In this episode of the podcast chats, Anthony and Brett discuss the link between a risk management and insurance. 

Whilst having a robust risk management program is about more than just saving money (achieving the business objectives anyone?), when it comes to securing the right insurance at the best value, it adds significant value.

Listen to the episode to hear how!

As always, we appreciate your feedback and suggestions for guests to interview or subjects to discuss in the podcast chats. 

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

This episode is another must listen for those wanting to ensure they are putting in place the right controls to secure both business and personal data. My guest is Garret Grajek, President and CEO of YouAttest, a cloud-based access review engine that provides identity and security compliance for all resources. 

We discuss how failing to manage systems access is one of the fundamental mistakes organisations can make yet is one of the easiest to fix.

Garret challenges us to reflect on our organisations Identity Governance by asking ourselves the following questions:

1. Who has access to our systems?
2. Do they have the right level of access?
3. Can you certify / attest that this access information is current and accurate?

If you can't answer these questions, or you are unsure about any of them, have a listen to this episode - you'll get some great insight in how to manage this fundamental cybersecurity requirement.

As always, enjoy the episode!

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

In today's chat, Brett and I discuss the importance of controls in risk management - and specifically, critical controls.

These are the controls that if missing or ineffective, will almost certainly lead to the risk eventuating, or if a mitigating control, the consequences being worse than they needed to be.

Key to having a great control environment is providing assurance that the controls are in place and effective - for some critical controls, such as the Business Resilience arrangements for the organisation,  this is best tested using facilitated exercises / scenarios.

Enjoy this episode and don't forget to keep submitting your ideas for future podcast chats, or guest interviews via the ABM Risk Partnership website.
 

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

We hear about it happening all the time. An organisation that seems to have a robust approach to protecting its systems and data is compromised by cyber criminals using a third-party vendor as the attack vector.

My guest on this episode is Paul Valente, CEO and co-founder of VISO Trust, an AI powered third party risk platform that aids IT Security teams access risk intelligence on an organisations third party vendors.

Paul is well qualified to speak on the subject - he holds multiple industry designations including Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM) and ISO27001 Lead Implementer.

He also has over 20 years of experience in technology, financial services, e-commerce and information security innovation. What's particularly great is that Paul speaks plain English when discussing information security! 

I'm sure you'll find this episode extremely valuable, whether you're in the IT space or as a risk professional wanting to know more about protecting your business.

You can contact Paul at [email protected] or alternatively, visit the Viso Trust website at www.visotrust.com - they can even organise a demo!

Enjoy the episode!
 

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

In this chat, Brett and Anthony discuss the sometimes-confusing topic of Risk Management Frameworks. They have seen organisations where the RMF is a single document of hundreds of pages - so big in fact that it is practically useless to employees looking for guidance.

The ABM Risk approach to RMF's is different - pragmatic, practical and importantly, bespoke to the needs of the organisation.

You also hear, if you didn't already know, that paper and PDF based RMF's are history.

Enjoy the chat!

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

There has been a lot of talk lately on the best approach to mitigating the risk of cyber-attack - including on this podcast. My guest in this episode has a very different take on how best to defend an organisation from this incessant risk.

Having recently published his first monograph, Dr Patrick Scolyer-Gray’s career has been devoted primarily to the design, development and implementation of Human-Centric Cybersecurity (HCCS), a methodological framework that extends and improves upon the conventional techno-centric ‘layered’ approach to cybersecurity.

In his current role, Patrick leads the Human-Centric Cybersecurity (HCCS) consulting practice at the Expert Management Agency (EMA) 460degrees. Throughout his career, Patrick has maintained that the key to achieving a stronger security posture lies not in technology, but instead in social and cognitive elements, such as culture, decision-making and behaviour.

This is a fascinating discussion and a must listen for those that want to understand another critical element to cyber defense.

