Tag: education

When it comes to Risk, Appetite is Tolerance

Previously, with many others I believed that Risk Appetite would have to be the starting point of discussion for anything Risk within organisatons. The appetite, following from discussions on Strategy being the choices of directions and subsequent steps that would need to be taken to achieve strategic objectives, i.e., where one sees the organisation ending up in the future. Very clearly elucidated here. Backtracking, one will find the risks associated with these possibly multiple directions and steps — in qualitative terms, as NO valid data exists (logically necessarily, since these concern the future and hence are determined by all information in the universe which, logically, cannot be captured in any model since then, the model would have to be part of itself, incurring circularities ad infinitum and already, the organisational actions will impact the context and vice versa, in as yet (for the same reason) unpredictable ways.
And then … This risk appetite, automatically equated with the risk tolerance by the Board for risks incurred bottom-up by the mundane actions of all the underlings (i.e., including ‘managers’, see yesterday’s post), then suddenly would have to be in quantitative terms… [Yes, bypassing tolerance-as-organisational-resilience-capacity]
As all that goes around in organisations, through the first 99.9% of Operational / Operations Risk, and then some 10% industry-specific risks (e.g., market- and credit- for the finanical industry), not measured but guesstimated by hitherto outstandingly some that have least clue and experience [otherwise, they would have been much better employed in the first line of business themselves… The picture changes favorably (!) where we see some organisations shift to first-line do-it-yourself risk management… finally!] with what the chance and impact figures would be. As if those were the two only quantities to be estimated per ‘event’… As if any data from anywhere would be sufficiently reliable benchmarking material — If you believe that nevertheless, you should be locked up in a treatment facility… Yes sometimes it’s taken to be this moronic… No need to flame bigger here, as that was already done here.

But wait where was I. Oh, yeah, with the bypassing of tolerance defined as what the organisation could bear. The bare fact being, that no-one can establish a reliable figure for that. What the Board can and want to bear … Considering that the Board would have to be all-in, i.e., not only all of their bonuses since ever under clawback threat, but also all of their earned income incl salaries and personal wealth — if any of the Board would not want to risk all they ever had and have, bugger off this is what you signed up to. Considering also that strategic decisions are about wagering the existence of the company on choosing right or else, this wagering the well-being and wealth of all employees however unable to bear loss by mere fact of never had the ability to create some reserves, the previous consideration isn’t exaggerated. You wager others’ very existence, you wager your own ‘first’.

Summa summarum:
Risk Appetite is what the Board lets happen as Risk Tolerated Already.

Plus:
20160529_142237
[And away goes your grand hallway down the drain; [non-related] Haarzuilens, Utrecht]

Fuzzy Vocabulary (Cross-)Boundaries

When discussing Risk …
There will always at some stage turn up a discussion (or multiple, if you’re Lucky; not) about the meaning of certain key words. Which is a pity, because … no, not because it distracts. Though it does, the main issue is that the secondary, meta, discussion about vocabularies is never / rarely resolved.
At strategic levels, talk is about risk appetite and risk tolerance, and foremost about business opportunities (of which the exitement is) spoiled by “risk managers” that point out the world might not be perfect and hence one is all but certain not to achieve the objectives. Smart business leaders push forward anyway, at best keeping the risks in the back of their heads while sanding off the rough edges of progress at that goes along all quite well. When strategies turn out to fail: Well, such is life as it has been since the dawn of humanity.
At tactical levels, talk is about risk portfolios and … not much, really; mostly project and program risks. Of the Boy Cried Wolf kind.
At operational levels, quasi-(sic!) quants do their stuff and come with all sorts of fabulous fables of formulas that wouldn’t stand scrutiny at the most basic of math levels. What idi.t would translate ‘High’ to ‘5’ and then multiply it with some other ‘4.5’ to arrive at a ‘22.5’ “risk” ..!? Heat maps are the reflection of the own moronic brain functioning onto what are supposed to be Managers’ levels of understanding. Though the outcome is correct, the origin of the reflection should be kept in mind instead of forgotten.

