Artificially Intelligent Unstructured thoughts on cyber security, cyber warfare, information warfare, resilience, and all things risk management.

Risk Managers should lead

Vendors sell it as a dressed up vulnerability assessment. Or as a dressed up patch management. Even change management. And of course threat management. I haven’t seen it... »

I think we have a policy for that ... somewhere

Part of risk management is making sure that the risk management framework (a hierarchy of policies, standards, guidelines and procedures) remains accessible to every person in the organisation through: language... »

Money well spent

As it happens I was asked to weigh in on a pressing matter. They’re all pressing, always pressing and urgent and require immediate response by the time they... »