tag:blogger.com,1999:blog-5772070Fri, 05 Jun 2026 17:15:21 +0000operational risk managementasymmetric warfareTrust DecisionsCritical InfrastructureBoard of DirectorsBusiness ResilienceHuman FactorsDefensible Standard of CareTrustCourageHomeland Securityenterprise risk managementContingency PlanningPredictive IntelligenceCrisis Managementcounterintelligencecorporate governanceInformation SecuritySituational Awarenesssupply chain riskcomplianceprivacyterrorismPreparednessespionageIntelligenceLegal RiskEthicspolicy governanceInvestigationsMilitaryInnovationfraudReputation ManagementData BreachWhite Collar CrimeArtificial IntelligenceResiliencehackingInsider ThreatCloud ComputingComplacency4GWComputer JihadeDiscoveryDigital ForensicsIntellectual PropertyHuman ErrorWorkplace ViolencebreachPerformance Managementbusiness assuranceAnalyticsCloud SecurityID Thefthedge fundsLone WolfwhistleblowerFusion CenterJihadViolence PreventionBotnetFRCPStandardsgovernanceFBImoney launderingORMOSINTIdentity ManagementIncident ResponseOffshoringtravel riskBSA/AMLProtective Security DetailFCPAProtective Security SpecialistERMPrivate EquitySOXIT AuditFCRANew York Stock ExchangeRed Flags RuleBusiness asymmetric warfareECMbasel IIbasel IIIFERCPCIUASNERCTARPAsset Forfeiturehttps://operationalrisk.blogspot.com/noreply@blogger.com (Unknown)Blogger1406125tag:blogger.com,1999:blog-5772070.post-966759172948365589Fri, 05 Jun 2026 09:06:00 +00002026-06-05T13:15:21.102-04:00Artificial Intelligenceasymmetric warfarecounterintelligenceDefensible Standard of CareHomeland Securityoperational risk managementOSINTPredictive IntelligenceprivacyTrust DecisionsWhat is Open Source Intelligence (OSINT)? Why is it important to your security and safety? How can you really understand how it is the same or different than other types of intelligence? Let's use this clever baseball analogy:If Intelligence were a baseball game....IMINT takes a picture every day or so, trying to discern whose winning from sporadic snap-shots at different times of day, https://operationalrisk.blogspot.com/2007/03/osint-if-intelligence-were-baseball.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-7403649172618394095Sat, 23 May 2026 09:18:00 +00002026-05-23T11:38:06.284-04:00asymmetric warfareCourageHomeland SecurityHuman FactorsMilitaryTrust DecisionsIt is Memorial Day weekend in the U.S. and on this final Monday of May 2026, we shall reflect on years past. In order to put it all in context, we looked back to our 2013 memories.  It was only a few weeks since a fellow colleague from Team Rubicon had ended his battle at home, after several tours of duty with AFSOC.  Neil had joined the ranks of those fallen heroes who survive https://operationalrisk.blogspot.com/2026/05/memorial-day-2026-risk-of-service-is.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-7515342046936647868Sat, 16 May 2026 09:03:00 +00002026-05-16T10:24:01.834-04:00asymmetric warfarebusiness assuranceCourageoperational risk managementpolicy governancePredictive IntelligenceSituational AwarenessTrustTrust Decisions As a current Chief Executive Officer or Commander across some branch or agency, who have you named as a key "Liaison?"  Who is this vital person that you have asked to be your voice, your thinking and your representative to a partner, collaborator or strategic ally? In Chris Fussell's book One Mission:  How Leaders Build A Team of Teams, the Task Force Liaison is described as https://operationalrisk.blogspot.com/2018/03/liaison-mission-when-will-you-introduce.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-5069652574672692244Sat, 09 May 2026 11:04:00 +00002026-05-09T11:37:42.628-04:00asymmetric warfareBoard of DirectorsBusiness ResilienceContingency PlanningCrisis ManagementCritical Infrastructureoperational risk managementsupply chain riskTrust DecisionsThe Continuity-of-Operations-Plan (COOP) for your Communications operations is an operational risk that in many cases is underestimated until a significant business disruption occurs.When Comms are down, this means a combination of voice and data services that serve your business enterprise may not be available.The resilience of both the voice and data communications is the holy grail of https://operationalrisk.blogspot.com/2025/09/business-resilience-beyond-readiness.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-114286982978089525Sat, 02 May 2026 09:02:00 +00002026-05-02T12:03:14.046-04:00asymmetric warfareBoard of DirectorsContingency PlanningCritical InfrastructureHomeland SecurityInsider Threatoperational risk managementResilienceterrorismWorkplace ViolenceTerrorism Risk includes the risk from attackers both “Internal and External” to our organizations. These attackers are still using conventional (incendiary explosive devices IED) or Active Shooters and unconventional (Digital Advanced Persistent Threat (APT) methods to disrupt the operations and economic well being of corporate organizations, the real estate finance industry and most of our https://operationalrisk.blogspot.com/2006/03/critical-infrastructure-protection.