..."Risk Management" With regards to risk-response planning, there are four responses to negative risks that an organization may pursue: avoid, transfer, mitigate, and accept. Contrast each of these responses and develop a unique scenario supporting each. In recent years, the need for business continuity plans and disaster recovery plans has become a high priority for organizations of all sizes. Examine the importance of business continuity and disaster recovery plans, citing examples of each used in practice. Four response to negative risk that an organization may pursue: Avoid - Eliminating any possibility of risk through hazard prevention, or the discontinuation of activities determined to entail any level of risk. Avoid example - Testing software, hardware and or applications before users are able to obtain it would eliminate bugs, security breaches and capability issues. Transfer - Placing the risk onto a third party. Transfer example - Placing the liability of a company, such as their employees, onto an insurance company would minimize potential risk. Mitigate - Reduces the impact of a threat. Mitigate example - Securing an entrance of a company with code or badge scanning with reduce the probability of threat entering into the companies environment. Accept - Is the process of actively deciding that you will accept the consequences (impact) of a risk if it occurs. Accept example - If a computer fails or crashes, having another there to replace...
Words: 345 - Pages: 2
...secure data. Considering your place of employment or your home computing environment, discuss in detail the means in which each of the three tenets are addressed to mitigate risk and enhance security in your chosen environment. In my workplace, all three security tenets are strongly enforced. Our information systems are available 99.9% of the time. We have specialists on call to support all facets of the organization, so even an unplanned outage can be mitigated by flipping to a mirror, then correcting the issue in the production environment. The integrity of the information is protected by the user account controls implemented by the data administrators, who create views and profiles for each user. Additionally, network admins restrict access to the data servers themselves. The confidentiality is also protected by the user account controls. With these in place, only authorized users are able to access or modify data. The use of mobile devices to create or access data has gained worldwide appeal and has obtained critical mass. From the e-Activity, summarize the attack and describe how you would mitigate the threat. Mobile devices are now more alluring to attackers due to the concentration of users on a small base of operating systems. For example, prior to the launch of smart phones, there were hundreds of different software packages supporting each phone. Now with the advent of IOS and android, there is a large concentration of users on the same operating system, which makes...
Words: 1411 - Pages: 6
...Guide to Enterprise Risk Management F R E Q U E N T LY A S K E D Q U E S T I O N S Guide to Enterprise Risk Management: Frequently Asked Questions Page No. Introduction The Fundamentals 1. 2. 3. 4. 5. 6. 7. 8. 9. 10. 11. 12. 13. 14. 15. 16. 17. 18. 19. 20. 21. 22. 23. 24. What is Enterprise Risk Management (ERM)? Why implement ERM? How does the scope of ERM compare to existing risk management approaches? What is the value proposition for implementing ERM? Which companies are implementing ERM? If companies are not implementing ERM, then what are they doing? Who is responsible for ERM? What are the steps companies can take immediately to implement ERM? Is ERM applicable to smaller and less complex organizations? Why have companies that have tried to implement ERM failed in their efforts? Does implementation of ERM ensure the success of a business? What is the difference between ERM and management? What does it mean to “implement ERM”? Generally, how long does it take to implement ERM? Is there any way to benchmark the level of investment required to implement ERM? Don’t successfully run companies already apply ERM? How long has ERM been around and why is there a renewed focus on it? What percentage of public companies currently have an ERM process or system? Is there an example of effective ERM as it is applied in practice? How does the application of ERM vary by industry? Are there any organizations that need not implement ERM? What are the regulatory mandates for implementing...
Words: 83481 - Pages: 334
...Butterworth-Heinemann is an imprint of Elsevier Linacre House, Jordan Hill, Oxford OX2 8DP, UK 30 Corporate Drive, Suite 400, Burlington, MA 01803, USA First edition 2009 Copyright © 2009 Elsevier Ltd. All rights reserved No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means electronic, mechanical, photocopying, recording or otherwise without the prior written permission of the publisher Permissions may be sought directly from Elsevier’s Science & Technology Rights Department in Oxford, UK: phone (144) (0) 1865 843830; fax (144) (0) 1865 853333; email: permissions@elsevier.com. Alternatively you can submit your request online by visiting the Elsevier web site at http://elsevier.com/locate/permissions, and selecting Obtaining permission to use Elsevier material Notice No responsibility is assumed by the publisher for any injury and/or damage to persons or property as a matter of products liability, negligence or otherwise, or from any use or operation of any methods, products, instructions or ideas contained in the material herein. Because of rapid advances in the medical sciences, in particular, independent verification of diagnoses and drug dosages should be made. British Library Cataloguing in Publication Data A catalogue record for this book is available from the British Library Library of Congress Cataloguing in Publication Data A catalog record for this book is available from the Library of Congress ISBN–13:...
