Learning Lessons from Incidents

All organisations experience “Incidents”. Some call them by other names: “Near Misses”, “Mistakes”, “Errors & Omissions”, “Operational Errors”.  Some are big and have damaging consequences (e.g. a data breach), and some are small and might be classed as “an annoyance”, e.g. email down for 10 minutes (though some might find that a positive). Whatever the incident, you should consider each of these as a “learning opportunity.” An opportunity to improve a process or avoid costly errors.

In his book Black Box Thinking, Matthew Syed described learning from incidents and adopting a “Just Culture” where individuals are encouraged to report errors / mistakes and are not punished/blamed.

The starting point is to accept that incidents will happen and that 95% of the time it is because of poor process. Encourage people to report their mistakes and don’t beat them up for human error. Understand why it happened and what measures can be taken to avoid a re-occurrence. Update your processes and procedures as required and then communicate the changes/lessons learned to all relevant stakeholders.

Consider further if the incident required the invocation of a “response plan”. How was it handled?  Did the response plans work? Did people know what to do? Were actions taken in a timely manner? Is there anything you would do differently next time? For example: change the sequence of actions, include some additional steps/actions, call in an expert earlier in the process, communicate with customers earlier and let them know what is happening.

Take these learnings into account when you review/revise your response plans. Share your experiences with peers and encourage them to share their experiences with you (do this in a safe/secure sharing environment). Smart people learn from their mistakes, but the really smart ones learn from the mistakes of others.

To learn more about managing and reporting on Incidents, contact us today to request a free tailored demo.

 

 

 

 

 

 

Recent News

CalQRisk Customer Support Manager wins Rising Star at Irish Early Career Awards 2024

Congratulations to our Customer Support Manager, Eimear Farrell, who was named as a Rising Star in the Fintech ...
Read More

CalQRisk wins Pitch Competition at ESCO Cyber Solution Days Event, Kilkenny, September 2024

The Cyber Ireland (CI) CISO Forum and ESCO Cyber Solution Days event took place in the Lyrath Hotel, ...
Read More

CalQRisk is a finalist in the FS Awards and Compliance and RegTech

CalQRisk has been named as a finalist in the competitive and prestigious FS Awards for the Compliance and ...
Read More
Table Tennis Ireland Logo

Table Tennis Ireland Chooses CalQRisk to Optimise their Governance Strategy

Table Tennis Ireland have onboarded the CalQRisk solution to better their approach to board and committee meetings. Table ...
Read More

CalQRisk Shortlisted as Best in RiskTech at the 2024 CIR Risk Management Awards

CalQRisk has been shortlisted for the RiskTech category in the CIR Risk Management Awards in 2024. The Risk ...
Read More
business meeting

Reviewing Risk – A Framework Idea 

The Institute of Risk Management describes Enterprise Risk Management (ERM) as “the overall philosophy that consolidates the management ...
Read More

Ten Things to Learn from Managing an Incident 

Incidents, while often complex and challenging, provide valuable learning opportunities that can enhance an organisation's resilience and strategic ...
Read More

Are you Doing Control Testing in your Organisation?

Regulators, boards, auditors, and other stakeholders all have an increased focus on controls (and their effectiveness) so how ...
Read More
Blue Ocean Logo

CalQRisk Announces a Strategic Partnership with Blue Ocean Reinsurance Group

CalQRisk, a leading provider of governance, risk, and compliance (GRC) software, is thrilled to announce a strategic partnership ...
Read More
laptop and writing in notebook

Minimum Competency Code – ‘And miles to go before I sleep’

The 1st October 2024 effective date for the expansion of the scope of the Minimum Competency Code 2017 ...
Read More