George Spafford wrote at ITSMWatch.com about Control and Process Reviews. His article highlights the crucial role the major incident process play in risk management. It is a trigger for control and process review:
"In response to a variety of needs including process improvement and regulatory compliance, organizations develop controls and processes. Many times they are aimed at preventing an error from happening again. The problem is that there is a constant need to evolve. If processes are not updated, then they can slow or even halt progress and create conflict. A trigger for correction is major incidents. A review should be conducted after each crisis to learn if the policies, processes and/or procedures need to be revised. If so, then a request for change should be submitted, the necessary changes should be made and then submitted for review and approval through the Change Management process."
"In response to a variety of needs including process improvement and regulatory compliance, organizations develop controls and processes. Many times they are aimed at preventing an error from happening again. The problem is that there is a constant need to evolve. If processes are not updated, then they can slow or even halt progress and create conflict. A trigger for correction is major incidents. A review should be conducted after each crisis to learn if the policies, processes and/or procedures need to be revised. If so, then a request for change should be submitted, the necessary changes should be made and then submitted for review and approval through the Change Management process."
Comments
Post a Comment