Operational resilience is a concept that has gained even further traction. It first came to prominence from financial regulators, in particular the Bank of England and then others. “Operational Resilience is the ability of firms and the financial system as a whole to absorb and adapt to shocks, rather than contribute to them”. This concept, very much applicable to all sectors, met with some eye-rolling with some people saying: “we already do this – it’s called business continuity...| Risk and Cyber
Maturing a security program in any type of organization is not just to increase specific control effectiveness but also to increase its scale, predictability and reliability - otherwise that effectiveness cannot be sustained. A key factor in doing this is to move from “artisanal” ways of working to become more “industrial” - that is to move beyond individual team member craftsmanship toward relentlessly consistent organization-wide outcomes. Let's examine the difference between artisa...| Risk and Cyber