“Governance should create confidence, not friction. Risk frameworks must be objective-led - aligned to clear company outcomes - and operational resilience must be tested to ensure the backbone of the organisation is sustainable. When risk appetite is clear, controls are visible, and resilience is proven, Boards and executives can move decisively with regulators and stakeholders aligned.”
Christopher Robilliard
APAC Business Development Director, Drova
About Christopher
Christopher Robilliard is APAC Business Development Director at Drova, partnering with Boards, Executive Teams and Senior Risk Owners to strengthen governance maturity and operational resilience across regulated environments.
He works with organisations operating under ASIC, APRA, ASRS and NDIS frameworks to translate regulatory expectations into practical, scalable operating models. His focus is aligning governance, controls and reporting directly to strategy - ensuring compliance confidence while supporting sustainable growth.
He specialises in digitising risk and control frameworks into single sources of truth, improving Board reporting integrity, risk transparency and audit defensibility. Working closely with CEOs, CFOs, CROs and Risk Committees, he helps clarify risk appetite and embed measurable oversight across the enterprise.
With more than 25 years of APAC leadership experience across enterprise software and regulatory technology, Christopher has built and scaled regional businesses, led cross-border teams and driven growth in highly regulated and mission-critical sectors.
Outside of work, his most dynamic risk environment involves balancing executive life with two young daughters who consistently test internal controls and operate well beyond declared risk appetite - a reminder that resilience and adaptability matter as much at home as they do in the Boardroom.
He writes about operational resilience, APRA CPS 220/230/234, ASIC governance accountability, ASRS sustainability reporting and the digitisation of enterprise GRC frameworks.
Chris's focus areas
Risk appetite and Board-level reporting
ASIC governance and disclosure alignment
ASRS sustainability and financial materiality
Enterprise risk, controls and incident management
Third-party risk oversight
How Christopher helps
Clarifies risk appetite and strengthens Board oversight.
Translates regulatory complexity into scalable, objective-led operating models.
Improves audit defensibility across ASIC, APRA, ASRS and NDIS environments.
Digitises governance frameworks into measurable, real-time control environments.
Strengthens operational resilience and third-party risk governance.
Proof & credibility
- APAC Business Development Director, Drova
- Held senior executive roles across Asia Pacific with US reporting lines and direct leadership responsibility across the region, building and scaling businesses with budget accountability ranging from US$10M to US$500M.
- Led growth and market expansion for top-tier US corporations and leading regulatory compliance and due diligence software providers, including Drova, Ansarada, Donnelley Financial Solutions (DFIN), Datasite, Seagate and Ingram Micro.
- Frequently first on the ground in APAC, establishing regional go-to-market strategy, building high-performing teams with country heads reporting in, and creating sustainable revenue engines across regulated and enterprise markets.
Latest from Christopher Robilliard
Stories16
Objective-led GRC
Risk culture vs. objective-led culture: What are you really optimising for?
A strong risk culture builds awareness, but an objective-led approach turns governance into prioritised, owned action that keeps the business moving.
24 Feb 2026
AI & Innovation
Insurance AI's next wave: 5 opportunities hiding in plain sight
Insurance has spent years optimising for capacity, not demand. AI's first win is buying back hours spent reading, re-keying and chasing documents.
10 Feb 2026
Regulatory & Standards Compliance
Calling all CFOs: Your 90-day plan to AASB S2 readiness
A CFO-led 90-day plan for AASB S2 readiness: map existing data, clarify ownership, integrate climate risk, build evidence, and rehearse reporting.
14 Jan 2026
Regulatory & Standards Compliance
The CPS 230 value opportunity: How Australian insurers can turn compliance into confidence
CPS 230 is emerging as a blueprint for operational resilience, helping insurers tighten reporting cycles, cut incidents, and strengthen regulator trust.
8 Jan 2026
Regulatory & Standards Compliance
The board can’t outsource CPS 230 accountability… and APRA knows it
CPS 230 has dragged operational resilience out of the server room and into the boardroom.

No longer a back-office task, it’s now a live legal responsibility for directors. APRA expects boards to approve frameworks, set tolerances, test scenarios — and be able to explain, in plain language, how the organisation stays standing when disruption hits. 

You can outsource the work. But not the accountability.
21 Aug 2025
ESG & Sustainability
Climate risk and the new standard of proof in Australian insurance
CPS 230 moved operational resilience from intent to proof. “We’ve got it covered” now signals risk unless board-ready evidence is on hand.
20 Aug 2025
Regulatory & Standards Compliance
Manual compliance risks for NDIS providers: What to do instead
Still using spreadsheets for compliance? Modern GRC demands better. Learn why and how to make the switch.
14 May 2025
Regulatory & Standards Compliance
Even top NDIS providers are under strain in 2025
Discover how NDIS compliance challenges are impacting even the best-run providers. Learn strategies to navigate the NDIS compliance landscape.
1 May 2025
Regulatory & Standards Compliance
What 2025 NDIS regulatory shifts will bring
NDIS providers face major 2025 reforms, new compliance demands, and policy uncertainty. Learn how to stay sustainable in a shifting environment.
14 Apr 2025
Regulatory & Standards Compliance
6 keys to strategy in the evolving NDIS sector
Stay ahead of the change. These six critical insights in our exclusive NDIS Provider Report for 2025 can help you acheive profit in 2025-6.
14 Mar 2025
Regulatory & Standards Compliance
ASRS S2 is here: Is your GRC framework built for it?
Join our April 2025 event to explore ASR2 regulations and embed sustainability into your GRC strategy for lasting impact.
20 Feb 2025
Regulatory & Standards Compliance
CPS 230: A practical guide to MSP compliance
Navigate CPS 230 requirements with this clear guide. Learn how to manage MSPs, meet APRA standards, and protect your operations using Drova GRC.
19 Dec 2024
Regulatory & Standards Compliance
Lessons from over a decade of cyber-resilience: Aussie mutuals
Australian mutuals, resilient against evolving cyber threats, serve as a model for financial institutions. Ben Woods explores their proactive approach.
4 Sept 2024
Operational Resilience
Operational resilience: Key steps to maturity
We look at the key steps of building resilience to develop a best-practice operational resilience strategy moving forward.
4 Sept 2024
Operational Resilience
Navigating operational resilience: From theory to practice
Practical lessons learned from the recent CPS 230 Operational Risk Management Morning Briefing in Sydney.
4 Sept 2024
Regulatory & Standards Compliance
APRA’s governance lessons from helen rowell
Explore APRA's governance evolution with insights from Helen Rowell. Learn how Drova helps APRA-regulated SMEs navigate compliance and future challenges
4 Sept 2024