Nextro

Closing the Cloud Complexity Gap: The Impact of Fortinet’s 2026 Cloud Security Report on New Zealand businesses

Nextro Marketing — Tue, 27 Jan 2026 23:22:19 +0000

Closing the Cloud Complexity Gap: The Impact of Fortinet’s 2026 Cloud Security Report on New Zealand businesses

Cloud adoption across New Zealand continues to accelerate, driven by digital transformation, hybrid work, and growing reliance on SaaS and AI-enabled services. However, Fortinet’s 2026 Cloud Security Report makes one thing clear: while cloud environments are expanding rapidly, security maturity is struggling to keep pace. Based on insights from over 1,100 global cybersecurity leaders, the report highlights a widening cloud complexity gap. This gap reflects a structural mismatch between the speed and scale of modern cloud environments and organisations’ ability to maintain consistent visibility, detection, and response. For New Zealand organisations operating across hybrid and multi-cloud environments, this challenge is not theoretical. It is already affecting risk posture, operational resilience, and regulatory exposure.

Cloud complexity is now the norm, not the exception

According to the report, 88% of organisations now operate across hybrid or multi-cloud environments, with most relying on two or more cloud providers to support critical workloads. This mirrors what Nextro sees across New Zealand enterprises, government agencies, critical infrastructure operators, and regulated industries. Cloud estates typically evolve over time rather than through a single design decision. Legacy on-prem environments coexist with public cloud platforms, SaaS applications, remote users, and distributed devices. While this delivers agility and scale, it also expands the attack surface across identities, configurations, data paths, and services.

For network and cybersecurity teams, the challenge is no longer whether the cloud can be secured, but whether it can be secured consistently across environments that were never designed to operate as a single system.

Tool sprawl is undermining visibility and confidence

One of the strongest signals in the Fortinet report is the operational impact of fragmentation. 69% of organisations cite tool sprawl and visibility gaps as their top barrier to effective cloud security. Rather than improving outcomes, disconnected tools often increase complexity. Cybersecurity teams are forced to pivot between consoles, manually correlate alerts, and investigate incidents after the fact. As a result, 66% of organisations lack strong confidence in their ability to detect and respond to cloud threats in real time. In the New Zealand context, where cybersecurity teams are often lean and multi-skilled, this fragmentation creates real operational risk. Time spent managing tools is time not spent reducing exposure or strengthening resilience.

Budget growth is not translating into maturity

Fortinet’s data shows that cloud risk consistently concentrates in three areas:

Data exposure and privacy risks (66%)
Identity and access security (77%)
Misconfigured cloud services (70%)

These risks rarely exist in isolation. A misconfiguration may seem low risk on its own, but when combined with over-privileged identities and sensitive data, it becomes a direct path to breach. This exposure chain is particularly relevant for organisations managing critical services, customer data, or regulated workloads in New Zealand. When cybersecurity controls operate in silos, attack paths often become visible only after an incident has occurred.

Identity, configuration, and data are the primary risk areas

Two-thirds of survey participants expect new OT compliance requirements within the next five years, and many believe these changes will arrive much sooner. While New Zealand has not yet introduced stringent OT regulations, the global move towards frameworks such as IEC 62443 suggests it is only a matter of time. Local organisations that align early with international standards will be better prepared for regulatory pressure and more resilient in the face of scrutiny.

Automation is stalling at alerting

While many organisations have introduced automation, Fortinet’s report shows that most automation remains alert-driven rather than outcome-driven. Only 11% report fully autonomous remediation capabilities, while more than a third rely on automation that stops at notifications. With attackers operating at machine speed, alert-only automation simply shifts the burden onto already stretched teams. This is compounded by the ongoing cybersecurity skills shortage, which 74% of organisations say directly impacts their cloud security effectiveness. For New Zealand organisations, this reinforces the need for automation that is grounded in trusted, unified visibility, rather than isolated tools generating more noise.

