24 - 26 June, 2019
Novotel Sydney Central, Sydney, Australia

Conference Day One: Tuesday, 25th June 2019

8:30 am - 9:00 am Conference Registration and Welcome Coffee

9:00 am - 9:10 am Opening Remarks

9:10 am - 9:50 am Big Data, Risk Management and Governance: Protecting Organisational Value and How to Manage Open Information

  • Being aware of what can be made available to the public and encouraging agencies to embrace transparency
  • Collaborating with Commissions to understand your responsibilities in helping the public access government information
  • Information and Cyber Risks – Understanding the systems and guidelines needed to protect private information

9:50 am - 10:30 am CASE STUDY: A Practical Cyber Security Strategy for the Australian Parliament

This session will cover a practical 5 stage model that had been implemented by the Australian Federal parliament and can be adopted to build cyber resiliency in any organisation

  • Current threat environment faced by the Australian Parliament will be highlighted
  • Stepping through an adaptable model adopted by the parliament to deliver prediction, protection, detection, response and measurement capabilities in it cyber practices
  • Real examples will be provided on the implementation of the model as well as advice and guidance for other organisations that may wish to adopt a similar journey
Ian McKenzie, Chief Technology Officer at Department of Parliamentary Services

Ian McKenzie

Chief Technology Officer
Department of Parliamentary Services

10:30 am - 11:00 am Thought Leadership Session

11:00 am - 11:30 am Speed Networking Session

An effective structured interactive session designed to help expand your network through one-to-one focused conversations. Bring your business cards!

11:30 am - 12:00 pm Morning Tea And Networking Break


You will you hear peer-to-peer led case studies and best practice governance and risk management within Australia’s Public Sector. How will the IDGs run?

  • The entire audience will break up and choose IDGs based on which topics are most relevant and interesting to them.
  • Each IDG is set in a roundtable format and will be facilitated by a practitioner and hosted by a thought leader in the space.
  • Each delegate will have the opportunity to select 2 topics and will rotate between their choices every 30 minutes.
  • Discussion groups are kept small to ensure all delegates get the opportunity to ask their most pressing questions, ensuring a perfectly tailored experience.


12:00 pm - 1:00 pm Change Management Approaches to Adopt Good Governance and Risk Management
Santanu Lodh, Director, Governance, Risk & Compliance at Property NSW

Santanu Lodh

Director, Governance, Risk & Compliance
Property NSW


12:00 pm - 1:00 pm Data Risk and Governance


12:00 pm - 1:00 pm Risk & Governance in a Digital Government
Linda King, Manager, Governance and Risk at Service NSW

Linda King

Manager, Governance and Risk
Service NSW


12:00 pm - 1:00 pm Training and Capability Building for Risk and Governance Maturity
Gavin Pearce, Group Executive, Risk & Governance at icare

Gavin Pearce

Group Executive, Risk & Governance

1:00 pm - 2:00 pm NETWORKING LUNCH


2:00 pm - 2:40 pm Case Study: Building Risk Maturity and Capability at CSIRO
While developing best practice frameworks and fit for purpose frameworks have been key to CSIRO’s risk journey, the organisation has looked through a new lens and discussing how they can best manage itself in the way it handles reporting and information to manage the way risk is analysed and integrated into key decision making. This session, Peter will discuss why this approach has been fundamental in building risk maturity and capability.

  • The balancing act: How do you apply these frameworks to risks in operational processes?
  • Expanding the risk function to engage more directly with organisational strategy development and utilise risk as a means to drive strategic decision making
Peter Duffy, Executive Manager, Risk at CSIRO

Peter Duffy

Executive Manager, Risk


2:40 pm - 3:20 pm Case Study: Delivering on Organisational Goals and Objectives and the Influence on Risk Appetite and Tolerance at the Country Fire Authority
The past 18 months have seen the Country Fire Authority rewrite risk frameworks and establish the ground work to integrate it into business planning activities. The process not only allowed staff to understand risk and articulate it in the way that assists with decision making, but made a case to focus risk management on achieving and supporting organisational objectives that will help increase tolerance for dealing with future risks and uncertainty. Drawing on CFA’s journey, Daniel will explore:

  • Adhering to key mandatory requirements and removing complexity and inconsistencies
  • Be compelling and clear to help resolve past and ongoing risks, as well as plan forward to manage future risks
  • Establishing the role of executives in understanding their appetite for achieving objectives, and collating the right quantitative data and deliverables to measure this
Daniel Atkin, Director, Enterprise Risk at Country Fire Authority

