Advertisement
| gartner integrated risk management: Managing Digital Risks Asian Development Bank, 2023-12-01 This publication analyzes the risks of digital transformation and shows how context-aware and integrated risk management can advance the digitally resilient development projects needed to build a more sustainable and equitable future. The publication outlines ADB’s digital risk assessment tools, looks at the role of development partners, and considers issues including cybersecurity, third-party digital risk management, and the ethical risks of artificial intelligence. Explaining why many digital transformations fall short, it shows why digital risk management is an evolutionary process that involves anticipating risk, safeguarding operations, and bridging gaps to better integrate digital technology into development programs. |
| gartner integrated risk management: Security-First Compliance for Small Businesses Karen Walsh, 2023-08-17 Organizations of all sizes struggle to secure their data in a constantly evolving digital landscape. Expanding digital footprints and the rapid expansion of cloud strategies arising from the COVID-19 pandemic increase an organization’s attack surface. When combined with limited resources caused by the cybersecurity skills gap, securing small and mid-sized business IT infrastructures becomes more complicated. With limited staffing and budgetary restrictions, small businesses need to create cost-effective, security-driven programs that protect data while also meeting increasingly stringent compliance requirements. This book bridges the gap between complex technical language and business objectives to create a security-first review of the security and compliance landscapes. Starting from the premise that “with security comes compliance,” this book starts by defining “security-first” and then walking readers through the process of creating a holistic security and compliance program. Looking at security and privacy through the lens of zero trust, this overview of regulations and industry standards provides both background about and implications drawn from modern security practices. Rather than focusing solely on individual cybersecurity frameworks, this book offers insights into best practices based on the commonalities between regulations and industry standards, highlighting some of the primary differences to show the nuances. Woven throughout are practical examples of solutions that enable small and mid-sized businesses to create “cybersustainable” security-focused policies, processes, and controls that protect today’s future for tomorrow’s digital ecosystem. |
| gartner integrated risk management: Handbook of Integrated Risk Management for E-Business Abderrahim Labbi, 2005-11-09 “This book provides a recipe for the practical application of technology and is one of the first instances where the tools and technologies that allow for the implementation of solutions to solve specific problems are actually outlined.” --Dr. Krishna Nathan, Vice President, IBM Research This ground-breaking book integrates converging views of e-business processes and offers ways to manage their inherent risks with advanced modeling techniques. Contributors from leading academic and business organizations explore state-of-the-art adaptive risk analysis systems that support business processes in project portfolio management, operations management, supply chain management, inventory control, data mining for customer relationship management, information technology security, finance, e-banking, and more. Today’s new business environments are characterized by increasing sources of uncertainty and variability which challenge current decision-making processes.Handbook of Integrated Risk Management for E-Business: Measuring, Modeling, and Managing Risk provides a roadmap for identifying and mitigating the primary risks associated with each critical e-business process. It also shows you how to transform your processes by empowering your decision-making systems and how to design appropriate risk management systems for decision support. |
| gartner integrated risk management: Actionable Strategies Through Integrated Performance, Process, Project, and Risk Management Stephen S. Bonham, 2008 This unique resource presents a new look at how the puzzle pieces of corporate dynamics management can fit together to ensure strategic designs are actionable. |
| gartner integrated risk management: The Future of Risk Management Howard Kunreuther, Robert J. Meyer, Erwann O. Michel-Kerjan, 2019-07-26 Whether man-made or naturally occurring, large-scale disasters can cause fatalities and injuries, devastate property and communities, savage the environment, impose significant financial burdens on individuals and firms, and test political leadership. Moreover, global challenges such as climate change and terrorism reveal the interdependent and interconnected nature of our current moment: what occurs in one nation or geographical region is likely to have effects across the globe. Our information age creates new and more integrated forms of communication that incur risks that are difficult to evaluate, let alone anticipate. All of this makes clear that innovative approaches to assessing and managing risk are urgently required. When catastrophic risk management was in its inception thirty years ago, scientists and engineers would provide estimates of the probability of specific types of accidents and their potential consequences. Economists would then propose risk management policies based on those experts' estimates with little thought as to how this data would be used by interested parties. Today, however, the disciplines of finance, geography, history, insurance, marketing, political science, sociology, and the decision sciences combine scientific knowledge on risk assessment with a better appreciation for the importance of improving individual and collective decision-making processes. The essays in this volume highlight past research, recent discoveries, and open questions written by leading thinkers in risk management and behavioral sciences. The Future of Risk Management provides scholars, businesses, civil servants, and the concerned public tools for making more informed decisions and developing long-term strategies for reducing future losses from potentially catastrophic events. Contributors: Mona Ahmadiani, Joshua D. Baker, W. J. Wouter Botzen, Cary Coglianese, Gregory Colson, Jeffrey Czajkowski, Nate Dieckmann, Robin Dillon, Baruch Fischhoff, Jeffrey A. Friedman, Robin Gregory, Robert W. Klein, Carolyn Kousky, Howard Kunreuther, Craig E. Landry, Barbara Mellers, Robert J. Meyer, Erwann Michel-Kerjan, Robert Muir-Wood, Mark Pauly, Lisa Robinson, Adam Rose, Paul J. H. Schoemaker, Paul Slovic, Phil Tetlock, Daniel Västfjäll, W. Kip Viscusi, Elke U. Weber, Richard Zeckhauser. |
| gartner integrated risk management: Understanding Financial Risk Management Angelo Corelli, 2024-05-27 Financial risk management is a topic of primary importance in financial markets. It is important to learn how to measure and control risk, how to be primed for the opportunity of compensative return, and how to avoid useless exposure. |