Words: 89973 - Pages: 360
...≈√ F M A G u i d e l i n e s on Operational Risk Management These guidelines were prepared by the Oesterreichische Nationalbank in cooperation with the Financial Market Authority Published by: Oesterreichische Nationalbank (OeNB) Otto-Wagner-Platz 3, 1090 Vienna, Austria Austrian Financial Market Authority (FMA) Praterstraße 23, 1020 Vienna, Austria Produced by: Oesterreichische Nationalbank Editor in chief: Günther Thonabauer, Communications Division (OeNB) Barbara Nösslinger, Staff Department for Executive Board Affairs and Public Relations (FMA) Editorial processings: Chapter I and III: Roman Buchelt, Stefan Unteregger (OeNB) Chapter II and IV: Wolfgang Fend, Radoslaw Zwizlo, Johannes Lutz (FMA) Design: Peter Buchegger, Communications Division (OeNB) Typesetting, printing and production: OeNB Printing Office Published and printed at: Otto-Wagner-Platz 3, 1090 Vienna, Austria Inquiries: Oesterreichische Nationalbank Communications Division Otto-Wagner-Platz 3, 1090 Vienna, Austria Postal address: Post Office Box 61, 1011Vienna, Austria Phone (+43-1) 40420-6666 Telefax (+43-1) 40420-6696 Austrian Financial Market Authority (FMA) Executive Board Affairs & Public Relations Division Praterstraße 23, 1020 Vienna, Austria Phone (+43-1) 24959-5100 Orders: Oesterreichische Nationalbank Documentation Management and Communications Services Otto-Wagner-Platz 3, 1090 Vienna, Austria Postal address: Post Office Box 61, 1011Vienna, Austria Phone...
Words: 50825 - Pages: 204
...Executive Editor: Stephen Helba Managing Editor: Marah Bellegarde Product Manager: Natalie Pashoukos Developmental Editor: Lynne Raughley Editorial Assistant: Meghan Orvis Vice President, Career and Professional Marketing: Jennifer McAvey Marketing Director: Deborah S. Yarnell Senior Marketing Manager: Erin Coffin Marketing Coordinator: Shanna Gibbs Production Director: Carolyn Miller Production Manager: Andrew Crouth Senior Content Project Manager: Andrea Majot Senior Art Director: Jack Pendleton Cover illustration: Image copyright 2009. Used under license from Shutterstock.com Production Technology Analyst: Tom Stover © 2010 Course Technology, Cengage Learning ALL RIGHTS RESERVED. No part of this work covered by the copyright herein may be reproduced, transmitted, stored, or used in any form or by any means graphic, electronic, or mechanical, including but not limited to photocopying, recording, scanning, digitizing, taping, Web distribution, information networks, or information storage and retrieval systems, except as permitted under Section 107 or 108 of the 1976 United States Copyright Act, without the prior written permission of the publisher. For product information and technology assistance, contact us at Professional Group Cengage Learning Customer & Sales Support, 1-800-354-9706 For permission to use material from this text or...
Words: 229697 - Pages: 919
...Includes Over Two Hours of Bonus Audio on the CD Includes Real-World Scenarios and Leading-Edge Exam Prep Software Featuring: Updated for the Project Management Body of Knowledge (PMBOK® Guide), Fourth Edition • Custom Test Engine • Hundreds of Sample Questions • Chapter Review in Audio Format • Electronic Flashcards • Entire Book in PDF PMP Fifth Edition SERIOUS SKILLS. ® Project Management Professional Exam STUDY GUIDE Kim Heldman Project Management Professional Exam Study Guide Fifth Edition PMP ® Project Management Professional Exam Study Guide Fifth Edition PMP ® Kim Heldman Acquisitions Editor: Jeff Kellum Development Editor: Alexa Murphy Technical Editors: Terri Wagner and Brett Feddersen Production Editor: Christine O’Connor Copy Editor: Judy Flynn Production Manager: Tim Tate Vice President and Executive Group Publisher: Richard Swadley Vice President and Publisher: Neil Edde Project Manager 1: Laura Moss-Hollister Associate Producer: Angie Denny Quality Assurance: Josh Frank Book Designers: Judy Fung, Bill Gibson Compositor: Craig Woods, Happenstance Type-O-Rama Proofreader: Publication Services, Inc. Indexer: Nancy Guenther Project Coordinator, Cover: Lynsey Stanford Cover Designer: Ryan Sneed Copyright © 2009 by Wiley Publishing, Inc., Indianapolis, Indiana Published simultaneously in Canada ISBN: 978-0-470-45558-6 No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form...
