#444 – WHAT YOU NEED TO KNOW ABOUT INFORMATION AND TECHNOLOGY RISKS – JAMES KLINE PH.D.

Featured

In November 2023, the National Institute of Standards and Technology (NIST) issued NIST Special Publication NIST SP 800-221 (SP). The publication is entitled “Enterprise Impact of Information and Communications Technology Risk: Governing and Managing ICT Risk Programs Within an Enterprise Risk Portfolio. (1) This SP provides a guide for integrating ICT Risk Management with the larger Enterprise Risk Management (ERM) framework. Continue reading

#443 – ERM REQUIREMENTS IN FEDERAL PROGRAMS – JAMES KLINE PH.D.

Featured

In November 2023, the National Institute of Standards and Technology (NIST) issued NIST Special Publication NIST SP 800-221 (SP). The publication is entitled “Enterprise Impact of Information and Communications Technology Risk: Governing and Managing ICT Risk Programs Within an Enterprise Risk Portfolio. (1) This SP provides a guide for integrating ICT Risk Management with the larger Enterprise Risk Management (ERM) framework. Continue reading

#442 – FEDERAL ERM SURVEY – JAMES KLINE PH.D.

Featured

In 2023 the Federal Enterprise Risk Management and Guidehouse 9th Consecutive survey of 52 federal agencies was published. (1) The survey was conducted from July 24 to September 2023. Sixty-two percent of the respondents had some Risk Management Function. Seven percent had Finance, Budgeting and Accounting responsibility. In terms of position, nineteen percent were from the Senior Executive Service (SES). Eighty-four percent were non-SES. This piece looks at key survey questions and the responses. Where possible the 2023 and 2022 responses are shown side by side. Continue reading

#441 – ERM WORKS IN GOVERNMENT – JAMES KLINE PH.D.

Featured

In 2019 I co-authored an article, published in Journal of Government Financial Management, entitled: Auditors, Accountants and ERM. (1) The thrust of the article was that auditors and accountants around the world were starting to push Enterprise Risk Management (ERM). The recent ERM audit of the City of Vancouver British Columbia Canada Police Department (2) is an example of this growing trend. This piece examines the audit findings and recommends. Continue reading

#439 – CLIMATE RISK AND COMPLIANCE IN AUSTRALIA – JAMES KLINE PH.D.

Featured

In a series of four articles, I have discussed the Australian Critical Infrastructure Risk Management Plan, the New South Wales (NSW) Climate Risk NSW Guide, and how the Byron Shire Council and the Hawkesbury City Council used the NSW Climate Risk Guide to develop their climate risk management policies and approach. This piece looks at how the Shire of Hornsby NSW is attempting to manage climate risks. What makes their approach different is not in its use of the NSW Climate guide, but in its focus on another aspect of climate risk – sustainability. Continue reading