As promised when we interviewed Simon earlier in the year, we spoke to him again in this episode to get some insight into the RMIA Risk Management Conference happening on the 13th to the 15th of May in Sydney. Since we last spoke, Simon and the Conference team have done a great job at securing some top-notch speakers and presenters and finalising what looks to be an awesome event. You'll hear Simon talk about what makes this year's conference so worthwhile, his 'superfan' crush on one of the spe...
Apr 08, 2024•21 min
In our chat, Rocco shares his vast experience in assisting companies to safely, and with due regard to the environment, retire or on sell end of life computer and network equipment. As you'll hear, the biggest challenge is not the physical equipment, but rather ensuring that all company confidential or sensitive data is removed from the devices and unable to be retrieved. Listen for his observation on where data sometimes turns up - where you'd least expect it! It is also great to hear that Rocc...
Apr 04, 2024•33 min
In this episode Brett & I speak to Simon Levy, CEO of the RMIA about his personal journey in Risk Management, his ambitions for the RMIA and the upcoming conference to be held in Sydney in May 2024. This is a refreshing discussion - Simon has been a risk practitioner for many years and brings that experience to his role as the CEO of the RMIA in promoting and improving the profession. He generously shares stories of the things that have influenced his career and helped shaped his now enormou...
Feb 19, 2024•47 min
Welcome back to the first podcast interview for 2024! In this podcast, I chat with Alex Bovee, CEO of ConductorOne, a firm dedicated to modernising how organisations manage access to their vital systems and data. In my experience, most organisations struggle with getting their access controls right - trying to navigate the fine line between being too restrictive and impacting business efficiency and too open and putting systems and data at risk. Alex shares his insights into the problem and how ...
Jan 25, 2024•31 min
In this final episode for 2023, I take a look back at the guests that have appeared on the show this year as well as recapping the Podcast Chats which were launched in January. Also, I share the shows statistics for 2023 - and am most grateful for you the listener getting us into the top 25% of podcasts on Buzzsprout! I trust you and yours have had a wonderful festive season thus far and, like I, are looking forward to a wonderful 2024! We'll return with our first interview for 2024 in the last ...
Dec 27, 2023•27 min
My discussion this episode is with Brittany Allen, Trust & Safety Architect at Sift and delves into the challenges of protecting us all as we live our online lives. Brittany is incredibly experienced in battling e-commerce fraud and is often consulted as a key source by major publications such as Fortune, Fast Company, Bloomberg, The Hill and Forbes. Her current role entails developing industry best practices and strategies and educating individuals and companies like on trust and safety in ...
Nov 30, 2023•35 min
In this discussion, Anthony Wilson and Brett Palmer discuss what good reporting looks like for Executives and Directors of organisations. Clearly there are regulatory requirements that Senior Management and Boards must meet and that must be supported by robust Risk Management reporting. The trick is always getting the balance right - too much detail is just as bad as too little. When reporting to these groups, materiality is key - the Board and the Executive need to be hearing about the Material...
Oct 27, 2023•17 min
In this podcast chat, Anthony Wilson and Brett Palmer talk about the critical link between Risk Management and Corporate Governance. In short, to be an effective and sustainable organisation, one can't exist without the other. And this applies whether it's a Private, Public, Not-For-Profit or Government entity. Firstly, Risk Management needs the imprimatur and indeed mandate of the Board - clearly articulating to Management and the organisation as a whole, its expectations in this regard. Second...
Oct 27, 2023•15 min
A must listen episode for all Senior Executives and Directors! In this discussion, Tim Weiss describes the challenges (and solutions) that organisations are facing in respect to Environmental, Social & Governance (ESG) requirements that are becoming even more 'front and centre' in the list of priorities. ESG represents a classic risk - with both threats and opportunities for organisations that take the time to do a thorough and appropriate risk assessment. One of the big challenges for organ...
Oct 26, 2023•34 min
In this episode, Brett and I discuss the Risk Management Gap Analysis - what it is, how you go about it, what are the key focus areas and why all organisations need to do it periodically. The key takeaway is that this is not putting a specific risk under the microscope but actually reviewing the Risk Management Program itself and comparing how its performing compared to the ambitions you set for the program. If you aren't achieving all you were hoping to out of your Risk Management Program, this...
