You know you need a risk assessment to show that you’re secure and to find the problems that expose your enterprise to risk. But how do you sell your CEO or the board on that expensive proposition?
Does your credit union lack the resources to hire or retain a full-time It Manager? Are your current IT expert(s) overwhelmed by their responsibilities? Have you ever wondered what virtual Chief Information Officer, vCIO as a service is? This post is for you! vCIO as a service is a unique approach to providing consultation around […]
Every organisation should take a fresh look at the impact specific cyber events can have and whether management’s response plan is properly oriented and sufficiently supported. This review includes an assessment of internal processes and capabilities to determine whether proactive steps should be taken to make necessary improvements — both near term and long term.
The key to mitigating IT risks is to minimise the harm they can cause. One way to manage risks is for boards to set up policies and procedures to reduce risks. Non-profit boards can also transfer some degree of risk by purchasing the appropriate insurance policies or by outsourcing some activities
Control Frameworks must be regimented but flexible enough to tackle the risk that organisation faces. This aspect challenges the previous two control mechanisms.
n developing IT governance policies, board directors will need to consider the organisation’s operational and strategic needs, as well as keep a watchful eye on reviewing and amending their policies as the company’s needs change and impact of IT on the organisation.
Document the IT equipment in your organisation, keeping track of this allows you to manage when new equipment is needed, budget and understand if you are getting the best value from IT.
An IT Consultant’s objectivity can provide you with a 360° view of all the possible options and scenarios – both positive and negative.
The table below sets out areas for firms to consider in outsourcing, including how organisations should discharge their oversight obligations Area of interest Notes Legal and regulatory considerations Before acceptance, firms should review the contract with the outsource provider to ensure that it complies with our rules. A firm should; – Have a clear and […]
Our vCIO service gives your organisation a competitive advantage because it gives you something that your business truly lacks: an expert opinion. Technology has become a major line item on your budget. If your organisation doesn’t have the on-staff technical expertise to direct or cost-effectively implement the technology solutions you need in a manner that […]
Life of a CIO, Chief Information Officer, Head of IT, and or basically the most knowledgeable IT person in the building on that day, is what I call being a responsible for your IT, go-to tech expert. I am partner with Mark Duffy and we work with our clients to understand their IT systems, computers, […]
This week we were on site with a client and asked the most important question “Do you have a backup that is removed each night?” Yes & didn’t know was the response. So if the building burn’s down, then your goose is cooked, you data and your business is gone, climbing Mount Everest will be […]
This week we were on site with a client and asked the most important question “Do you have a nightly backup and is it removed offsite each night?” Yes & didn’t know was the response to these questions. So if the building goes on fire, then your goose is cooked, you data and your business […]
We all work with in challenging environments and the credit union sector operates in a complex and demanding regulatory environment. IT is a core enabler of business processes. With the credit union sector there is the regulatory oversight required by the Central Bank into their operations including IT. With these requirements, an oversight function is […]