Archive for 'Security Risk Management'

3 Steps You Must Take TODAY to Reduce Your Software Risks

The following is a post written by guest author Kit Merker.

Kit Merker has been in technical and management roles for over a decade, doing everything from project management, coding, design, testing, and running a service. He currently works at Microsoft as a Developer Evangelist. Kit Merker has a blog dedicated to preparing for software disasters. Be sure to follow Kit on Twitter after reading his guest blog post below! 

These are times of economic uncertainty for many businesses, and the very idea of spending much-needed funds on something that might happen may seem like suicide. According to CIO.com, business continuity & disaster recovery is NOT a top priority for CIO’s.

It’s a normal human tendency to stay optimistic and believe that you are immune from disaster. We say, “that’ll happen to other people, I’ll hope for the best and focus on my day-to-day activities.”

But, as I say probably too frequently, hope is not a strategy.

Software Risk ManagementImagine if a disaster hit and you sustained serious downtime, got hacked, or lost data your customers needed. The results would be disastrous for your reputation and could mean the end of your business. You’d be kicking yourself for not preparing.

But just like a teenager learning to drive, sometimes getting in an accident helps you learn to operate more safely. The good news is that there are practical things you can do to reduce your risks of software disaster.

Here are 3 things you can do TODAY to reduce your software risks:

1. Create a Crisis Phone Tree

I am a huge fan of lo-fi approaches to dealing with the unknown. This may seem like basic housekeeping, but it will help you handle a crisis much better than having the wrong people or the wrong contact information. When’s the last time yours was updated?

Also, you could create a simple rotation to designate who is “on call” in a given week to handle anything unexpected. You don’t need heavy policy & procedure if you have smart people who are familiar with the software empowered to do the right thing.


Read more

Risk Conversation: Launch of a Risk Management Community

Chubb Insurance recently launched its new interactive resource and community addressing risk management challenges for businesses and individuals, Risk Conversation.  I think this is an important step in the right direction for the insurance industry! Risk Management Online Community

This industry is not well known for being innovative, so it is very encouraging to see Chubb leading the way.  The Risk Conversation website includes loss prevention information, blogs, and risk assessment tools that help users identify, understand and mitigate risk.

The Risk Conversation site features:

Risk assessors that help users identify potential loss exposures and test their risk management know-how;

Blogs that provide risk management insights, observations and tips from Chubb’s underwriting and residential & commercial loss prevention specialists, as well as from other risk management professionals who join the conversations;

Risk Management polls that gauge the public sentiment on timely risk issues; and

News commentary and analysis of current events that impact the risk management landscape.

There is a real need out there for good quality risk management resources as well as a general need to raise awareness about the importance and value of formal risk management.  I like this site because it has a lot of practical tools and information for everyone.

Check it out here http://www.riskconversation.com/

 

11 Reasons Your Laptop Will be Hacked and How to Immediately Prevent it.

John Downey is the Vice President of Software Development at ClearRisk Inc. The ClearRisk team is excited to share John’s technical expertise to help you manage technology risk at your organization. 

It seems like every day now that we hear about another company’s network or laptop being hacked, or a business accidentally revealing confidential files. From Stanford Hospital exposing 20 000 patient records to the hacker attack on Sony that compromised 71 million accounts, even the largest and most seemingly secure organizations are susceptible to data insecurity.

Collaborating with the IT security experts here at ClearRisk, I’ve created a list of 11 easily preventable mistakes almost everyone unknowingly makes. I’ve also provided information security tips that are necessary to help prevent data insecurity as a result of these common mistakes.

Top 11 Easily Prevented Information Security Threats:

1. Using the same password for multiple account.

Never use the same password for two separate accounts. This is especially important for your email; if a hacker can gain access to your email, it’s likely that they can also get into other important accounts from your email, such as your online bank account. Think about this: if you sign up for a service, providing your email and creating the same password you use for your email, this is the only information the wrong person needs to gain access to everything else. 

Preventing Data BreachesAt the very least, you can create different groups of passwords. For example, create one password to be used for your email, one to be used for your banking, and another for all low security accounts. Ideally, you should use a password generator or manager that allows you to create passwords that are impossible to guess.


Read more

RIMS Canada Conference: 10 Years Post 9/11

September 11, 2001 is this generation’s Kennedy assassination. It’s the day when everyone knows exactly where they were and what they were doing when they first found out about it. For risk managers in Canada, that day was spent in Ottawa at the RIMS Canada Conference.

RIMS Canada Conference in Ottawa I was walking through the exhibit hall when a friend with BI&I (the Hartford Steam Boiler -Munich Re) asked if I had heard what happened. I spent the rest of the day mesmerized and horrified in front of my hotel room TV. The rest of the conference was sombre and serious as we thought about our industry friends and colleagues that were among the victims that day.

