My Thoughts
What I'm Thinking About
Decision Modeling
Business management is all about making decisions. Lots of them. How well they are made determine organizational success. Strategy development and objective settings relies on the ability to operationalize in the real world. Being explicit how we make and improve our decisions is critical to staying market relevant.
​
Organizations have a portfolio of decisions that need to be made. The nature of the type of scenario analysis that we undertake as part of risk management is in support of various types of different decisions that need to be made. There are different types of tooling and approaches to structuring the process to optimize the time everyone spends making decisions. Ultimately, framing the decision process well improves the odds of a successful outcome. What kind of decisions are made that need support? There are various, crossing the spectrum between strategic, operational, and tactical dimensions or perspective.
Risk Management
Risk never sleeps for organizations! This is why it has to proactively and intentionally managed. Risk Management is the identification, assessment, response, and ongoing monitoring of threats to the achievement of business objectives. Managing the loss exposure from a myriad of threat sources (such as financial, strategic, operational, cyber, etc.). Integrated into the management of all organizations. Various levels of maturity and efficacy of risk mitigation efforts to capture market opportunities while dealing with threats the bottom line.
There are many levels of intentionality in risk management. They may not be obvious, but they are in effect at all organization. If organizations want to increase the odds of achieving their goals, they increase the intentionality of managing the downside of opportunities and market conditions.
​
Risk Management is about helping the business achieve its goals. When done well, it is a business integrated function for managing risks across the entire organization. As volatility and uncertainty present challenges to all organizations, risk management allows bold action to enter the market, enabling decision makers to adjust and realize more successful business opportunities.
System of Controls
I.T.'s Guide to Managing Cyber Risk
To mitigate cyber risk from disrupting our organization’s achievement of its business goals, IT needs to transform how they approach security.
Risk never sleeps for business as cyber-attacks continue to mount against our organizations. The very technology infrastructure that enables new business innovation and creates market value is under constant threat from digital attacks.
​
IT is tasked by their organizations to lead on mitigating cyber risk while simultaneously driving innovation and keeping the lights on. But IT is often overwhelmed and struggling to keep pace with all the new threats and regulatory requirements.
​
In response to these challenges, many businesses have increased their security investments to keep pace with the threats. Unfortunately, many security programs continue to struggle and cyber incidents continue to mount across all industries. Organizations need more from IT and their security programs! IT needs to change course by transforming how they think about cyber security.
​
This book lays the foundation for a transformative journey for IT to re-imagine their cyber security program through the lens of systems thinking in the context of risk management.
​
Amazon Link
(Hardcover) https://a.co/d/037XIiS
(eBook) https://a.co/d/dtuVDRc
​