Wouter Veugelen

Wouter Veugelen is an information security and technology expert and former Chief Information Security Officer (“CISO”) with more than 20 years of international professional experience in cybersecurity and technology strategy, program delivery, operations, due diligence, offensive security, incident response and complex investigations.

Mr. Veugelen is a sought-after expert witness in cybersecurity, privacy and technology, frequently engaged in matters involving cybersecurity incidents, data breaches and complex technology-related investigations or disputes. He combines extensive and in-depth technical expertise with the ability to synthesise complex information into clear, high-quality expert reports. He also assists organisations in responding to significant cybersecurity incidents.

Prior to joining FTI Consulting, Mr. Veugelen held group CISO positions for two large Australian Securities Exchange (“ASX”) listed organisations. At Santos, one of the largest companies in Australia, he was responsible for consolidating security strategies, teams, operating models and security technology environments following the Oil Search and Santos merger. Before the merger, Mr. Veugelen created a cybersecurity strategy and program that resulted in a 26-point increase of the information and cybersecurity score on the Corporate Sustainability Scorecard for the Dow Jones Sustainability Indices (“DJSI”), positioning Santos in the 94th percentile for information and cybersecurity. Additionally, he served as the first CISO at Healius, one of Australia’s largest medical organisations. There, he established holistic group information security capabilities from the ground up.

Mr. Veugelen also has 12 years of experience working for Big Four consulting firms, providing cybersecurity services for some of the largest Australian and global organisations. As a Director at one of these firms, he was the national lead of penetration testing and security architecture capabilities, leading large annuity-based services for financial services and telecommunications organisations.

Mr. Veugelen holds an M.Sc. in Information and Communication Security from Sweden's most prestigious technical university. He has obtained and actively maintained CISSP, CISM, CISA, SABSA Foundation and several SANS GIAC certifications. In addition, he frequently speaks at cybersecurity conferences and events and has previously presented at RSA and SANS conferences.

Awards & Recognition:

• Cybersecurity Consultant of the Year, Australian Cyber Security Awards, Cyber Daily (2025)
• Finalist: Cybersecurity Consultant of the Year, Australian Cyber Security Awards, Cyber Daily (2024)
• Global Top 100 Leaders in Information Security, Corinium Intelligence (2022)
• Honorary Life Membership, Australian Information Security Association ("AISA")