| gartner integrated risk management: Information Technology Control and Audit Sandra Senft, Frederick Gallegos, Aleksandra Davis, 2016-04-19 The new edition of a bestseller, Information Technology Control and Audit, Fourth Edition provides a comprehensive and up-to-date overview of IT governance, controls, auditing applications, systems development, and operations. Aligned to and supporting the Control Objectives for Information and Related Technology (COBIT), it examines emerging trend |
| gartner integrated risk management: Real-World Solutions for Diversity, Strategic Change, and Organizational Development: Perspectives in Healthcare, Education, Business, and Technology Burrell, Darrell Norman, 2023-09-11 The great resignation, quiet quitting, #MeToo workplace cultures, bro culture at work, the absence of more minorities in cybersecurity, cybercrime, police brutality, the Black Lives Matter protests, racial health disparities, misinformation about COVID-19, and the emergence of new technologies that can be leveraged to help others or misused to harm others have created a level of complexity about inclusion, equity, and organizational efficiency in organizations in the areas of healthcare, education, business, and technology. Real-World Solutions for Diversity, Strategic Change, and Organizational Development: Perspectives in Healthcare, Education, Business, and Technology takes an interdisciplinary academic approach to understand the real-world impact and practical solutions-oriented approach to the chaotic convergence and emergence of organizational challenges and complex issues in healthcare, education, business, and technology through a lens of ideas and strategies that are different and innovative. Covering topics such as behavioral variables, corporate sustainability, and strategic change, this premier reference source is a vital resource for corporate leaders, human resource managers, DEI practitioners, policymakers, administrators, sociologists, students and educators of higher education, researchers, and academicians. |
| gartner integrated risk management: Information Technology Control and Audit, Third Edition Sandra Senft, Frederick Gallegos, 2010-12-12 The headline-grabbing financial scandals of recent years have led to a great urgency regarding organizational governance and security. Information technology is the engine that runs modern organizations, and as such, it must be well-managed and controlled. Organizations and individuals are dependent on network environment technologies, increasing the importance of security and privacy. The field has answered this sense of urgency with advances that have improved the ability to both control the technology and audit the information that is the lifeblood of modern business. Reflects the Latest Technological Advances Updated and revised, this third edition of Information Technology Control and Audit continues to present a comprehensive overview for IT professionals and auditors. Aligned to the CobiT control objectives, it provides a fundamental understanding of IT governance, controls, auditing applications, systems development, and operations. Demonstrating why controls and audits are critical, and defining advances in technology designed to support them, this volume meets the increasing need for audit and control professionals to understand information technology and the controls required to manage this key resource. A Powerful Primer for the CISA and CGEIT Exams Supporting and analyzing the CobiT model, this text prepares IT professionals for the CISA and CGEIT exams. With summary sections, exercises, review questions, and references for further readings, it promotes the mastery of the concepts and practical implementation of controls needed to effectively manage information technology resources. New in the Third Edition: Reorganized and expanded to align to the CobiT objectives Supports study for both the CISA and CGEIT exams Includes chapters on IT financial and sourcing management Adds a section on Delivery and Support control objectives Includes additional content on audit and control of outsourcing, change management, risk management, and compliance |
| gartner integrated risk management: Real Business of IT Richard Hunter, George Westerman, 2009-10-20 If you're a general manager or CFO, do you feel you're spending too much on IT or wishing you could get better returns from your IT investments? If so, it's time to examine what's behind this IT-as-cost mind-set. In The Real Business of IT, Richard Hunter and George Westerman reveal that the cost mind-set stems from IT leaders' inability to communicate about the business value they create-so CIOs get stuck discussing budgets rather than their contributions to the organization. The authors explain how IT leaders can combat this mind-set by first using information technology to generate three forms of value important to leaders throughout the organization: -Value for money when your IT department operates efficiently and effectively -An investment in business performance evidenced when IT helps divisions, units, and departments boost profitability -Personal value of CIOs as leaders whose contributions to their enterprise go well beyond their area of specialization The authors show how to communicate about these forms of value with non-IT leaders-so they understand how your firm is benefiting and see IT as the strategic powerhouse it truly is. |
| gartner integrated risk management: Straight from the Client Carsten Fabig, Alexander Haasper, 2017-12-11 The challenges of our customers are more and more diverse. A couple of strong trends like digitalization and cyber security issues are facing the daily life of all of us. This is true for our business and private life. That People make a difference is a strong Vineyard belief. Therefore, in this book the Vineyard consultants are interviewed in order to present their individual consulting experiences. As a starting point the current customer challenges and consulting trends are summarized. A contribution towards the GDPR deadline and approaches how to deal with these changes is following. The next article is suggesting how to handle the need in the pharmaceutical industry to communicate with business partners beyond the firewall. Based on Vineyards long experience in the IT Cyber Security world the following article is emphasizing why security is priority zero and how IT Security standards and frameworks can be used in a beneficial and lean way. The following two articles have a strong technical focus. While the first one is introducing the new technology Summarizer which is capable to compress existing files from a content perspective the following is about what an agile methodology can deliver in the field IT Service Management. The benefits of a focused eDiscovery approach for litigation processes are discussed in another contribution. How transitional changes for companies as a result of Brexit for example can be managed is following. Risk management in the cyber field for the banking industry and leading in projects are two interviews that reflect typical customer challenges. How to set-up an electronic archive as part of a digitalization initiative is outlined in an expert interview for the insurance industry. The benefits of a focused eDiscovery approach for litigation processes are discussed in another impulse. An interview about knowledge management is closing this book. As a key component for the customer in a knowledge society it is discussed how this can be approached for a consultancy. If you focus your deep dives you can also see the little things in a broader context. We wish our readers inspiring insights and new impulses to find the individual balance between the right deep dives and the ability for the helicopter view. Many thanks again to all Vineyard colleagues contributing to this new Vineyard book. |
| gartner integrated risk management: Digital Transformation Emmanuel Monod, Yuewei Jiang, 2023-06-01 Whereas digital transformation, considered from the standpoint of strategy, suggests a direct link with business benefits, questions linger about the implementation of digital technologies that often result in a lack of return on investment. Many consulting trends adopt a technology-centered approach, assuming that AI, IoT, data analytics, or robotics, would lead to business performance. Yet, most of the time, organizational factors are neglected, especially hidden costs or hidden work. Moreover, unexpected consequences are overlooked, such as resistance to change. Digital transformation is a practical problem for managers. Are IS implementation approaches such as agile methods to Socio-Technical Systems (STS) sufficient to tackle these issues? This book suggests starting from organizational transformation, in essence, independently from technology with methods such as Business Process Management (BPM), Socio-Economic Approaches to Management (SEAM) or Organizational Development (OD). Overall, whereas technology-centered approaches have been associated with numerous unintended consequences and failures with previous generations of technologies (e.g., ERP or KMS), process-centered and human-centered approaches may represent a less risky approach to digital transformation implementation. This volume focuses on evaluating the potential performance improvements and risks of digital transformation and ways to assess how technology may support work and organizational goals. Therefore, whereas written by both academics and practitioners, this book has been written for all managers in companies and institutions in order to help them achieve digital transformation success. |
| gartner integrated risk management: T-Byte Platforms & Applications V Gupta, 2019-12-30 This document brings together a set of latest data points and publicly available information relevant for Platforms & Applications Industry. We are very excited to share this content and believe that readers will benefit from this periodic publication immensely. |
| gartner integrated risk management: The Analytics Process Eduardo Rodriguez, 2017-02-17 This book is about the process of using analytics and the capabilities of analytics in today’s organizations. Cutting through the buzz surrounding the term analytics and the overloaded expectations about using analytics, the book demystifies analytics with an in-depth examination of concepts grounded in operations research and management science. Analytics as a set of tools and processes is only as effective as: The data with which it is working The human judgment applying the processes and understanding the output of these processes. For this reason, the book focuses on the analytics process. What is intrinsic to analytics’ real organizational impact are the careful application of tools and the thoughtful application of their outcomes. This work emphasizes analytics as part of a process that supports decision-making within organizations. It wants to debunk overblown expectations that somehow analytics outputs or analytics as applied to other concepts, such as Big Data, are the be-all and end-all of the analytics process. They are, instead, only a step within a holistic and critical approach to management thinking that can create real value for an organization. To develop this holistic approach, the book is divided into two sections that examine concepts and applications. The first section makes the case for executive management taking a holistic approach to analytics. It draws on rich research in operations and management science that form the context in which analytics tools are to be applied. There is a strong emphasis on knowledge management concepts and techniques, as well as risk management concepts and techniques. The second section focuses on both the use of the analytics process and organizational issues that are required to make the analytics process relevant and impactful. |
| gartner integrated risk management: Security Risk Management - The Driving Force for Operational Resilience Jim Seaman, Michael Gioia, 2023-08-31 The importance of businesses being ‘operationally resilient’ is becoming increasingly important, and a driving force behind whether an organization can ensure that its valuable business operations can ‘bounce back’ from or manage to evade impactful occurrences is its security risk management capabilities. In this book, we change the perspective on an organization’s operational resilience capabilities so that it shifts from being a reactive (tick box) approach to being proactive. The perspectives of every chapter in this book focus on risk profiles and how your business can reduce these profiles using effective mitigation measures. The book is divided into two sections: 1. Security Risk Management (SRM). All the components of security risk management contribute to your organization’s operational resilience capabilities, to help reduce your risks. • Reduce the probability/ likelihood. 2. Survive to Operate. If your SRM capabilities fail your organization, these are the components that are needed to allow you to quickly ‘bounce back.’ • Reduce the severity/ impact. Rather than looking at this from an operational resilience compliance capabilities aspect, we have written these to be agnostic of any specific operational resilience framework (e.g., CERT RMM, ISO 22316, SP 800- 160 Vol. 2 Rev. 1, etc.), with the idea of looking at operational resilience through a risk management lens instead. This book is not intended to replace these numerous operational resilience standards/ frameworks but, rather, has been designed to complement them by getting you to appreciate their value in helping to identify and mitigate your operational resilience risks. Unlike the cybersecurity or information security domains, operational resilience looks at risks from a business-oriented view, so that anything that might disrupt your essential business operations are risk-assessed and appropriate countermeasures identified and applied. Consequently, this book is not limited to cyberattacks or the loss of sensitive data but, instead, looks at things from a holistic business-based perspective. |
| gartner integrated risk management: Controlling Privacy and the Use of Data Assets - Volume 2 Ulf Mattsson, 2023-08-24 The book will review how new and old privacy-preserving techniques can provide practical protection for data in transit, use, and rest. We will position techniques like Data Integrity and Ledger and will provide practical lessons in Data Integrity, Trust, and data’s business utility. Based on a good understanding of new and old technologies, emerging trends, and a broad experience from many projects in this domain, this book will provide a unique context about the WHY (requirements and drivers), WHAT (what to do), and HOW (how to implement), as well as reviewing the current state and major forces representing challenges or driving change, what you should be trying to achieve and how you can do it, including discussions of different options. We will also discuss WHERE (in systems) and WHEN (roadmap). Unlike other general or academic texts, this book is being written to offer practical general advice, outline actionable strategies, and include templates for immediate use. It contains diagrams needed to describe the topics and Use Cases and presents current real-world issues and technological mitigation strategies. The inclusion of the risks to both owners and custodians provides a strong case for why people should care. This book reflects the perspective of a Chief Technology Officer (CTO) and Chief Security Strategist (CSS). The Author has worked in and with startups and some of the largest organizations in the world, and this book is intended for board members, senior decision-makers, and global government policy officials—CISOs, CSOs, CPOs, CTOs, auditors, consultants, investors, and other people interested in data privacy and security. The Author also embeds a business perspective, answering the question of why this an important topic for the board, audit committee, and senior management regarding achieving business objectives, strategies, and goals and applying the risk appetite and tolerance. The focus is on Technical Visionary Leaders, including CTO, Chief Data Officer, Chief Privacy Officer, EVP/SVP/VP of Technology, Analytics, Data Architect, Chief Information Officer, EVP/SVP/VP of I.T., Chief Information Security Officer (CISO), Chief Risk Officer, Chief Compliance Officer, Chief Security Officer (CSO), EVP/SVP/VP of Security, Risk Compliance, and Governance. It can also be interesting reading for privacy regulators, especially those in developed nations with specialist privacy oversight agencies (government departments) across their jurisdictions (e.g., federal and state levels). |
| gartner integrated risk management: Searching for Excellence in Supply Management , |
| gartner integrated risk management: Advancing Research in Information and Communication Technology Michael Goedicke, Erich Neuhold, Kai Rannenberg, 2021-08-03 For 60 years the International Federation for Information Processing (IFIP) has been advancing research in Information and Communication Technology (ICT). This book looks into both past experiences and future perspectives using the core of IFIP's competence, its Technical Committees (TCs) and Working Groups (WGs). Soon after IFIP was founded, it established TCs and related WGs to foster the exchange and development of the scientific and technical aspects of information processing. IFIP TCs are as diverse as the different aspects of information processing, but they share the following aims: To establish and maintain liaison with national and international organizations with allied interests and to foster cooperative action, collaborative research, and information exchange. To identify subjects and priorities for research, to stimulate theoretical work on fundamental issues, and to foster fundamental research which will underpin future development. To provide a forum for professionals with a view to promoting the study, collection, exchange, and dissemination of ideas, information, and research findings and thereby to promote the state of the art. To seek and use the most effective ways of disseminating information about IFIP’s work including the organization of conferences, workshops and symposia and the timely production of relevant publications. To have special regard for the needs of developing countries and to seek practicable ways of working with them. To encourage communication and to promote interaction between users, practitioners, and researchers. To foster interdisciplinary work and – in particular – to collaborate with other Technical Committees and Working Groups. The 17 contributions in this book describe the scientific, technical, and further work in TCs and WGs and in many cases also assess the future consequences of the work’s results. These contributions explore the developments of IFIP and the ICT profession now and over the next 60 years. The contributions are arranged per TC and conclude with the chapter on the IFIP code of ethics and conduct. |
| gartner integrated risk management: The Effortless Experience Matthew Dixon, Nick Toman, Rick DeLisi, 2013-09-12 Everyone knows that the best way to create customer loyalty is with service so good, so over the top, that it surprises and delights. But what if everyone is wrong? In their acclaimed bestseller The Challenger Sale, Matthew Dixon and his colleagues at CEB busted many longstanding myths about sales. Now they’ve turned their research and analysis to a new vital business subject—customer loyalty—with a new book that turns the conventional wisdom on its head. The idea that companies must delight customers by exceeding service expectations is so entrenched that managers rarely even question it. They devote untold time, energy, and resources to trying to dazzle people and inspire their undying loyalty. Yet CEB’s careful research over five years and tens of thousands of respondents proves that the “dazzle factor” is wildly overrated—it simply doesn’t predict repeat sales, share of wallet, or positive wordof-mouth. The reality: Loyalty is driven by how well a company delivers on its basic promises and solves day-to-day problems, not on how spectacular its service experience might be. Most customers don’t want to be “wowed”; they want an effortless experience. And they are far more likely to punish you for bad service than to reward you for good service. If you put on your customer hat rather than your manager or marketer hat, this makes a lot of sense. What do you really want from your cable company, a free month of HBO when it screws up or a fast, painless restoration of your connection? What about your bank—do you want free cookies and a cheerful smile, even a personal relationship with your teller? Or just a quick in-and-out transaction and an easy way to get a refund when it accidentally overcharges on fees? The Effortless Experience takes readers on a fascinating journey deep inside the customer experience to reveal what really makes customers loyal—and disloyal. The authors lay out the four key pillars of a low-effort customer experience, along the way delivering robust data, shocking insights and profiles of companies that are already using the principles revealed by CEB’s research, with great results. And they include many tools and templates you can start applying right away to improve service, reduce costs, decrease customer churn, and ultimately generate the elusive loyalty that the “dazzle factor” fails to deliver. The rewards are there for the taking, and the pathway to achieving them is now clearly marked. |
