Cybersecurity isn't just a tech issue, nor a people issue - it’s both. It isn’t magic or hopeless.
Lesley Carhart is Principal Industrial Incident Responder for Australia at Dragos Inc., where she leads frontline response to cyber incidents and proactively hunt threats within Industrial Control Systems (ICS) environments. Their work is focused on protecting the critical infrastructure that underpins modern life — from electricity and water to safe industrial operations.
A recognised subject matter expert in cybersecurity incident response, Lesley is a regular keynote speaker at industry conferences, universities and executive forums, and is frequently sought out by media for expert commentary. They previously served four years as a Principal Incident Responder with Dragos before stepping into senior leadership roles, managing incident response and digital forensics professionals across North America and now leading specialist teams across Australia and the Asia–Pacific region. Their teams investigate commodity malware, targeted intrusions and insider threats affecting complex industrial networks.
Lesley is also an instructor with the SANS Institute, teaching ICS515: ICS Visibility, Detection, and Response, and helping organisations build practical detection and response capabilities in operational technology environments.
Prior to joining Dragos, Lesley led incident response at Motorola Solutions, bringing deep experience from both corporate and mission-driven environments. They are honoured to be retired from the United States Air Force Reserve, and have received industry reminders such as “DEF CON Hacker of the Year”, “SANS Difference Maker” and “Power Player” from SC Magazine.
Beyond their professional work, Lesley is passionate about growing the cybersecurity community. Lesley regularly volunteers their time to run résumé and interview clinics for job seekers, and outside of technology can often be found teaching as a youth martial arts instructor.
Lesley brings to the stage a rare combination of technical depth, operational leadership and genuine warmth — delivering practical insights with clarity, credibility and approachability.
Talking Points
The Industrial Cybersecurity Landscape.
Critical infrastructure, such as water, electric power, oil and gas, and manufacturing are crucial to our modern society. Unfortunately, the cyber threats facing them are increasing - from state actors pre-positioning for future attacks, to ransomware gangs out for the money, to disgruntled insiders. As industrial technology (ICS) has converged with information technology and become increasingly connected, these systems are increasingly ripe for abuse. Lesley has spent a career responding to and conducting forensic investigations of intrusions into industrial computer networks, and will discuss the current threat landscape, proper preparation for cyberattacks against industrial networks, and what we must do as a society to improve the cybersecurity of our most critical systems.
The Industrial Cybersecurity Landscape.
Building the Cybersecurity Talent Pool.
The Cybersecurity industry is facing a critical shortage of skilled talent, as cyberattacks and their costs to businesses increase dramatically. Additionally, these positions are well-paying, interesting, and deeply impactful to society. Unfortunately, swathes of talent are not being reached - from underprivileged communities, to underrepresented minorities, to veterans. Lesley has been hiring, mentoring, and training cybersecurity talent for over a decade, and runs career and résumé clinics for prospective cybersecurity professionals across the United States. Learn how to select a cybersecurity niche, choose the right training, and seek a balanced and enjoyable cybersecurity career!
Building the Cybersecurity Talent Pool.
Building an Incident Response Program.
We do our best to build defenses to prevent cyberattacks in our organizations, but the reality is that any organization can be the victim of a cyberattack. It is always important to prepare for a worst case scenario, and that includes cybersecurity incidents. Lesley has spent a career responding to and investigating diverse cyberattacks, and professionally trains and tests the capabilities of incident response teams. This talk will discuss how to build a successful and healthy incident response program from a strategic, logistical, and tactical level - from constructing essential documentation, to engaging appropriate resources, and measuring and testing success.
Building an Incident Response Program.
Understanding Modern Cyberattacks: Thinking Like an Adversary.
Why do we have to complete cybersecurity awareness training? Why does our organization block specific websites? it's not just to frustrate us. There's really an important purpose! Lesley will break down the basics of modern cyberattacks - who conducts them, their typical lifecycle, and what the general objectives of adversaries are. To understand defense, we have to understand the adversaries we face in defending our homes and businesses. We will take a journey together into thinking like a cybercriminal, in order to understand why we put important cybersecurity measures in place in both our personal lives and in our work lives.
Understanding Modern Cyberattacks: Thinking Like an Adversary.
Latest News
Neale Daniher: A Legacy That Will Outlast The Beast
Three Stories, One Expert: What Dr Zac Seidler's Week in the Media Tells Us About Men Right Now
How to Measure Event ROI: Why 72% of the Industry Says Outcome Measurement Is Now Essential
