By:
On:
In: *Connecting the Dots Blog*

Negative headlines, embarrassing lawsuits, reputational damage, expensive fines, violence, cyber-attacks, suicides, tragedies, etc. – are most of these incidents preventable? YES! Fact: Hundreds of post-event reports have revealed over and over again that prevention was/is possible. Fact: Preventing incidents and tragedies delivers better results than reacting to incidents and tragedies. AND preventing incidents and tragedies means less damage to you, your organization’s reputation, your bottom line and much less drama for everyone involved. 2014 provided numerous examples of preventable incidents that were not prevented and three undeniable lessons: Organizations cannot prevent incidents if the right people are not aware of indicators/warning signs. Prevention is possibleRead More →

By:
On:
In: *Connecting the Dots Blog*, Business Continuity, Human Resources, Incident Reporting, Information Privacy, Risk Management

  A recent follow up article in Federal Computer Week (FCW) highlighted the porn scandal at the Securities Exchange Commission (SEC) and suggested this was a dramatic wake-up call for any government agency who doubted the need for and importance of an airtight security policy. Good for Teri Robinson… who wrote the article!! However…the steps Teri laid out that an agency should take to build and enforce a security policy are missing a couple of critical steps based on lessons learned and legal defensibility.  Teri suggested the following steps: Review existing policy Social media guidelines should be included and should be specific Assign responsibility becauseRead More →