Search results for: risk management

ICYMI; Risk Management Requires Quite Some Wider Perspective

Yeah, I’ve blogged about risk management quite a lot, lately. The most of content was about RM1 versus RM2; the former being the day-to-day control over negative events through controls, so as to get to the Objectives set by … well, that follows below, and the latter, being about tornado charts on fishboning all-than-needs-to-go-well-to-make-this-a-success factors, … Continue reading “ICYMI; Risk Management Requires Quite Some Wider Perspective”

Orgs don’t give a hoot about security [or privacy, or (ops) risk management]

Case in point: Have you ever seen a job (opening) profile for a ‘first line’ position where awareness and active promotion towards staff of information security and privacy, was listed at all ..? Now there’s two Buts [with not two but (sic) one T] you will inevitably come back to me with and I’m not … Continue reading “Orgs don’t give a hoot about security [or privacy, or (ops) risk management]”

Norm over substance of risk management

Overheard: A major company in a relevant industry re infosec – and well-known for their good and even so recently much improved infosec posture – doesn’t follow the mantra of “risk management first, policy/standards second” but first sets some quite rigid standards and then, when vendors can’t deliver (even when the standards are strict but … Continue readingNorm over substance of risk management”

The wave of risk

A call for comments, on a crazy (?) idea of mine: If quantum physics is all about probability waves [not ‘particles’] out there, floating in n-dimensional space-time reality (digression(?): the thing we have in our head, not claiming any ‘reality’ like the founder of the idea, Kant, still had – go ahead, dismiss him without … Continue reading “The wave of risk”

Er is niks mis met risk heat maps …

In vertaling van David Vose‘s blog posts, met toestemming: Vooraf even een paar woorden opdat u niet schrikt …: Dit artikel gebruikt ironie. Zowat ieder idee dat hier te berde wordt gebracht, is volkomen en volslagen nonsens. Dit kan confronterend werken, omdat hier wel een min of meer exacte optekening staat van wat mensen daadwerkelijk … Continue reading “Er is niks mis met risk heat maps …”

Explicitation of Risk — scaring yourself into victimhood

As may be clear, Sloterdijk’s explicitation ideas don’t hold on metaphysics levels of abstraction alone. It works for all the mundane stuff like ‘risk management’ [disclaimer for the contradictio], too. And, by making explicit what previously was ‘there’ already, but implicitly and hence not in any beholders’ eyes, in this case all one gains is … Continue reading “Explicitation of Risk — scaring yourself into victimhood”

When it comes to Risk, Appetite is Tolerance

Previously, with many others I believed that Risk Appetite would have to be the starting point of discussion for anything Risk within organisatons. The appetite, following from discussions on Strategy being the choices of directions and subsequent steps that would need to be taken to achieve strategic objectives, i.e., where one sees the organisation ending … Continue reading “When it comes to Risk, Appetite is Tolerance”

Risk Chagrins

It’s just a matter of Karma… As long as ‘risk’ ‘managers’ deal with negativity (admit it; focusing on the negative is even written into quite a number of definitions involved ..!), they’ll become the sourpusses they want to see all around (remember, the “passing back risk management to the ‘first’ line” ..?), and according to … Continue reading “Risk Chagrins”

Nopsrisk, Irisk

When it’s time, it’s time. Of course, meaning that the tough get going. Lately, there has been a resurgence in Risk Management. In particular, in Operational risk management. That has been outclassed. Due to, among others, the calimero hanging-on at the tails of financial risk management but having failed to gain traction because the latter’s … Continue reading “Nopsrisk, Irisk”

Maverisk / Étoiles du Nord