Search results for: risk management

The uncertain timing of your hack(ed)

On the one hand there’s the discussions regarding the oh so much needed renewal of ‘risk management’. Trying to drop the ‘heat map’ nonsense and the 3LoD sameness. On the other, there’s infosec trying to first get rid of all the ‘cyber’ bs (#ditchcyber) and second trying to achieve something against all grains. On the … Continue reading “The uncertain timing of your hack(ed)”

Advies

Als u wilt weten Wat nu … Hoe nu verder … Wat kan … Op alle terreinen die iets te maken hebben met IT en toepassing en beheersing van de informatieverwerking, bijvoorbeeld organisatie en inrichting van uw ERM/ORM/IRM, de laatste IT-gedreven innovaties en mogelijkheden, InformatieManagement en InformatiebeveiligingsManagement en control (beheersing), operational/information risk management, projectvoortgang(sbewaking), operationele, … Continue reading “Advies”

Are you scared of perfectionism ..?

Not of but to. This dawned on me, suddenly – as dawning of this better kind is unenforceable – a lot of people list ‘perfectionism’ as their default weakness-read-humblebragged-strongpoint. But it’s a weakness indeed because any such feeling will be rootcaused by insecurity, of the angst kind. When taken forward, from the latter, one sees: … Continue readingAre you scared of perfectionism ..?”

Deviate for Resilience

Well there’s an imperative. Deviate for resilience. Which goes waaay beyond mere ITCM or its linkage into BCM. What I mean here, though, is a reflection from the B side into the IT side. Once encountered when it was still supposedly somewhat ‘cool’ (as it was called in the grandpa’s days) or so to work … Continue readingDeviate for Resilience”

Some cloud insurance market

On the authority of a couple of very knowledgeable peers, there seems to be a discrepancy between the coverage (sanctions) that cloud providers (in particular the Big 4 of that) contractually will provide for, e.g., outages (recall the AWS East-1 one), versus what businesses (most, qua scale and lawyer fee availability) require given their revenue … Continue readingSome cloud insurance market”

Book by Quotes: The Sarick Effect of Originals

How Original is that. By Adam Grant. Well, it turns out to be (p.77). A very limited sample of quote-worthy lines, commented, from much more that one should live by: ”The reasonable man adapts himself to the world; the unreasonable one persists in trying to adapt the world to himself. Therefore all progress depends on … Continue reading “Book by Quotes: The Sarick Effect of Originals”

Business

[This page to be updated. It will have a description of the services and packaging options of those services that Maverisk will provide.] Jurgen is a positive contrarian, inspirator, loosen-upper and teacher, coach. In the guise of an advisor, manager, consultant and researcher in the areas of enterprise (risk) governance, operations and information risk management, … Continue reading “Business”

"Compliance auditing"

Is two distinct things, or a contradictio if taken as one. The ‘compliance’ thing is just rote checking of the implementation of all petty rules. The Certificate certification type. If I’d even need to say more… Some even claim that by repeated checks of implementation, ‘operating effectiveness’ would be established. Fools. The operating effectiveness can … Continue reading “"Compliance auditing"”

ORM will not fly B-4 People are included

[Warning: Longread] On the ails of the Basel-IV ORM proposals: 1. Unwarranted, certainly unscientific overreliance on ‘models’; 2. Modeling for prospective use in stead of hindsight understanding; 3. Too much top-down, not enough bottom-up; 4. No humans in the picture, hence the wrong and unactionable indicators. Introduction About all of the banking industry, and other financials in their wake, … Continue reading “ORM will not fly B-4 People are included”

Maverisk / Étoiles du Nord