PatrickP

The Three Little Pigs and Business Resiliency

Blog Post created by PatrickP Employee on Apr 30, 2015

Alright, I admit my five year old daughter is my literary consultant and gives me ideas for my blogs. In this one I'm going to talk about RSA Archer Maturity Models we've recently developed to help organizations in their journey to mature their Governance, Risk and Compliance (GRC) programs using RSA Archer as a key enabler. But first, to introduce the concept, let me tell you the story of the Three Little Pigs (this is my daughter's part). 


The Three Little Pigs is an old English nursery rhyme that begins with three pigs being sent out i111413nto the world by their mother to seek their fortune. The first little pig builds a house of straw, but a wolf blows it down and eats him. The second pig builds a house of sticks, which the wolf also blows down and, you guessed it, has barbecue pork for dinner. The third pig builds a house of bricks, which the wolf can't blow over. The wolf tries to trick the pig out of the house but he is outwitted by the brickhouse pig (yes, she's a brick....house). Finally, the wolf tries to come down the chimney, where the pig catches the wolf in a pot of boiling water, slams the lid on, then has wolf stew (try that Andrew Zimmern) for dinner.


As I said, we have just launched a series of Maturity Models to help organizations advance their GRC programs through the use of different Archer solutions, one of them being Business Resiliency (BR). The Model and accompanying White Paper below discuss the five phases of the Model (Siloed, Transition, Managed, Transform and Advantaged) and the key capabilities organizations should implement  in building maturity into their BR programs.  Each phase explains characteristics of BR programs that fall within each phase.  For example, BR programs in a Siloed phase might be like the little pig who built his house out of straw.  It was built very quickly, maybe even just to be compliant or to "check a box".  It was a good idea but maybe not completely thought out. As a result, when the disaster struck, the house came down.  In the middle of the Maturity Model is the Managed phase (we'll call that one the house made of sticks).  Stronger than the house made of straw, this one was planned out better, it might have been tested to see how it withstood a breeze or two, and it maybe even had some reinforced windows; but when the wolf blew, that house came down too.  Finally, the last and most mature phase in the Model is the Advantaged phase.  In this phase, our Advantaged pig built her BR program out of bricks. She anticipated the danger, planned accordingly, consulted her risk advisors, and then built a resilient house that not only withstood the impending disaster, but became a competitive advantage as a wolf trapper, processor and cooker.


In all seriousness, the Maturity Model has been received extremely well as organizations are already starting to use it to map out their journey in maturing their BR programs using Archer as a key enabler.  For more information, read the BR White Paper – and check out White Papers on our other Maturity Models on the RSA Archer Community.  Email me at patrick.potter@rsa.com if you're interested in hearing more or give me any feedback you have.  In my next blog I'll talk about the Maturity Model for Internal Audit.  So until then...wait, why am I hungry for pork chops?

Outcomes