In today’s digital age, data breaches and ransomware attacks are making headlines with alarming frequency—impacting businesses, governments, and healthcare systems worldwide. A particularly concerning local example is the cyberattack on Waikato DHB, where a massive ransomware breach effectively brought the entire health board to a standstill.
A post-incident review revealed inadequate cybersecurity systems, outdated infrastructure—some by up to five years—and a lack of investment in training and upskilling staff. The breach affected critical care patients and planned operations, highlighting the devastating real-world impact of under-resourced risk systems and legacy IT environments.
On a global scale, the Medibank data breach has shaken Australia, affecting 9.7 million individuals. Like the Waikato DHB incident, the attackers released sensitive medical records on the dark web. While the Australian Federal Police and Medibank’s CEO have confirmed that ransom demands will not be met, the full causation and system weaknesses remain under investigation. Once a formal report is released, we will gain better insights into what went wrong—and, more importantly, how it could have been prevented.
Organisational Agility: Why It Matters Now More Than Ever
Reflecting on these high-profile breaches, it’s clear that flexibility, adaptability, and resilience are critical for any modern organisation. While I don’t claim to be a cybersecurity specialist, one area I do specialise in is recruitment for Risk and Compliance roles, especially in areas tied to IT governance, controls, and assurance.
From the Waikato DHB incident, it appears that one significant challenge was a lack of organisational agility. The pace of technological change, compounded by the COVID-19 pandemic, forced many businesses to adopt new platforms and systems overnight. Those who managed to maintain continuity and trust often did so because of well-established risk management frameworks and flexible infrastructure.
Why Risk Management Frameworks Are Crucial for Business Resilience
Organisations that are serious about protecting assets, data, and operational continuity need to invest in comprehensive risk management frameworks. These frameworks enable businesses to codify best practices, build resilience, and respond swiftly to evolving threats.
Here’s how an effective risk framework typically operates:
-
Plan and identify the key assets and information that need protection.
-
Develop and implement controls to mitigate risks.
-
Test and evaluate the controls for effectiveness and address any weaknesses.
-
Deploy the systems and monitor performance through continuous oversight and improvement.
When done well, this framework becomes embedded across business functions—from technology to compliance—enabling organisations to operate with agility and confidence in uncertain environments.
Learnings from Waikato DHB and Medibank: What’s Next?
It would be valuable to understand what risk frameworks were in place at Waikato DHB and Medibank at the time of the attacks. Were they robust enough? Did organisational silos or rigid structures hinder an effective response? These events prompt important conversations about how businesses can remove internal barriers, reduce complexity, and respond to cybersecurity threats more rapidly and effectively.
The Growing Demand for Cyber and Data Risk Specialists
With cybercrime becoming increasingly sophisticated, the demand for skilled professionals in cybersecurity and data governance is only intensifying. At Tyler Wren, we’ve seen a clear uplift in the number of technology and risk governance roles across banking, insurance, and financial services sectors. This reflects a broader trend: organisations are investing in governance reporting, IT controls assurance, and risk upliftment projects.
Some recent placements we’ve completed for clients include:
-
Senior Manager – Controls Assurance
-
Technology Governance Manager
-
Data Governance Specialist
-
Manager – Data & Technology Risk
-
Head of Controls Performance
Keep an eye on our job board for more roles. While this isn’t an exhaustive list, it gives you a flavour of where the market is heading. If you’re exploring your next opportunity or curious about where your skills fit into this evolving landscape, we’d love to hear from you.
Benchmarking and Guidance for 2022/23
Our Risk and Compliance team conducted a salary survey in April 2022, offering guidance on market trends, salary expectations, and opportunities for those considering a move. Access our latest salary guide here.
Partner With Tyler Wren
At Tyler Wren, we pride ourselves on matching exceptional candidates with leading employers across New Zealand and Australia. Whether you’re hiring or job-seeking, we offer deep market insights and a people-first approach to recruitment.
Know someone great? If you refer a candidate to us and we place them in a new role, you’ll receive a $600 voucher as a thank-you. Click here to refer a friend.