And all talk about ‘risk’ (‘operational risk’, even worse), ‘impact’, ‘High’, as though these were somewhat the same thing for all involved, disregarding most of time- and situation-variance or rather completely -determination. Right. Wrong. Just regurgitating definitions from ISO standards demonstrates to not understand the nature of the problem…

Any theoretical science logical-AND linguistics specialists that can help? And:
20161025_1442361
[Tinguley in a picture is quite different from the message of it …; Stedelijk Amsterdam]

Hurt Spree at American University: 17 Millennials Insulted

Tragedy causes discussions about freedom to carry opinion

October 18, 2016 by Hank Grohl
crimescene

During a hurt at a university in Nebraska, 17 students have been insulted. The victims are all millennials that were attending a class on civil rights movements.

The hurter was a white, privileged man who worked as tenured professor of social history at the university. He is said to have just walked into a classroom where he started to fire off historical facts at students. Panic broke out immediately, but thirty students managed to flee the classroom. Even before the hurter could be arrested, he hurt himself.

This is not the first time that America wakes up to a hurting incident with insulting outcome. Even last month, in Colorado fifteen students were seriously hurt by a remark about gluten.

The Nebraska incident has yet again raised questions about the right to have an opinion. More and more Americans are are calling for limits to carry opinions.

[If you took the previous as a ridicule of gun violence atrocities: It is not. Maybe on the contrary, ridiculing whining over if-possible-less-than first world problems. Geddit now?]

[Original, in Dutch, on the Speld; translated with permission]

Spinning Wheel — wait, for it: Clock or Counter-Clock ..?

Anyone noticed that IUs seem to make a thing of having replaced the clearly-archaic hourglass wait icon, with a spinning wheel — that was the Obvious part & mdash; but that the circle sometimes runs clockwise, sometimes counter-clockwise ..?
Part of the why is resolved, e.g., here, but the issue is that it seems to go all sorts of directions in/at all sorts of apps, sites, et al., as far as I can tell not seriously related to the linked explanation.

Yes, I’ve studied this here foundational theory, but also there, not much on directions. Didn’t even know Throbber was a thing.

Then, surely there’s an authoritative UX/GUI protocol (huh?) that has the definitive answers ..? Anyone ..? Oh well:

20160611_153611
[Keeps on [ slipping, slipping, slipping | turning ], [ back to | into ] the future circles; Stedelijk Amsterdam]

Really Bad Life

The recent spat on (team, in particular) sports not being the character building they’re supposed to be, has a pendant in other realms of game as well. The former, here; the latter, here.

Where, similar to other areas of enticement (link and other posts on this blog), the idea of a level paying field not through the starting positions but through procedural justice, seems to want to jump over the weaving errors of our societies being the unevenness and inequality of the starting positions. Also eloquently explained (with a moral take-home) here. Typical in the RBC article above-linked, in the base (sic) of the great game of golf with its handicap system. But still; this doesn’t diminish the feelings of inequity, either on the non-compensated-for-bad-luck-starting-points side, or on the feeling-bad-for-having-lost-the-advantages-of-an-advantaged-starting-point side.

Wouldn’t wars be over and world peace break out when the problem that eluded some of the most eminent (economics- and others) thinkers, as here and certainly here and here, be solved ..? What transformation away from a bad one, would that require of the world society ..?

I’m seriously interested to hear any pointers and partial work already …

dsc_0950
[On the edges of Nature and Appolonian order…, and perfection (in horizon balance) is boring; Ancy-le-Franc]

Needing trolley answers — NOW!

