Here are examples of areas of intervention aimed at improving your organisation’s operational resilience, efficiency and scalability, while at the same time allowing for the adoption of “smart” ways-of-working driven by lean principles for reducing tech and operational “waste”.

The following are only a subset of the consulting services that my company can provide; if you can’t find here below what you’re looking for, but you think we may be able to help, then please don’t hesitate to write to the following address for an informal exchange of thoughts …

Empowering DISTRIBUTED OPERATIONAL MODELS

Duration: 3-6 months

REMOTE WORK & COLLABORATION

  • Review of the existing operational model
  • 1-to-1 interviews with stakeholders to collect strengths, pain-points and feedback
  • Fact-findings reporting and review to determine quick wins and short-term focus areas
  • Creation of metrics to measure “change effectiveness”
  • Define an operational architecture to help visualise flow of work across teams and departments
  • Retrospective sessions to review open actions, outcomes, metrics and evaluate new actions

TOOLING

  • Initial review of the tool-set in use across all business functions
  • Identify opportunities for streamlining the tool-stack and eliminate redundant functionality
  • Iterative review after changes to the tool-stack
  • Retrospective sessions to review outcomes of changes and evaluate new ones

MENTORING ON GROUP & INDIVIDUAL PRODUCTIVITY

  • Scheduling 1-week iterations with a different group for each iteration
  • Introducing the “Quality”, “Flow” and “Transparency” themes for value delivery
  • Mentoring on key soft-skills (e.g. time management, ownership, comms, documentation)
  • 1-to-1 sessions with individuals to assess specific areas of additional support

Implementing LEAN & ITERATIVE GRC – SOC 2, ISO-27001

Duration: 6-12 months

ASSESSMENT & GAP ANALYSIS

  • Schedule a single iteration (typically 4 weeks long)
  • Assess the existence of an ISMS
  • Identify the operational functions (Engineering, Product, Sales, Customer Support, etc) and the organisational structure
  • Evaluate the existence of policies and procedures across all functions (Incident Response Plan, Change Management, Risk Management, etc.)
  • Identify vendors that provide solutions and/or services which are mission-critical for the organisation
  • Identify all tools used on a daily basis by staff across all functions
  • Identify existing user access controls, adoption of role-based permission models and use of information/cyber security solutions (e.g. EDRs, Threat Intelligence, SIEM, etc.)
  • Gap analysis and GRC road-mapping

ITERATIVE GOVERNANCE, RISK & COMPLIANCE (SOC2, ISO-27001) IMPLEMENTATION

  • (BUILD) Development and preparation of internal controls, policies and procedures also to be used as compliance evidence
  • (FIELDWORK) Interviews and full review of controls, policies and procedures also for compliance readiness assessment
  • (AUDIT) Processing reviews of independent audit reports and defining remediation plans for outstanding gaps
  • (MAINTENANCE) Structuring the ongoing monitoring to ensure long-term compliance

CONTINUOUS GOVERNANCE SUPPORT

  • Designing a Wiki area where content and training material is kept relevant and up-to-date
  • Iterative training on Confidentiality, Integrity, Availability (CIA) related topics (incl. risk management)
  • Designing metrics to measure adoption of internal controls, policies and procedures

Coaching AGILE & LEAN PRACTICES

Duration: 3-12 months

AGILE MATURITY ASSESSMENT

  • Initial maturity level assessment
  • 1-to-1 interviews with stakeholder to assess expectations and collect pain-points
  • Action items logging
  • Presentation of fact-findings and an “Agile fluency” road map

ITERATIVE TRAINING

  • Scheduling 2-week training iterations with a target group for each iteration
  • Fortnightly (or monthly) Agile classes run for one (or two) training groups
  • Survey by trainees to feed continuous improvement
  • Call for post-class Agile champions amongst attendees to experiment new ways-of-working
  • Iterative inspection of “Quality”, “Flow” and “Transparency” themes over “lunch & learn” sessions
  • Mentoring for key soft-skills (e.g. time management, ownership, comms, documentation)
  • Regular sharing of overall progress over “All-Hands” sessions

DEVELOPING CONTENT

  • Training and course material (e.g. videos, slides, wiki pages)
  • Setting up an internal wiki area for training content to be easily accessible across the business
  • Iterative review of the knowledge base based on adoption/usage metrics and feedback

Thank you for your attention and if anything included in this page have triggered curiosity or simple queries on other services in our portfolio that may be relevant to you and your organisation, then please feel free to message me via these LinkedIn or Twitter accounts or, as already mentioned further above this page, via email by writing to …