Over the past decade I have helped a number of clients and employers with complex undertakings in information risk. Here are some simple case studies.
Traditional IT departments are structured around "build" and "run". This dated model doesn't support the volatile and uncertain business environment today.
I wrote a manual on risk management for non-profits that makes optimal use of common organization structures and avoids common risk management mistakes.
The Investment Industry Association of Canada needed guidance for their member broker-dealers on evaluating vendor cyber security readiness. I co-authored that work.
Agile software delivery is about quick increments of software, while regulated environments like checks and controls. Reconciling them is the trick.
Regulated industries cannot tolerate failed software releases. For a software vendor in a regulated industry, the challenge is to deliver new software with assurance.
US-based multinational specializing in health information required a data anonymization process to replace a legacy system.
Instituting the ITIL functions of incident management and change management at a Japanese bank.
©2019-2022 michael werneburg. email@example.com