Oct 12, 2023•18 min
This episode features a fascinating chat with Darren Gallop, CEO and co-founder of Carbide. The Carbide team believe that making security and privacy foundational to your business can accelerate your company’s growth trajectory. Darren started his career as a professional musician touring with his band(s) throughout Canada. That experience fueled an interest in the music’s business side, leading him to found his own record label, and eventually Marcato, a successful startup whose innovative tech...
Oct 05, 2023•34 min
All the cybersecurity challenges getting you down? Struggling to understand the threat much less what you can do about it? In this podcast with Patrick and Duane, you'll hear about cybersecurity with a refreshing use of plain-English and a dash of humour thrown in! That's not to say these guys don't take cybersecurity seriously - they are at the front line everyday helping firms better defend their data and digital assets and increasing the organisational resilience. And even better, if you want...
Aug 31, 2023•38 min
This episode of the Mastering Risk Management Podcast Chats addresses a common misunderstanding we see when talking to organisations that have reached the stage of making a decision as a result of their risk analysis / evaluation. Do we accept the risk, treat the risk, transfer the risk or not proceed with the activity that could see the risk eventuate (i.e. reject the risk)? One of the issues we commonly see if the misconception that for risk management to be deemed successful, every risk has t...
Aug 14, 2023•12 min
In this episode, Anthony and Brett discuss how to manage risk in projects - be they big or small! Regardless of size, projects or programs have some very similar 'core' risks - making them ideal for using historical project performance to inform the risk identification process of the new project. We discuss the key elements organisations need to consider when managing project risk, whether the organisation is a frequent executor or projects or whether they only arise periodically. We hope this e...
Aug 14, 2023•18 min
This would have to be one of the most fascinating conversations to date in the Mastering Risk Management podcast! Alan usually gives interviews to the likes of CNN, the BBC and Al Jazeera so to get him on the podcast is a real win for our listeners. And the conversation is well worth the listen. Alan takes us on a journey of what Artificial Intelligence is, how it's being deployed and why we all need to get involved. AI is a defining moment in our history and to not be a part of it risks being l...
Jul 31, 2023•1 hr 7 min
In this episode of the podcast chats, Anthony and Brett discuss the link between a risk management and insurance. Whilst having a robust risk management program is about more than just saving money (achieving the business objectives anyone?), when it comes to securing the right insurance at the best value, it adds significant value. Listen to the episode to hear how! As always, we appreciate your feedback and suggestions for guests to interview or subjects to discuss in the podcast chats. Send u...
Jul 11, 2023•15 min
This episode is another must listen for those wanting to ensure they are putting in place the right controls to secure both business and personal data. My guest is Garret Grajek, President and CEO of YouAttest, a cloud-based access review engine that provides identity and security compliance for all resources. We discuss how failing to manage systems access is one of the fundamental mistakes organisations can make yet is one of the easiest to fix. Garret challenges us to reflect on our organisat...
Jun 29, 2023•33 min
In today's chat, Brett and I discuss the importance of controls in risk management - and specifically, critical controls. These are the controls that if missing or ineffective, will almost certainly lead to the risk eventuating, or if a mitigating control, the consequences being worse than they needed to be. Key to having a great control environment is providing assurance that the controls are in place and effective - for some critical controls, such as the Business Resilience arrangements for t...
Jun 13, 2023•12 min
We hear about it happening all the time. An organisation that seems to have a robust approach to protecting its systems and data is compromised by cyber criminals using a third-party vendor as the attack vector. My guest on this episode is Paul Valente, CEO and co-founder of VISO Trust, an AI powered third party risk platform that aids IT Security teams access risk intelligence on an organisations third party vendors. Paul is well qualified to speak on the subject - he holds multiple industry de...
Jun 01, 2023•38 min
In this chat, Brett and Anthony discuss the sometimes-confusing topic of Risk Management Frameworks. They have seen organisations where the RMF is a single document of hundreds of pages - so big in fact that it is practically useless to employees looking for guidance. The ABM Risk approach to RMF's is different - pragmatic, practical and importantly, bespoke to the needs of the organisation. You also hear, if you didn't already know, that paper and PDF based RMF's are history. Enjoy the chat! Se...