A clear shift towards unified security architectures

When asked how they would design their cybersecurity if starting again, 64% of organisations said they would choose a unified platform that integrates network, cloud, and application security. This does not signal a desire for monolithic solutions. Instead, it reflects demand for interoperable platforms that share telemetry, policy, and context across environments. Unified visibility enables faster detection, more confident automation, and reduced operational friction. This architectural shift aligns closely with Nextro’s approach to helping organisations design cybersecurity environments that scale with the business rather than slow it down.

What this means for New Zealand organisations

Fortinet’s 2026 Cloud Security Report reinforces several priorities for New Zealand businesses:

Treat visibility as a foundation, not an outcome.
Reduce fragmentation by consolidating around shared context and telemetry.
Address identity, configuration, and data risks together, not in isolation.
Automate for outcomes, not alerts.
Extend cloud security integration across networks, endpoints, and SaaS environments.

Closing the cloud complexity gap is not about deploying more tools. It is about designing security architectures that can operate at the speed of modern cloud environments.

As cloud adoption continues to accelerate across New Zealand, organisations that prioritise integration, visibility, and operational efficiency will be best positioned to reduce risk without compromising agility. The Fortinet 2026 Cloud Security Report provides a clear, data-backed roadmap for security leaders looking to move from fragmented defences to unified, outcome-driven cloud security programs.

Contact Nextro today to align your cloud security strategy with real-world operational demands.

Read THE FULL REPORT HERE

The post Closing the Cloud Complexity Gap: The Impact of Fortinet’s 2026 Cloud Security Report on New Zealand businesses appeared first on Nextro.

Nextro’s Security in the Clouds event takes flight in support of Te Kiwi Maia

Nextro Marketing — Tue, 20 Jan 2026 00:00:49 +0000

Nextro’s Security in the Clouds event takes flight in support of Te Kiwi Maia

[CLEARED FOR PUBLICATION BY RNZAF]

Nextro brought customers and partners together at RNZAF Base Auckland in Whenuapai for its Security in the Clouds event – an experience that combined aviation, leadership, and meaningful reflection on service, resilience, and community. While the 90-minute flight in a C130 and 1:1 conversations with none other than Willie Apiata VC were exhilarating, the true purpose of the event was to support Te Kiwi Maia, the incredible charity dedicated to the wellbeing of those who have served New Zealand in the NZDF or as first responders.

Te Kiwi Maia, meaning the courageous Kiwi, provides rehabilitation, recovery, and respite for current and former members of the New Zealand Defence Force, emergency services, and frontline organisations. These individuals often face physical or psychological injuries as a result of safeguarding and caring for New Zealanders. Through its work, Te Kiwi Maia supports not only those affected, but also their families, enabling healthier, more positive lives beyond service.

Nextro’s involvement followed a charity auction, where the opportunity to host an experience aboard a C-130 Hercules aircraft was auctioned. Nextro was proud to win the bid, with all proceeds directly supporting Te Kiwi Maia’s ongoing work. The Security in the Clouds event was made possible through this contribution, ensuring the experience delivered value well beyond the day itself.

Held on 26 September 2024, the event included a rare opportunity for attendees to spend time flying over Auckland in a C-130 Hercules, providing a distinctive environment for discussion and connection. Alongside conversations about the evolving security landscape and the growing role of cloud technologies, the day encouraged reflection on leadership, responsibility, and the people behind critical decisions.

A highlight of the event was a session with Willie Apiata, VC, New Zealand’s only living recipient of the Victoria Cross, who generously donated his time in support of Te Kiwi Maia. Apiata shared personal insights on leadership, resilience, and decision-making under pressure, reinforcing the idea that security, at its core, is about people supporting people, both in service and beyond it.

Nextro extends its sincere thanks to the Royal New Zealand Air Force, the RNZAF crew, and former Base Commander Auckland, Mike Cannon, for their support in making the event possible. Appreciation is also extended to Willie Apiata for his contribution, to all Nextro customers who attended, and to everyone involved in helping deliver an experience that supported such an important cause.

The Security in the Clouds event served as a reminder that industry events can be a platform for giving back. Nextro is proud to support Te Kiwi Maia and the vital role it plays in caring for those who have given so much in service to New Zealand.

To learn more about Te Kiwi Maia or to support its work, visit www.tekiwimaia.co.nz and consider making a donation.

