Engineering resilience through shared accountability
Andrew Dell, General Manager of the Customer Security Management Office at Microsoft, expanded the discussion to enterprise resilience.

He explained how Microsoft’s distributed model embeds 18 deputy CISOs across business units, each responsible for managing risk in their domain.
This structural shift pushes ownership closer to operations, allowing governance to operate as a continuous loop rather than a reactive function.
Andrew stressed that resilience must be engineered from clear dependencies, not redundant systems.
He positioned continuity as the ability to anticipate, absorb, and recover from disruption while maintaining stakeholder confidence.
Gabby Fredkin, Head of Analytics and Insights at ADAPT, connected these operational realities to Australia’s data landscape, showing that Australian security leaders identify the number-one risk of Agentic AI to security programs as uncontrolled access to sensitive data.
Gabby also noted that automation is scaling traditional weaknesses faster than maturity improves.
His findings tied directly to Andrew’s argument: resilience cannot be engineered without reliable data, unified ownership, and a governance model that translates intent into control.

In the Security Edge panel, Samrat Seal, Head of Transformation and Governance at Kmart Group, cautioned that uncontrolled generative AI tools are now expanding exposure faster than traditional controls can adapt.
He explained that identity misuse and credential-stuffing incidents continue to drain security resources, further proving that visibility and governance must evolve together.
Daniel Sutherland, Regional Vice President at DigiCert, added a complementary dimension on digital trust.
He outlined how cryptographic agility and post-quantum readiness are becoming board-level discussions.

By modernising certificates and adopting adaptable cryptographic frameworks, Australian organisations can align regulatory compliance with innovation rather than treat them as opposing forces.
These perspectives reframed resilience as a multidisciplinary exercise spanning architecture, governance, and digital assurance.
Back to top