#27 – ISO 31000 SECURITY RISK MANAGEMENT – INGE VANDIJCK

INGE 2The biggest challenge for security managers is to demonstrate the value added of security.  It is not an easy task for risk management to argue the return on security investment (ROSI), but it is certainly not a mission impossible.

In many organizations with a lower maturity in security risk management the link between investment in security and the value added is not sufficiently explained and justified.  Costs for security are therefore regarded as a necessary evil, mainly to meet legal obligations. In more mature organizations the link between security and the value added are well understood, therefore investments in security are related to the protection of value already created within the organization. Continue reading

ISO 31000 Risk Management Standard Press Release

Press Release – March 21, 2013

WHAT is the ISO 31000 risk management standard ?

ISO 31000 is the only internationally-recognized ISO standard in risk management.

WHO has developed it ?

Up to 60 experts from different sectors (industry, health & safety, quality management, banking & finance, etc.), representing 30 countries, worked within an ISO international working group called the ISO TC 262 committee – see : http://www.iso.org/iso/iso_technical_committee?commid=629121 Continue reading

#9 – ISO 9001:2015 REVIEW – UMBERTO TUNESI

Umberto Tunesi pixWill the soon to-be-released Standard be once more a scheme for quality management systems, or will it – hopefully – have grown up to quality-led and quality-leading systems?

Because managers are no leaders, and vice-versa: any Ship’s Captain it’s not her First Officer. Any Ship’s Captain has authority to marry you on-board, the First Officer hasn’t. Continue reading