Alyned Thinking

Why new thinking is needed and how we are putting our expertise to work.
Multiple arrows pointing in the upward direction on a blue background

How to succeed as a new CISO — Part 1

Congratulations! You have a new job as something like CISO (Chief Information Security Officer), CSO (Chief Security Officer), Head of Information Security or similar. This can be a great gig or it can be your worst nightmare (sometimes more or less at the same time).

I’ve been there and I have the scars and credentials to prove it. So, let me give you some tips for your first days.

Read more ...
Multi-coloured measuring tape

Doing Risk Assessments Right

Most organisations follow a sample based approach to identifying risk or gaining assurance for reasons of cost and practicality. Risk Assessments are already widely used and accepted as a method for risk identification and assurance and can be an extremely powerful and cost effective tool when done right and an utterly useless tool if done wrong. Consider the global practice of filing tax returns as a highly effective way of getting billions of people to declare their income and deductibles through a self assessment process. The previous Safe Harbor scheme, on the other hand, is an example of applying self assessments without any controls or meaningful oversight and using self assessments very poorly.

Read more ...
assessing 50 vendors in 3 minutes written in white print on a green and blue background

Assessing 50 vendors in three minutes

Are you spending too much time on vendor governance without meaningful results to show for it? Are you stuck figuring out if you are asking the right questions in your self assessments? Watch how you can easily setup an assessment of 50 vendors in real time on Alyne in just three minutes.

we are live letters on a blue background next to the alyne logo

Alyne is Alive

It’s been an intensive couple of months filled with lots of hard work, tough discussions, a ridiculous number of Slack messages around the clock and a substantial amount of drinks trying to reach the Ballmer Peak. With the publishing of this article, Alyne is now officially live and ready for business. The developed platform represents not only our current product, but also a foundation for a pipeline full of exciting features and functionality planned for the next months and years.

Read more ...
A typewriter and an old printer on a street next to a park

Can Risk Management and Compliance be digitalized?

Digitalization is a seemingly new buzz word on the agenda in many organizations as well as in pitch decks of savvy consultants. It describes the introduction of digital technology to an organizational process to make existing activities more effective or deliver a new service to the organization. Avoiding manual steps, human intervention and any unnecessary interfaces are commonly a focus point. Over the past decades, the term has been used in various contexts, from actually transforming physical processes like type setting to digital printing or using computer aided design instead of pencil and paper. However, in today’s practice, businesses usually mean leveraging X-as-a-Service offerings to apply flexible and scalable technology to optimize a specific business outcome when talking about digitalization.

Read more ...