My 2 Obsessions this Week

Posted March 18th, 2008 by

#1:  How does a company/organization convert from doing compliance management to doing true risk management?  I think it’s the difference between being good and being great.  There are a couple of non-IT models that we can look at:  Emergency Room care transitioning into long-term care being a good one.

#2:  Compare and contrast the metrics that are collected as part of the annual FISMA reports with the major initiatives that we have on the table.  They don’t add up.

OK, I think it’s time to go fish this weekend, I’m having dreams about LoB initiatives.  Mini-me says I need to do something non-IT/security/$foo for the 8 hours of the day that I’m NOT working.

Similar Posts:

Posted in FISMA, Odds-n-Sods, Risk Management, The Guerilla CISO | 3 Comments »

3 Responses

  1.  Mini-Me Says:

    About time’

  2.  Vlad the Impaler Says:

    Fishing pole…

  3.  halon73 Says:

    Better late then never… But there is nothing wrong with being passionate about what you do as long as what you do doesn’t become who you are.

    That’s my stab at a Hie-Co. I’ve had to physically unplug and get away to the mountains or get on my bike and just ride.

    But the answer to number one is “Nuke the Planet it’s the only way to be sure”.

Leave a Comment

Please note: Comment moderation is enabled and may delay your comment. There is no need to resubmit your comment.

Visitor Geolocationing Widget: