You know you need a risk assessment to show that you’re secure and to find the problems that expose your enterprise to risk. But how do you sell your CEO or the board on that expensive proposition?
Does your credit union lack the resources to hire or retain a full-time It Manager? Are your current IT expert(s) overwhelmed by their responsibilities? Have you ever wondered what virtual Chief Information Officer, vCIO as a service is? This post is for you! vCIO as a service is a unique approach to providing consultation around […]
Cybersecurity/ IT Risk Management is (or should be) on the agenda of boards. Information Technology is ranked by many as a top 10 risk, but does your board treat it accordingly? Working on and with Boards of Directors, I understand that the agenda is pretty full on, despite Zoom decreasing the actual meeting times. Since […]
Employee Data Theft When most of us think about a cybercriminal, we usually think of a person from home, and probably not in your own country. But did you ever consider that a hacker could be inside your own organisation? While most business owners assume that attacks on their company, data, website or operations are […]
SME’s need advice and assistance in identifying and defining suitable actions to mitigrate the risk of Information Technology risks, data loss and the issues where the loss of an IT function brings to any organisation. Cyber crime poses a severe risk to all types of enterprises. Preventing these risks requires implementing initiatives based on both education and awareness.
he policy must include a description of the main roles and responsibilities of information security management. Set out the requirements for staff and contractors, processes and technology in relation to information security, recognising that staff and contractors at all levels have responsibilities in ensuring financial institutions’ information security.
Tags: artificial intelligence, Cloud, IaC, IAAS, Infrastructure, Infrastructure as a Service, Machine learning, Operating Model, organisation, Outsourcing, RPA, vendor management 2020 has given us a significant change to how we work, how technology works for us and how we integrate with the world as a whole. The internet provided the starting pistol for this phase […]
Every organisation should take a fresh look at the impact specific cyber events can have and whether management’s response plan is properly oriented and sufficiently supported. This review includes an assessment of internal processes and capabilities to determine whether proactive steps should be taken to make necessary improvements — both near term and long term.
The key to mitigating IT risks is to minimise the harm they can cause. One way to manage risks is for boards to set up policies and procedures to reduce risks. Non-profit boards can also transfer some degree of risk by purchasing the appropriate insurance policies or by outsourcing some activities
It’s critical that you protect your business’ important assets, including perhaps the most important of all: its data. One of the best ways to do this is by implementing a solid backup solution. But what’s the best way to approach data backup? After all, every business is going to have different needs. We’re here to […]
Control Frameworks must be regimented but flexible enough to tackle the risk that organisation faces. This aspect challenges the previous two control mechanisms.
n developing IT governance policies, board directors will need to consider the organisation’s operational and strategic needs, as well as keep a watchful eye on reviewing and amending their policies as the company’s needs change and impact of IT on the organisation.
Document the IT equipment in your organisation, keeping track of this allows you to manage when new equipment is needed, budget and understand if you are getting the best value from IT.
An IT Consultant’s objectivity can provide you with a 360° view of all the possible options and scenarios – both positive and negative.