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-618057467280742450Sat, 25 Apr 2026 11:07:00 +00002026-04-25T11:34:16.087-04:00Artificial Intelligenceasymmetric warfareCourageCritical InfrastructureIncident Responseoperational risk managementTrust DecisionsWhen is the last time you were in an environment where trust was implicit?  A place where the people you were working along side, shared a unity of purpose and a single mission.Once you experience this, it is forever engraved in your mind and felt deep in your soul.  A “Starfish Community”, walking together with such a high degree of mutual trust, it will endure and remain resilient https://operationalrisk.blogspot.com/2026/04/starfish-community-of-resilience.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-8806646818314006615Sat, 18 Apr 2026 11:48:00 +00002026-04-18T12:53:08.109-04:00asymmetric warfareBoard of DirectorsCritical InfrastructureInnovationoperational risk managementPredictive IntelligenceTrust Decisions Who is talking in the front of the room right now?Is it the boss again or the CxO that is telling others that work in the organization what they should think and what they should be doing?Or is it one of the members of the organization presenting their validated research, the data collected and the answers from questions to the real customer, the end user or the investor?Leaders who are https://operationalrisk.blogspot.com/2026/04/organizational-innovation-demonstrated.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-2958520350202282990Sat, 11 Apr 2026 09:07:00 +00002026-04-11T12:18:53.801-04:00asymmetric warfareoperational risk managementprivacySituational AwarenessTrustTrust DecisionsAs you embark on your journey out the door today, you will be required to make dozens of "Trust Decisions".  You and the digital smart machines and the numerous human and digital trust transactions that you will encounter is quite fundamental.  Or is it? As you walk into your office building the surveillance cameras are watching you and recording your behavior.  The iPhone in yourhttps://operationalrisk.blogspot.com/2016/04/trust-decisions-wealth-of-our-cognitive.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-114563027170231787Sat, 28 Mar 2026 09:03:00 +00002026-03-28T14:37:28.895-04:00asymmetric warfareBoard of DirectorsBusiness ResiliencecounterintelligenceCrisis ManagementDefensible Standard of CareInsider Threatoperational risk managementResilienceTrust DecisionsStryker, Lloyds Bank, European Commission, Fortinet and others have yet to announce their settlement with recent hacker and/or data breach law suits. One of the systemic resilience problems at large institutions including large and global organizations like Stryker is keeping your finger on the pulse of "Risk Indicators”. Unfortunately for SVP's and other CxO executives in the corporate https://operationalrisk.blogspot.com/2006/04/mechanisms-for-continuous-risk.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-5574930936620925739Fri, 20 Mar 2026 11:22:00 +00002026-03-20T13:25:35.616-04:00Artificial Intelligenceasymmetric warfareBoard of DirectorscounterintelligenceCritical InfrastructureDefensible Standard of CareHomeland Securityoperational risk managementTrust DecisionsThe CxO’s at our global institutions have a primary “Duty of Care” to insure the safety of employees whenever asymmetric threats take place. There is no "Radar" that can alert you to when the next incident will occur. This is why many institutions have taken a new "Operational Risk Management" (ORM) perspective when it comes to the “All Hazards” and events that may impact the business. A true https://operationalrisk.blogspot.com/2026/03/ops-risk-all-hazards-ai.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-1425872006357421087Sun, 08 Mar 2026 11:11:00 +00002026-03-09T11:16:45.220-04:00Artificial Intelligenceasymmetric warfareBoard of DirectorscounterintelligenceCritical InfrastructureInsider Threatoperational risk managementPredictive IntelligenceTrust DecisionsWhat is your name? Where do you live? What is your phone number? Where were you born? What is your social security number? What is your passport number? Where was it issued? What evidence do you have that this is all true? Your identity is at stake and Operational Risk Management is on the line.These questions and more are asked of us on a regular basis to establish our true identity. The entity https://operationalrisk.blogspot.com/2026/03/id-risk-management-corporate.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-321230747622153470Sat, 28 Feb 2026 10:04:00 +00002026-02-28T12:28:20.580-05:00Artificial Intelligenceasymmetric warfareBoard of DirectorsBusiness Resiliencecorporate governanceoperational risk managementPerformance ManagementReputation ManagementSituational AwarenessTrustOperational Risk is about Performance Management and Business Resilience. A few months ago the topic of "Compete or Die" was discussed here. Why revisit this topic?CEO's and the Board of Directors realize the road to eliminating fear in their organization and the marketplace is through trusted information.Being agile, ready and capable of a quick recovery is what competitiveness is all abouthttps://operationalrisk.blogspot.com/2007/09/operational-risk-pursuit-of-trusted.