The post Nextro’s Security in the Clouds event takes flight in support of Te Kiwi Maia appeared first on Nextro.

Genetec’s State of Physical Security 2026 — What it means for Nextro’s clients in New Zealand & Australia

Nextro Marketing — Mon, 08 Dec 2025 19:38:58 +0000

Genetec’s State of Physical Security 2026 — What it means for Nextro’s clients in New Zealand & Australia

The latest Genetec “State of Physical Security 2026” report confirms what we at Nextro see every day in New Zealand and Australia: physical & electronic security is no longer just about cameras and locks – it is an enterprise-wide function that’s being redefined by technology, data, and collaboration.

Key Shifts: Security as Strategy, Not Just Protection

The report shows a growing industry consensus that physical security should be treated as a strategic business enabler, not just a cost-centre.
Organisations globally are increasingly replacing legacy, standalone systems with unified, integrated platforms — combining video surveillance, access control, intrusion detection, IoT and analytics under one roof.
In 2025, over 70% of respondents surveyed said they now run unified or integrated physical security systems.

For businesses in New Zealand and Australia (many of whom rely on complex sites, critical infrastructure, or multi-facility operations) this shift opens major opportunities. Rather than layering bolt-on systems, there is growing value in building holistic security platforms that support operational efficiency, compliance, and resilience.

IT + OT + Security: The Convergence Has Arrived

One of the strongest trends identified in the report is the rising influence of IT departments in physical security decision-making. This signals that physical and electronic security are becoming part of the broader technology fabric of organisations.

This convergence means security systems now generate mission-critical data and must be treated with the same rigour as IT systems – in terms of architecture, resilience, and governance.
As your trusted security and network partner across NZ and Australia, Nextro is well placed to help you deploy converged solutions: tying together network, cybersecurity, OT, and physical security under one coherent strategy. This is exactly how we approach design and deployment.

Cloud, AI & Data: The New Currency of Security

The report highlights how organisations are pivoting from just “protecting” to “understanding”. They are using security data, analytics, and intelligence to support decision-making, productivity, and operational/business outcomes.

Hybrid-cloud deployments and cloud-enabled security infrastructure are gaining traction. They offer scalability, flexibility, and remote management possibilities.
Meanwhile, AI and analytics are no longer optional add-ons: interest in AI-driven video analytics, automated event detection, and predictive security is rising sharply.
As security data becomes an asset, handling it responsibly (with strong data practices, clear operational goals, and alignment across departments) becomes essential. The report warns that technology must be deployed with intention and purpose.

For Nextro’s clients, this underscores the value of our integrated approach: combining robust network infrastructure, cybersecurity, and physical security – while helping organisations responsibly leverage data and analytics to improve safety, operations, and ROI.

Market Realities & What 2026 Will Bring

The report also makes some practical forecasts and identifies industry-wide headwinds that will resonate locally:

Economic pressures and shifting priorities mean many organisations will favour upgrades that deliver long-term value over flashy new features. More projects will focus on value-driven, pragmatic solutions.
Workforce constraints remain a challenge, which means demand for managed, outsourced, or unified security services will continue to grow, especially in complex or resource-constrained environments.
The role of vendors and integrators is evolving: clients increasingly want value partners. That is providers who offer not just hardware, but ongoing support, strategic guidance, and integrated services.

For Nextro, this validates the approach we have taken over the last five years: delivering end-to-end managed services, integrating multiple layers of security (physical, cyber, network), and offering proactive support — not just installation, but living, breathing security solutions for the long term.

What This Means for NZ and Australian Organisations — Nextro’s View

Think strategic, not tactical. If you haven’t already, reassess your physical security infrastructure: are you investing only in “locks and cameras,” or building a unified platform that delivers operational insight, resilience, and integration with your IT systems?
Leverage convergence – but do so with care. As security, IT, and operations merge, data governance, privacy, and cross-department processes become critical. A trusted partner, like Nextro, can help you design with intention.
Plan for long-term value. In uncertain economic climates, choose solutions that balance cost, risk, and flexibility. Favour hybrid-cloud, managed services, and scalable architectures that grow with your organisation.
Embrace AI and analytics – but stay grounded. Advanced analytics can deliver big gains, but only when paired with clean data, good practices, and clear operational use-cases.