Words: 241705 - Pages: 967
...typographical, formatting, or other errors. Simply make a copy of the relevant page of the book, mark the error, and send it to: Book Editor, PMI Publications, 14 Campus Boulevard, Newtown Square, PA 19073-3299 USA. To inquire about discounts for resale or educational purposes, please contact the PMI Book Service Center. PMI Book Service Center P.O. Box 932683, Atlanta, GA 31193-2683 USA Phone: 1-866-276-4764 (within the U.S. or Canada) or +1-770-280-4129 (globally) Fax: +1-770-280-4113 E-mail: book.orders@pmi.org Printed in the United States of America. No part of this work may be reproduced or transmitted in any form or by any means, electronic, manual, photocopying, recording, or by any information storage and retrieval system, without prior written permission of the publisher. The paper used in this book complies with the Permanent Paper Standard issued by the National Information Standards Organization...
Words: 148336 - Pages: 594
...Ontario, Canada. ©2005, 2006, 2008, 2009, International Institute of Business Analysis. All rights reserved. Portions of Appendix A: Glossary are from The Software Requirements Memory Jogger, by Ellen Gottesdiener, ©2005 GOAL/QPC and are used with permission. Cover Image ©2006 iStockphoto.com/Damkier Media Group. Version 1.0 and 1.4 published 2005. Version 1.6 Draft published 2006. Version 1.6 Final published 2008. Version 2.0 published 2009. Second Printing. ISBN-13: 978-0-9811292-1-1 (print) ISBN-13: 978-0-9811292-2-8 (PDF and EBook) Permisson is granted to reproduce this document for your own personal, professional, or educational use. If you have purchased a license to use this document from IIBA®, you may transfer ownership to a third party. IIBA® Members may not transfer ownership of their complimentary copy. This document is provided to the business analysis community for educational purposes. IIBA® does not warrant that it is suitable for any other purpose and makes no expressed or implied warranty of any kind and assumes no responsibility for errors or omissions. No liability is assumed for incidental or consequential damages in connection with or arising out of the use of the information contained herein. IIBA®, the IIBA® logo, BABOK® and Business Analysis Body of Knowledge® are registered trademarks owned by International Institute of Business Analysis. CBAP® is a registered certification mark owned by International Institute of Business Analysis. Certified Business Analysis...
Words: 96708 - Pages: 387
...give business leaders an outstanding map for how to successfully navigate a company through crises.” —Friedrich von Metzler, Member, Partners’ Committee, B. Metzler seel. Sohn & Co. Holding AG “Turbulence and unpredictability are the inevitable realities of the next few years. We are in truly uncharted waters, with no good maps. Chaotics will help your organization to navigate without one. This incredibly useful and helpful book provides clear and practical guidance to the many difficult decisions that managers and leaders need to make in turbulent times. It is like having the authors and their wisdom at your side while having to ride the white waters of the rapids ahead.” —Peter Schwartz, Monitor Global Business Network “[A]n operations manual to help management teams guide their companies through this global disaster. Chaotics is a must read for those seeking a lifeline to save their business.” —Ed Kaplan, Chairman Emeritus, Zebra Technologies “A very timely and practical book on how to manage and market the enterprise through prolonged turbulence. The Chaotics Management System provides an excellent blueprint for making each major business function more resilient.” —Jagdish N. Sheth, Ph.D., Charles H. Kellstadt Professor of Marketing, Goizueta Business School, Emory University, Atlanta, GA; author of The Self-Destructive Habits of Good Companies: . . . And How to Break Them “Chaotics is about real events in real time. World authorities on marketing and strategy Philip Kotler...
Words: 60698 - Pages: 243
...[pic] Student Guide for Performance Based Service Acquisition And The Seven Step Process (ACQ 265) Nov 2009 Table of Contents UNIT 1 Introduction UNIT 2 Form the Team, Review Current Strategy, Market Research Step 1: Form the Team Step 2: Review the Current Strategy Step 3: Market Research UNIT 3 An Industry Perspective: Approaching an Acquisition UNIT 4 Requirements Definition Step 4: Requirements Definition UNIT 5 Develop your Sourcing Strategy Step 5: Sourcing Strategy UNIT 6 Execute the Strategy Step 6: Execute the Strategy UNIT 7 Performance Management Step 7: Manage Performance Appendices I Acronym List II Glossary | | | |Course Title |Performance Based Service Acquisition (ACQ 265) | | | | | | | |Lesson Title | Course Introduction | | ...
