John Macpherson

Partner, Risk Advisory based in Sydney

John Macpherson is an Ashurst Risk Advisory partner in Australia

John is the leader of Ashurst's cyber response team working with clients to prepare for, and respond to high impact cyber incidents. As a strategic advisor to Boards and leadership teams in Australia and internationally, he supports them in their recovery from acute crisis.  Alongside the Ashurst risk and legal teams, he has advised on many of the high profile cyber-attacks across Australia and the United Kingdom.  He regularly helps clients build sustainable resilience frameworks and risk-led approaches to cyber and digital security, bridging expertise in crisis management and business continuity, stakeholder management and communication, customer remediation and complaints, data governance and privacy, third party risk management, and regulatory notifications and investigations.   Throughout a 20 year career in international security and crisis management, John has been retained to assist clients recover from high impact incidents and critical issues affecting operations and reputation, including ransomware attacks and cyber breaches, commercial and joint venture disputes, CEO misconduct and corporate governance failures, environmental disasters, regulatory enforcement and cross-broader corruption, intellectual property theft and corporate espionage. John has extensive experience advising clients on the successful implementation of risk, compliance and business operations in challenging, high risk markets. He has held leadership roles in China and Asia Pacific and brings expertise in managing complex reputation, social, geo-political and regulatory risks throughout Asia. He is a leading expert in managing the risk of unlawful state-actor detention and regulatory interference in opaque nation states.

John is the leader of Ashurst's cyber response team working with clients to prepare for, and respond to high impact cyber incidents. As a strategic advisor to Boards and leadership teams in Australia and internationally, he supports them in their recovery from acute crisis. Alongside the Ashurst risk and legal teams, he has advised on many of the high profile cyber-attacks across Australia and the United Kingdom. He regularly helps clients build sustainable resilience frameworks and risk-led approaches to cyber and digital security, bridging expertise in crisis management and business continuity, stakeholder management and communication, customer remediation and complaints, data governance and privacy, third party risk management, and regulatory notifications and investigations.

Throughout a 20 year career in international security and crisis management, John has been retained to assist clients recover from high impact incidents and critical issues affecting operations and reputation, including ransomware attacks and cyber breaches, commercial and joint venture disputes, CEO misconduct and corporate governance failures, environmental disasters, regulatory enforcement and cross-broader corruption, intellectual property theft and corporate espionage. John has extensive experience advising clients on the successful implementation of risk, compliance and business operations in challenging, high risk markets. He has held leadership roles in China and Asia Pacific and brings expertise in managing complex reputation, social, geo-political and regulatory risks throughout Asia. He is a leading expert in managing the risk of unlawful state-actor detention and regulatory interference in opaque nation states.

Latest Insights

Business Insight

Changes to the SOCI Act are on the horizon

22 Oct 2024
Discover more
Business Insight

Redefining cyber readiness – Three ways to outpace Australia's new cyber laws

10 Oct 2024
Discover more
Business Insight

Action Initiated? Action initiation under Australia's Consumer Data Right becomes law

05 Sep 2024
Discover more
Business Insight

Australia’s Digital ID Act and a new Trusted Exchange (TEx) – an update and a deep dive

16 Aug 2024
Discover more
Legal development

Resetting Australia's Consumer Data Right

12 Aug 2024
Discover more
Business Insight

A clearer picture of the coming Cyber Security Bill and critical infrastructure reforms

06 Aug 2024
Discover more
Business Insight

Blue Screen of Death: Global CrowdStrike outage is a call to action

25 Jul 2024
Discover more
Legal development

SOCI CIRMP – are you ready?

15 Jul 2024
Discover more
Business Insight

Privacy risks for AI and ADM in an evolving regulatory ecosystem

Discover how to align AI and ADM with rising regulatory demands and upcoming privacy reforms.

07 May 2024
Discover more
Business Insight

Clarifying the protected information regime under the SOCI Act

22 Feb 2024
Discover more
Legal development

What's Ahead: 2024 Digital Economy in Australia

07 Feb 2024
Discover more
Business Insight

Board priorities in 2024

11 Jan 2024
Discover more