Governance - Responsible business
GeelongPort values human rights and is committed to ensuring that all business is conducted according to ethical, professional and legal standards in a fair, honest and open manner.
This commitment is supported by the following policies which have been developed to cover all GeelongPort activities and business relationships:
• Anti-Bribery and Corruption
• Code of Conduct (Conflict of Interest)
• Email and Internet Usage (Cyber Security and Data Protection and Privacy)
• Environmental Standards
• Equal Employment Opportunity
• Family Violence
• Modern Slavery
• Prevention of Bullying, Harassment and Discrimination
• Procurement
• Sustainability.
GeelongPort Board
GeelongPort is governed by a Board of Directors representing joint venture partners Stonepeak and CareSuper.
The respective shareholders appoint directors to the Board to represent the relevant proportion of that shareholder’s interest, with one independent director that has been jointly appointed by two shareholders. The director nomination and selection process is internal and individual to each shareholder.
The Board currently comprises five non-executive Directors. Appointments are made pursuant to clause 7 of the Securityholders’ Deed dated 31 March 2023 and the remuneration of the Directors is as per clause 9.
The Board may from time to time establish and delegate powers to committees, in accordance with GeelongPort’s Constitution, to assist in the discharge of its responsibilities. Due to the size of the organisation, committees are established as required under the Securityholders Deed or before significant projects to endorse decisions.
Darren Keogh is the current Chair of the Board and is independent to the management of GeelongPort. The Chair is appointed as per the Securityholders’ Deed.
Board members
Darren Keogh
Kate (Kathryn) McKenzie
Linda Sewell
Jack Gillespie
Steven Ford
ESG roles and responsibilities
GeelongPort Board
Oversees GeelongPort’s approach to ESG and monitors performance.
GeelongPort Leadership Team
Responsible for management decisions and oversight in relation to GeelongPort’s sustainability OKRs and climate change initiatives. This team reviews and approves metrics and targets.
Sustainability Team
Organisational climate risk subject matter experts. Monitoring climate-related issues which are shared with management as required in risk review meetings.
Risk management forums
These forums identify, assess and monitor environmental risks (including climate-related risks and opportunities) likely to impact GeelongPort’s business. Updates are provided to the GeelongPort Leadership Team on risk status and management actions. The Environmental Aspects and Impacts Register is assessed quarterly.
CASE STUDY:
Board ESG oversight
Each year the Board undertake an annual risk management review and complete a deep dive exercise on a specific area of risk.
In FY24 this included a visit to explore and understand the risk management practices around our energy isolation activities in a practical setting.
CASE STUDY:
Cyber security
In line with globally reported data GeelongPort has seen a rise in phishing and identity attack attempts.
Out of the 428,669 emails delivered to GeelongPort in FY24, 36% (153,883) emails were rejected as spam or phishing attempts, this included 281 attempts to send malware to GeelongPort inboxes.
In November 2023, a malicious email was delivered to a GeelongPort employee regarding an employee benefit program, asking the employee to scan a QR Code.
Just after the employee scanned the QR code, there was an attempt from Arizona in America to login as the GeelongPort user. This QR code was an attempt to steal the employee’s login details and no one else at GeelongPort received the email.
Once our security systems detected there was abnormal login activity from Arizona, GeelongPort’s security configuration disabled the login, the employee’s account was automatically disabled, and the PC was automatically quarantined from the GeelongPort network.
The GeelongPort IT Team inspected the logs to ensure that there was no further risk before resetting the password of the impacted employee.
Following this incident, the GeelongPort IT team communicated to all team members the risks of scanning QR codes in emails and added in QR code protection to GeelongPort’s email security system.
Cybercrime is not faceless, the average cost of a cyberattack on a small business in Australia is increasing. Estimates indicate that a small business can expect to have an average loss of $46,000 per attack.
GeelongPort operates in a just in time transport environment made up of many local suppliers supporting our customers, for example truck drivers.
Our efforts help prevent cyber related down time making sure our customers and their local supply chain can do business securely and efficiently.