Patrick's Contact details:

LI: linkedin.com/in/dr-patrick-scolyer-gray

E: [email protected]

W: https://www.460degrees.com/expert/dr-patrick-scolyer-gray/

Offers:

Human-Centric Cybersecurity (HCCS): A Framework: https://lnkd.in/g3UnJgu9 (this is a whitepaper with the full HCCS methodology)

Artistic Works of Fiction and Falsehood: An Analysis of the Production and Consumption of Knowledge on 4chan: https://www.amazon.com.au/dp/B0BF9MDSV4 (Kindle version. Also available as a paperback and a hardback edition).

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

This discussion will be of interest to all leaders, not just those in risk management. As recent events around the world have shown, the spectre of cyber security incidents haunts almost every organisation and manifests itself in way too many others.

My guest for this chat is Nigel Phair - technologist, advisor, academic and company director. Nigel's deep expertise in cyber security has seen him in high demand by boards and executives looking to take decisive action to protect themselves from attack.

Nigel is also a regular presence in the media, helping people understand how they can take steps to protect themselves and their data from these attacks. He is the author of three books on the international impact of cybercrime - well informed by his over 20 years of service in the Australian Federal Police rising to the rank of Detective Superintendent in the Australian High Tech Crime Centre.

This is a must listen episode for individuals and organisations wishing to shore up their defenses against this ever-present threat.

Enjoy the episode!

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

My guest for this episode is a little different from previous guests. Matt Phillips is the Founder and CEO of Matt Phillips Coaching and as a former professional baseball player in Austria’s Bundesliga (first league) and Division-1 baseball player in the United States, he realized that peak performance requires a dominant “inner game”.

Matt has taken his learnings and turned it into the High Performance Leadership Program and over the last 10 years has worked with leading organisations to help them transform.

As leaders in the risk management discipline, this chat with Matt might just be what you need to take your effectiveness to the next level!

Find out more at the link below:
www.mattphillipscoaching.com

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

I'm releasing this episode 'out of sync' as Alex is visiting Australia in late February / early March and our Australian listeners have this chance to hear Alex's views on risk management. He'll be hosted by the RMIA on the 28th February in Perth and 7th March in Melbourne - see the RMIA website for details.

Alex is often referred to as 'the most controversial person in risk management' due to his outspoken and unwavering views on what risk management is and isn't. My aim in creating this podcast was to get a variety of opinions and experiences through our guests, so whilst many will disagree with him, it is good to hear alternative views.

Personally, and as is the case with ABM Risk Partnership, we take a balanced view - there are aspects of what Alex calls RM1 that are applicable and very useful, especially for organisations starting the journey. Likewise, quantification of risks (Alex's RM2) is equally important for those Material risks to the organisation.

Alex has a host of materials available so you can make up your own mind - see the links below:

YOUTUBE: https://www.youtube.com/channel/UCog9jkDZdiRps2w27MZ5Azg
BLOG: https://riskacademy.blog
LINKEDIN: https://www.linkedin.com/in/alexsidorenko/

Alex also mentioned the Advanced Risk Governance course during our chat - link is below:
https://courses.dcroi.org/courses/alex-sidorenko?ref=bda26d 

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!

One of the most frequently asked questions we get is where should the organisation's risk resource report? The answer, like most things related to risk management, is that there isn't a 'one size fits all' answer.

Reporting lines for risk really need to be bespoke to the organisation, its culture, the maturity of its risk function and a myriad of other factors - listen to the episode for more detail.

We also touch on some of the challenges organisations have in resourcing the risk function and we talk about some alternatives.

Please let us know what you think of the Podcast Chats and what subjects you'd like us to discuss in future.

Send us a text

Contact ABM Risk Partnership to optimise your risk management approach:

• email us: [email protected]
• Tweet us at @4RiskCme
• Visit our LinkedIn page https://www.linkedin.com/company/18394064/admin/

Thanks for listening to the show and please keep your guest suggestions coming!