At Nextro, we believe the future of security in New Zealand and Australia lies in unified, intelligent, data-driven, and managed solutions – and the findings of the Genetec 2026 report reinforce this. If you’re rethinking your security posture, upgrading legacy systems, or planning for smarter, more resilient operations – now is the time to get in touch with Nextro to start the conversation

DOWNLOAD THE REPORT HERE

The post Genetec’s State of Physical Security 2026 — What it means for Nextro’s clients in New Zealand & Australia appeared first on Nextro.

Nextro celebrated as New Zealand’s 40th fastest-growing business in the 2025 Deloitte Fast 50 Awards

Nextro Marketing — Mon, 01 Dec 2025 01:31:43 +0000

Nextro celebrated as one of New Zealand’s fastest-growing business in the 2025 Deloitte Fast 50 Awards

Nextro has been recognised as New Zealand’s 40th fastest growing businesses in this year’s Deloitte Fast 50, the national index celebrating 25 years of New Zealand’s fastest growing private businesses.

The Deloitte Fast 50 programme celebrates 25 years of highlighting organisations that demonstrate exceptional growth, innovation, and impact across New Zealand’s business landscape.

Announced at the awards ceremony on 27 November 2025, the Fast 50 list represents excellence across multiple industries. Nextro’s placing reflects its continued expansion and influence within the physical security, cybersecurity, and networking, sectors.

“Nextro is on a mission to secure New Zealand – and this award highlights the momentum that the Nextro team has achieved providing cyber, physical, and electronic security solutions to our customers and partners across New Zealand”, said Martyn Levy, Managing Director, Nextro.

Nextro’s achievement marks a key milestone in its ongoing growth journey, reinforcing its position as a leader in New Zealand’s physical security, cybersecurity, and networking landscape

Watch this space. Follow us on LinkedIn for further updates.

See FULL FAST 50 LIST HERE

The post Nextro celebrated as New Zealand’s 40th fastest-growing business in the 2025 Deloitte Fast 50 Awards appeared first on Nextro.

Fortinet Cybersecurity Threat Predictions for 2026: Key Lessons for New Zealand Businesses

Nextro Marketing — Mon, 01 Dec 2025 00:14:05 +0000

Fortinet Cybersecurity Threat Predictions for 2026: Key Lessons for New Zealand Businesses

Industrialized Cybercrime and the Acceleration of the Attack Life Cycle

Fortinet’s Threat Predictions for 2026 outline a rapidly shifting cyber landscape shaped by AI, cloud adoption, identity‑driven attacks, and the growing overlap between IT and OT environments. For New Zealand businesses , critical infrastructure operators, transport networks, and multi‑site enterprises, these trends highlight where security teams must focus over the next 12 months.

Attackers are gaining speed and scale through automation, while defenders face rising complexity across distributed networks. For organisations responsible for public services, essential assets, and high‑availability operations, these trends offer clear guidance on where to strengthen controls.

AI‑Enhanced Attacks Increase in Scale

Fortinet predicts attackers will increasingly use AI for reconnaissance, vulnerability discovery, and adaptive malware. This compresses attack timelines and reduces the early‑warning window for defenders, particularly in environments with legacy systems or geographically distributed assets.

Hybrid Work Expands the Attack Surface

Remote and hybrid work continue to expose organisations to attacks targeting home networks, personal devices, and cloud identity platforms. Fortinet highlights the rise of identity‑driven attacks such as MFA fatigue and session hijacking, an ongoing challenge for New Zealand’s mobile and multi‑site workforce.

Ransomware Evolves into Multi‑Vector Campaigns

Modern ransomware groups now combine encryption, data theft, service outages, and supply chain compromise. For New Zealand critical infrastructure, retail, logistics, and transport sectors, where continuity and reputation are critical, the impact of these multi‑vector attacks can be severe.