| gartner integrated risk management: Measuring Compliance Melissa Rorie, Benjamin van Rooij, 2022-02-24 Measuring Corporate Compliance is a 'one-stop-shop' for individuals looking to assess the effectiveness of compliance programs and policies. |
| gartner integrated risk management: Handbook of Research on Entrepreneurship Development and Opportunities in Circular Economy Baporikar, Neeta, 2020-06-26 With the need for sustainability, a focus on developing an economic system that aims at minimizing waste, commonly referred to as the circular economy, is emerging. Circular economy and studies related to it have gained worldwide attention, as it seems to be an effective alternative economic system. Naturally, the circular economy will impact enterprises and will shift how entrepreneurship development and entrepreneurial opportunities are perceived, developed, and resourced. The Handbook of Research on Entrepreneurship Development and Opportunities in Circular Economy is a collection of pioneering research that advances the understanding of entrepreneurship development, identifies the opportunities, and manages the entrepreneurship development, policies, and programs in order to further a circular economy. In addition to entrepreneurship development and entrepreneurial opportunities, the book will cover and discuss a number of other factors necessary for a successful transformation, such as entrepreneurship and innovation, entrepreneurship and change, and entrepreneurship education. While highlighting topics including consumer consumption, knowledge management, and linear economics, this book is ideally designed for entrepreneurs, small business owners, managers, consultants, organization development specialists, policymakers, researchers, industry experts, academicians, and students. |
| gartner integrated risk management: Risk Management Technology in Financial Services Dimitris N. Chorafas, 2011-04-08 Written for professionals in financial services with responsibility for IT and risk management, Dimitris Chorafas surveys the methodology required and IT systems and structures to support it according to Basel II. The book is consistent with the risk management certification process of GARP, as well as the accounting rules of IFRS, based on research the author conducted with IASB. The author provices an in-depth discussion of the types of risk, stress analysis and the use of scenarios, mathematical models, and IT systems and infrastructure requirements.* Written in clear, straightforward style for financial industry executives to provide necessary information for risk control decisionmaking* Consistent with GARP, IFRS and IASB risk management processes and procedures* Explains stress testing and its place in risk control |
| gartner integrated risk management: Risk Analytics Eduardo Rodriguez, 2023-08-08 The 2022 World Economic Forum surveyed 1,000 experts and leaders who indicated their risk perception that the earth’s conditions for humans are a main concern in the next 10 years. This means environmental risks are a priority to study in a formal way. At the same time, innovation risks are present in theminds of leaders, newknowledge brings new risk, and the adaptation and adoption of risk knowledge is required to better understand the causes and effects can have on technological risks. These opportunities require not only adopting new ways of managing and controlling emerging processes for society and business, but also adapting organizations to changes and managing newrisks. Risk Analytics: Data-Driven Decisions Under Uncertainty introduces a way to analyze and design a risk analytics system (RAS) that integrates multiple approaches to risk analytics to deal with diverse types of data and problems. A risk analytics system is a hybrid system where human and artificial intelligence interact with a data gathering and selection process that uses multiple sources to the delivery of guidelines to make decisions that include humans and machines. The RAS system is an integration of components, such as data architecture with diverse data, and a risk analytics process and modeling process to obtain knowledge and then determine actions through the new knowledge that was obtained. The use of data analytics is not only connected to risk modeling and its implementation, but also to the development of the actionable knowledge that can be represented by text in documents to define and share explicit knowledge and guidelines in the organization for strategy implementation. This book moves from a review of data to the concepts of a RAS. It reviews RAS system components required to support the creation of competitive advantage in organizations through risk analytics. Written for executives, analytics professionals, risk management professionals, strategy professionals, and postgraduate students, this book shows a way to implement the analytics process to develop a risk management practice that creates an adaptive competitive advantage under uncertainty. |
| gartner integrated risk management: Strategic Risk, Intelligence And Digital Transformation Eduardo Rodriguez, 2024-03-19 In this book, the study of strategic risk is not only for its control and mitigation using analytics and digital transformation in organizations, but also it is about the strategic risks that digital transformation can bring to organizations. Strategic risk control is one of the goals in creating intelligent organizations and at the same time it is part of the appetite for creating smarter organizations to support organizations' development. Knowledge that is created by data analytics and the capacity to operationalize that knowledge through digital transformation can produce potential sustainable competitive advantages.The core of the volume is connecting data analytics and artificial intelligence, risk management and digitalization to create strategic intelligence as the capacity of adaptation that organizations need to compete and to succeed. Strategic intelligence is a symbiotic work of artificial intelligence, business intelligence and competitive intelligence. Strategic risk is represented by the probability of having variations in the performance results of the organizations that can limit their capacity to maintain sustainable competitive advantages. There is an emphasis in the book about the conversion of models that support data analytics into actions to mitigate strategic risk based on digital transformation.This book reviews the steps that organizations have taken in using technology that connects the data analytics modeling process and digital operations, such as the shift from the use of statistical learning and machine learning for data analytics to the improvement and use of new technologies. The digitalization process is a potential opportunity for organizations however the results are not necessarily good for everyone. Hence, organizations implement strategic risk control in cloud computing, blockchain, artificial intelligence and create digital networks that are connected internally and externally to deal with internal and external customers, with suppliers and buyers, and with competitors and substitutes. The new risks appear once new knowledge emerges and is in use, but at the same time the new knowledge supports the initiatives to deal with risks arising from novel ways of competing and collaborating. |