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-114407957141768251Sat, 21 Feb 2026 10:02:00 +00002026-02-21T15:52:04.123-05:00asymmetric warfareoperational risk managementTrust DecisionsAre your Research and Development secrets protected and safe? Do you have a counterintelligence program operating in concert with your own Information Security strategy? Economic Espionage is a growing concern and a top priority at many US-based global organizations. Who do you know personally that can help you and your organization Deter, Detect, and Defend against potential attacks on your https://operationalrisk.blogspot.com/2006/04/partnership-for-protection.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-8541762664485640389Sat, 14 Feb 2026 12:02:00 +00002026-02-14T14:07:52.133-05:00asymmetric warfareCourageEthicsHuman ErrorHuman Factorsoperational risk managementTrustTrust DecisionsWhen you were growing up in your town across the USA, they probably had all kinds of ways for you as a kid to learn about competition.Was it the Spelling Bee?  The Debate team. The High School ball sports games, running track or swimming meets. Cheer competitions. Car racing. The neighborhood park “Art” & “Pottery” contest. The city Golf championship.Before you headed out of your own https://operationalrisk.blogspot.com/2026/02/competition-life-long-learning.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-415718593976141916Sat, 07 Feb 2026 10:09:00 +00002026-02-07T12:29:44.537-05:00Business ResilienceContingency PlanningCrisis ManagementCritical Infrastructureenterprise risk managementHomeland SecurityMilitaryoperational risk managementPerformance ManagementPreparedness Operational Risk Management (ORM) is evolving into a discipline with an over arching set of objectives. The organizations and entities that do not understand the purpose and the reason behind having SMART objectives, might need a refresher: Simple Measurable Achievable Realistic Task-oriented Without "SMART" objectives, any project will continue to strive for a purpose and a relevant set https://operationalrisk.blogspot.com/2014/03/smart-objectives-catalyst-for-resilience.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-4572985051278957785Sun, 01 Feb 2026 12:09:00 +00002026-02-01T18:51:54.100-05:00asymmetric warfareBoard of DirectorsBusiness ResilienceContingency PlanningcounterintelligenceHuman Factorsoperational risk managementPredictive IntelligenceTrust DecisionsIt was early-August of 2000 and topics of the “Dark Web” were prolific around the conference table at 8:00AM on that early Monday morning.  Our building on Wilson Blvd was just a few blocks up the hill from the Rosslyn, VA Metro Station.Soon the dialogue turned to the weekends OSINT and the Terabytes our Cyveillance Web crawlers had retrieved across the globe.Minding clients business on the https://operationalrisk.blogspot.com/2026/02/osint-accent-on-future.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-89317629013145358Sat, 24 Jan 2026 10:09:00 +00002026-01-24T13:33:08.047-05:00asymmetric warfareBoard of DirectorsContingency PlanningCourageCrisis ManagementDefensible Standard of CareInsider Threatoperational risk managementReputation ManagementResilienceHow often have you ever heard the leadership management philosophy that you must "Train Like You Fight"?  Here is another way to look at it:"The more you sweat in peace, the less you bleed in war." Norman SchwarzkopfThe theme is all too familiar with Operational Risk Management (ORM) teams that operate on the front lines of asymmetric threats, internal corruption, natural disasters and https://operationalrisk.blogspot.com/2016/04/how-often-have-you-ever-heard.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-4572275180757449270Sat, 17 Jan 2026 10:03:00 +00002026-01-17T15:43:25.256-05:00asymmetric warfarecounterintelligenceHomeland SecurityInformation SecurityIntelligenceoperational risk managementpolicy governanceTrustTrust DecisionsBack in the summer of 2008, the "Need to Know" was now finally becoming extinct. Intelligence Communities around the globe began ever so slightly changing their behavior.The Office of the Director of National Intelligence (ODNI) had released it's Information Sharing Strategy:The Office of the Director of National Intelligence was announcing the first-ever strategy to improve the ability of https://operationalrisk.blogspot.com/2008/05/intelligence-sharing-responsibility-to.