View stunning SlideShares in full-screen with the new iOS app!Introducing SlideShare for AndroidExplore all your favorite topics in the SlideShare appGet the SlideShare app to Save for Later — even offline
View stunning SlideShares in full-screen with the new Android app!View stunning SlideShares in full-screen with the new iOS app!
The Risk Society• “Risk society is a term that emergedduring the 1980s to describe themanner in which modern societyorganizes in response to risk…Theterms popularity during the 1990swas both as a consequence of itslinks to trends in thinking aboutwider modernity, and also to itslinks to popular discourse, inparticular the growing environmentalconcerns during the period.”
The Risk Society• According to British sociologistAnthony Giddens, a risk society is"a society increasingly preoccupiedwith the future (and also withsafety), which generates the notionof risk," whilst the Germansociologist Ulrich Beck defines itas "a systematic way of dealing withhazards and insecurities induced andintroduced by modernisation itself(Beck 1992:21)".
New realities• Economic contraction• Failure of technology solutions• Compliance demands
What is risk?► Probability or threat of adamage, injury, liability,loss, or other negativeoccurrence, caused byexternal or internalvulnerabilities, and whichmay be neutralized throughpre-mediated action.
Defining IRMInformation risk management isInformation risk management isa discipline thata discipline thatidentifies, classifies,identifies, classifies,values, and controlsvalues, and controlsorganizational informationorganizational informationto manage risk andto manage risk andopportunity, therebyopportunity, therebyenhancing its value to theenhancing its value to theorganization.organization.
Types of informationrisk• Strategic – This type of information riskrelates to risks and threats to the strategicposition of an organisation, includingeconomic and legal threats and risks;• Operational – These relate to risks andthreats impacting the operation of anorganisation including capital limits orstaff skills shortages; and• Financial – Economic and capital threats areof primary concern and will include loss ofearnings, limited finances, fines or otherrelated financial issues.
Information risk andthreat assessment - IRTAThe content of IRTA should be specific to theorganisation but information professionals mightwant to consider;How uncertain is the operational environment for theorganisation?Are there upcoming legislative changes likely tocreate new or revised duties?What technology changes are imminent?What external audit requirements are forthcoming?
Risk one. Information asassetInformation is comparable to money.It creates new value and benefitssociety only when invested andleveraged.
Capitalisation of KDIM• Assess• Value• Authenticate• Monitor
‘Information governance describesthe structures, policies andpractices which are used to ensurethe confidentiality and securityof records of patients and serviceusers.What is informationgovernance?
The most popularsearch engines,map services andemail servicesare freeBut Facebook andGoogle are notcharities!Risk three.“Free is theNew Black”
IP and the AssuranceImperative• Loss of assets can threatencompany• Within NHS organisations nowfined £500000 for failure toprotect privacy
IRM Principles• Evidence-based – It is vital to baseinformation risk analysis and planning on clearresearch evidence;• Consistency – Accuracy and integrity areprerequisites for information risk products todeliver a consistent service;• Skills focussed – Only via competency andexperience will staff involved in planning be ableto spot and handle information risks expertly; and• High quality – The characteristics ofinformation assets required to reduce risk willraise quality to the highest standards.
Our Future(s)It took 100-120 yrs to build the globalwired telephone network.It took 10 yrs to build a correspondingglobal wireless phone networkIt took 2-3 years for social media tobecome a global phenomenonIn ten years time anything can be ineveryday use even if it has not beeninvented yet.Source; BT Futurology Unit 2011.
The Future of Work• The future office will be increasingly mobile andflexible as companies swiftly assemble the resourcesnecessary to meet changing business needs.• Core teams will manage employees working from diverselocations — from home offices to temporary businessspaces to cafés.• A premium will be placed on staff members who possess acombination of technical and interpersonal skills, andcan adapt quickly to change.• Professionals who are able to create new products andservices and identify more efficient ways to work willbe among the most marketable as innovation continues todrive business.
Key Skills• Policy making• Project management• Risk assessment and management• Privacy and security management• Technology implementation• Advisory and assurance role