| gartner integrated risk management: Strategic Management of the Health Care Supply Chain Eugene S. Schneller, James Eckler, Yousef Abdulsalam, Karen Conway, 2023-08-15 A systems approach to understanding the needs of today’s healthcare supply chain Strategic Management of the Healthcare Supply Chain offers a big-picture overview and a proven strategic framework for supply chain management in healthcare. It also addresses concrete strategies for risk management, partnerships, logistics, performance assessment, information technology, and beyond. Readers will gain a comprehensive understanding of the issues facing the healthcare supply chain and the opportunities that present themselves as we look toward the future. Written by a team of authors with both research expertise and practical experience in healthcare supply chain, this broad and impactful book teases out the complexities within the supply chain field and the healthcare ecosystem. The healthcare industry is evolving rapidly, and the role of the supply chain is shifting in response. Institutions and practitioners are collaborating more closely than ever with supply chain leaders. This shift introduces new opportunities and challenges at the level of healthcare delivery. Additionally, the role of supply chain in safeguarding the social determinants of health—food, transportation, critical health-related products—is rapidly expanding, especially in historically underserved populations. This revised edition takes a holistic approach to the needs of people and organizations, yielding strategies that will improve both economic and health outcomes. Gain the understanding you need to work toward building a mature supply chain organization Develop perspective on how the needs of the healthcare supply chain are shifting in the modern era Holistically assess supply chain performance and improve clinical, financial, and operational outcomes Identify opportunities to generate value, improve alliances, and cut costs This book will be of interest to graduate students in the health sector and supply chain programs, as well as working clinicians, health sector managers, and supply chain leaders. Policymakers looking to create a more resilient healthcare supply chain in the wake of COVID-19 will also find valuable insight inside. |
| gartner integrated risk management: T-Bytes Platforms & Applications , 2021-03-03 This document brings together a set of latest data points and publicly available information relevant for Platforms & Applications Industry. We are very excited to share this content and believe that readers will benefit from this periodic publication immensely. |
| gartner integrated risk management: Strong Security Governance through Integration and Automation Priti Sikdar, 2021-12-23 This book provides step by step directions for organizations to adopt a security and compliance related architecture according to mandatory legal provisions and standards prescribed for their industry, as well as the methodology to maintain the compliances. It sets a unique mechanism for monitoring controls and a dashboard to maintain the level of compliances. It aims at integration and automation to reduce the fatigue of frequent compliance audits and build a standard baseline of controls to comply with the applicable standards and regulations to which the organization is subject. It is a perfect reference book for professionals in the field of IT governance, risk management, and compliance. The book also illustrates the concepts with charts, checklists, and flow diagrams to enable management to map controls with compliances. |
| gartner integrated risk management: Protective Forests as Ecosystem-based Solution for Disaster Risk Reduction (Eco-DRR) Michaela Teich, Cristian Accastello, Frank Perzl, Karl Kleemayr, 2022-12-21 Protective forests are a key component to reduce natural hazard risks in mountain areas by preventing or decreasing the frequency, magnitude and/or intensity of snow avalanches, rockfall, landslides, floods, and debris flows. This book summarizes the state-of-the-art knowledge and introduces methods and decision support tools to facilitate the use of protective forests for Ecosystem-based Disaster Risk Reduction (Eco-DRR) as part of an integrated risk management in the Alpine Space. Moreover, it highlights how translating scientific knowledge into practical solutions can only be achieved by an active and iterative exchange with practitioners and policy makers, and a common understanding of applied concepts and definitions. Only then can protective forests be managed sustainably under constantly changing climate and socio-economic conditions. |
| gartner integrated risk management: Green Information Technology Mohammad Dastbaz, Colin Pattinson, Babak Akhgar, 2015-03-09 We are living in the era of Big Data and the computing power required to deal with Big Data both in terms of its energy consumption and technical complexity is one of the key areas of research and development. The U.S. Environmental Protection Agency estimates that centralized computing infrastructures (data centres) currently use 7 giga watts of electricity during peak loads. This translates into about 61 billion kilowatt hours of electricity used. By the EPA's estimates, power-hungry data centres consume the annual output of 15 average-sized power plants. One of the top constraints to increasing computing power, besides the ability to cool, is simply delivering enough power to a given physical space. Green Information Technology: A Sustainable Approach offers in a single volume a broad collection of practical techniques and methodologies for designing, building and implementing a green technology strategy in any large enterprise environment, which up until now has been scattered in difficult-to-find scholarly resources. Included here is the latest information on emerging technologies and their environmental impact, how to effectively measure sustainability, discussions on sustainable hardware and software design, as well as how to use big data and cloud computing to drive efficiencies and establish a framework for sustainability in the information technology infrastructure. Written by recognized experts in both academia and industry, Green Information Technology: A Sustainable Approach is a must-have guide for researchers, computer architects, computer engineers and IT professionals with an interest in greater efficiency with less environmental impact. - Introduces the concept of using green procurement and supply chain programs in the IT infrastructure. - Discusses how to use big data to drive efficiencies and establish a framework for sustainability in the information technology infrastructure. - Explains how cloud computing can be used to consolidate corporate IT environments using large-scale shared infrastructure reducing the overall environmental impact and unlocking new efficiencies. - Provides specific use cases for Green IT such as data center energy efficiency and cloud computing sustainability and risk. |
