Lausanne, 8.1.2010. It is undisputed that the effectiveness of a risk treatment depends on how the specific risk assessment has been conducted. Being the goal of the risk treatment to have the lowest possible value on the residual risk, it is extremely important to be able to implement a fully functional “Information Security Risk Management [...]

Zurich, 7.1.2010. It is becoming increasingly difficult to find a whay out of the modern compliance jungle. Since the recent economic collapse, we are facing a revival of compliance, in a much more pervasive level to what we were used with precendent crisis such as Enron, Worldcom or the most recent italian Parmalat affair. By [...]

Paris, 6.1.2010. In today economy it increasingly important to stress the importance of a thorough tender evaluation very succinctly. It is a fact that it is a false economy to accept underpriced or under resourced bid. A solution to that is to leverage the importance of standards as a best practice of the firm bidding [...]

Zurich, 28.12.2009. This Christmas highlighted the brave intervention of passenger Jasper Schuringa while flying on flight Northwest Airlines 253. Schuringas intervention, among many others passengers, helped to stop a likely terrorist attack on this flight. A crystal clear act that helped to save the life of many other passengers. Nevertheless Schuringas act also highlights an [...]

Zurich, 23. december 2009. Global IT governance organisation ISACA has just launched a best practice framework to provide a further link between enterprise risk and IT risk management. “Risk IT” builds on COBIT 4.1 and is aimed at helping companies identify and manage IT-related business risks. The focus of “Risk IT” is essentially on the [...]

Sorry, this entry is only available in Français.

Zurich, 8. december 2009. InformationWeek specialized IT Magazine reports the latest observations contained in the annual Cisco’s 2009 Annual Security Report. Bad passwords, inconsistent patching, excessive information sharing, and outdated antivirus software are key ingredients in what Cisco calls a security “nightmare formula.” Expect troubles ahead.

Zurich, 16. october 2009. Uncertainty is a key element of risk management and, yet so many definitions of this word exists, thus illustrating how frequently uncertainty can be misunderstood. Wikipedia definition of uncertainty is the following: “It applies to predictions of future events, to physical measurements already made, or to the unknown”. The standard ISO [...]

Zurich, 1. October 2009. The actual economic situation has further highlighted the importance of using not only risk management, but the need to have a sound guideline within the organisation for managing risks. MinimaRisk has embarked in a daunting task to categorize all the possible Risk Management standards. A first overview, entitled “Governance, Compliance and [...]

Lausanne, 19.August 2009. In today economy and supply chain business orientation, an important part is taken by long-term contracts with partners and suppliers. However these contracts can pose relevant risks to your company.
That is why you need at first to identify, classify, quantify and analyze risks for existing O&M contracts. Most important is also to [...]