Are you ready to answer the call, when something goes wrong?
In the current issue of Directorship magazine, it was pointed out that management (and directors) may only have 5 minutes after an event before bloggers, tweeters, and the press start asking questions.
While it is necessary to appear in control and responsive, that doesn’t sound like much time to figure out what happened, let alone what the organization should do or what to tell the public.
I recommend reading an opinion piece in today’s Financial Times, then discussing the challenge with the executive leadership team and the board.
- Is it clear who can talk to the media, the government or regulators, bloggers and tweeters, etc?
- Are they adequately trained?
- Do you have procedures so that these people are notified of events quickly enough?
- Are you confident that you will have a message fast enough to preserve the organization’s reputation?
- Are your processes for notifying the top management and board well-defined and known? Will they be able not only to provide direction but also answer any questions directed to them?
Auditors: have you addressed this area? It could represent a major risk to the reputation of the business, potentially affecting customer demand, intrusion by regulators, etc.
Recent Posts on this Blog
- Is a new maturity model for GRC the right model? September 25, 2016
- The Wells Fargo “Staff Scam”: More questions and fewer answers September 16, 2016
- The astonishing Wells Fargo fraud September 10, 2016
- Leading an effective information security capability September 4, 2016
- Have your provided comments on the COSO ERM draft? August 31, 2016
- How to do your internal audit risk assessment August 27, 2016
- Do techies really understand cyber risk? August 20, 2016
- Continuing to learn about culture from Toyota August 13, 2016
- The danger of an arrogant board August 7, 2016
- The Board and Technology: Questions to ask the management team July 31, 2016
- IIA Insights on Internal Audit Effectiveness July 22, 2016
- Deloitte predicts change for Internal Audit July 20, 2016
- Risk and Opportunity Management July 2, 2016
- Risk reporting to the Board June 26, 2016
- We need to review and provide feedback on the COSO ERM Exposure Draft June 19, 2016
- Fraud, Abuse, and Corruption September 26, 2016
- Reconsidering the Board: Its Composition and Oversight of Management September 19, 2016
- Time for the Board to Take a Deep Dive Into Risk Management and Risks September 12, 2016
- Oversight of the External Auditor September 6, 2016
- Signs of a Failing Board August 29, 2016
- Contrasting Comments on Internal Audit From a CAE and a Consultant August 23, 2016
- Asking the Tough Questions About Internal Audit August 15, 2016
- When Risk Management Fails August 8, 2016
- An Internal Audit Ambition Model August 1, 2016
- Understanding and Assessing Governance Risk July 25, 2016