Skip to main content

Could this be the greatest news for Earth and mankind 2023 beyond?

A scientific assessment of ozone depletion 2022 conducted by international organizations and government agencies says the ozone is healing.  The document's executive summary identifies the highlights including -Major achievement of the Montreal Protocol, -Current scientific and policy changes, -Future policy considerations.

IT risks not managed, maybe violated further

It is, when you do have one or more of the following--
IT policies and procedures doesn't reflect real processes, efforts are workarounds and communications ill-defined or strict without the best of reasons.

No access verification and monitoring. Shares and lends credentials, computers and gadgets to each other. Browsing unconsciously, and wandering in, the Web. Opened emails that came from unknown individuals or sender very often without questions. Too much of a trusting person online. Uses the same flashdrive, borrowed or owned, for home computer and office computer. Update platforms and software irregularly. Very proud or dislike to cooperate with colleagues and friends or confident lone wolf. IT people enjoys computer games, doesn’t talk to business people. Risk not attended by IT and/or security people themselves.

Mad and disruptive personalities and no respect for rules and regulations. Dismissive of, or no regard to, security protocols. Inattentive to security events.

Expensive and complex solutions that nobody else is aware. IT is dealt with exclusively.

Not enough awareness or doesn't care at all. Prefer second hand information.

Believe it or not. IT risks are--may be becoming one, if not already--business risks.

While stakeholders will want to benefit from the technological development that happens in and out of their organizations, their use of IT is not without associated risks towards their business. It is an everyone’s responsibility. They must scrutinize cautiously and their actions, too. Remember, we humans, our associations, practices and data, the technology we designedly and deliberately used including the very definition and purpose of our own security and privacy rules has, or might have impending if not an immediate, risks. Within the context of revolutionary and disruptive IT environment, risk management must be solidly built within IT programs and projects, comparable to an effective security and privacy mechanisms. Not an afterthought, they say, which is true. Risk management suggests there is no such thing as unpredictable solution. Even history and current IT events says the presence of, and understanding the, risks might be the best of reasons to further the hardening of business systems.

Within our organization, risk management practices or applications and principles must ascertain common grounds and applicability. How about efficiency? Encompassing organizational policies, regulations and technical controls must be reexamined and updated once in a while. Risks must be managed.

Comments

Popular posts from this blog

iPhone 6s devices, longest to receive operating system updates

The recent release of iOS 15.5 to iPhone 6s is not a surprise to owners as they may have known it from last year when it was announced that iOS 15 will still be available for these devices. Indeed, the longest software update , according to The Verge, for a smartphone. If you are one of those who still hold dear such device, kept and taken care of with the same shiny look when it was bought, not a mat and scratch allowed on the surface, you would know that there had been one single major issue as you are about to run the update. Not enough storage.  In order to get past storage limit, you'd delete apps and data until it already has the minimum space to continue the update. A factory reset is inevitable to others, due to the fact that even after deleting all data including big multimedia files, it is still deficient of storage space.  Don't forget to backup your most treasured data though, before deleting all content or resetting the entire system, to other devices such as your

[TW] IT documents, audit and leaders

IT documents comes with different names such as the following: - Manual or handbook, - Policies and procedures, - Management systems, - Project plans. In the real world we have various names with unique descriptions and purposes when in fact they could be made to do a uniform direction for which actions are based for the entire IT initiatives, probably the longest in IT lifecycle is operation. The problem is our inclination on something else which is wrong. IT remains an IT area. Business remains a business area. The same problem is carried out when we conduct IT audit. Most audit are missing the gists in which IT is being used by businesses. We once said that an effective IT audit is conducted by IT people themselves but there is something wrong with that even. Business and accounting people have been doing it with a different bias and preconceived notions which doesn't make the cut for IT direction and audit respectively. Leaders play the same game and so the problem continues an