Daniel Atkin

Director, Enterprise Risk
Country Fire Authority


2:00 pm - 2:40 pm Case Study: Refreshing your Organisational Performance Management approach
The WA Department of Transport (DoT) have been working developing organisational performance management tools that align with its strategic goals and each of its business objectives. One of the tools that is highlighting organisational performance is its Balanced Scorecard (BSC) which is providing a an opportunity to modernise its corporate level Key Performance Indicators (KPIs) and also enabling leaders to link between strategy, critical success factors and actions while establishing accountability.

The BSC provides a predictive, forward-looking view of the overall business that goes beyond a focus on short-term bottom-line results, as well as ensures a broader understanding of organisational performance and engagement with staff on how they contribute to the strategic direction of DoT.

The current DoT corporate level KPIs that are reportable are linked to regulatory performance and require modernisation to be linked to the new and more refined vision and strategy. New KPIs (corporate / external facing) are being tested within the BSC so that an assurance of their alignment to reflect the organisations external expectations.


2:40 pm - 3:20 pm Case Study: Insights into How the NSW Department of Planning and Environment Maintained Consistency in Governance During Machinery of Government Changes
Machinery of government changes affects every department, and for some, it often leads to inheriting functions that may not traditionally sit together. For the NSW Department of Planning and Environment, recent changes meant that the organisation had to build up a business continuity approach and framework in order to maintain consistency around governance, have a more active assurance program and help create simplified approaches to help staff meet their obligations despite the change. In this session, Rod will provide insights on:

  • Removing the complexity and transforming multiple systems into a single corporate governance solution
  • Overcoming the barriers of capacity and resources – Developing the right teams and committees to get involved with implementing and preparing for changes
  • Ensuring consistency with knowledge management and information sharing as a means to grow each individual and manage integrity, transparency and accountability
Rod Smith, Director, Governance at NSW Department of Planning and Environment

Rod Smith

Director, Governance
NSW Department of Planning and Environment

5:10 pm - 5:10 pm Morning Tea And Networking Break


3:50 pm - 4:30 pm CROSS INDUSTRY CASE STUDY: Information Integrity Management and Employing Stronger Data and Cyber Security Measures

Cyber security continues to affect the reputation of major institutions around the world. With just over 25 per cent of corporate threat patterns internal, technology and data security has become a considerate aspect in maintaining consumer trust, with boards taking responsibility with both compliance and cyber security. In this session, Charles will provide insights into ways your organisation and ensure information integrity management and understand the importance of data governance to mitigate cyber risks.

  • Managing effective cyber security, overall engineering and governance maturity using C2M2 to ensure effective security management
  • Reshaping the way organisations structure data in order to ensure cost efficiency and less breaches
  • Implementing an information governance approach that effectively ties corporate mapping into business

4:30 pm - 5:10 pm Integrating Risk Management and Good Governance in the Public Sector: What Does Good Practice Look Like?

This presentation will look at how to use existing governance frameworks, principles and practices to define corporate governance for public sector agencies and the challenges of whole of organisation governance and risk management, including:
  • Practical approaches to develop an integrated governance framework that suits your public sector agency.
  • Simplifying the focus and objectives of risk management and governance by reframing the approach to effectively equip all levels of the organisation to respond to future risks.
  • Shaping an agile mindset to position your organisation in a way that can protect from internal or external factors that can affect governance and risk responses.
  • Establishing conversations with staff and management on how misconduct should be treated and how to continuously adhere to standards around integrity and accountability.
Cameron Bunkum, Director, Governance at Department of Child Safety, Youth and Women

Cameron Bunkum

Director, Governance
Department of Child Safety, Youth and Women

5:10 pm - 5:40 pm Champagne Solutions Clinic

Solutions Clinics are designed to give participants strategies and tools to deal with their most pressing challenges and discuss learnings throughout the day. The room will split into tables, where each table member will share their biggest challenge, before collectively deciding which issue to investigate in more detail. The table will then elect a facilitator/note taker who will record the topic being explored and the ideas of the table. After 20 minutes of discussion, the facilitator of each table will then report back to the rest of the audience on their problem and the potential solutions.

5:40 pm - 6:40 pm End of Day One and Networking Drinks