It's important for cybersecurity teams to be on the same page with the C-suite, which is easier said than done, writes Evan Morris. In this commentary, Morris outlines ways to foster the relationship and identifies restrictions on tech activity as a point of friction, especially "if the IT department does not provide adequate information behind the policies or does not take the time to explain why it's being implemented."
Optiv CEO Kevin Lynch ranks data governance among his top 10 cybersecurity topics that will be in the forefront in 2022. Lynch says enterprises tend to make poor choices about where to locate data and how it is compartmentalized, with an eye toward a zero-trust security infrastructure.
Improving governance over data-handling processes starts with top management because "leadership and organizational backing is absolutely key," says Shellie Miller of Hulu. "We should run an organization of trust, and through automated monitoring and governance, we can verify and govern without being intrusive and disruptive," Miller notes.
It’s not just new. It’s the new standard. Ideal for those who need maximum flexibility. An ergonomic, biometrically-measured headset with outstanding audio technology, and adjustable Advanced Active Noise Cancellation™, for superior call and music performance in complete comfort. Everywhere. Learn more.
Risk management failures are often characterized "as the result of unfortunate events, reckless behavior or bad judgment" when a risk management program might have mitigated the result, writes George Lawton. Lawton identifies nine potential culprits, starting with poor governance.
Establishing trust in data is the first step toward using it for advanced analytics and business intelligence, writes consultant Mary Ann Richardson, who highlights six strategies for getting started. In conclusion, Richardson points out that "data-driven organizations continue to review their decisions and revise their data models to meet changing business needs."
When a crisis befalls your enterprise, talking to media outlets immediately could be a pitfall for the unwary, writes Evan Nierman of PR firm Red Banyan, who goes on to identify four other potential mistakes. "If you do not know how to shape the narrative in your favor or how to convincingly plead your case, then do not speak with reporters until you are well-prepared," Nierman notes.
Without generally accepted frameworks, enterprises "have been in a tough position when it comes to trying to implement effective ESG protocols," says Jurgita Ashley of law firm Thompson Hine, which has produced a report on the subject. One finding: A third of companies already have an ESG plan, with another third planning to implement one in a year or two."
I've had the pleasure of editing numerous newsletters at SmartBrief for more than 10 years, including those covering governance, cybersecurity and privacy.
If you enjoy reading SmartBrief on IT Governance and have a story idea, please send me an email.
Don't forget to forward this newsletter to friends or anyone else who likes to stay on top of IT governance news for tech professionals, or send this link. And for additional news delivered straight to your inbox, check out all of SmartBrief's Enterprise IT newsletters.
It's more important to be honest than say things to make people feel better. I don't think you have to be rude, but I think you have to be honest.
Harry Connick Jr., singer, pianist, composer, actor, TV personality