Words: 44891 - Pages: 180
...Project Management Institute A Guide to the Project Management Body of Knowledge (PMBOK® Guide) – Fifth Edition Licensed To: Jorge Diego Fuentes Sanchez PMI MemberID: 2399412 This copy is a PMI Member benefit, not for distribution, sale, or reproduction. Library of Congress Cataloging-in-Publication Data A guide to the project management body of knowledge (PMBOK® guide). -- Fifth edition. pages cm Includes bibliographical references and index. ISBN 978-1-935589-67-9 (pbk. : alk. paper) 1. Project management. I. Project Management Institute. II. Title: PMBOK guide. HD69.P75G845 2013 658.4’04--dc23 2012046112 ISBN: 978-1-935589-67-9 Published by: Project Management Institute, Inc. 14 Campus Boulevard Newtown Square, Pennsylvania 19073-3299 USA Phone: +610-356-4600 Fax: +610-356-4647 Email: customercare@pmi.org Internet: www.PMI.org ©2013 Project Management Institute, Inc. All rights reserved. “PMI”, the PMI logo, “PMP”, the PMP logo, “PMBOK”, “PgMP”, “Project Management Journal”, “PM Network”, and the PMI Today logo are registered marks of Project Management Institute, Inc. The Quarter Globe Design is a trademark of the Project Management Institute, Inc. For a comprehensive list of PMI marks, contact the PMI Legal Department. PMI Publications welcomes corrections and comments on its books. Please feel free to send comments on typographical, formatting, or other errors. Simply make a copy of the relevant page of the book, mark the error, and...
Words: 162869 - Pages: 652
...This text was adapted by The Saylor Foundation under a Creative Commons Attribution-NonCommercial-ShareAlike 3.0 License without attribution as requested by the work’s original creator or licensee. Saylor URL: http://www.saylor.org/books Saylor.org 1 Project Management in a Complex World Faster, cheaper, and better has become the mantra of not only profit-making organizations seeking to increase market share and profits but also nonprofits and governmental organizations seeking to increase their value to clients. Organizations are increasingly using projects to meet these goals. Projects are goal directed and time framed, and when managed well, projects deliver on time and within budget. This book is about how to manage projects well. All projects have common characteristics: every project has a scope, budget, and schedule. Projects also differ. Understanding how projects differ and what that difference means to the management of the project is critical to successfully managing a project. Large, complex projects need project management tools, systems, and processes that are very different from the small and less complex project. Within this text, we provide a tool for profiling a project based on the complexity of the project and describe the different project management approaches needed for the difference in project profiles. Project management is complicated. In some ways, this is a good thing because students who learn how to manage projects well...
Words: 109859 - Pages: 440
...Now the perfect companion for anyone sitting the PMI’s PMBOK exams THE DEFINITIVE 2ND EDITION PROJECT MANAGEMENT THE FAST TRACK TO GETTING THE SEBASTIAN NOKES AND SEAN KELLY GUIDE TO JOB DONE ON TIME AND ON BUDGET the definitive guide to project management In an increasingly competitive world, we believe it’s quality of thinking that gives you the edge – an idea that opens new doors, a technique that solves a problem, or an insight that simply makes sense of it all. The more you know, the smarter and faster you can go. That’s why we work with the best minds in business and finance to bring cutting-edge thinking and best learning practice to a global market. Under a range of leading imprints, including Financial Times Prentice Hall, we create world-class print publications and electronic products bringing our readers knowledge, skills and understanding, which can be applied whether studying or at work. To find out more about Pearson Education publications, or tell us about the books you’d like to find, you can visit us at www.pearsoned.co.uk the definitive guide to project management the fast track to getting the job done on time and on budget Second Edition SEBASTIAN NOKES AND SEAN KELLY PEARSON EDUCATION LIMITED Edinburgh Gate Harlow CM20 2JE United Kingdom Tel: +44(0)1279 623623 Fax: +44(0)1279 431059 Website: www.pearsoned.co.uk First published 2003 Second edition published in Great Britain 2007 © Aldersgate Partners LLP 2003 © Casnus Limited...
Words: 144594 - Pages: 579
...FEDERAL INFORMATION SYSTEM CONTROLS AUDIT MANUAL (FISCAM) This is a work of the U.S. government and is not subject to copyright protection in the United States. The published product may be reproduced and distributed in its entirety without further permission from GAO. However, because this work may contain copyrighted images or other material, permission from the copyright holder may be necessary if you wish to reproduce this material separately. United States Government Accountability Office Washington, DC 20548 February 2009 TO AUDIT OFFICIALS, CIOS, AND OTHERS INTERESTED IN FEDERAL AND OTHER GOVERNMENTAL INFORMATION SYSTEM CONTROLS AUDITING AND REPORTING This letter transmits the revised Government Accountability Office (GAO) Federal Information System Controls Audit Manual (FISCAM). The FISCAM presents a methodology for performing information system (IS) control 1 audits of federal and other governmental entities in accordance with professional standards, and was originally issued in January 1999. We have updated the FISCAM for significant changes affecting IS audits. This revised FISCAM reflects consideration of public comments received from professional accounting and auditing organizations, independent public accounting firms, state and local audit organizations, and interested individuals on the FISCAM Exposure Draft issued on July 31, 2008 (GAO-08-1029G). GAO would like to thank the Council of the Inspectors General on Integrity and Efficiency...
Words: 174530 - Pages: 699