Helping clients protect and recover value through proactive cyber risk identification and management, and rapid action in response to a breach.
Helping clients to manage risk and regulatory compliance and respond to incidents of financial crime.
Uncover, analyse and clarify facts at the centre of disputes, frauds and other sensitive commercial matters.
Helping clients across private, corporate and government sectors deliver process improvement and cost effective solutions to meet on critical business requirements
Providing advisory and accelerated implementation services to the public and private sector.
We advise on, develop, transact and invest in real estate and infrastructure.
Working with organisations and the public sector to stabilise operations or to recover value on behalf of stakeholders.
Our unique mix of commercial expertise, deep defence sector experience, and focus on clear and actionable recommendations gives clients the confidence to act.
Helping educational institutions adapt to changing student needs and enhance operational efficiency in a competitive landscape.
Working with the public sector to stabilise operations or to recover value on behalf of stakeholders.
We are an independent and trusted advisory and investment firm, working across industries to support businesses with their most complex and sensitive commercial matters.
Our reach is global with offices across Australia, New Zealand, Indonesia and Singapore.
ESG is a fundamental part of the way we do business. We take tangible action to make a difference for our people, clients, and communities.
Driven by an entrepreneurial spirit and a different mindset, celebrate the firm’s 20th anniversary.
Providing a roadmap for a healthy cybersecurity posture
Background
Our client was a high-profile healthcare provider seeking assistance with managing their cybersecurity risk to protect client information and mitigate both reputational and financial risks. KordaMentha was engaged to conduct an initial cyber security capability assessment of the client’s current security posture and identify any areas requiring improvement. How we helped As part of our on-site audit, we conducted interviews with key stakeholders from across the organisation, including responsible executives, the head of IT and the outsourced IT service provider. We also performed a review of the organisation’s policies and documentation, a technical review of its Microsoft Office 365 environment and an assessment of the security measures implemented and managed by its IT service provider. Our findings were reported using the ACSC Essential Eight Maturity Model, a standard recommended by the Australian Federal Government.
As well as presenting the findings of our assessment to the Board of Directors, KordaMentha provided a formal report which detailed our findings and recommendations regarding identified gaps. The report also provided a clear and prioritised roadmap that allowed the organisation to commence a security uplift that will reduce its current cybersecurity risk to an acceptable level. Result
We reviewed the security capabilities and maturity of a high-profile healthcare organisation, its key technical systems and its IT service provider.
We provided insight into our client’s business security risk and provided a clear, prioritised list of key recommendations, allowing them to remediate this risk to an acceptable level.
22 April 2025
The upcoming federal election will determine Australia's climate and energy future, with major parties offering contrasting approaches to decarbo...
Blog
14 April 2025
Prudential Standard CPS 230 – Operational Risk Management that APRA has introduced comes into effect 1 July 2025. Learn about the key requirement...
2 April 2025
Understand the trends and the unique challenges of healthcare M&A to capitalise on the opportunities and navigate the complexities of the healthc...
Media Release
24 March 2025
Swinburne University of Technology and KordaMentha are taking bold action against the billions of dollars laundered in Australia through financia...