Greg Porter Advisory website is a commentary on current IT and business issues aimed at Board Directors and C-Suite executives, based on my experience in a variety of industries and organisational types over many decades.
The objective of this site is to assist board directors to more fully understand current issues that demand different responses from those of the past and to assist them to make improved decisions and develop better strategies for the future. Advice is available by way of access to a variety of newsletters, white papers, a blog on current issues, cyber security advice (including questions and answers that need to be asked), lessons learned from good and bad practice, regulatory requirements from ASIC, and APRA.
IT has always been associated with much hubris and some unrealistic expectations, and another of this site’s objectives is to undo this hubris and increase realistic understanding.
The current cyber threat environment is a major issue to all organisations irrespective of the size, purpose, type and geography. This site enables our subscribers to have access to a cyber security guide, outlining the questions you need to ask operational executives and a guide as to the answers you should expect. This includes guidance on ASICs requirements, and the recommendations they make about Cyber Security. Apra also have requirements of organisations and these are also addressed. We have defined a cyber security framework that will allow you to focus on what is important and a basis for decision making by operational executives that has the board’s backing.
Over the past five or so years, there have been an increasing number of IT failures across a range of industries and organisational types. At the same time, organisations are increasingly dependent on IT, just as the human body is dependent on it’s nervous system. However, it is quite clear from some of the recent IT failures that in many cases, organisations need to take a different approach to risk management and strategy, to either prevent large failures and/or to minimise the impact of failure on an organisation, while at the same time to assist in the recovery of operations and systems. This is just not strategy to develop a DRP or a BCP but requires consideration of how a business operates to thwart unknown threats (there are more and more cases of the unthinkable occurring). We have developed a paper on the Failure of Imagination to assist in discussion of this topic.
We have an experienced team who can brief and/or advise your boards and senior executives on cyber security, data protection and planning for today’s operating environment.
Contact us to see how we can help you.
Regards
Greg Porter
Director
Greg Porter Advisory