For every organisation, the integration of risk appetite and strategy is crucial. When risk appetite is considered separately from strategy, the outcome can be misaligned risk appetite, misaligned risk management and missed opportunities ..read more

Australia’s Essential 8 framework, developed by the Australian Cyber Security Centre (ACSC), provides organisations with a set of foundational cybersecurity measures. However, as cyber threats become more sophisticated, we believe that there are strategic expansions in line with global best practice that would enhance national cyber resilience ..read more

The role of Chief Risk Officer (CRO) brings challenges and responsibilities that can seem daunting, whether you're new to the position or an experienced professional looking to refresh your approach. You’re looking to build a risk management machine that operates efficiently across all levels of your organisation – but you can’t do that without getting the individuals in the organisation onside ..read more

Writing a book is on many people’s bucket list. I had it on mine many years ago and was blessed to be able to tick it off in 2011 with A Short Guide to Operational Risk. Now some 13 years later I get to tick it off again! This time with Risk Appetite for Dummies: Protecht Special Edition, with the wonderful help from my Protecht colleagues and my fellow author, Brett McLaughlin from ‘For Dummies ..read more

Imagine a scenario where the internet grinds to a halt for not just one organisation but entire nations. This isn't a hypothetical situation; it's a reality that struck 13 African countries last month due to severed subsea communication cables. It’s an event you couldn’t predict – or could you ..read more

As organisations increasingly rely on sophisticated algorithms to guide everything from financial investments to operational efficiencies, the stakes for accuracy, reliability, and integrity of these models escalate exponentially ..read more

APRA’s July 2024 date for entities to define critical operations, and identify material service providers is rapidly approaching, with defining tolerance levels set to follow. Protecht’s CPS 230: Road to readiness webinar, led by Protecht's Michael Howell and Hela Ebrahimi, considered the practical steps needed to navigate these requirements successfully.  ..read more

Staying ahead in risk management means continually questioning the adequacy of our tools and processes. We need to understand when our existing systems, perhaps cobbled together from spreadsheets and disparate software, or maybe just designed for a smaller and less complex business, no longer meet our organisations’ needs ..read more

The existing CPS 234 and upcoming CPS 230 Australian Prudential Regulation Authority (APRA) standards together represent a huge leap in strengthening the financial service’s industry’s operational and information security risk frameworks ..read more

Stepping into the role of a Chief Risk Officer (CRO) marks the beginning of a journey that is as rewarding as it is challenging ..read more