| gartner integrated risk management: Always-On Enterprise Information Systems for Modern Organizations Bajgoric, Nijaz, 2017-12-01 Continuous improvements in digitized practices have created opportunities for businesses to develop more streamlined processes. This not only leads to higher success in day-to-day production, but it increases the overall success of businesses. Always-On Enterprise Information Systems for Modern Organizations is a critical scholarly resource that examines how EIS implementations support business processes and facilitate this in today’s e-business environment. Featuring coverage on a broad range of topics such as customer relations management, supply chain management, and business intelligence, this book is geared towards professionals, researchers, managers, consultants, and university students interested in emerging developments for business process management. |
| gartner integrated risk management: Gartner Group Symposium ITxpo , 1998 |
| gartner integrated risk management: Supply Chain Risk Management Donald Waters, 2011-10-03 Vulnerability to sudden supply chain disruption is one of the major threats facing companies today. The challenge for businesses today is to mitigate this risk through creating resilient supply chains. Addressing this need, Supply Chain Risk Management guides you through the whole risk management process from start to finish. Using jargon-free language, this accessible book covers the fundamentals of managing risk in supply chains. From identifying the risks to developing and implementing a risk management strategy, this essential text covers everything you need to know about this critical topic. It assesses the growing impact of risk on supply chains, how to plan for and manage disruptions and disasters, and how to mitigate their effects. It examines a whole range of risks to supply chains, from traffic congestion to major environmental disasters. Highly practical, Supply Chain Risk Management provides a range of useful tables, diagrams and tools and is interspersed with real life case study examples from leading companies, including Nokia, IBM, and BP. The 2nd edition has been completely revised with brand new case studies on the Chilean Mining Disaster and BP oil spill. |
| gartner integrated risk management: Managing Cyber Risk Ariel Evans, 2019-03-28 Cyber risk is the second highest perceived business risk according to U.S. risk managers and corporate insurance experts. Digital assets now represent over 85% of an organization’s value. In a survey of Fortune 1000 organizations, 83% surveyed described cyber risk as an organizationally complex topic, with most using only qualitative metrics that provide little, if any insight into an effective cyber strategy. Written by one of the foremost cyber risk experts in the world and with contributions from other senior professionals in the field, Managing Cyber Risk provides corporate cyber stakeholders – managers, executives, and directors – with context and tools to accomplish several strategic objectives. These include enabling managers to understand and have proper governance oversight of this crucial area and ensuring improved cyber resilience. Managing Cyber Risk helps businesses to understand cyber risk quantification in business terms that lead risk owners to determine how much cyber insurance they should buy based on the size and the scope of policy, the cyber budget required, and how to prioritize risk remediation based on reputational, operational, legal, and financial impacts. Directors are held to standards of fiduciary duty, loyalty, and care. These insights provide the ability to demonstrate that directors have appropriately discharged their duties, which often dictates the ability to successfully rebut claims made against such individuals. Cyber is a strategic business issue that requires quantitative metrics to ensure cyber resiliency. This handbook acts as a roadmap for executives to understand how to increase cyber resiliency and is unique since it quantifies exposures at the digital asset level. |
| gartner integrated risk management: Advances in Enterprise Technology Risk Assessment Gupta, Manish, Singh, Raghvendra, Walp, John, Sharman, Raj, 2024-10-07 As technology continues to evolve at an unprecedented pace, the field of auditing is also undergoing a significant transformation. Traditional practices are being challenged by the complexities of modern business environments and the integration of advanced technologies. This shift requires a new approach to risk assessment and auditing, one that can adapt to the changing landscape and address the emerging challenges of technology-driven organizations. Advances in Enterprise Technology Risk Assessment offers a comprehensive resource to meet this need. The book combines research-based insights with actionable strategies and covers a wide range of topics from the integration of unprecedented technologies to the impact of global events on auditing practices. By balancing both theoretical and practical perspectives, it provides a roadmap for navigating the intricacies of technology auditing and organizational resilience in the next era of risk assessment. |
| gartner integrated risk management: Security Chaos Engineering Kelly Shortridge, Aaron Rinehart, 2023-03-30 Cybersecurity is broken. Year after year, attackers remain unchallenged and undeterred, while engineering teams feel pressure to design, build, and operate secure systems. Failure can't be prevented, mental models of systems are incomplete, and our digital world constantly evolves. How can we verify that our systems behave the way we expect? What can we do to improve our systems' resilience? In this comprehensive guide, authors Kelly Shortridge and Aaron Rinehart help you navigate the challenges of sustaining resilience in complex software systems by using the principles and practices of security chaos engineering. By preparing for adverse events, you can ensure they don't disrupt your ability to innovate, move quickly, and achieve your engineering and business goals. Learn how to design a modern security program Make informed decisions at each phase of software delivery to nurture resilience and adaptive capacity Understand the complex systems dynamics upon which resilience outcomes depend Navigate technical and organizational trade-offsthat distort decision making in systems Explore chaos experimentation to verify critical assumptions about software quality and security Learn how major enterprises leverage security chaos engineering |
| gartner integrated risk management: Information Security Risk Analysis Thomas R. Peltier, 2001-01-23 Risk is a cost of doing business. The question is, What are the risks, and what are their costs? Knowing the vulnerabilities and threats that face your organization's information and systems is the first essential step in risk management. Information Security Risk Analysis shows you how to use cost-effective risk analysis techniques to id |