OT and IT Convergence Introduces New Risks

As operational technology becomes more connected, attackers can move laterally between IT and OT networks. Fortinet highlights this as a growing threat for water, energy, transport, and airport environments, sectors essential to New Zealand’s daily operations.

Cloud Misconfiguration Remains a Major Weakness

Despite maturing cloud security tools, misconfiguration remains one of the most common breach causes. Challenges include API exposure, excessive permissions, and inconsistent governance across hybrid and multi‑cloud platforms.

AI‑Powered Defence Matures

Defenders are also benefiting from AI. Fortinet expects broader adoption of behaviour‑based detection, automated investigations, and AI‑driven containment workflows. For lean New Zealand security teams, this helps scale capability without increasing headcount.

What New Zealand Businesses Should Do Next

Based on Fortinet’s 2026 outlook and Nextro’s own analysis, organisations should focus on:
• Strengthening identity security with phishing-resistant MFA.
• Deploying unified security across cloud, network, and endpoint.
• Increasing visibility across IT and OT environments.
• Adopting AI‑assisted SOC workflows to manage alert volume.
• Reducing attack surface through segmentation and zero trust.
• Hardening remote work and mobile workforce security.

Cybersecurity in 2026 will be defined by speed, automation, and the ability to operate securely across distributed networks. With an evolving threat landscape and attackers leveraging AI at scale, New Zealand organisations need modern, integrated cybersecurity platforms that deliver both resilience and operational efficiency.

Nextro supports customers across New Zealand and Australia to build secure, scalable, and integrated cybersecurity environments using leading Fortinet technologies and proven architectural frameworks. To understand how these technologies may secure your business, contact Nextro today.

Read THE FULL REPORT HERE

The post Fortinet Cybersecurity Threat Predictions for 2026: Key Lessons for New Zealand Businesses appeared first on Nextro.

Genetec Physical Security Trends for 2026: Flexibility, Automation, and Unified Security for New Zealand

Nextro Marketing — Sun, 30 Nov 2025 23:22:13 +0000

Genetec Physical Security Trends for 2026: Flexibility, Automation, and Unified Security for New Zealand

Genetec’s outlook for 2026 highlights key shifts in how organisations will deploy and operate physical security systems. These trends carry strong relevance for New Zealand’s airports, councils, critical infrastructure, transport hubs, and multi‑site enterprises seeking to modernise their environments.

The convergence of physical, cyber, and operational technologies means organisations are rethinking how they design, manage, and scale their security systems. Genetec’s predictions, with which Nextro concurs based on our own analysis, point to increased flexibility, intelligent automation, and unified operations as the defining themes for the year ahead.

Hybrid Cloud Becomes the Preferred Model

Discussion around cloud strategy is moving from adoption to flexibility. Organisations will select deployment models—cloud, on‑premises, or hybrid—based on performance, cost, and data residency requirements. Hybrid cloud architectures are expected to dominate in NZ due to connectivity and compliance considerations.

Intelligent Automation Goes Mainstream

Genetec forecasts a shift from hype‑driven AI to practical automation that reduces false alarms, improves monitoring accuracy, and accelerates investigations. For New Zealand businesses with lean teams and high‑volume environments, intelligent automation provides measurable operational impact.

Responsible and Transparent AI Becomes Mandatory

With AI becoming more common in security workflows, organisations are demanding transparency around data use, privacy, and cybersecurity safeguards. This expectation is especially important for councils and operators accountable to public governance.

Access Control Modernisation Accelerates

Traditional access control is evolving into identity‑centric security. Growth in ACaaS, mobile credentials, and biometrics supports occupancy insights, energy optimisation, and multi‑site management—benefits well‑suited to NZ’s distributed enterprise environments.

Unified Systems Enhance Security and Operations

Genetec expects rapid growth in IoT devices and connected building systems. Unified platforms that combine video, access, IoT, and building management allow faster decision‑making and improved incident response across facilities.

Cybersecurity Becomes Embedded in Every Device

Physical security is now inseparable from cybersecurity. Organisations expect secure interoperability, strong encryption, and robust data residency. As NZ facilities become more connected, secure‑by‑design architectures are essential.

