“Take a risk-based approach” is one of the most commonly used phrases in security governance, yet it is often interpreted differently by executives, risk professionals and security teams. These differing perspectives can lead to misaligned expectations, inconsistent assessments and unclear decision-making. Drawing on global security leadership experience, this session explores how the concept of risk is understood across organisations and why the gap between risk frameworks and operational security practice persists. The presentation provides insights into how security leaders can translate threat analysis and risk assessments into clearer strategic advice for organisational decision makers.
2-4 Sep 2026 | ICC, Sydney
