BFM 89.9

HIGHLIGHTS 
Podcast  >  Enterprise  >  Enterprise Explores  >  Internal Audit, "Stop Hiding Behind Independence"

Internal Audit, "Stop Hiding Behind Independence"

Suhailah Abdulla, President, Institute of Internal Auditors Malaysia (IIAM,) and Chief Assurance Officer, SD Guthrie | Philip Satish Rao, Governor and past President Institute of Internal Auditors Malaysia (IIAM), , Partner, Ernst & Young Consulting

12-Jan-26 12:00

Internal Audit, "Stop Hiding Behind Independence"

According to the Risk in Focus 2026 report, organisations in Southeast Asia correctly rank cybersecurity, business resilience, and digital disruption as their top priorities. Yet, with cybercrime losses in Malaysia crossing RM1 billion, there is a glaring gap between risk awareness and real-world preparedness.

BFM explores this "implementation gap" with Suhailah Abdulla and Philip Satish Rao from the Institute of Internal Auditors Malaysia. They argue that risk policies often look good on paper ("form over substance") but fail because organisations treat cybersecurity as a backroom function rather than "organisational DNA."

We also discuss why Internal Auditors must evolve from financial checkers into "nervous system sensors" for the board, and how to navigate the specific dangers of "Agentic AI" while keeping humans in the loop.

We discuss:

  • The Preparedness Paradox: Why high risk awareness hasn't translated into fewer breaches, and the danger of "compliance on paper" versus actual implementation.

  • Cybersecurity as DNA: Why treating cyber risk as IT's problem is a fatal error. Philip gets into the need for adaptive controls that evolve as fast as the hackers do.

  • AI Governance & "Human in the Loop": How to balance the opportunity of AI with the risk of "Agentic Enterprises." We discuss the necessity of establishing governance frameworks that prevent over-reliance on algorithms.

  • The Auditor as "Nervous System Sensor": Moving beyond the independent mask. Why modern auditors need engineering and supply chain skills to provide true risk intelligence to the board.

  • Interconnected Risks: Lessons from COVID-19 on why siloed risk management fails, and why boards must view supply chain, geopolitical, and digital risks through a single Enterprise Risk lens.

Produced by: Roshan Kanesan

Presented by: Roshan Kanesan


This and more than 60,000 other podcasts in your hand. Download the all new BFM mobile app.

Categories:  politicsLaw/Activismtechnologyeconomyinvestments

Tags:  business resiliencerisk managementinternal auditcybersecurityAI Governancecorporate governanceEnterprise Risk Management


Latest Podcasts




Play / Pause

Listen now : BBC World Service: Datshiane Navanayagam talks to two women who changed paths...

Today’s Shows



11:00 AM

Best of Enterprise

(REPEAT) We catch up with Founder and CEO Henry Ting to unpack how TTRacing has grown since 2024, how its revenue mix and operations have changed, the commercial logic behind its product and market expansion, and how the company is balancing growth with profitability.

12:00 PM

Popcorn Culture

(REPEAT) Stuff We Missed: Memori & Sore + Time Travel Movies

1:00 PM

Cruise Control

(REPEAT) Are Malaysians switching to EVs at an acceptable rate? We unpack where we are in this week's episode.

2:00 PM

Matt-Splained

(REPEAT) On today’s show, Richard and Matt offer up their apologies and outline what you can expect to see at your desk in 2026. From agentic AI bundling up your day, to managerial trends and mentoring.

3:00 PM

Earth Matters

(REPEAT) For this month’s Nature Reads, wildlife researcher Su Mei Toh discusses a range of books, including environmental classics, books on Indigenous knowledge, science writing, and field guides rooted in Malaysia.

4:00 PM

Bar None

(REPEAT) Are our shuttlers playing in too many tournaments in a calendar year? We unpack the issue.

5:00 PM

BBC World Service

Datshiane Navanayagam talks to two women who changed paths to design and manufacture their own shoes in their own countries.