It seems you can find an argument about pretty much anything these days. Yet, I don’t think anyone would argue that the growth in cybersecurity and technology applications has been exponential. Modern humans left Africa some 60,000 years ago, but the first Industrial Revolution did not occur until the late 1700’s/early 1800’s. In just over […]
Six degrees of information is a play on the original Six degrees of Separation, which states: “Six degrees of separation is the idea that all living things and everything else in the world are six or fewer steps away from each other so that a chain of “a friend of a friend” statements can be made
Risk Management for Small Business almost seems like a dirty word.. But we are a nation of small businesses. In fact, over 90% of U.S. businesses have less than 20 employees. But many small businesses aren’t developing or implementing a risk management strategy – and that’s a big mistake. I know as small business owners,
A “people” perspective on GRC models It is no big secret that the “Three Lines of Defence” model underpinning many GRC practices in large firms is poorly understood and poorly applied at grass-root levels. Anecdotal evidence we observe in the field every day suggests that many organisations operate it in a variety of hybrid fashions
The “Three Lines of Defense” Model Only Works On Trust Read More »
TeroVesalainen / Pixabay Some outsourcing contracts actually ensure poor performance. It’s true! Service levels are too high, penalties drive over-performance in one area at the expense of others, and governance structures look pretty on paper but create zero accountability. Couple these problems with attitudes of blame and superiority that block problem solving and open dialogue
The keys to a successful second line of defence There are many risk management methodologies in existence but it is not uncommon to come across large firms still following today simplistic, dysfunctional or flawed practices, in particular around operational risk management. The main issue with many of those approaches is that they are plagued by