Needing your help on this. In two ways…:

  • How come all the ethicists dreaming up ever more complex versions of the Trolley Problem, but are only too gleefully snickering at n00bs-to-the-field that figure out the peculiarities as they are led through the many pitfalls in thinking — but never arrive at definitive answers themselves! and are just happy with ever further complicating the issues.
    Question is: How to bang their heads long and hard enough or, to give them a last chance, lock them up without food and drink until they deliver definitive answers? Left or Right, Yes or No, with ‘or’ being absolute XOR not ‘and a bit “and”, too’.
  • How does System 1 thinking, or System 2, tie into these sort of discussions ..? As said problems call for immediate decision (no time to wait for decades of completely useless non-answers from ethicists…), System 1 would probably have it, System 2 being too slow. How does System 1 respond in this arena, then ..? Should be tractable.
  • [Of course you didn’t expect me to stick to even my own ‘two’ of the intro, did you?] Is System 1 inherently more tied to the hunter-gatherer life that humanity has evolved in for so much longer, than the agri-society of late (10k years) ..? If so, in what way could we use such connection(s) and ramifications (…) to improve our responses to the above, and to society’s ails in general..?

OK, enough questions, possibly though certainly not certainly not answerable in a simple Comment … Hence:
dsc_0030
[Ah, the Classics, they would probably provide better, actual, solutions, wouldn’t they ..? Ancy-le-Franc encore]

All Your Data Are Belong To Us

Or, in the form of a question: When
a. One has to notify authorities of any (possible!) data leak, per law, in Europe and soon maybe also in the USofA,
b. Even BIOSses aren’t secure anymore, baked in from the word Go and onwards,
Shouldn’t all organisations declare all of their infrastructure and hence all their data, possibly compromised ..?

Just asking.

[Edited to add this. Also relevant; this one deeper (?)]

And:
20141101_145950
[Calm, not private; Museumplein Amsterdam]

Contra Bruce, for once

For once, Bruce is not at the right end. Maybe not opposite of it, but.
As per this here blog post of his — a repeat of one of his, and others’, thread.

The argument: We make things, like, security, too difficult for users and hence (?) we shouldn’t try to change them into secure behaviour.
The contra: ‘Guns kill people’, or was it that the men (mostly) firing guns, kill people? And the many toddlers shooting their next of kin since, being at the approximate maturity of the Original gun pwner, they have no clue.

The Contra, too, and much more to the point when it comes to ‘information’ ‘security’: We should make cars run at maximum 5Mph … Since ‘users’ are waaaay too stupid to drive carefully.
Just don’t mention that ‘security’ is a quality not an absolute pass-or-fail thing, and that ‘information’ could not be more vague. [Except ‘cyber’, that’s so vacated of any meaning that it’s a black hole.] And don’t mentoin we still seem to let cars be used by any other moron that once, possibly literally decades ago before ‘chips’ were invented, passed some formal test — the American idea of the test coming very, dangerously, close to … was (sic) it the Belgian? system where one could pick up one’s driver’s license at the post office. Able, allowed, to buy cars that drive not just 5 but 250Mph, on busy roads, without protection against using socmed mid-traffic… One thing could be to introduce Finnish-style booking for unsafe behaviour (if caught, not when as per next paragraph [think that through…]), and/or huge fines for the producers of bad equipment (hw/sw) comparable to fines on car makers, or outright laws to build airbags in, etc.

And then, if we’d design ‘secure’ systems, e.g., the Apple way, we’d end up with even worse Shallows sheeple that have so much less clue than before… And all in the hands of … even in ultra-liberal countries one would suggest either Big Corp, or Big Gov’t, both options being Big Brother literally in such an atrocious Dystopia of humanity.

So, you want safe systems? You get the loss of humanity before actual safety.

[Yes I get the Humans Are The Cause Of Much Infosec Failure thing (including Human Flexibility Can (still!) Solve More Than Machines Can, Against System (!) Malfunction), but also I am completely in favour of both the Humans Must Through Tech Be Completely Shielded From Being Able To Do Anything Wrong and Humans Should Retain All Freedom To Act Responsibly solutions.]

Pick your stand. And:

[Use G Translate if you have to, from Dutch. Typifying the driver, probably, if only for picking the brand/car…; London]

Maverisk / Étoiles du Nord