Community

Join the Community

22,192
Expert opinions
44,256
Total members
394
New members (last 30 days)
213
New opinions (last 30 days)
28,728
Total comments
Join Sign in

Plan, Do, Manage, Review, Cuthbert, Dibble and Grub

  0 Be the first to comment
Retired member
Unfollow

Security and Compliance is an ongoing process. Both in personal and corporate activities, it is worthwhile stepping through the simple four-step process to reduce the risk of compromise.

Plan

In the same way as when you buy a new house, you plan (at least in your head) to change the locks and possibly add locks to the windows, extend insurance to cover loss, and repair things that may fall down and hurt people, when starting a new year, examine the risks your company is exposed to, particularly new ones such as mobile security.

Do

Plans are just that. Without actually changing your locks, you are still vulnerable to the set of keys lost by the previous owner. Without your employees changing their password on a monthly basis, hacked passwords still grant access to your systems.

Manage

It is all very well telling people to do something, but the manager's responsibility is to check it has been done, or the progress, manage the risks and issues and smooth out authorisations.

Review

Crime is not static, nor is the law. Annual, monthly and even daily reviews of new threats or changes is a must.

Cuthbert, Dibble and Grub

Trumpton, anyone? Mnemonics, particularly rhymes, make things easier to remember. Whether it is "Pugh, Pugh, Barney McGrew, Cuthbert, Dibble and Grub" or "Plan, Do, Manage, Review", make the compliance and security messages for workers (employees, directors and contractors) simple and easy to remember and they are more likely to be followed, at least in the most part.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

7974
 

Share

 
 
 
 
 

Channels

/security /regulation & compliance
 

Information Security

The risks from Cyber cime - Hacking - Loss of Data Privacy - Identity Theft and other topical threats - can be greatly reduced by implementation of robust IT Security controls ...

Join group

216 opinions 45 members

Comments: (0)

More expert opinions

Andrew Ducker

Andrew Ducker Payments Consulting at Icon Solutions

Commercial Variable Recurring Payments (cVRP) and the implications for banks

Anton Roe

Anton Roe CEO at MHR

Driving UK growth in 2025: Big steps to stimulate business productivity

Adam Pemberton

Adam Pemberton Senior Digital Marketing Executive at Planixs

Is your LCR (Liquidity Coverage Ratio) fit for purpose?

Konrad Litwin

Konrad Litwin Global General Manager - Testing at Perforce Software

Getting banking websites and apps ready for peak traffic over the holiday season

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

22,192
Expert opinions
44,256
Total members
394
New members (last 30 days)
213
New opinions (last 30 days)
28,728
Total comments
Join Sign in

Trending

Boris Bialek

Boris Bialek Vice President and Field CTO, Industry Solutions at MongoDB

Enhancing Digital Banking Experiences with AI

Kathiravan Rajendran

Kathiravan Rajendran Associate Director of Marketing Operations at Macro Global

Strategy that Banks should consider in 2025 to outpace fintechs and MTOs in Cross Border Payments

Barley Laing

Barley Laing UK Managing Director at Melissa

Reducing the impact of AI-driven fraud in 2025

Scott Dawson

Scott Dawson CEO at DECTA

SMEs, AI and PSD3 – Everything You Need To Know About What’s Coming in 2025

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept