Influencing the Board – A Fool’s Errand

 

As the information security industry matures and information security increasingly becomes recognized as an important aspect of any enterprise organisation, there is greater and greater drive and aspiration to be able to ‘influence the board’. Whether you’re a partner at a Big4 consulting firm, a small independent business operator or even an internal Security Manager or CISO, attaining influence of an enterprise board is considered to be crucial to the success of any security programme.

 

Unfortunately, this approach is misguided and typically driven as a result of a misunderstanding of what the role of the board and its members are in defining and guiding the strategy of an organization. This typically results in wasted time, effort and precious resources. Worse yet, attempting to influence the board can have unintended consequences and actually impair your ability to effect organisational change.

 

This presentation will help attendees to better understand the role of the board, how boards function and why attempting to influence the board is largely a waste of time. We will also discuss the underlying psychology of influence and why it works; identify appropriate stakeholders within a typical enterprise organisation and how to apply the psychology of influence to those key stakeholders – ensuring that your security programme has the best chance of holistic adoption and ultimately, success.

 

CPE Hours

1.5 hours, based on the assumption you have signed the attendance sheet when attending

 

Registration and Admittance

•           Due to our sponsoring partner’s facilities, access requirements and for catering purposes, we request that you register for this event to ensure you are able to attend.

•           Registration to this session is open and free of charge to all current and prospective ISACA members.

•           A registration door prize will be drawn from the list of duly registered attendees.

Agenda

 

 5.30pm – Registration and session sign-in – required to receive applicable CPE credits

6:00pm – START – Welcome, Introductions, Agenda

6:05pm – Monthly PD Session, Questions & Answers

6:50pm – The Soapbox – Chapter Updates, Announcements and Issues of interest to members

7:00pm – 15min PD Session

7:15pm – Networking opportunity – drinks and finger food to be served

8.00pm – Event Ends

 

Speaker

Craig Searl

 

Craig is Co-Founder and Chief Apiarist (CEO) of Hivint and SecurityColony. Craig has over 15 years of experience in the security industry, working in the finance, government, telecommunications and infrastructure sectors. An alumni of the SIFT and Stratsec organisations, he was heavily involved in their acquisition and transition into BAE Systems Applied Intelligence. Prior to founding Hivint, Craig was the regional leader of BAE Systems’ cyber security business, with management responsibility for up to 150 staff across Australia, Malaysia and Singapore.

 

With a strong technical background, Craig now works with senior executives to better understand how security can provide significant benefits to their business, and implementing and overseeing programs to achieve this.

 

Craig is a Graduate of the AICD’s Company Director’s Course, holds a B.CompSci from The University of Newcastle, is a practicing PCI QSA and a CISSP. Well known in the industry, Craig has appeared on the 7:30 Report and has been quoted in the AFR, SMH, The Age, CSO Magazine and Australian IT on security-related topics. Craig regularly presents at industry and sector-specific conferences, recently including the AusCERT, ACSC, WAckhon, Cyber In Business, Security in Government (Singapore) and CarolinaCon (USA).

Membership & Certification Information Session

Invitation to a FREE Information Session

Tuesday, 18 September 2018

Membership for IT Professionals, Students and Educators

With over 140,000 members and 217 chapters established in over 188 countries worldwide, ISACA is internationally recognised as a high-performing organisation that addresses global, national and local information systems and business issues.

With nearly over 1,100 members in Melbourne from over 200 organisations, ISACA Melbourne chapter offers a tremendous wealth of knowledge, experience and support to our members.Our chapter  hosts monthly professional development sessions on various topical issues in IT security, audit, governance etc. and provides an outstanding forum to network with some of the most talented information systems audit and control professionals in the area.

Types of Membership:

  1. Professional Membership

For Individuals interested in or employed in IT audit, information security risk and IT governance fields, ISACA professional membership equips you with the resources, training and education you need to expand your professional development opportunities.

 

  1. Recent Graduate Membership

For those that have just graduated from a college or university within the last 2 years, ISACA is proud to offer this brand new membership category.  Position yourself for success in your chose field by taking advantage of this unique membership opportunity!

 

  1. Student Membership

Student membership is for individuals currently enrolled full-time in accredited undergraduate and graduate programs. Learn about student qualifications to join. Become a Student Member and connect with industry leaders who can help you reach your career goals.

 

Date              :    Tuesday, 18 September 2018

Time             :    Registration from 5:15pm for a 5:30pm start.   Concludes at 6:30pm

Location       :    Chartered Accountants Australia & New Zealand (Level 18, Bourke Place, 600 Bourke Street, Melbourne 3000)

Cost              :    Registration for this event is FREE.

 

Agile and Risk – Can they work together?

11 September 2018
5:30 pm – 8:00 pm

Venue:   EY Melbourne Office

Address:

8 Exhibition Street, Melbourne, Victoria, 3000, Australia

 

ANZ recently adopted agile management technique and rolled out its New Ways of Working (NWOW). ANZ staff have joined cross functional tribes, squads and chapters based around shared goals with specific customer missions. As part of this new way of working, the 1st line assurance staff have been formed into a Centre of Expertise to support either the Tribes in delivering efficient, optimal and innovative risk management, through providing operational risk and assurance expertise to protect shareholders, customers and bankers.

 

The presentation will discuss the Why, What and the How of this Agile – New Ways of Working for operational risk teams. The speakers will share their experience and challenges of adopting agile practices for a risk function.

 

CPE Hours

1.5 hours, based on the assumption you have signed the attendance sheet when attending

 

Registration and Admittance

•           Due to our sponsoring partner’s facilities, access requirements and for catering purposes, we request that you register for this event to ensure you are able to attend.

•           Registration to this session is open and free of charge to all current and prospective ISACA members.

•           A registration door prize will be drawn from the list of duly registered attendees.

Agenda

• 5.30pm – Registration and session sign-in – required to receive applicable CPE credits
• 6:00pm – START – Welcome, Introductions, Agenda
• 6:05pm – Monthly PD Session, Questions & Answers
• 6:50pm – The Soapbox – Chapter Updates, Announcements and Issues of interest to members
• 7.00pm – Networking opportunity – drinks and finger food to be served
• 8.00pm – Event Ends

About the Speakers

Scott Radburn

Scott heads up the Digital & Technology Assurance Chapter which services the five Tribes that provide ANZ’s Digital offering in Australia. He has a diverse skill set operating as both specialist and generalist in his career with particular strengths in information security, technology and project delivery.

Leon Miri

Leon leads first line operational risk and compliance for the Customer Self Service (CSS) tribe under the Digital & Technology Assurance Chapter. He has extensive experience delivering cyber security and digital risk management capabilities in highly regulated global organisations enabling delivery of high value products and services, whilst managing risks and and enhancing digital trust and reputation.