OPERATIONAL RISK MITIGATION
Operational Risk Management is the oversight of many forms of day-to-day operational risk including the risk of loss resulting from inadequate or failed internal processes, people and systems, or from external events.
10 Mistakes That Will Sink a Strategic Plan (SearchCIO.com, May/2008). During a webinar for IT executives yesterday, Alex Cullen, research director at Forrester Research Inc., gave CIOs a tutorial for putting together a strategic plan that produces results.
Containing Computer Incidents (Enterprise Innovation, Mar/2008). Most any forensics examiner will point out that system-level changes occurring between the time a security breach is first discovered and when the ensuing investigation begins, can have a substantial negative impact on investigatiove efforts. In Sterle v. Elizabeth Arden, Inc., 2008 (Electronic Discovery Law, 15 April 2008), Defense Attorneys were sanctioned by the Courts for Obstruction of Forensic Inspection of Defendant’s Computer Servers, a cost which would no doubt be incurred by the defendant
How to Nab the Rogues: 10 Fraud Tips (CFO.com, Jan/2008) Why the risk of wrongdoing has migrated from senior executives to middle management ?
Firms Bridging the Gap Between Legal and IT (Search CIO, Aug/2007). Email and instant messages: They’re evidence. Because of it, IT organizations and lawyers have to collaborate more than ever. And since lawyers bill by the hour, CIOs might want to hire someone who can talk to them.
The Emergence of Convergence (CFO.com, Jan/2008). Increasingly, corporate executives are ratcheting up their expectations for software that can capture a wide range of governance, risk, and compliance (GRC) information. Those functions can overlap, sometimes in unexpected ways.
INFORMATION MANAGEMENT
Information management (IM) is the collection and management of information from one or more sources and the distribution of that information to one or more audiences. This sometimes involves those who have a stake in, or a right to that information. Management means the organization of and control over the structure, processing and delivery of information.
Digital Landfill? (Jun 2008) This educational presentation explains the issues in a non-technical manner!
Customer Data ‘Needs Protection’ (BBC News, Apr/2008) Companies and public bodies are not doing enough to protect customers’ data …
“There’s no reason to keep all that data,” says the CEO of RenewData, a supplier of e-discovery services. “Some of our clients have 900,000 backup tapes.” (Byte and Switch, Apr/2008)
“Latent Liabilities”: What is your exposure? The majority of legal and regulatory requirements around the world today, have been designed to ensure that companies have data management policies in place which are able to be demonstrated as also being enforced. As a result, keeping too much data can be as detrimental as not keeping enough. if data stored on tapes is found to be relevant to a company’s legal position or regulatory compliance, the fact that it wasn’t handled properly subjects a firm to fines — or worse.
BUSINESS PROCESS IMPROVEMENT
Business Process Improvement (BPI) is a systematic approach to help any organization make significant changes in the way it does business. These changes can be in the form of people, process and/or technology. Innovation encompasses the entire process, from idea to implementation, for the development of new products, services, methods, management practices and policies.
To Err Is Human, and Common (CFO.com, May/2008). A look at 3,744 restatements from 2003 to 2006 and found that, across companies of all sizes, simple human error on the part of internal staff is to blame 56 percent of the time.
70% of corporate leaders named innovation among their top three priorities for growth in McKinsey & Co.’s 2007 survey “How companies approach innovation.”
Beware of IT Alignment Trap (SCMP.com, Apr 14, 1008). In order for technology to drive growth, that first critical move is one that companies often get wrong. Three key principles help in moving organisations to high effectiveness …
Escaping the Shackles of Static IT Mentality (Search CIO, April/2008). In a competitive global economy where the ability to anticipate or, better yet, define the future marketplace is increasingly critical to success, companies do need to innovate. So how can workplaces escape the shackles of their past?
CHANGE MANAGEMENT
Change management is a structured approach to the change in individuals, teams, organizations and societies that enables the transition from a current state to a desired future state. There are two aspects of these changes when it comes to the implementation of supporting technologies within an organization:
Change Management as an IT Service discipline. The objective of Change Management in this context is to ensure that standardized methods and procedures are used for efficient and prompt handling of all changes to controlled IT infrastructure, in order to minimize the number and impact of any related incidents upon service.
Change Management from an organizational (people) perspective. This is a structured approach to transitioning individuals, teams, and organizations from a current state to a desired future state. Organizational Change Management is characterized by a shift in behaviors and attitudes in people to adopt and embrace the future state.
PROJECT MANAGEMENT
Project Management is the discipline of planning, organizing, and managing resources to bring about the successful completion of specific project goals and objectives.
Vetted IT Negotiations Reduce Risk of Project Failure (Search CIO.com, Mar/2008). “Technology acquisition is fundamentally flawed,” said technology attorney Erik Phelps, a featured speaker at last week’s Fusion 2008 CEO-CIO Symposium, where some 250 IT and business executives convened for two days to explore business and IT alignment. By the time the papers are signed, the air can be so poisoned it’s hard to see how the two parties can work together for the next 18 or so months.
|
