Article

Trusted Workforce: The Dark Arts of Insider Threat – What Harry Potter Teaches Us About Human Nature, Trust and Protective Security

Article /

If you are fascinated by Harry Potter, psychology, human behaviour, and the complex realities of protective security — this article is for you. Because beneath the magic, mythical creatures, and fantastical battles lies something surprisingly real: a sophisticated study of trust, manipulation, coercion, vulnerability, loyalty, radicalisation, and human risk. Long before organisations spoke so publicly […]

Trusted Workforce: The Dark Arts of Insider Threat – What Harry Potter Teaches Us About Human Nature, Trust and Protective Security Read More »

Security of Critical Infrastructure: From Attestation to Assurance – What the New CIRMP Annual Reporting Questions Signal About the Future of Critical Infrastructure Governance

Article /

Recently, many critical infrastructure responsible entities covered by the Security of Critical Infrastructure Act 2018 (SOCI Act) are likely to have noticed a significant evolution in the annual Critical Infrastructure Risk Management Program (CIRMP) reporting process, with the FY2025–26 reporting cycle signalling a broader shift in regulatory expectations surrounding governance, resilience, and Board accountability. The revised annual reporting

Security of Critical Infrastructure: From Attestation to Assurance – What the New CIRMP Annual Reporting Questions Signal About the Future of Critical Infrastructure Governance Read More »

Trusted Workforce: When Employees Leave – Managing Trust, Risk and Security Beyond Exit

Article /

Why exit and post-employment risk are the missing pieces in workforce assurance Listen to the audio version of this article below: Executive Summary For many organisations, workforce assurance begins at hiring. Significant effort is often invested in pre-employment screening, background checks, and initial suitability assessments. Increasingly, organisations are also strengthening their approach to ongoing suitability,

Trusted Workforce: When Employees Leave – Managing Trust, Risk and Security Beyond Exit Read More »

Insider Threat: Case Study – New South Wales Treasury Employee

Article /

Insider Threat Insider threat is the misuse by a trusted person of privileged access to, or influence over, assets and operations.  The trusted person’s actions may be unintentional, or their actions may be intentional.  In either instance the harm caused can be the same.  But to become ‘insiders’ a person has to be granted admission.

Insider Threat: Case Study – New South Wales Treasury Employee Read More »

Insider Threat: Case Study – Australian lawyer charged with misconduct

Article /

Insider Threat Insider threat is the misuse by a trusted person of privileged access to assets and operations.  The trusted person’s actions may be unintentional or they may be intentional.  In either instance the harm caused can be the same. Organisations make a choice to grant trust to a person when they decide to employ

Insider Threat: Case Study – Australian lawyer charged with misconduct Read More »

In the National Interest: From Ukraine to Geelong – What Critical Infrastructure Disruption Really Looks Like

Article /

The fire at Viva Energy’s Geelong refinery should be treated as more than an industrial incident. Initial media reporting points to equipment failure stemming from inadequate maintenance. There is, as of 17 April 2026, no public evidence of sabotage. But focusing on cause alone risks missing the broader point. For operators of critical infrastructure — and for

In the National Interest: From Ukraine to Geelong – What Critical Infrastructure Disruption Really Looks Like Read More »

Security of Critical Infrastructure: Pentagram Advisory comments on Independent Review of the Security of Critical Infrastructure Act 2018

Article /

In March 2026, the Commonwealth Government published the Independent Review of the Security of Critical Infrastructure Act 2018. The intent of the Review, conducted by Dr Jill Slay between November 2025 and January 2026, was to assess whether Australia’s Security of Critical Infrastructure Act 2018 (SOCI Act) is achieving its intended objectives, functioning as intended,

Security of Critical Infrastructure: Pentagram Advisory comments on Independent Review of the Security of Critical Infrastructure Act 2018 Read More »

Trusted Workforce: Why Behavioural Change Is the Earliest Warning Signal of Insider Risk

Article /

Observing the absence of usual and the presence of unusual Introduction: The Illusion of Sudden Insider Risk Insider incidents are often described as unexpected. A data breach occurs. A policy is violated. Sensitive information is disclosed. The event appears sudden, and the question that follows is predictable: How did this happen? However, in most cases, the

Trusted Workforce: Why Behavioural Change Is the Earliest Warning Signal of Insider Risk Read More »

Trusted Workforce: Why People Protect the Organisation – Intrinsic Motivation as the Foundation of Security Culture

Article /

Organisations responsible for protecting government resources or critical infrastructure assets have, over time, built increasingly sophisticated security architectures. Policies are codified, controls are implemented, monitoring capabilities are expanded, and compliance frameworks are strengthened. These mechanisms are necessary, and in many cases, highly effective. They provide structure, consistency, and a defensible basis for managing security risk

Trusted Workforce: Why People Protect the Organisation – Intrinsic Motivation as the Foundation of Security Culture Read More »

0
    0
    Your Cart
    Your cart is emptyReturn to Shop
    Continue Shopping