Beyond end user’s cyber awareness & training
Why end users cyber awareness requires to engage & empower them.
Enterprise Risk Management (ERM) : it is time for a reboot not a rewind!
Entreprise Risk Management : after several months of lockdown, the word « risk » and its associated corporate avatars « risk management » and « enterprise risk management » have come once again to the forefront !
Crisis management and decision-making: avoiding pitfalls
Oxford University’s Saïd Business School has been leading some interesting webinars since early April 2020. One of them titled “Lessons from crisis management: Rapid innovation”, with Anette Mikes and Marc Ventresca, provided useful insights about the current pandemic crisis across the spectrum of two other types of crises, namely the Chilean Mine Rescue (2010) and …
Crisis management and decision-making: avoiding pitfalls Read More »
Business and operational resiliency: “de-siloization” of risk management & business continuity
Business and operational resiliency: “de-siloization” of risk management & business continuity : Within the current context, most organizations are becoming aware of the operational reality of their risk management strategies and their business continuity plans
Risk management: it is not about compliance; it is about anticipation!
Risk management is not about compliance, nor is it about dealing solely with potential negative outcomes. Risk management is about anticipation, it is also about exploring potential positive outcomes.
CISO: beyond technical expertise: leadership, communication & business acumen skills needed
The job of the Chief Information Security Officer (CISO) or Information Systems Security Manager has already evolved considerably in recent years and it will certainly experience new changes in the future.
Cyber risk management: the importance of risk culture
Effective risk management is not only about tools, processes, procedures, systems, it must take into account the specifics of the risk culture that prevails in the company or organization.
Cybersecurity: not without Top Management
An important aspect in the management of cybersecurity within organizations is the handling of the issue at the level of top management, boards and executive leaders.
Do you have a cybersecurity governance? You should!
Cybersecurity has remained confined for too long to a technical and technological approach, strictly limited to the security of information systems (ISS), whereas it also requires, more fundamentally, an organizational and cultural approach, including in particular overall risk management, legal aspects, and the human dimension.