In a few days, risk managers from across Canada and many from the US will once again gather in Ottawa, the nation’s capital. The annual RIMS Canada conference runs from September 18th through 21st. I suspect there will be a lot of reflection about what has changed in the world of risk and risk management since that dreadful day. The short answer: everything.


Read more

The 6 Biggest Risks Concerning Small Businesses

 

SMB RiskI recently participated in an interview on the risks faced by SMBs with Pam Clark of Business Insurance.   Matthew Brodsky of Risk & Insurance Magazine, Jon L. Gelman an expert on worker’s compensation and I set out to give small business owners some useful advice on their most pressing risk management issues. Go here to view the full interview.

Matthew and Jon provided some excellent answers, so the entire article is well worth reading! For the benefit of our readers, I want to reiterate 6 important points we covered.

Early Risks to Address


Read more

How to Reduce Social Media Risk in Your Company: A LinkedIn Discussion

The risk involved with social media is not a new topic. In fact, we talked about it last year in our blog post Social Media Policy: Avoiding a Death-Blow! This is still a relevant topic; with the popularity of social media ever increasing, businesses must prepare for the risks that come along with the opportunities that social media provides.
Social Media Risk Management

I asked the LinkedIn community “How do you handle the risk of social media in your company?” With such a great response, I had to share the discussion. Here’s what several LinkedIn professionals had to say.


Read more

Partners in Crime (Mitigation)!

Our long-time partners Canpro Global just announced their merger with KingReed.

Both companies do some very cool things in Canada and around the world in investigations, security, protection and related services. They do some things that I hadn’t heard of before in my 22 years in risk and insurance, things that I really believe are incredibly innovative and valuable to companies.

CanPro Global and King-Reed Merger

CanPro Global and King-Reed Merger

The reason ClearRisk partnered with Canpro in the first place was that I was very impressed with their people, innovative services and their perspective on risk management. They are very much aligned with my view that risk management comes in many shapes and forms and that it shouldn’t be inaccessible or complicated.

In the past couple of years I have also gotten to know some of the people at King-Reed and I can honestly say that the companies and cultures seem very well aligned, so I am sure it will be a great partnership!

The gang at ClearRisk wishes our partners at Canpro Global and King-Reed every success! I encourage you to check them out. You won’t be sorry!

Risk Management is a Team Sport

Risk Management TeamworkThis week, ClearRisk is proud to present a guest blog post by Allan R. Morton, Jr. CIC, CRM.

Allan is the managing partner of Morton Insurance & Risk Management.  15 years in the industry is marked by his passion to drop money to their bottom line and increase negotiating leverage with insurers via proactive risk management.  He is a Certified Insurance Counselor as well as Certified Risk Manager.

One of the biggest challenges I have is how to keep a prospective client’s eyes from glazing over when the phrase “Risk Management” is mentioned.  It’s almost like those two words are part of a magical incantation which puts many in upper management into trance-like states.  It confounds me. There is something utterly unglamorous about it I suspect.  It’s not exciting, flashy, or as sexy as landing a big deal.


Read more

ClearRisk Social Media Giveaway: Win an iPad 2!

ClearRisk has received great support from the social media world. From Twitter and Facebook to the risk management blog and LinkedIn, ClearRisk has gathered thousands of active and devoted followers.

ClearRisk Social Media Contest Details

In recognition of their overwhelming support, the ClearRisk team is giving back to their social media followers with the first ClearRisk Giveaway; one lucky follower, chosen from our various social media channels, will be the winner of a new iPad 2!

To submit an entry via our blog, please answer the following question in the comments section below:

 

What does risk management mean to you?


Read more

Best of @ClearRisk – Our Risk Management Twitter Feed (Part 2)

This is the second of a series of posts entitled Best of @ClearRisk – Our Risk Management Twitter Feed. Click to read our previous risk management Twitter feed post.

With a busy and constantly updating Twitter feed, it is sometimes easy to miss great risk management content. Last month, we noted some of the most popular blog posts and articles that have been shared on the @ClearRisk twitter feed.  Risk Management Twitter Feed

First, we tweeted about The 10 Best Industry Blogs, a post from Risk Management Monitor. This was our top clicked-on link for risk management news; the post acknowledges 10 of the best blogs in the risk management and insurance industry. We would also like to thank Risk Management Magazine for recognizing our blog amongst these great industry resources. Risk Management Monitor provides daily stories, commentary, interviews, and more, all related to the risk management and insurance industry.  Be sure to visit Risk Management Monitor and read the blogs mentioned within the full post!


Read more

© 2011 ClearRisk Inc. All Rights Reserved.