Over the past decade I have helped a number of clients and employers with complex undertakings in information risk. Here are some simple case studies.
Instituting the ITIL functions of incident management and change management at a Japanese bank.
Agile software delivery is about quick increments of software, while regulated environments like checks and controls. Reconciling them is the trick.
A technology & service provider can have great products and still get nowhere because the clients lack trust. An enterprise risk function can overcome this through tangible results such as SO
US-based multinational specializing in health information required a data anonymization process to replace a legacy system.
Regulated industries cannot tolerate failed software releases. For a software vendor in a regulated industry, the challenge is to deliver software with new functionality, yet not impact the s
I wrote a manual on risk management for non-profits that makes optimal use of common organization structures and avoids common risk management mistakes.
This guide on third party risk was written towards controlling a range of risks can possibly arise from the outsourcing of core functions
The Investment Industry Association of Canada needed guidance for their member broker-dealers on evaluating vendor cyber security readiness. I co-authored that work.