Monthly Archives: January 2017

“Compliance auditing”

Is two distinct things, or a contradictio if taken as one. The ‘compliance’ thing is just rote checking of the implementation of all petty rules. The Certificate certification type. If I’d even need to say more…Some even claim that by … Continue reading

Posted in ERM, GRC, Information Risk Management, Sociological, psychological notes | Tagged , , , , , | Leave a comment

Two stikes and you’re out of third party standards

What a wobbling title. When already for a second time (here), the European Supreme Court has ruled that laws requiring broad (meta)data retention for trawling are illegal per se, with a minute few exceptions, making it illegal to consider it … Continue reading

Posted in ERM, GRC, Information Risk Management, Information Security, Innovation (technologicallly driven), Privacy, Sociological, psychological notes | Tagged , , , , , , , , , , | Leave a comment

No pride, just the same

When you need a book to explain, or enthrall, some unexpected readers into believing Hygge were something exceptional — the Dutch have had Gezelligheid already for ages, without considering it something so special that it would need any investigation; just … Continue reading

Posted in ERM, GRC, Information Risk Management, Sociological, psychological notes | Tagged , , | Leave a comment

A parachute to your Dutch granny budget

If you have no clue about the title, read on. It’s about a Dutch ‘granny bike’. And about your bosses’ golden parachutes. And how to get budget for the playthings bare minimum tools you require. First off: the biker part. … Continue reading

Posted in ERM, GRC, Information Risk Management, Information Security, Sociological, psychological notes | Tagged , , , , , , , , , , , | 2 Comments

Cozy versus Anti-cozy

Once more reaching back to last Wednesday’s post: Opposing sides may have to recognise the very existence of the other one. When anti-bureaucracy force battle the eternal struggle against complacency et al., they better take into account that 60% of … Continue reading

Posted in ERM, GRC, Information Risk Management, Sociological, psychological notes | Tagged , , , , , | Leave a comment

Angst is not temporary

Struck me while going through, near the finish, Graeber’s Utopia of Rules, that the fear for the Unknown What to be Feared that keeps so many captured in Bureaucratia and will defend it and stupidify themselves to such utter stooping … Continue reading

Posted in ERM, GRC, Sociological, psychological notes | Tagged , , , , | Leave a comment

DoS Internals

No, no typo. Not DOS Internals or so. Rather, internal DoS attacks. Are they tractable? [Uhh, that may sound like they’d be positive things to be able to do — sorry, just hinting at “technical feasibility” here] Yes they are. … Continue reading

Posted in ERM, GRC, Information Risk Management, Information Security, Innovation (technologicallly driven) | Tagged , , , , , , , , , , | Leave a comment