ISO 38500 1 big thing: Perform analytical research to identify additional seed data, potential gaps and adverse information.

665 words, 2.5 minutes read. By Gerard Blokdyk

ISO 38500 1 big thing: Perform analytical research to identify additional seed data, potential gaps and adverse information.

The big picture: Develop experience in direct oversight of hardware, server, networking and enterprise-wide and business unit-specific software applications, as well as data governance and information security, and involvement formulating and implementing a Technology Roadmap and maintaining technical oversight.

Why it matters: Ensure your personnel defines the roles and responsibilities related to data governance and ensures clear accountability for stewardship of your organizations principal information assets.

State of play: Invest in regulatory engagement for matters related to IT, information security, business continuity management, operational resilience, information governance, third party risk management, enterprise risk management and data privacy.

Meanwhile: Enhance and implement data governance framework across the Enterprise including data quality, data catalog, data privacy and security, data integrity and access control utilizing the necessary IT solutions and/or external services.

Go deeper: Interface so that your staff is analyzing and articulating business opportunities into clear, use cases and stories to inform the data pipeline, models, services, deployment workflow, KPIs and visualization.

How it works: Make sure your workforce includes performing information systems security engineering and information assurance analysis as well as employing systems and information assurance best practices spanning requirements, architectures, processes, standards, specifications, technical baselines, testing, and verification and validation.

On the flip side: Certify your staff works with engineering to establish test techniques for new product during development and to resolve product or equipment problems, and may install, characterize and/or design equipment.

Between the lines: Make sure the primary objective of the Quality Assurance Automation Engineer is taking ownership of your internal test framework and additionally maintain and improve its capabilities.

What we’re hearing: “Support software releases and lead onsite/support team with expert knowledge, problem analysis, troubleshoot and resolution of defects with priority to bringing issues to closure.“, Technical Product Owner – IoT Core Platform

What to watch: Make sure the Security specialization is accountable for the identification of appropriate countermeasures to address identified deficiencies and for delivering advice and design solutions with reference to policy and good practise.

What they’re saying: “Make headway so that your company develops and maintains strategic plans; assesses policy needs and develops policies to govern IT activities; provides policy guidance to IT management, staff, and (internal) customers and prepares IT budgets and leads policy/strategy discussions across teams.“, Mgr, Technology Projects & Strategy

The bottom line: Be sure your group supports collaboration with others across the enterprise to provide solutions and recommendations in order to consolidate data repositories, information, GRC tools and other technology resources by centralizing them under common GRC solutions.

What’s next: Ensure you are able to challenge the status quo and drive innovation by generating creative ideas Keeps up to date on current research practices.

ICYMI: Be certain that your group reviews technical literature, meets with vendors, exchanges information with other organization agencies and attends conferences to identify new programs, methods, equipment, and plants which might be useful for operations.

Get started: store.theartofservice.com/ISO-38500-critical-capabilities/

Trusted by: FirstEnergy Corp, AE Stategies, LendingPoint, LLC, kraken, IBM, Micron Technology, IDC, CapB InfoteK, Mastery Logistics Systems, Inc., Accenture, McKesson, LumApps, Honeywell, Avery Dennison, Audible, Fidelity Investments, Olathe Public Schools, Amex, Emory University, Kajeet, Inc., Aruba Networks, Volkswagen Group of America, MasterBrand Cabinets Inc., Platform Science, Autonomic, Medtronic, NextEra Energy, Tesla, Novetta, Sirqul, Inc, Kwik Trip Inc, Particle, Rivian Automotive, Watts Water Technologies, Signify, Martin Engineering, TalentWerx, Terumo Medical Corporation, PepsiCo, Microsoft, Delta Faucet Company, Amazon.com Services LLC, Siemens, SunPower, Johnson Controls, Cummins Inc., BrightInsight, Losant, Pall, Allegion, Spireon, Lumin, Insight Enterprises, Inc., Alarm.com, Vodafone, Rad Power Bikes, Axon, ENEL, Schneider Electric, Precision Fermentation, Deeplocal Inc., Harbor Industries, Inc., Samsara, Ayla Networks, Prime Vision, Walmart, Xerox