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-1650792954755492913Sat, 10 Jan 2026 10:08:00 +00002026-01-17T15:15:05.953-05:00Artificial Intelligencebasel IIBusiness Resiliencecompliancecounterintelligenceenterprise risk managementfraudoperational risk managementOSINTTrust DecisionsWhite Collar CrimeWhen "Corporate Executives" start talking about how to reduce fraud and other critical Operational Risks across the institution, there is going to be plenty of debate.Where do you focus your resources and investments in order to get the best ROI and economic value?If you thought the pornographers were the leading ledge of innovation on the AI Internet, there is a new breed of international https://operationalrisk.blogspot.com/2007/06/when-bankers-start-talking-about-how-to.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-1622551741968706903Sun, 28 Dec 2025 12:05:00 +00002025-12-28T13:18:46.623-05:00Artificial Intelligenceasymmetric warfareBusiness ResilienceCritical InfrastructureHuman FactorsInnovationoperational risk managementResilienceTrust Decisions“And the things you have heard me say in the presence of many witnesses entrust to reliable people who will also be qualified to teach others”. From 2 Timothy 2:2Approaching New Year's Day 2026 people in countries across the globe will be praying for a hopeful future.What have you accomplished in 2025 to assist others in becoming more Strong, more Smart, more Reliable, more Knowledgeable and https://operationalrisk.blogspot.com/2025/12/new-year-2026-becoming-knowledge.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-2144273382814192445Mon, 08 Dec 2025 12:02:00 +00002025-12-08T11:28:23.601-05:00asymmetric warfareBusiness ResilienceContingency Planningenterprise risk managementgovernanceoperational risk managementPredictive IntelligencePreparednessResilienceTrustTrust Decisions In the early morning nautical twilight on a cold winter morning, thoughts about how the world is changing comes into clarity.  What do you believe in? As the asymmetric threats seem to grow and our respective thoughts scan a vast Operational Risk landscape of people, processes, systems and external events; there is a mission worth pursuing.  It is a mission that is uncertain, full of https://operationalrisk.blogspot.com/2017/02/linchpin-trust-in-continuously-changing.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-7874927329956290218Sat, 29 Nov 2025 12:26:00 +00002025-11-29T11:31:22.999-05:00asymmetric warfareContingency PlanningLone Wolfoperational risk managementProtective Security SpecialistterrorismWorkplace ViolenceHow long does it take for a lethal attack to occur against an At-Risk person? Just 2 Seconds is the best selling book by Gavin De Becker. Along with his long time colleagues Tom Taylor and Jeff Marquart, they document how to use time and space to defeat adversaries. There are some compelling insights gained from their research: In the US, attacks are most likely to be undertaken by lone https://operationalrisk.blogspot.com/2025/11/ladder-protective-security-specialists.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-3277183994552818212Sat, 22 Nov 2025 12:35:00 +00002025-11-22T16:42:35.744-05:00asymmetric warfareCourageEthicsHuman ErrorHuman Factorsoperational risk managementTrustTrust DecisionsIf you were asked about some of the greatest “Leaders” you have ever experienced in your lifetime so far, what is the most important “adjective” you shall use to describe them?At an early age, perhaps they were teachers or coaches in your schools or sports teams  growing up.  They were always on-time and reinforcing several key attributes in life such as hard work, telling the truth or https://operationalrisk.blogspot.com/2025/11/reliable-leadership-life-pursuit.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-112493957802698069Sat, 15 Nov 2025 10:12:00 +00002025-11-15T11:44:58.406-05:00asymmetric warfareCourageHuman Factorsoperational risk managementProtective Security SpecialistTrust DecisionsWhen was the last time your corporate travel department gave you some timely INTEL? Maybe you got a report on the current level of risk in the region, city or country you are now scheduled to visit in the next few days. What are you going to do if everything goes “South” in a matter of seconds or minutes? The Mission In situations that require instinctive response, you have to go beyond the https://operationalrisk.blogspot.com/2005/08/people-beyond-travel-risk-management.htmlnoreply@blogger.com (Unknown)0tag:blogger.com,1999:blog-5772070.post-113190421029835679Sat, 08 Nov 2025 12:31:00 +00002025-11-08T12:16:01.743-05:00asymmetric warfareBusiness Resiliencecorporate governanceHomeland Securityoperational risk managementPreparednessSituational AwarenessTrust DecisionsAccording to the best practices from several sources, the Board of Directors is responsible for the "Strategic Resilience and Survivability" of an organization. Let’s take a look at what the highly influential Basel Committee says about one principle as it pertains to Business Crisis and Continuity Management (BCCM): Review and Testing of Business Continuity Plans – Basel Principle 13 “It is thehttps://operationalrisk.blogspot.com/2005/11/strategic-organizational-resilience.htmlnoreply@blogger.com (Unknown)0