The Problem
Most mainframe sites create regular backups of the data and programs on their mainframe
Most mainframe sites create regular backups of the data and programs on their mainframe
Identity and Access Management (IAM) – Thoughts
It’s high time for big enterprises to realize the importance of identity and access management (I&AM) technology as an integral part of their security footprint. Even though I&AM is in the limelight for quite long time, still I believe it’s a relative new term that means different things to different people.
What is Identity and Access Management (I&AM)?
As Wikipedia says, “Identity management or ID management is a broad administrative area that deals
If you do a Google search on ‘Cloud Computing Security’ you will get about 13,600,000 results and that’s too much of information for anyone to start. So let’s try to summarize the information keeping in mind of CSO’s concerns on cloud computing.
What is Cloud Computing?
In simple words, ‘Cloud Computing' is a collection of Internet or private-network based services, providing users and devices with scalable & economical (pay-as-you-go) information technology capabilities. The services offered by t
Riskware is a multi-award winning Enterprise Risk Intelligence software application.
Never before have so many features been available in one application to help organisations better manage their governance, risk and compliance (GRC) legal and organisational obligations.
Typically, GRC work is performed by various business units working with various risk methodologies contributing to multiple risk mitigation strategies resulting in
We are an independent firm of designers, planners, engineers, consultants and technical specialists offering a broad range of professional services.
Through our work, we make a positive difference in the world.........
We shape a better world.
Executive Summary: Sometimes your reputation in the industry is everything for you. Reputation is sacrosanct and hence any risk to the reputation of the company is considered high
I worked at Sony for many years. For a company such as Sony, the brand reputation is sacrosanct. Which means any incident or event which will bring bad name to the company will be considered a “high” risk event. This is much more accentuated because the company is Japanese .
For example a pharma company makes a mistake w
On the surface at least, it’s hard to take away positives in the wake of the financial crisis. Yes, it taught us that we have to manage risk better, improve processes and become more transparent. But it’s the regulators globally that seem to have taken these lessons closely to heart.
With some banks still struggling to conform to Basel II requirements, Basel III is being hotly debated. It will force banks to hold more capital, and many argue that this will bring the end of ‘cheap money’. In the U
What is the objective in any crisis?
It is to maintain company credibility and reputation, and create the perception that as an organization you are doing everything humanely to act in the positive regard to all stakeholders.
If I had the opportunity to address a Board of Directors about the need for adequate crisis response planning and emergency preparation, there are only five points we would discuss, and the discussion would take just a few minutes.
They are: Read more:http://deonbinneman.wordp
I read the recent news that Mahindra Satyam (previously known as Satyam Computers) declared its financial results after two years of working at the previous fraudulent statements and restating the same. You might recall, the fraud was alleged to be perpetuated by the previous owner Ramlinga Raju the then Chairman of the organization for an amount of Rs 7000 crore (Rs 70,000 million) or more. The CFO and External Auditor (PWC) are considered accomplices in the fraud. The new owners made a stateme
Mark Twain once observed that there was a difference between Lightning and Lightning Bug. An important difference.
The difference between the almost right word & the right word is really a large matter–it’s the difference betweenthe lightning bug and the lightning.
Might there be a similar difference between Risk Management System and Risk Management?
A Risk Management System is composed of org charts, policy statements, Reports, meetings,committees, computer models, powerpointsand dashboards.
Risk
"Your brand is created out of customer contact and the experience your customers have of you" - Stelios Haji-Ioannou, Chairman, EasyGroup
The risk management departments are sometimes perceived in negative light due to their role in the organization. The business operation teams view the risk management departments as office police, watch dogs, critics and messengers of bad news. The basic job function of the risk management departments is to:
Many states are enacting data breach notification laws, but Connecticut is the first state to have its insurance department get involved, enacting what is known as Bulletin IC-25. Wanting to know more about this recent development, I contacted Ed Goodman, chief privacy officer at Identity Theft 911. Below is our exchange:
What is Bulletin IC-25?
EG: On August 18, 2010, the Connecticut Insurance Department issued Bulletin IC-25. Bulletin IC-25 covers the handling of information security incidents t
Risk management approach depends upon who you talk to - project managers have a different view from financial analysts who have a different approach from actuarties and so on. This can result in multiple and sometimes contradictory conclusions about the assessment of the risk of an event.
We frequently get questions about how complexity management is different from risk management. Luckily, complexity management does not suffer from this problem of diversity of opinions! But we believe that that
Do you have a plan for what to do when your parachute doesn’t open?
Well, if you do not, pay attention. Here is a 6 step checklist for what to do:
There now. Don’t you feel safer?
You say you do not parachute jump? So what good it this?
Well, you must see that this is really good advice that can be applied
Despite recent news reports that the Basel III liquidity requirements are to be pared back, financial institutions are still facing vast regulatory challenges. They already have to hold more capital and liquidity, as well as report on this daily. Going forward, institutions will also have to demonstrate the processes and controls used to put together reliable information. Never before have risk and data management been so interwoven.
The real challenges facing institutions looking to showcase the