Tag Archives: risk management

What Cyber Security Can Teach Us About Preventing Mass School Shootings

– Cyber security deals with proliferation of insecure devices at a mass scale similar to the volume of guns. Cyber and physical security have overlapping protection concepts: The scale and insights of cyber illustrate why our current debate is frozen with people arguing the same tireless points that…

Risk and Human Frailty

– My September 12, 2011 BlogInfoSec column “Risk Management – Scoring vs. Monte Carlo vs. Scoring” was about the subjectivity of risk assessments, where the term “subjectivity” was defined as one’s personal view of particular risks. I received some considerable push-back from the likes…

Supply Chain Links

– Those of us who have an interest in supply-chain risk management closely follow news items that may have impacts on supply chains, such as the March 11, 2011 tsunami hitting Japan, the fall 2011 floods in Thailand, a fire and a labor dispute at Foxconn, a tornado in Wichita, Kansas, etc. Since…

Supply Chain Risk Management and Catastrophes

– The reports of destructive events—natural disasters, accidents, and intentional attacks—just keep on going. We could all guess that the Japanese tsunami of March 11, 2011 would have major impact on manufacturers’ supply chains … but a tornado in Wichita, Kansas and a fire in a plant in…

Classy Data (pt. 3) – Ownership and Risk

– Security professionals proudly describe how they assign owners to their organizations’ data and those owners “assume the risk of any compromise of the data.” Give me a break! The owner is invariably some business-unit manager who just wants to get the job done. The manager will agree to…