In every aspect of life, the transferring of tasks and duties from humans to algorithms looks every day more inevitable. There is no reason to believe that risk management is an exception. In this sense, it seems logical that the sooner we accept this reality, the smoother the transition and…
It is incorrect to presume that only large organizations need to manage risk. The size of the organization is not a factor when it comes to dealing with risk; all organizations are responsible for ensuring the availability, integrity, and confidentiality of the assets entrusted to them by their clients. Therefore,…
The ability to influence others is critical, not just for the political candidates, but for you as well if you want to be a leader. Your presence and your message will influence others and call them to action.…
We had a conversation with one of our ISO 22301 Masters, Ms. Rinske Geerlings, who is the founder of Business As Usual in Australia. …
While removing duplications, the revised standard has clearly distinguished the requirements (what) and the guidance (how). It should be noted that ISO 22313, a guidance document, will also be updated reflecting the changes of ISO 22301, and it will be published after the release of the new version of ISO…
Tips from a high-level government executive on ransomware protection. …
Your goal is a mature, robust Business Continuity Management System – one of the key requirements for a more resilient organization. Significant amounts of time, effort, and energy have been invested, and the result is a program that aligns with ISO 22301 and meets organizational goals; one you may even…
Incident management and business continuity are an integral part of every successful company. The ability to survive an incident, continue operations during the event, and not stop growth after the incident is the definition of an organization with a vision! …
The aim of this Privacy Framework is to improve privacy risk management between business/mission drivers and privacy protection activities. It is intended for organizations that use data processing systems, products or services irrespective of their sector, focus or size. …
The 1-year anniversary of the GDPR has not really flooded the media the same way as it did at the launch. And I’m not sure what I should think about it today. Mixed feelings, mixed results, because the GDPR sets a consolidated baseline for privacy protection on the EU level…