hen most organizations undertake an important process improvement effort (e.g., compliance, cyber security, governance), they typically refer to different standards and prepare a complex process to implement the improvement.
From this author’s point of view, the main issue with that approach is that it refers to only one standard for the process and follows it strictly from the 1st page to the last. These kinds of projects are usually long in duration, expensive, require the engagement of several experts, and may require the purchase of hardware and software. These things are not cheap. Read More >>