From Risk to Resilience:
A VIP Cyber Risk Roundtable
with SecurityScorecard

23rd April 2026

Gerome Restaurant

12:00pm – 3:00pm

From Risk to Resilience: A VIP Cyber Risk Roundtable with SecurityScorecard

Building Resilience and Trust from the Outside-In for the Enterprise and Across the Supply Chain
 

As organizations embrace AI-driven transformation, their digital ecosystems become broader, faster-moving, and more exposed to cyber risks. This session explores how outside-in cyber risk ratings provide a continuous, data-driven view of an organization’s cyber posture and that of its third-party vendors, enabling proactive risk management across the enterprise and supply chain.

Participants will learn how integrating cyber risk ratings into digital and third-party risk strategies supports operational resilience, stakeholder trust, and regulatory readiness. The talk will cover use cases, metrics, and practical steps to embed cyber risk ratings into transformation programs, ensuring organizations remain secure, accountable, and competitive in an AI-powered future.

Agenda

12:00 pm – Arrival & Welcome Drinks

Guests arrive, informal networking, introductions.

12:30 pm – Opening Remarks

Host: Alex Teh and Ray Koh

12:45 pm – The NZ Cyber Risk Landscape

Speaker: SecurityScorecard Regional Country Director

  • Data-driven insights into NZ’s external risk posture

  • Common weaknesses across key industries

1:15 pm – Executive Roundtable Discussion (Facilitated)

Moderated conversation across the table:

  • How are boards asking for cyber risk to be quantified?

  • Are annual assessments enough anymore?

1:50 pm – Deep Dive: From Ratings to Remediation

Speaker: Ray Koh 

  • How organisations operationalise ratings

  • Integrating continuous monitoring into risk and procurement workflows

2:15 pm – Peer Perspectives

Guest NZ CISO

  • Practical experience implementing third-party risk monitoring

  • Communicating cyber risk in business terms

  • Lessons for the NZ executive community

2:30 pm – Open Forum & Strategic Q&A

An unfiltered discussion session encouraging:

  • Shared challenges

  • Vendor risk dilemmas

2:50 pm – Closing Reflections

Key takeaways and future collaboration opportunities.

3:00 pm – Informal Networking & Coffee

Name

This Event Will Cover:

Third-Party & Supply Chain Risk

Addressing vendor exposure in NZ’s tightly connected business ecosystem.

Board-Level Reporting

Translating cyber posture into measurable, benchmarked ratings.

Attack Surface Management

Identifying unknown or unmanaged internet-facing assets.

Ray Koh

Security ScoreCard – Regional Country Director

Ray Koh is a veteran cybersecurity professional with over 30 years of experience as a trusted advisor to customers.

His expertise spans implementing security controls, providing cybersecurity consultancy for Critical Information Infrastructure (CII) sectors, and leading teams across the Asia Pacific and Japan region through startup, hyper-growth, and transformational phases.

Ray is a Certified Information Systems Auditor (CISA) and Certified Information Systems Security Professional (CISSP). For those who remember the Novell era, he was a CNE (Certified Novell Engineer), which probably tells you a little about his vintage.

Christoph Demoor

 

Venue: Gerome

269 Parnell Road, Parnell, Auckland 1052

Take Control of Vendor Risk Across Your Supply

SecurityScorecard helps TPRM and SOC teams detect, prioritize, and remediate vendor risk across their entire supplier ecosystem at scale.