Between the poles

The subprime mortgage crisis in 2008, possessed the hallmarks of a systemic risk: underlying interdependencies swirl to produce a series of cascading failures for an entire system, rather than any one singular entity. Held captive by sheer magnitude, we marvel at how seemingly unrelated elements spaced apart by time and space can interact to reach catastrophic proportions.

When it comes to the design of IT controls to mitigate risk, however, we rarely place any emphasis on visualizing, let alone assessing interconnections. Even the label IT can be misleading; for some of us, it conjures up system programming, or anything and everything to do with technology. Interconnections hold no regard for ...

Get Compliance by Design: IT Controls that Work now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.