| gartner integrated risk management: Commercial Banking Risk Management Weidong Tian, 2016-12-08 This edited collection comprehensively addresses the widespread regulatory challenges uncovered and changes introduced in financial markets following the 2007-2008 crisis, suggesting strategies by which financial institutions can comply with stringent new regulations and adapt to the pressures of close supervision while responsibly managing risk. It covers all important commercial banking risk management topics, including market risk, counterparty credit risk, liquidity risk, operational risk, fair lending risk, model risk, stress test, and CCAR from practical aspects. It also covers major components of enterprise risk management, a modern capital requirement framework, and the data technology used to help manage risk. Each chapter is written by an authority who is actively engaged with large commercial banks, consulting firms, auditing firms, regulatory agencies, and universities. This collection will be a trusted resource for anyone working in or studying the commercial banking industry. |
| gartner integrated risk management: IRM Program United States. Department of Veterans Affairs. Office of Information Resources Management, 1991 |
| gartner integrated risk management: Risk-Based Performance Management A. Smart, J. Creelman, 2013-10-31 Pulling together into a single framework the two separate disciplines of strategy management and risk management, this book provides a practical guide for organizations to shape and execute sustainable strategies with full understanding of how much risk they are willing to accept in pursuit of strategic goals. |
| gartner integrated risk management: Supply Chain Risk Management C. Donald J. Waters, 2007 'Supply Chain Risk Management' introduces this important subject and explains why it is vital for managers to understand it. Using jargon-free, accessible language, the book identifies both the possible effects that risks can cause and how to plan for them. |
Competitive Landscape: Integrated Risk Management - SC …
Gartner defines IRM as practices and processes supported by a risk-aware culture and enabling technologies that improve decision making and performance through an integrated view of how …
The Seven Building Blocks of MDM: A Framework for Success
MDM program managers should use a balanced and integrated framework, such as Gartner's seven building blocks of MDM, to address all components of an MDM program. Organizations …
For the second year in a row, ServiceNow Governance, Risk, …
Gartner defines this approach to risk management as integrated risk management (IRM). In plain English, IRM is a program and processes to measure and manage risk & compliance with the …
How Integrated Risk Management Makes Your Business More …
Jan 31, 2022 · An in-depth, integrated approach to risk management allows you to inventory risk and build a framework for assessing and monitoring your organization’s risk levels—in real …
Magic Quadrant for IT Risk Management
Gar tner defines the IT risk management (ITRM) solution mark et as software and ser vices that operationalize the risk management lif e cycle in context of the or ganization’s mission. ITRM …
ServiceNow Integrated Risk Management (IRM)
Integrated Risk Management: • Risk Management - Enable fine-grained business impact analysis to holistically prioritize risk across your enterprise and respond to emerging risks. • Operational …
Gartner report integrated risk management solutions
Integrated risk management solutions (IRM) have emerged to reduce siloed risk domains and support business dynamic decision-making through risk data correlations and shared risk …
The Future of Integrated Risk Management - Global …
The integrated risk framework leverages the ecosystem of risk monitoring tools through an integrated issue and action management capability where identified risks and their treatment …
Solution Brief - Integrated Risk Management Software
To manage risk efficiently enterprise-wide, compliance, cybersecurity, operational, IT, and third-party risk. and safety. business continuity, and third-party risk activities efficiently with a single …
Operationalizing a Risk-driven Continuous Threat Exposure …
Gartner® defines Continuous Threat Exposure Management (CTEM) as a program helping organizations to improve their maturity when they govern and operationalize the five …
Gartner Lists Top Security and Risk Management Trends in 2021
Gartner has revealed its list of the top security and risk management trends that will shape the business landscape in 2021. There are eight trends in total, which have been grouped into …
Gartner Security & Risk Management
• Understand the growing interconnectedness of all forms of risk management • Gain the role-specific tools, strategies and insights to stay ahead of ever-increasing threats • Prepare for new …
Top Security and Risk Management Trends - SSH
Security and risk management leaders seeking to capitalize on these trends should: Engage business stakeholders to create risk appetite statements. Build or outsource a security …
ITScore Overview for Security and Risk Management
Use the Gartner-developed ITScore methodology to evaluate and improve program and process maturity across six key security and risk management domains. Work to extend activities in …
Integrated Risk Management Platform - ESC 2
Infosync - Integrated Risk Management GARTNER MENTION Infosync is the only solution in Europe to be mentioned in the Gartner report “Critical Capabilities for IT Risk Management …
Gartner Identity & Access Management summit 2014
IAM remains a key security, risk management and business discipline, ensuring that the right people get access to the right resources at the right times for the right reasons, enabling the …
Integrated Risk Management - Corporater
Download PDF to know more about the Corporater Integrated Risk Management (IRM) software that enables organizations to unify risk and compliance activities, and establish a solid …
Magic Quadrant for Enterprise Governance, Risk and …
deliver advanced risk management functionality, with analysis of the impact of risks on business performance, domain expertise in multiple highly regulated industries, and ease of use and …
Gartner Security & Risk Management Summit 2014
Learn why enterprises need to update their tools and processes to address cyber security and provide advanced threat defense methods and tools to the organization. Assess and identify …
Gartner Identity & Access Management summit 2014
IAM remains a key security, risk management and business discipline, ensuring that the right people get access to the right resources at the …
The Seven Building Blocks of MDM: A Framework for Suc…
View your MDM program as part of a wider enterprise information management (EIM) strategy. What You Need to Know MDM program …
Gartner's Business Analytics Framework
be integrated and aligned to take a more strategic approach to business intelligence (BI), analytics and performance management (PM) …
Gartner Security & Risk Management Summit 2015
The annual Gartner Security & Risk Management Summit equips security and risk managers with the skills, knowledge, strategies and tactics …
Gartner Security & Risk Management Summit 2013
At the 14th annual Gartner Security & Risk Management Summit, attendees sought ways to reset their IT security and risk strategy for success; stay …
