The reason to develop operational metrics is to underpin resource allocation discussions. Preventative measures do not yet have solid metrics. We need to change our measures for meaningful conversations around resource allocation. This post introduces the Cost of Operational Impact Metrics (COIM).
Tag: Risk
On Living in Liminal Spaces
The term liminal space references thresholds or doorways we pass through - physically/mentally/virtually. Transitional and difficult to articulate, we constantly find ourselves passing through from what came before (pre-liminal) to where we find ourselves in our new state (post-liminal). This seeks to eff the ineffable.
On Preventative Operational Impact Metrics 1
The disconnect between cyber and business is nearly religious - articles of faith for seekers of proof. Whether at a systemic or at an organisational scale, there is much to cyber business metrics. This is first of several posts on the topic.
On Ripple Impact and Operational Resilience
In supply-chain and operational resilience discussions we focus on areas within our span of control, whilst ripple impacts are felt from further. How we understand effects and engage those in our ecosystem shapes response to things not in our control.
Donec Non Est – Until It’s Not.
In decisions, we choose to keep the steady state/ status quo as it is the tenable option. Until it's not.
On Intel Trinity
There are three core questions underlying intelligence reports. Answering these questions creates concise, direct communication whilst retaining the relevance to the original observation and audience.
On Creating a Unified Sector – pt.1
Public sector concepts of how organisations help mitigate systemic risk - in this example, cyber defence for their sector - are difficult to convey. Since organisational interpretations of the concept vary, complementary implementation challenges abound; usually ending with highly glossed fanfare masking minimal results. Here is the first set of considerations for organisations to become part of the solution.
Changing Cyber Landscape – Blurring Criminal/Hacktivist Lines
Not only are cyber criminals becoming bolder in their power projection, they are also diversifying into non-monetary causes. Whilst only a pebble risk for now, the potential for criminal-turned-hacktivist lends a rather disturbing picture for anyone considering the threat.
Changing Cyber Landscape – WannaCry/NotPetya/Costa Rica
In the shadow of Ukraine/Russia, a greater threat to our digital world unfolds in Costa Rica. Looking at prior shifts in the cyber threat landscape helps clearly define the current pebble and why the avalanche it creates will cause greater issues to the global ecosystem.
Operational Resilience and the First Rule
The First Rule and Past Tense are basic mental frameworks to help us understand life via two sides of the same coin - mortality. On the one hand is a biological imperative to perpetuate life as we know it. The other holds recognition of needs beyond the self, when we are taken out of the equation. Together these two offer useful perspective on decision-making. First Rule is the default consideration for operational resilience.