Frequently Asked Questions

What is SABSA?

SABSA is a proven methodology for developing business-driven, risk and opportunity-focused Security Architectures and is described in detail by the SABSA Institute.

What is COSAC?

COSAC is a residential conference focusing on information security, Architecture and SABSA delivering value to our industry for the past 28 years. Details on COSAC can be found here.

Is the SABSA Founders Bursary a registered charity?

Yes. The SABSA Founders Bursary has been registered by the Australian Charities and Not-for-profits Commission (https://www.acnc.gov.au/). Registration date: 28 January 2020. ABN: 85273024644.

Why the focus on Gender Diversity?

Women are underrepresented with the Information Security industry with a 2017 study indicating that women make up just 11% of the Cyber Security workforce. We are therefore losing access to a huge talent pool. The reasons for the imbalance are numerous but one is associated with access to education and role models at early career stages. 

What opportunities does attendance at COSAC provide for Women?

The Bursary attempts to address the gender imbalance within the industry through providing opportunities to attend SABSA training and COSAC where women make up about 33% of the speakers. This provides exposure to female role models and networking opportunities over a 4-day period where bursary recipients can meet, learn from and build mentoring relationships with experienced women in information security.

Does the Bursary Award cover travel costs?

The Bursary expects to be able to provide assistance with travel costs and this will be addressed on a case-by-case basis. We ask, in the application process, what you expect your travel costs to be so we can make these assessments.  The reason we do not provide a set amount is that the requirements for travel will differ widely between applicants. 

Who is the target audience for a Bursary Award?

We are aimed at improving diversity within the information security industry and SABSA through providing opportunities to women, those who identify as non-binary, and those from other diverse backgrounds who may require the financial support to attend training or COSAC. 

Do I already need to be working in Information security?

Whilst preference will be given to people already working in information security, we will consider applicants from other ICT fields or outside the industry where they can demonstrate their clear transition path into information security.

How many years’ experience should I already have?

A slight preference will be given to applicants with some (2 -4 years) experience in information security but years of experience is not a key criteria in the selection process.