Innovation advisory and IRM/InfoSec/I-Audit services. Positive contrarian, inspirator, loosen-upper.
[Mehhhdrid?] This appeared: Best practices? Isn't it better to call them Same practices? #bpm #lean — Procesje (@Procesje) February 17, 2014 Nicely summing up a widespread complaint. E.g., against ISO 2700x. One should be forbidden to call those ‘Best’, as they are average, at best. Because they’re adopted by the ones with no imagination of … Continue reading “Mehhh Practice”
[Or a mess, when addressed too formally] Yet another ‘Book By Quote’ then (An attempt to subjectively summarise a book by the quotes I found worthwhile to mark, to remember. Be aware that the quotes as such, aren’t a real unbiased ‘objective’ summary; most often I heartily advise to read the book yourself..!) So, this … Continue reading “Book by Quote: Mintzberg’s Managing”
[Small, but human in an other environment; AMS] The third ‘Book By Quote‘ then (An attempt to subjectively summarise a book by the quotes I found worthwhile to mark, to remember. Be aware that the quotes as such, aren’t a real unbiased ‘objective’ summary; most often I heartily advise to read the book yourself..!) So, … Continue reading “Books by Quote: Practical Wisdom”
[From the brewery, towards the future] The second ‘Book By Quote‘ then (An attempt to subjectively summarise a book by the quotes I found worthwhile to mark, to remember. Be aware that the quotes as such, aren’t a real unbiased ‘objective’ summary; most often I heartily advise to read the book yourself..!) So, this time: … Continue reading “You Own The Future”
[Your prospect of Elysean fields] 2019 is only five years away… But predictions require a suitably close horizon to be able to see how today’s trends and Early Indicators might play out, and still be sufficiently distant to allow flexibility and variance off the predictions – otherwise the predictions are dull. Hence, apart from my … Continue reading “The IS Audit Worker of 2019”
[Educational institute x 3, campus Free University, Amsterdam] When sleeping over problems, one often comes up with solutions that both are real and so all-encompassing that they’ll need much elaboration before being applicable in a nimble way. This one was/is on information security, again. Recall the ‘discussions’ I posted some days ago about (industrial) process … Continue reading “Inter faces”
On the integration of IRM into regular business management just the way HR is (was?). [Some future blog will be about the Three Lines of (NO!) Defense. Now, about a bit more practical stuff.] It struck me that information security, lately expanded into information risk management as (peer) part of operational risk management, as part … Continue reading “IHRM”
In various discussions in my trade, and in general public, there seems to be a point of gravity around insufficiency of latter-day education. The troubles are many, but they fall into several distinct categories: [Spoiler: the true point of this entry is somewhere near the bottom…] Children know way too little; much knowledge is lost. … Continue reading “Ever more learning to go around”