Practical thinking on risk, technology, and leadership — written by practitioners who have held the positions you hold.
Here's the risk no one puts in the register: your risk management function. The machinery built to protect the business has grown large enough to slow it down — and in some cases, to stop it entirely.
Cyber risk is no longer a technology problem delegated to the CISO. Boards are now legally and reputationally accountable. Here's what that shift demands in practice.
When an AI system fails — and it will — who answers for it? If you can't name that person today, you don't have a governance gap. You have a governance vacuum.
Traditional BCPs were built for discrete, recoverable events. Today's threat landscape demands something fundamentally different — organizations that absorb disruption and adapt in real time.
The regulatory environment has never moved faster. From DORA to emerging AI mandates, here is how experienced compliance leaders are staying ahead without paralysing the business.
Most technology partnerships fail not on capability, but on alignment. A structured approach to partner selection — built from decades of vendor relationships — that separates the right fit from the right pitch.