The ALS Group Risk Management Articles

We manage more than a quarter billion dollars of premiums for a diverse range of clients around the globe. 

A map of the United States highlighting California in red, with text "Cyber Breach Notification, California Law Amendment

But, the Data was Encrypted… | California Data Breach Notification Law Amendment

Back in May 2016 I posted a blog (Be Prepared – Data Breach Notification Laws are Changing), which covered how data breach notification laws were evolving.  At that time the state of Tennessee amended its law, becoming the first state in the nation to require notification of any data breach, whether the information is encrypted or not.  I also predicted that state laws would most likely become stricter in the not too distant future…

Read More »
Cyber Security | Layering your Defense

Cyber Security | Layering your Defense

Does the threat of Ransomware crippling your organization’s network and operations keep you up at night? At this point, it kind of should. However, there’s a lot your CISO and IT staff could be doing to mitigate the threat and help you sleep a bit more soundly.

Read More »
Tall glass and steel skyscraper with reflective windows, surrounded by construction cranes

Millennium Tower’s Construction Defects – That Sinking Feeling Continues…

Troubles continue for Millennium Tower, the luxury high-rise building that has been coined “the leaning tower of San Francisco” for tilting two inches at its base and sinking 16 inches.  As we predicted in our August 11th blog, a lawsuit ensued and it’s huge: Condo owners filed a $500 million class-action lawsuit against the developers, Millennium Partners, and the Transbay Joint Powers Authority.

Read More »
An image with text "ELECTION DAY 2016 Cyber Vulnerabilities" over a faded American flag background.

Presidential Election Cyber Vulnerabilities | What Can We Learn?

With the Presidential Election only days away, the question remains: Will the election be hacked? In this case, a cyber breach can lead to two major issues. The first is stolen data of registered voters; the second issue and perhaps the more frightening one – manipulation of the election results.

Read More »

The Power of Parsing Risk: Your Risk Register in Action

Risks pose threats to a broad range of your organization’s resources, such as assets, company reputation or time. These resources are spread throughout a variety of potential risk owners.  In turn, each risk owner may have access to only certain capabilities for addressing risk. For example:

Read More »
Making Risk Appetite Statements Do The Heavy Lifting

Making Risk Appetite Statements Do The Heavy Lifting

An Enterprise Risk Management (ERM) process can yield a valuable communication for your organization: the Risk Appetite Statement. This statement serves an important assurance role for stakeholders in your company, and is an indicator of critical, board or executive-level oversight of risk management. It serves as a tangible product of an effective effort to assess and control risk across the enterprise. It can be referenced as the basis for any communication or disclosure your company may need to make about its risk management policy and efforts.

Read More »
Cyber Risk in the Supply Chain

Cyber Risk in the Supply Chain | Dyn DDoS

The massive October 21st distributed denial of service (DDoS) attack on Dyn, a prominent Domain Name Server (DNS) provider, resulted in many US websites going offline. The attack was very sophisticated and precisely targeted. While no customer data was breached in this event, it was still extremely impactful on the effected organizations. When the DNS provider went offline, more than 100 popular websites, such as Reddit, Twitter, Box, Spotify, PayPal, Squarespace and Amazon Web Services (AWS) were unavailable. While most of us could survive without Twitter – though barely – the unavailability of web hosting platforms such as AWS, Box and Squarespace most likely caused interruptions in numerous businesses.

Read More »
The image features three red squares with the text "Enterprise Risk Management (ERM).

What’s Behind the Counter? Enterprise Risk Management Can Be a Retailer’s Edge

Enterprise Risk Management (ERM) concepts can help retailers create a competitive advantage out of the business of managing risk. ERM’s “portfolio view” collects all risk and mitigation activity into a single Risk Register. This enables management to coordinate mitigation efforts across functions, rather than leaving risk to be managed in a patchwork fashion among various pockets in the organization. These are the critical areas for retail organizations where embracing an ERM approach adds value and opportunities that would likely otherwise be “missed:”

Read More »
A document titled "Cyber Security Insurance" is displayed below the header "Cyber Risk Mitigation." The document contains comprehensive blocks of text related to cyber insurance policies.

It’s 2016 – Do you Know Where your Cyber Insurance Is?

Organizations that are seeking process efficiency and an edge on their competitors look toward technology to support their business plans. Often, new technology advancements will enhance an organization’s performance but unfortunately, the introduction of new software, systems and processes open them up to (unanticipated) cyber-related risk and exposures.

Read More »

Our areas of expertise include:

  • Enterprise Risk Management (ERM)
  • Cyber Security & Cyber Liability Insurance
  • Construction Management
  • Customized Risk Management Assessments (RMAs)

Subscribe to our articles

blog posts form
Skip to content