top of page


Oye Risk Consulting - Risk Training & Development Internship Program
Applications are now open for the Oye Risk Consulting Training & Development Internship Program. This program is designed for students, graduates, and early-career professionals who are interested in building practical knowledge and experience in governance, risk management, compliance, operational risk, internal controls, policy development, and technology risk governance. Participants will have the opportunity to engage in structured learning, professional discussions, rese
Abena Kyei
May 311 min read


Chapter 3: Why Boards Struggle to See Cyber Risk and Its Effects Clearly.
There have been ongoing discussions around how to make cybersecurity and information security risk more visible at board and executive leadership level. How do we get boards to genuinely appreciate cyber risk beyond technical discussions? How do we move cybersecurity away from being seen merely as: an IT support issue, a compliance exercise, or simply “implementing a framework” because management requested it? These are important conversations. Over the next few weeks, my con
Abena Kyei
May 314 min read


Chapter 2: Operational Risk Management and the Basel Structure
Once risk appetite is understood practically, the next step is understanding how banks structurally organise operational risk. This is extremely important because many cybersecurity professionals discuss cyber governance without first understanding the operational risk architecture already existing inside financial institutions. In banking environments, risk is not managed randomly. Banks operate within structured enterprise risk frameworks that organise risk into categories,
Abena Kyei
May 154 min read


Chapter 1: Understanding Risk Appetite Beyond Theory
One of the biggest problems in cybersecurity discussions today is that many professionals talk about “risk appetite” without fully understanding what risk appetite actually looks like inside a real organisation, especially inside financial institutions. A lot of cybersecurity professionals encounter the phrase: • board risk appetite, • cyber risk appetite, • enterprise risk appetite, but only from a policy or governance perspective. They understand it theoretically: “Risk app
Abena Kyei
May 133 min read


The Hidden Risk in Ghana’s Banking and Fintech Ecosystem.
In the past few years, I have seen Ghana’s financial sector from three very different angles. I started in traditional banking, later moved into consulting with a Big Four consulting firm where I worked mainly in cybersecurity, and eventually transitioned into the fintech space. Across all these roles, one thing has become clear to me, there is a serious gap between how regulation is written and how risk is managed in practice. On paper, compliance looks strong. In reality, h
Abena Kyei
Feb 115 min read
bottom of page