What New Zealand Businesses Should Do Next

Based on Genetec’s 2026 predictions, organisations should:
• Develop hybrid cloud strategies aligned to performance and sovereignty
• Use intelligent automation to improve monitoring and reduce workload
• Apply transparent, responsible AI governance
• Modernise access control with mobile and identity‑centric systems
• Unify video, access, IoT, and building systems under a single platform
• Embed cybersecurity into every layer of physical security design

If your organisation is planning physical security modernisation in 2026, the Nextro team is available to help align technology, operations, and governance into a future‑ready, unified approach. Contact Nextro today.

Read THE FULL REPORT HERE

The post Genetec Physical Security Trends for 2026: Flexibility, Automation, and Unified Security for New Zealand appeared first on Nextro.

Nextro Places in the Deloitte Fast 50 Index for 2025

Nextro Marketing — Tue, 25 Nov 2025 02:23:06 +0000

Nextro Places in the Deloitte Fast 50 Index for 2025

Nextro has been recognised in this year’s Deloitte Fast 50, the national index celebrating 25 years of New Zealand’s fastest growing private businesses.

The Deloitte Fast 50 highlights organisations that have achieved sustained revenue growth over a three-year period and continue to drive innovation, employment, and economic impact across the country.

Regional category winners were announced on 29 October 2025, with the full indices and national category winners to be revealed at the awards ceremony on 27 November 2025.

Being named a contender reflects Nextro’s ongoing momentum in the physical and cyber security sectors, supported by strong client partnerships and a commitment to securing New Zealand.

UPDATE: Nextro places as the 40th fastest-growing business in the 2025 Deloitte Fast 50 Awards

Watch this space. Follow us on LinkedIn for further updates.

The post Nextro Places in the Deloitte Fast 50 Index for 2025 appeared first on Nextro.

Strengthening Physical Security: What NZ Boards Need to Know About the PSR Framework

Nextro Marketing — Fri, 21 Nov 2025 00:05:22 +0000

Strengthening Physical Security: What NZ Boards Need to Know About the PSR Framework

21 November 2025 | Nextro Insight

Physical security is now a core component of organisational resilience, protecting people, information, facilities and critical assets. The New Zealand Protective Security Requirements (PSR) provide a comprehensive framework that government agencies must follow, and that private-sector organisations increasingly adopt as a proven best-practice model.

For boards, the PSR’s physical security policy is especially valuable because it sets out a clear lifecycle of responsibilities under PHYSEC 1–4. This lifecycle helps New Zealand organisations understand what they must protect, how controls should be designed, how they should be validated, and how they must be maintained over time.

Nextro regularly supports boards and executive teams to interpret and implement these requirements, particularly in environments where physical, cyber and operational security intersect.

Why Physical Security Matters to Boards

Physical security intersects with health and safety, information security, business continuity and asset protection. It is not a facilities issue; it is an organisational risk domain that requires senior oversight.

The PSR outlines clear expectations and provides a structured way to manage physical security risks.

Nextro sees consistent improvements in resilience when boards treat physical security as a strategic responsibility with dedicated reporting, budgets and clear ownership.

PHYSEC 1 – Understand What You Need to Protect

The first requirement demands a complete understanding of the people, information, assets and services your organisation relies on. This includes:

Identifying where assets are located
Assessing asset value, sensitivity and usage
Understanding threat likelihood and impact
Integrating health and safety obligations
Embedding security considerations into site selection

Directors must ensure the organisation maintains a current asset inventory and conducts regular physical risk assessments. Nextro frequently observes gaps where site selection or leasing decisions have been made without appropriate physical security input.

PHYSEC 2 – Design Your Physical Security

PHYSEC 2 requires organisations to build physical security into the early stages of planning, design and facility decision-making. This includes:

Establishing security zones (public, controlled, restricted etc.)
Implementing layered physical controls
Developing site security plans
Aligning controls with business impact levels
Using approved or certified physical security products

Security must be intentionally designed, not retrofitted. Retrofitting increases cost, complexity and operational disruption. Nextro strongly recommends that boards require physical security design sign-off for all major initiatives.

