The reason to develop operational metrics is to underpin resource allocation discussions. Preventative measures do not yet have solid metrics. We need to change our measures for meaningful conversations around resource allocation. This post introduces the Cost of Operational Impact Metrics (COIM).
On Living in Liminal Spaces
The term liminal space references thresholds or doorways we pass through - physically/mentally/virtually. Transitional and difficult to articulate, we constantly find ourselves passing through from what came before (pre-liminal) to where we find ourselves in our new state (post-liminal). This seeks to eff the ineffable.
On Preventative Operational Impact Metrics 1
The disconnect between cyber and business is nearly religious - articles of faith for seekers of proof. Whether at a systemic or at an organisational scale, there is much to cyber business metrics. This is first of several posts on the topic.
On Ripple Impact and Operational Resilience
In supply-chain and operational resilience discussions we focus on areas within our span of control, whilst ripple impacts are felt from further. How we understand effects and engage those in our ecosystem shapes response to things not in our control.
Donec Non Est – Until It’s Not.
In decisions, we choose to keep the steady state/ status quo as it is the tenable option. Until it's not.
On Intel Trinity
There are three core questions underlying intelligence reports. Answering these questions creates concise, direct communication whilst retaining the relevance to the original observation and audience.
On Carving Stones and Anchoring Bracelets
A brief treatise on the thoughts behind the types of jewelry made in the ways I make them.
On Creating a Unified Sector – pt.1
Public sector concepts of how organisations help mitigate systemic risk - in this example, cyber defence for their sector - are difficult to convey. Since organisational interpretations of the concept vary, complementary implementation challenges abound; usually ending with highly glossed fanfare masking minimal results. Here is the first set of considerations for organisations to become part of the solution.
Changing Cyber Landscape – Blurring Criminal/Hacktivist Lines
Not only are cyber criminals becoming bolder in their power projection, they are also diversifying into non-monetary causes. Whilst only a pebble risk for now, the potential for criminal-turned-hacktivist lends a rather disturbing picture for anyone considering the threat.
Changing Cyber Landscape – WannaCry/NotPetya/Costa Rica
In the shadow of Ukraine/Russia, a greater threat to our digital world unfolds in Costa Rica. Looking at prior shifts in the cyber threat landscape helps clearly define the current pebble and why the avalanche it creates will cause greater issues to the global ecosystem.