by Aleksandr Zhuk | Jun 20, 2018 | GRC, information security, risk
About 20 years ago, when a floppy disk was a popular type of data storage, business data protection and security strategies were simple: keep one or more spare copies of the data stored on the floppy disks, regularly backup your file servers, and make sure that the...
by Aleksandr Zhuk | Jun 15, 2018 | GRC, risk
Tim Brown, CEO of IDEO, a legendary design company, is credited with popularizing the concept of “T-shaped” professional. According to Mr. Brown: T-shaped people have two kinds of characteristics, hence the use of the letter “T” to describe them. The...
by Aleksandr Zhuk | Jun 11, 2018 | GRC, risk
A technology startup is a brainchild of one or more highly capable visionary business-savvy technologists. Each member of the core startup team is usually more productive than several average workers and has the skills of the top 5% in their respective field. The...
by Aleksandr Zhuk | May 27, 2018 | GRC, startup
ISO 31000:2018 standard advises: “When designing the framework for managing risk, the organization should examine and understand its external and internal context.” I believe that the same guiding principle should also inform cross-organizational risk...
by Aleksandr Zhuk | May 8, 2018 | GRC, information security, startup
Having spent 20+ years developing, enhancing, and defending GRC and information security posture of one of the world’s largest financial services organizations, I found myself helping FinTech startups to do the same. I find this work highly rewarding for a...