Header image

Session 2.7c Update: How to Fail an IRAP Assessment (Rethinking your approach to information security frameworks)

Tracks
Wednesday, November 13, 2024
2:30 PM - 3:30 PM
Menzies Theatre

Details

Systems accreditation and certification has undergone a dramatic shift in recent years. From an exercise of compliance and implementing controls to one of selection and risk management, system owners and their stakeholders have not embraced the new paradigm. This not only constrains systems and projects, but also fails to substantially adapt to the ever-evolving threat environment that Australia faces. The purpose of this update is to better inform system owners and stakeholders how to better manage cyber security risk in their products. During this update, I will: 1. Revisit historical concepts of certification and accreditation 2. Update the latest approaches to systems certification 3. Introduce risk management as an integral part of the process, including problem and options analysis, as well as documenting and managing risk. By the end of this talk, attendees will have: 1. A greater appreciation of the paradigm of risk management over compliance. 2. Approaches to systems security governance that enhance the system instead of encumber.


Speaker

Agenda Item Image
Ms Niru Verma
Chief Operations Officer
Mercury Information Security Services

Biography

Niru Verma is a distinguished security professional who has carved an impressive career path as the Chief Operations Officer and Principal GRC Consultant at Mercury. With a wealth of experience and expertise, Niru stands at the forefront of providing strategic counsel to senior decision-makers, navigating the intricate landscape where technology, security, and project management converge. With over 15 years of experience in the national security industry, Niru has consistently offered high-level strategic guidance to senior executives, spanning administrative, operational, and legislative matters in politically charged and sensitive environments. Throughout her career, Niru has lent her expertise to several key federal government departments, including the Department of Defence, Department of Prime Minister and Cabinet, Department of Home Affairs, and the Department of Agriculture, Water and the Environment. This diverse exposure has honed her ability to navigate multifaceted challenges with precision and innovation. Niru's educational foundation is equally impressive, with an undergraduate degree in Information and Communication Technology from the University of Wollongong and a distinguished master's degree in National Security Policy from the Australian National University. Her dedication, expertise, and commitment to excellence continue to make Niru Verma a driving force in the ever-evolving fields of cybersecurity, governance, and strategic consultancy.
loading