Innovation advisory and IRM/InfoSec/I-Audit services. Positive contrarian, inspirator, loosen-upper.
Ah, just noted: A great many of you may have switched (or, c’mon don’t be a laggard or too late, will soon switch) to self-assessments of risks, even to the level of detail of data security (as part of information security, part of IRM, part of ORM, part of ERM, part of just-freakin’-perfectly-normal-or-are-you-kiddin’-me mundane run-of-the-mill … Continue reading “Your valued info at risk”
Turns out that the seminal Mintzberg’s Managing (as here), has an updated version in the almost off-hand remark by David Gelernter (in this) that we should have been dealing with an “‘organization engineer’ (otherwise known as a ‘manager’)” (p.75) all along, with a focus on the ‘uncoupling’ of the manifold different (sic) tasks to be … Continue reading “Gelernter on Management”
Ah, there’s another authoritative source with a description how leadership and (‘actual’) management should be. I.e., not the robotic, stupid (when one would be offended, consider this a. reflecting your own insecurity out of gut feeling that it describes you, b. intended, c. still being the most lapidary labelling) totalitarian-bureaucratic ‘governance’ type of ‘control’ (quod … Continue reading “Critical management, not governance”
Wow, the new year starts of with … failure. I mean, apart from your inability to keep your New Year’s resolutions (already – if you need such a specific date like Jan 1 and the motivation of a ‘fresh start’ which, on the whole, it isn’t since calendars were invented as easy shorthands not life … Continue reading “Risk of being Duds”
On how Risk Management is self-defeating… or just something one has to do while Life has other plans with you(r organization). First, the übliche picture: [Shadow (play) of Dudok, Hilversum again of course] First, the Defeating part. This, we hardly discuss at length, full enough, but when we do, it’s so obvious you understand why: … Continue reading “Managing Fortuna’s Risks”
[Antwerp. Seriously.] In some previous post, I posited that we should move from quantitative (quod non) to qualitative or even intuitive risk management. And how that may be difficult. ‘cause it is. As an intermediary step, I propose to build a better language with which to communicate, discuss and calculate (sic) with qualitative risk management. … Continue reading “Fuzzy risk language”
Your 15.5 risk is of no interest at all! I have a 15.6 risk! Hm, I only have a 13.1 Seriously. You know you’re doing that. But will you admit it, and learn, and move to something better ..? [Hi, DC!] There’s a lot wrong in risk management today. I mean, not only can one … Continue reading “The 15.5 risk”
Ah, now I see: All the nice (and so utmostly necessary) work on Risk Management the Real Kind – Quantitative, driven top-down from business objectives down to tech control / parameter settings, all the way mixed with qualitative sense-making and sensibility checks –, COSO/CObIT/ISO2700x/CSF/…/…/… my keyboard is running out of ‘…’, will fail for a … Continue reading “RM/ISO27kx/… meets Von Moltke”
[Terug naar de hoofdpagina] Iets meer over mijn ‘vakhobbies’, behoudens wat daarover behoudens… ondergenoemde links allemaal reeds op m’n blog stond: (Kwantitatief Operational) Risk met natuurlijk een stevige -Managementcomponent; over wat Doug Hubbard (hier en hier) te berde bracht, aangevuld met deze, deze en deze bij voorbeeld. Voorbeelden te over… Denken vanuit strategisch perspectief: welke … Continue reading “Vakkig”
[Terug naar de hoofdpagina] In een verder verleden tot en met heden heb ik In een aantal commissies et cetera gezeten bij de NOREA – Werkgroep Adviesdiensten: penvoerder, grotendeels schrijver van de Studie; Commissie PE, tevens 2 perioden vz. geweest; Commissie Vaktechniek even, en Commissie Herziening Beroepsregels; Waarna inmiddels weer in het Editorial Team en … Continue reading “Benevensfuncties”