Cybersecurity leaders are under increasing pressure to justify their investments—especially when budgets are tightening. Ahead of his tutorial at AusCERT 2025, Jason Ha,
.jpg&h=420&w=748&c=0&s=0)
Ethan’s CISO and cyber security risk specialist, told iTnews that the time has come to radically improve how organisations report and communicate cyber risk.
“Most organisations, even with the backdrop of ongoing cyber attacks, aren’t getting more money,” Ha says. “So they’re asking, ‘What’s the return on what we’ve already spent?’ That’s a key driver in pushing for more effective, traceable, and data-driven cyber risk reporting.”
In line with AusCERT’s theme of Evolve and Thrive, Ha is advocating for a more structured approach to risk—one that goes beyond the traditional “top…