PHYSEC 3 – Validate Your Security Measures

Controls must not only exist—they must work. PHYSEC 3 requires organisations to:

Validate correct installation of physical security controls
Identify vulnerabilities and weaknesses
Complete accreditation of security zones
Escalate and formally accept residual risks at senior levels

Boards should expect structured assurance reporting rather than simple statements of compliance. Independent validation, inspection findings, accreditation status and remediation actions should be part of regular board or committee updates. Nextro often finds that organisations assume controls are working without having tested them independently. This is a key governance risk.

PHYSEC 4 – Keep Your Security Up to Date

Threats evolve, assets change and technology ages. PHYSEC 4 requires:

Continuous vulnerability monitoring
Regular maintenance and lifecycle replacement
Updated site security plans
Incident response readiness
Retirement of outdated or ineffective controls

Effective physical security requires ongoing investment, not a one-time upgrade. Boards should ensure budgets cover maintenance, operational support, supplier oversight and periodic review cycles. Nextro’s assessments show this is the most common area where organisations fall behind.

What New Zealand Boards Should Do Next

Based on the PSR framework and Nextro’s experience advising organisations across New Zealand:

1. Request a physical security roadmap: It should align to PHYSEC 1–4, include a gap analysis and be supported by an implementation plan.

2. Confirm clear executive accountability: One senior leader must own the physical security lifecycle and provide regular reporting.

3. Ensure physical security is embedded into all major organisational changes: Projects relating to property, construction, technology, operations and procurement should reference PHYSEC requirements.

4. Strengthen assurance and validation: Boards should require evidence of testing, inspections, accreditation and closure of identified risks.

5. Require periodic review and maintenance: Maintenance plans, lifecycle schedules and threat reviews must be standard practice.

6. Improve board reporting: Useful metrics include:

Number of facility risk assessments
Zone accreditation status
Open vulnerabilities
Supplier compliance
Incident trends
Maintenance, lifecycle progress and budget adherence

Nextro can help develop these metrics and connect physical security oversight with broader risk and resilience reporting.

Risks of Inaction

If physical security is not governed effectively, organisations face:

Harm to staff or the public
Compromise of sensitive information or assets
Service disruption and operational downtime
Legal, regulatory and financial consequences
Reputational impact

Many incidents stem from basic physical security weaknesses, making this a critical governance priority.

Final Thought for Boards

The PSR’s physical security requirements provide a clear, structured and practical framework that boards can rely on. By aligning governance to PHYSEC 1–4, organisations significantly strengthen their ability to protect people, information and assets.

Nextro partners with boards and executive teams to assess current maturity, develop roadmaps, implement PSR-aligned controls and lift ongoing assurance.

Please contact Nextro today to discuss how we can help you implement PHYSEC 1-4 for your business.

The post Strengthening Physical Security: What NZ Boards Need to Know About the PSR Framework appeared first on Nextro.

Nextro Maintains Genetec Unified Elite Partner status for 2026

Nextro Marketing — Wed, 12 Nov 2025 03:35:44 +0000

Nextro Maintains Genetec Unified Elite Partner status for 2026

Auckland, New Zealand – 12 November 2025 – Nextro has once again been recognised by Genetec as a Unified Elite Partner, the highest tier in Genetec’s global partner programme.

The renewed 2026 status highlights Nextro’s continued growth, technical expertise, and proven capability delivering and supporting Genetec’s unified physical and electronic security solutions across New Zealand.

This recognition reflects the strength of Nextro’s long-standing partnership with Genetec and the trust placed in our team by clients across critical infrastructure, crowded places, and New Zealand organisations.

We extend our thanks to our clients, partners, and the Genetec team for their continued collaboration. The Nextro team remains committed to advancing unified cyber, physical, and electronic security solutions that protect people, assets, and operations nationwide.

If you would like to learn how Nextro can help your business achieve security, safety, and operational efficiency outcomes, through clever and unified security design, please contact us today.

The post Nextro Maintains Genetec Unified Elite Partner status for 2026 appeared first on Nextro.