May 17, 2023•21 min
There has been a lot of talk lately on the best approach to mitigating the risk of cyber-attack - including on this podcast. My guest in this episode has a very different take on how best to defend an organisation from this incessant risk. Having recently published his first monograph, Dr Patrick Scolyer-Gray’s career has been devoted primarily to the design, development and implementation of Human-Centric Cybersecurity (HCCS), a methodological framework that extends and improves upon the conven...
May 04, 2023•1 hr 1 min
This discussion will be of interest to all leaders, not just those in risk management. As recent events around the world have shown, the spectre of cyber security incidents haunts almost every organisation and manifests itself in way too many others. My guest for this chat is Nigel Phair - technologist, advisor, academic and company director. Nigel's deep expertise in cyber security has seen him in high demand by boards and executives looking to take decisive action to protect themselves from at...
Apr 06, 2023•48 min
My guest for this episode is a little different from previous guests. Matt Phillips is the Founder and CEO of Matt Phillips Coaching and as a former professional baseball player in Austria’s Bundesliga (first league) and Division-1 baseball player in the United States, he realized that peak performance requires a dominant “inner game”. Matt has taken his learnings and turned it into the High Performance Leadership Program and over the last 10 years has worked with leading organisations to help t...
Mar 01, 2023•43 min
I'm releasing this episode 'out of sync' as Alex is visiting Australia in late February / early March and our Australian listeners have this chance to hear Alex's views on risk management. He'll be hosted by the RMIA on the 28th February in Perth and 7th March in Melbourne - see the RMIA website for details. Alex is often referred to as 'the most controversial person in risk management' due to his outspoken and unwavering views on what risk management is and isn't. My aim in creating this podcas...
Feb 22, 2023•42 min
One of the most frequently asked questions we get is where should the organisation's risk resource report? The answer, like most things related to risk management, is that there isn't a 'one size fits all' answer. Reporting lines for risk really need to be bespoke to the organisation, its culture, the maturity of its risk function and a myriad of other factors - listen to the episode for more detail. We also touch on some of the challenges organisations have in resourcing the risk function and w...
Jan 27, 2023•19 min
As you'll hear in this chat, Brett and Anthony dispel the myth that risk management is all about negatives or things that can threaten the organisation's future. Indeed, if that is the approach of your risk function, then they are only doing half the job! Risk management, done well, is about enabling the organisation to take more, smart risks. In fact, if organisations don't take risks, they will quickly cease to exist or become irrelevant in their industry. We'll talk about the techniques we us...
Jan 27, 2023•11 min
In this episode, Brett and Anthony start at the beginning and discuss what risk management is (and isn't) and why its so important for an organisation's future. They talk about some of the common misunderstandings about risk management, and provide clarity on what good looks like. There is also a discussion about what role different people across the organisation play in risk management (hint: everyone manages risk!). Hope you enjoy the episode and don't forget to touch base with us if you'd lik...
Jan 27, 2023•11 min
In this episode, I have a fascinating chat with Jennifer Geary, a fellow author of a risk management book, and experienced COO and CRO. She has had over 25 years’ experience across diverse industries from financial services to not-for-profit. We talk about Jennifer's journey into senior risk roles, and she graciously shares her experience and learnings along the way. Jennifer has also published a book on the role of the Chief Operating Officer, so in this chat we get the benefit of her perspecti...
Jan 24, 2023•30 min
An exciting change of programming for 2023! In this episode, Anthony Wilson and Brett Palmer talk about the Podcast Chats they'll be recording and releasing in 2023. The discussions will cover all things risk management - and whilst we have a lot to talk about, as always, we welcome your thoughts and ideas on topic suggestions. These chats will slot in between the regular guest interviews so look out for a new guest interview in the first week of each month and a risk Podcast Chat in the third w...
Jan 16, 2023•16 min
I recently had the pleasure of interviewing W. Curtis Preston , AKA Mr. Backup, as a guest of the Mastering Risk Management Podcast. Curtis is an expert in backup & recovery systems; a space he has been working in since 1993. He has written four books on the subject and is the Chief Technical Evangelist at Druva , a SaaS platform that brings the security of the public cloud to data protection. He is the host of the Restore it All Podcast , and the founder and webmaster of backupcentral.com ...
Jan 05, 2023•37 min
