Thursday, 31 March 2011
Apply controls without strangling the business
I know I have just done one blog but there is a phrase in it that I think needs a little explanation as I think it really does sum up the challenge facing senior managers in many organisations, not just the police
But since this is about me and my context is the police then here goes..........
Applying controls without strangling the business.
How do we ensure that when we are creating policy, that we are not, through some inadvertant action, "strangling the business" ?
How easy it is to respond to something that has gone wrong by banning something, reacting with a macho "never again" attitude ?
How easy it would be to just shut things down or create a range of measures that prevent action rather than support it ?
A leadership culture is needed that acknowledges the presence of risk,but seeks to manage that risk not avoid it all together.
Without reference to the vernacular we know that some times Things Happen. How we react, particularly as senior management in redesigning or re-engineering the policy context, defines us as leaders.
I would like to think that I would not over-react, or put in place a multi-layerd strategy, even with good intent, that stops my staff from acting or delivering to our objectives.
Yet as well as having an open mind to such a possibility, how will I know? In an organisation that is a command hierachy, how can I ensure that my staff will let me know if I do re-engineer a policy, and in so doing, create chaos.
Two skills therefore needed..
1. The ability to appreciate the possible or likely consequences of a change or a new requirementon staff ability to work effectively
2. The creation of an environment where despite the "rank structure" people feel free to outline unintended consequences in such time that allows speedy correction
I suppose this also dictates that for 2 above to succeed we need
3. The ability to accept criticism and fix things, having the humilty to change when necessary.
So if I ever apply controls that strangle the organisation...............let me know
Popular Posts in last 7 Days
This week I attended a seminar on how to be a SIRO, Senior Information Risk Owner In other words how to protect the organisation from data a...
Today HRH Prince Charles visited Cumbria and was given the opportunity to meet a range of people, businesses and buildings across the county...
So Saturday was the Big March. Anywhere between 300 and 500,000 peaceful protesters protesting. All magnificently managed by the Met suppo...
Ransomware Seminar 19th May 09.30-11.30 Ransomware is now one of the biggest threats to industry, charities, health and citizens. Fin...
GetSafeOnline Some thoughts Today we saw the start of GetSafeOnline week commencing with a short summit in London a range of partners wer...
The Apple FBI saga The disagreement over Apple and the FBI has become a microcosm of the world of cyber and digital crime. Warrant...
I am helping Leeds University with a business Cybercrime Survey go to www.bit.do/cybersurvey to complete it or use the QR code. Many tha...
Having experienced a range of public violence in Btistol Bradford Birmingham and Harmondsworth I feel enabled to comment in support of the v...
Many people are told when they call the police to report a fraud, especially a cyber based one that they should call ActionFraud or report ...
Following last week’s launch of The Cyber Security Breaches Survey which found that one in four large firms are experiencing a cyber br...