Speakers
Synopsis
The future of efficient, scalable, and cost-effective growth and development is ensuring all the steps from design through to implementation is seamless, without the multiple layers of admin, risk approvals, and endless risk papers, often resulting in Governance, Risk, and Compliance seen as a tick box exercise, doing whatever is needed to ensure you get that “approval” with as little delay as possible.
With the advances of generative systems, whether it be driven by AI or a weighted metric based on inputs, allowing project teams, developers, release managers, and management across an organisation to punch in data and have it spit out a risk rating, and in turn getting that “engaged with risk” tick box out of the way.
Over time people game the system, knowing just where they need to operate to fly under the radar of a risk appetite threshold, taking the human factor out of the risk process. One day a simple exposure turns into a huge data breach, something that may have been picked up by a human looking over the risk inputs.
Now let’s flip the script, a group of scientists have used the automated system to generate a risk assessment. How are you going to convince them to implement the recommendations from the assessment? They’re not concerned about software patching, vulnerability reports, or governance reporting to the board, all they want is data integrity and system availability.
Drawing on a collective 40 years across the technology, risk, and security industry, we will walk you through the importance of the human factor in Governance, Risk, and Compliance.
Because when the automated processes fail, the human is there to keep the ball rolling.