Building Geopolitical Resilience in Times of Uncertainty

Nextro Marketing — Mon, 10 Nov 2025 23:02:56 +0000

Building Geopolitical Resilience in Times of Uncertainty

11 November 2025 | Nextro Analysis

The world is entering a period of sustained uncertainty. From shifting alliances and regional tensions to supply-chain constraints and cyber warfare, the boundaries between geopolitics and business risk have blurred. As ASIS International highlights in its latest article, Geopolitical Resilience in Times of Uncertainty, resilience now depends on how well organisations anticipate and adapt to these forces.

For New Zealand businesses and Nextro clients, especially those managing critical infrastructure, strategic manufacturing, or strategic logistics, this shift is more than academic. It affects how we design cyber, physical, and electronic security systems, plan for business continuity, and protect our New Zealand’s capabilities.

Understanding Geopolitical Resilience

Geopolitical resilience is described as the outermost layer of resilience. It moves beyond conventional risk management by looking at the underlying political, economic, social, and technological conditions that shape disruption.

Rather than reacting to crises, resilient organisations build the capacity to forecast, absorb, adapt, and recover. They treat resilience as a system-wide discipline that unites business strategy, operations, and security under a shared understanding of risk.

At its core, this approach encourages convergence. That is, the breaking down of silos between physical security, IT, and cybersecurity so that organisations can see the full picture of risk and opportunity.

The New Vectors of Risk

The article identifies four major forces reshaping organisational risk today (all of which are relevant to New Zealand businesses):

Economic and regulatory exposure
Trade restrictions, tariffs, and regulatory shifts can quickly alter how and where organisations operate. Protectionism, energy security, and data sovereignty now carry real business implications.

Supply chain vulnerability
Global supply networks are increasingly politicised. A single choke-point (such as a disrupted maritime route or a restricted technology export) can cascade across multiple industries. Building supply-chain resilience means diversifying sources, auditing dependencies, and modelling geopolitical scenarios.

Cyber and information threats
Cybersecurity cannot be viewed in isolation. Geopolitical tensions often shape the motives, funding, and tools of threat actors. State-sponsored campaigns and disinformation efforts highlight the need for security strategies that combine digital, operational, and human intelligence. New Zealand businesses and critical infrastructure are not immune.
Socioeconomic pressure and public perception
Inflation, social unrest, and disinformation all feed into risk landscapes. Understanding how these forces interact helps organisations prepare for reputational and operational impacts alike.

Breaking Silos and Seeing Opportunity

Building geopolitical resilience is not just about risk mitigation—it’s about readiness and agility. The article calls for an integrated mindset: connecting business leadership, operational security, and technology teams so that decisions are informed by a shared awareness of the wider environment.

This shift transforms security from a reactive function into a proactive enabler of strategy. It helps identify opportunities, such as diversifying markets, relocating supply chains, or investing in technologies that strengthen autonomy and reliability.

At Nextro, we see this alignment every day in our work with organisations that manage critical infrastructure, complex IT networks, and converged security environments. Resilience means more than protecting assets. It is about ensuring continuity of service and trust when global systems are under stress.

What This Means for New Zealand

For local businesses and agencies, geopolitical resilience demands new thinking. It’s about embedding foresight into planning, using data to monitor emerging risks, and ensuring that physical and digital systems are designed to adapt.

Key questions to ask:

Are your supply chains prepared for political or regulatory disruption?
Does your cybersecurity posture account for state-sponsored threats?
Does your physical security posture account for multi-dimensional attack vectors?
Do your business, IT, and security teams share a unified risk language?
Have you considered how global tensions could create opportunities to strengthen your position?

Nextro’s Perspective

At Nextro, we help bridge business strategy and security strategy. Our approach integrates physical security, IT networking, and cybersecurity into a unified resilience framework, helping clients adapt to a world where uncertainty is the new constant.

Resilience isn’t about standing still in the storm. It’s about knowing which way the wind is blowing, and designing systems that can adjust, absorb, and continue to perform.

Read the full article: ASIS International – Geopolitical Resilience in Times of Uncertainty

Please contact Nextro today to discuss how we can help your business.

The post Building Geopolitical Resilience in Times of Uncertainty appeared first on Nextro.