In my last article “Is Cloud based Risk Management worth the Risk?” I confirmed cloud solutions can be the right and effective solution given that you do the appropriate due diligence on being fit-for-purpose. If a cloud solution is appropriate, that’s any application not just risk and compliance, then how can you minimise your internet infrastructure risk?
With over 16 years’ experience working in security conscience environments at Dept of Defence, Victorian Infectious Disease Ref Labs, and Australian Border Security, I have put together my top 10 suggestions for mimimizing your risks when moving to cloud computing. Continue reading
President Trump promises a more business-friendly government that should stimulate economic growth. Regardless of the actual economic growth in our future, here are three methods that will help your business increase profits if you depend on successful completion of projects to make money.
These are relatively simple concepts, but they require in-depth knowledge, consistent effort and discipline to get full benefit. Continue reading
You know the kind of person I’m talking about in the office. The one that is always talking, driving and in your mind – knows how to play office politics.
Type A personalities are often described as:
- High achievers
- High strung
- Perception Sensitive
In 2015, innovation was added to the Baldrige Excellence Framework. While there is no doubt that innovation is important for an organization’s survival, a fundamental question is: How much does a quality improvement process, which is encouraged by the Baldrige Excellence Framework, contribute to innovation? While there is no simple answer to this question, some indication can be seen in an examination of the focus of the quality improvement process and what happens to a company, with a reputation for innovation, when a quality improvement process is implemented. Continue reading
There are all manner of problems (being an optimist, I rather use the term “challenge”) that we face each and every day.
Most of these challenges are simple enough: what’s for dinner this eve; is there traffic on the highway that is going to impede my progress; do I have any clean underwear, and so on. Some challenges are more complex; how are we going to meet our production schedule; my primary vendor has failed and I need to bring a replacement on-line; which automobile or house should I purchase and what are the financing options, etc… Continue reading
The post-crisis recovery phase is one of the least addressed in planning, training and simulations. This is an area that, if not properly managed, can cost financially, reputationally and operationally. Communications, internal and external are, at best, misjudged. Guidelines for recovery are lacking and most entities lose focus when it comes to discussing recovery operations. It may be that recovery is one of the most complicated of the lifecycle elements and that no two recoveries are going to follow the same pattern. Continue reading
Study shows that non-compliance problems cost nearly three times as much as doing it properly from the start.
Many companies view compliance programs as a headache — something they’re required to invest time and money in, but which produces little. A benchmark report from the United States shows that the opposite is the case. Investing in strong compliance programs saves money in the long run. Continue reading
Social collaboration, online audit tools and in-house expertise point the way forward for the future audit.
Using social platforms to support the audit process with electronic audit tools and remote auditors is the way of the future. How we start to position ourselves for the future audit is something I have been thinking about since I first wrote parts of this article in 2013. Let’s look back now to go forward. Continue reading
Albert Einstein once said that … “Insanity is doing the same thing over and over again and expecting different results.” If you find yourself doing a root cause analysis on the same problem again and again, it may be a time to revisit the root cause analysis from a framework point of view rather than a tool. In this article, I will go over an example of root cause analysis as a risk management framework rather than one of the tools or a process that you use for troubleshooting a problem. Continue reading
They’re selling features we haven’t even designed yet!—is a common complaint from engineers about sales and marketing. Requirements are a moving target, thanks to marketing. They’re not well-defined. They’re growing and changing, yet deadlines and schedules are firm.
While engineering is pointing fingers at marketing, marketing is pointing back. Engineers aren’t getting the importance of cost, schedule, and features. To marketing, it seems that engineers care about creating technically superior solutions, regardless of cost or schedule. Continue reading
If I gave you six minutes only to communicate your next project; your current workload; the past hurdles; your wish list of positive activities; your best learning’s, how would you use the time? Remember only six minutes.
If I asked you to write down for me your thoughts on how you would change your work outcomes, how much would you write about the past, the present and the future? Let’s say I gave you six paragraphs to do it in with a 250 word-count limit. Continue reading