Blog2020-04-15T15:16:25+00:00

Are your cybersecurity defences in a hopeful, comfortable or provable state?

May 10th, 2020|Categories: approach, cybersecurity, mindset, risk|Tags: |

Cybersecurity is a technical topic. If technology is not your primary area of expertise, it can be difficult to assess how your firm's current security measures stack up. My Tri-State Assessment Matrix can help, as it avoids the techie speak and focuses on your gut feeling about three areas - technical defences; human defences; regulatory alignment. How these areas are currently positioned gives a strong indication about how IT security is being managed in your firm.

The 12 steps that regulated firms are taking to go from unsure to secure

February 28th, 2020|Categories: approach, change, cybersecurity, strategy|Tags: , |

When IT is your responsibility but not your primary area of expertise, it can be difficult to figure out how to gain the IT capabilities that you want while ensuring you have the IT security that you need. My roadmap, containing 12 steps across 4 phases that I call the W4 Methodology, can help you work through the process in a pragmatic and sane way.

The insider threat

December 2nd, 2019|Categories: cybersecurity, staff|

Most employees want to get their job done and go home. Most ex-employees want to move on with their lives. But it only takes one to cause havoc for your firm.

There’s always one

October 11th, 2019|Categories: change, mindset|

IT projects and other planned changes frequently fail - They exceed budgets, timelines, or fail to deliver the expected benefits. It may not be a technology problem. It may be a people problem. And there could be a very rational reason for this problem that should have been considered from the start.

Playing golf with a shovel

September 2nd, 2019|Categories: approach, cybersecurity, it service provider, risk|

Running a professional organisation using technology that is designed for the home is like playing golf with a shovel. From a distance, it all looks fine. But you don't need to get too close to realise things aren't going to go well when there's real competition on the course, or if the weather changes.

Small bets

May 10th, 2019|Categories: approach, change, risk|

All change involves risk. To mitigate the risk, we try to avoid change altogether, we go all in, or we plan to the nth degree. But there’s another way - Small bets. Small steps. Small spends. Small risks.