Get tips on Governance and management of Risks, Compliance, Security and Control
And how to make it all work together, as a coherent set of disciplines.
5 out of the 5 most common mistakes that companies make when it comes to risk management and security
– and how to go about it!
In the last blog posts we’ve been sharing the most common mistakes we see in companies when it comes to risk management and security. Did you miss the other posts? Find them here: [1/5], [2/5], [3/5] and [4/5]. The last common mistake I often see is: # 5: Top...
4 out of the 5 most common mistakes that companies make when it comes to risk management and security
– and how to go about it!
(Follow our LinkedIn page to make sure you don’t miss out) The 4th mistake when it comes to security and risk management in companies is: the common assumption that security is only within IT. Security is often addressed from the technical point of view only,...
3 out of the 5 most common mistakes that companies make when it comes to risk management and security
– and how to go about it!
(Follow our LinkedIn page to make sure you don’t miss out) Here comes the third most common mistake in our series. # 3: Compliance is something from another planet Many people simply don’t get compliance. They think it’s all about law and they think it’s...
2 out of the 5 most common mistakes that companies make when it comes to risk management and security
– and how to go about it!
We’re sharing the 5 most common mistakes we encounter in companies. (Follow our LinkedIn page to make sure you don’t miss out) Here is the second mistake I often see. # 2: Inadequate risk management The second mistake I often see in companies is that they have...
1 out of 5: The most common mistakes companies make regarding risk management and security
In the following posts we’ll share the 5 most common mistakes that companies make when it comes to risk management and security – and how to go about it! (Follow our LinkedIn page to make sure you don’t miss out) # 1: Lack of or inadequate dialogue...
If Risk Management is not helping you improve your business, you are doing something completely wrong!
Risks refer to the threats we are exposed to. Threats are a fundamental part of doing business, meaning that if we manage to eliminate all threats we have probably also eliminated our basis for doing good business. What is important is being aware of these threats.
Thus, risk management is a central part of your business and that’s why we need to know how to relate to:
– When the advantages of the business exceed the threats.
– What we can do to eliminate risks without losing business.
– What advantages we have from knowing our risks.
Documentation – show that everything is under control
Documentation is about being able to account for having everything under control when it comes to risk, compliance, and security management.
On one hand, this involves making working procedures explicit, including responsibilities for making decisions, politics, procedures, and instructions.
Control Management
Control Management is a central part of risk, compliance, and security management – because it is all about making them concrete. Risk, compliance, and security won’t get you anywhere if they do not result in implemented security measures and timely execution of well-designed controls.
Incidents – and how to make use of them
An incident is an unexpected event, whether positive or negative, actual or just a near miss. Incidents need to be managed before they escalate and potentially lead to a crisis or an emergency. That’s why we need to keep up with incidents by managing them properly.
Why Compliance Isn’t Just About Law
Compliance is all about knowing the rules, and making sure that you comply and are able to account for it. Whether we live up to our obligations is one thing, but even more important is whether we can account for it. An essential part of compliance refers to being able to document what we do exactly.
