Boards need to understand and manage risk to ensure their companies are sufficiently resilient in the face of cyber attack, fire, flood or other disaster. This needs to be expressed as a cost to the business which may then be balanced against the cost of remediation, before the Board can properly decide what its Risk Appetite should be.
The Insurance industry is required by law to allow for the 1 in 200 event. It would be prudent to use this type of worst case scenario approach more widely to protect against potentially cataclysmic events. Events that could in extremis ruin a company. To this end, a Board needs to properly consider the true complexity of its organisation – the unseen inter-dependencies between its people, the processes they use, the supporting technology and data (PPTD) – that allows the business to function.
While the scale, scope and complexity of businesses vary widely, depending upon the market sector (such as manufacturing or services), all have the above four PPTD components. The complex synthesis of these components can only be fully understood through the use of systems engineering techniques.
RJD brings these to bear though our innovative modelling and toolsets to build – with you – a holistic understanding of your enterprise and thence what the full impact of attacks and events will have on your key outputs. Our customers for such work include the Oil & Gas, Rail and Utilities industries.
RJD is a value added re-seller of Sparx Enterprise Architect software. Software which underpins much of our systems engineering work.