Eric Tompkins
PRINCIPAL CONSULTANT
Eric is a Principal Consultant and leads CIBER's Business Continuity services. Eric has over 22 years of experience as a leader of business continuity and security programs, projects, departments, and teams; and as a manager of strategic consulting engagements supporting CxO-level clients. He has applied his outstanding breadth of experience in enterprise security policy, process, and procedure development, business continuity, and disaster recovery to develop diverse operational risk management programs for federal, state, and local governments, banking and finance, pharmaceutical, broadcasting, health care, telecommunications, software production, and education clients.
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Posts by this author
Manage Operational Risk Like a Bank!
Eric Tompkins, Principal Consultant : 08 June 2009 / 11:59 AM : 4 
Security leaders often find themselves responsible for the management of organizational risks beyond those traditionally thought of as the purview of security. In past years, security was confined to the application and operation of controls to reduce vulnerabilities. The current risk environment exposes businesses and government agencies to threats never before perceived. This has resulted, many times, in the governing bodies of organizations incorrectly pushing the responsibility for business risk management to the practitioner level. This is a mistake because only governance bodies have the authority to manage business risk.
One major class of busin...
Posted in Security on 08 June 2009
Tagged: Business Continuity Business Impact Analysis Disaster Recovery Governance Risk and Compliance Information Security Physical security Risk management Security maturity
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .