As we explained in our last blog Your Enterprise as a Work of “ART”, to become more “ART-ful,” your enterprise must become more agile, resilient, and trustworthy. This post digs a bit more deeply into what business agility is, why it matters, and how to achieve and sustain it. According to the book, “Built to…
Archives.
Your Enterprise as a Work of “ART”
While every enterprise is different, there are three fundamental characteristics that appear common to every successful modern enterprise – things that make that enterprise a work of “ART.” The successful modern enterprise is: - Agile – able to navigate nimbly all types of internal and external change, expected and unexpected. - Resilient – able to avoid threats,…
So You Need a Risk Assessment – Now What?
As we cited in “Risk Assessments are only a piece of the Risk Management Puzzle,” the abysmal performance of organizations in the first round of Health Insurance Portability and Accountability Act (HIPAA) audits shows great room for improvement. None of the facts outlined by David Solove in “The Most Alarming Fact of the HIPAA Audits”,…
Risk Assessments are only a piece of the Risk Management Puzzle
In this post, we’d like to address some interesting points outlined in David Solove’s “The Most Alarming Fact of the HIPAA Audits.” One area that absolutely must be addressed is the lack of proper risk assessments. Two-thirds of all entities–47 of out of 59 providers, 20 out of 35 health plans, and 2 out of…
The Dark Ages of Data Privacy
Data Privacy Day So, January 28th is Data Privacy Day and our marketing department thought it would be a great idea to write a blog on, you guessed it, data privacy. Not really a new thing for us; we’ve written a ton of blogs on the topic and we’ve even been quoted in a book….
COSO 2013: Monitoring Activities
Welcome to our final blog of our COSO 2013 series. Over the course of the series, we have discussed how to develop a control environment, execute risk assessments, design control activities, and how to use information to make decisions regarding your control environment and communicate your control objectives. In this blog, we will cover how…
COSO 2013: Information and Communication
Welcome to the fifth post of our COSO 2013 blog series. To date, we have discussed how to develop a control environment, execute risk assessments, and design control activities. In this blog, we will cover how to leverage information to make insightful decisions concerning your control environment, and how to communicate your control objectives to…
COSO 2013: Control Activities
Welcome to part four of our COSO 2013 blog series. We have covered COSO’s guidance around the development of a control environment and execution of risk assessments. In this blog, we will focus on how to use the output of your risk assessments to properly select, design, and implement control activities. How are Risk and…
Governance and Process: Your 2014 Priorities and 2015 Implications
Because a new year means reflection and anticipation, we thought we’d reflect on the content we produced in 2014 that was most popular. That reflection leads to anticipation of some trends and developments that may be important to you and your enterprise in the coming year. First, our five most popular blog posts in 2014,…
COSO 2013: Risk Assessment
Welcome to part three of our COSO 2013 blog series. In our previous blog, we discussed the COSO framework’s key principles for the development of a robust control environment and ways that ServiceNow can assist with the implementation of those principles in your organization. Having setup your control environment, we can now focus on the…