One Article Review
| Source |  NoticeBored |
|---|---|
| Identifiant | 1570363 |
| Date de publication | 2020-02-05 20:01:16 (vue: 2020-02-29 05:00:23) |
| Titre | NBlog Feb 5 - YMMV |
| Texte |  Once more today I find myself drawn into an interminable discussion over on the ISO27k Forum.This time around, it's with a member who (as I see it) steadfastly refuses to remove his IT blinkers and acknowledge that - perhaps - there's more to information risk and security management than IT security, that he can't simply ignore the rest or claim/pretend that it's someone else's problem.His little IT world defines his horizon, and everything beyond the edge is (to him) at once both unseen and scary.And to be fair to him, I'm just the same. OK, so my blinkers don't say "IT" all over them but it's true I perceive the world in terms of information risks. I can't help it. It's how my brain works. I have something of an idea of what lies beyond that horizon, but nevertheless it's scary because that's not my domain of knowledge, experience and expertise. It's not my home turf. It makes me uncomfortable.Take 'financial risk' for example. I know a tiny bit about return on investment, exchange rates, stock markets, money markets and so on ... but I'm well out of my depth when it comes to, say, futures and options. I thoroughly enjoyed reading Nick Leeson's book about his shenanigans that brought down the veritable British financial institution of Barings Bank but I freely admit that, despite his patient and eloquent description in the book, I didn't entirely understand the ins-and-outs of his fraud (nor indeed did the bank's managers and auditors, until it was too late!). Although the story sort of made sense at the time, I was struggling to understand and, now, I'd fall in a heap if I tried to recall and explain it.Arguably there's a difference, though, between me and my rather naive, blinkered colleague on the ISO27k Forum. Specifically, I'm sufficiently self-aware to know my limits. If I wanted/needed to get into, say, financial risk, I'd seek out and rely on someone who's good at that stuff, someone with experience and reputati |
| Envoyé | Oui |
| Condensat | despite i about above acknowledge address admit again all although and auditors appreciate are arguably around associated aware awkward bank bank but barings because between beyond bit blabbering blinkered blinkers book both brain british brought but can claim/pretend clear clue colleague comes concepts crystal defined defines demonstrated depth describing description did didn difference discussion domain don down drawn edge eloquent else enjoyed entirely even everything example exchange experience expertise explain fair fall feb financial find forum fraud freely further futures general get good have head heap help here him his home horizon how idea ignore ill indeed information ins institution interminable investment iso27k just know knowledge late leeson lies limits little made makes management managers markets may member money more myopia myopic myself naive narrowness nblog nevertheless nick nor not now nub obsession once options out outlining outs over own patient perceive perhaps perspective plus probably problem product punt qualifications rates rather reading recall recognise refuses rely remove reputation rest return risk risks same say scary security see seek self sense shenanigans simply situation someone something sort specifically steadfastly stock story struggling stuff sufficiently take taking terms than that them there thoroughly though time tiny today too tried true turf uncomfortable understand unfamiliar unseen until vague vary veritable view wanted/needed well what when who willing works world yet ymmv your |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.