, identify relevance and recommend amendments. Define new group policy where gaps are identified or policies are required; • Ensure policy ratification by steering committee and group compliance; • Mitigate assessed risks by defining architecture leverage off existing and new technologies and standards; • Ensure practice of Information Security Management framework (ISO 7799) and identify gaps; • Initiation of an IT Security Get Fit project to the CIO, having identified gaps in incident response, security assessment processes, change management, organisational security and risk management; • Security architecture: • Enterprise Application Integration programme at HBF that encompassed integration of business applications into a SOA with supporting technologies; • Meet business objectives by enabling a strategic and holistic security landscape that empowers the business to meet future technology requirements driven by initiatives in a 5 year timeline; • Enterprise Active Directory production, development, release and test environments design. From February 2005 to February 2006 (1 year 1 month) Information Security Consultant @ I was responsible for risk assessments, technology solution assessments from an IT security perspective and architecture design for HBOS Australia projects. Our team was also responsible for all existing HBOS Australia security assets, security strategy and architecture design. IT Security, Policy, Risk & Compliance (IT PRC) were responsible for the assessment and sign-off for all projects from an Information Security perspective and risk analysis on solutions, design, architecture & business process within major projects. The main objective of the security stream within the banks projects was to identify and mitigate associated risks & exposures to the business within the constraints of budgetary and delivery factors and provides security solutions to achieve cost effective remediation. This was achieved by identifying the risks, quantify the risks to the business and mitigating them proportionately or signing-off the residual risk. In addition to project work, IT PRC had complete management & ownership of all HBOS Australia IT security operations, which include management of 3rd party vendors for operations and consulting services. I was responsible for the security streams of multiple BankWest projects. Responsibilities and accountabilities included: • Tactical & strategic security solutions for many high profile projects; • Management of outsourced security services (ISS, Unisys, Dimension Data etc); • Vendor & business partner due diligence & assurance services; • Vulnerability assessments and ownership of external VA or penetration tests; • Liaising & workshops with business & stake holders (Director of Retail Banking, Chief Manager of Project Delivery, Marketing, Application Development, Strategy & Architecture, Legal, etc); • Formulation, validation & approval of technical design overviews; • Business & technical impact analysis From June 2004 to April 2005 (11 months) Security Specialist - Team Lead @ Senior engineer and team lead across state government, banking and mining security managed services and professional services. Engineering, consulting and design across Checkpoint Firewall-1 (such as SecurePlatform, IPSO cluster, VRRP, Provider-1, Nokia Platform, R54, NG AI R57, 802.1x virtualisation) Linux, Solaris, Cisco switching/ routing, Solarwinds, Knoppix, Stonesoft, WatchGuard, Microsoft Server, MailSweeper, RACF/ACF2, SecureID, Alteon, Trusecure, KMV's, SSH etc From September 2003 to June 2004 (10 months) Perth, AustraliaMicrosoft Server/ Active Directory Engineer @ Designed, implemented and handover of Siteminder SSO across global regions - 60,000 users. Multiple environments (Dev, sandpit, UAT and prod), highly visualized on Active Directory ADAM, Netegrity Siteminder, Dell Blades, Checkpoint Firewalls and Cisco network fabric. From May 2002 to June 2003 (1 year 2 months) SwitzerlandSecurity & Infrastructure Engineer @ Operational Management, implementation, 3rd line engineering support, network engineering, AD/ Microsoft administration, scripting, firewall and proxy build and support, exchange, DNS, WINS and DHCP support, server builds, design, From October 2000 to February 2002 (1 year 5 months) I.T Consultant @ From June 1998 to September 2000 (2 years 4 months) Support Analyst @ From February 1998 to July 1998 (6 months) Technical Consultant / Networks Analyst @ From May 1997 to November 1997 (7 months) Bachelor of Computer Science ACS accredited @ Industry Certifications From 1997 to 2000 Athlone Boys High School Rene Morel is skilled in: Cloud Computing, Mobile Computing, Security Architecture Design, Information Security Management, Information Security, PCI DSS, Security, Solution Architecture, ISO 27001, Enterprise Architecture, Application Security, Vulnerability Management, Identity Management, CISSP, Network Security


Rene Morel’s Personal Email Address, Business Email, and Phone Number

are curated by ContactOut on this page.

10x your recruitment & sales conversations

Contact over 200M professionals
instantly by email or phone. Reveal
personal & work email addresses, as
well as phone numbers accurately with
our ContactOut Chrome extension.

In a nutshell

Rene Morel's Personality Type

Introversion (I), Sensing (S), Thinking (T), Judging (J)

Average Tenure

1 year(s), 4 month(s)

Rene Morel's Willingness to Change Jobs

Unlikely

Likely

Open to opportunity?

There's 88% chance that Rene Morel is seeking for new opportunities

Engage candidates 10x faster

Enjoy unlimited access and discover candidates outside of LinkedIn

Trusted by 400K users from

76% of Fortune 500 companies

Microsoft Nestle PWC JP Morgan Merck Rackspace WarnerMedia Randstad Yelp Google

The most accurate data ever

CCPA Compliant
GDPA Aligned
150M Personal Emails
300M Work Emails
50M Direct Dials
200M Professional Profiles
30M Company Profiles

Hire Anyone, Anywhere
with ContactOut today

Making remote or global hires? We can help.

  • 50 contacts/month
  • Works on standard LinkedIn only
  • Work emails, personal emails, mobile numbers
* 1 user per company limit

No credit card required

Try ContactOut for Free