Decision-Making Warning Flag 2 – The Silent Nod

/in , /by

StrategyDriven Decision Making Article | Silent NodAll too often it is not clear to executives and managers that they are in a decision-making situation. In many of these instances, they find themselves attending a briefing during which the presenter makes a recommendation for which he or she is seeking approval. As the presentation goes on, the briefing attendees listen attentively and nod silently. No verbal decision is communicated but the nodding continues. At the end of the presentation, the presenter is songs adulated for making a thorough presentation and providing an insightful recommendation. There is applause. Exiting the meeting, the presenter remembers the affirmative statements and, most importantly the silent nods. These now become the unintended affirmative decision the presenter sought and the leaders failed to recognize they were making.

Hi there! Gain access to this article with a StrategyDriven Insights Library – Total Access subscription or buy access to the article itself.

Subscribe to the StrategyDriven Insights Library

Sign-up now for your StrategyDriven Insights Library – Total Access subscription for as low as $15 / month (paid annually).

Subscribe Now!

Not sure? Click here to learn more.

 Buy the Article

Don’t need a subscription? Buy access to Decision-Making Warning Flag 2 – The Silent Nod for just $2!

Access the Article Now!

A Happy Workforce is a Productive Workforce

/in /by

StrategyDriven Talent Management Article |Workforce Productivity | A Happy Workforce is a Productive WorkforceThis is quite an obvious thing to say, but it’s surprising how easy it is to forget when your mind is on other aspects of running your business. The happiness of your employees should be one of your priorities because, without them, your business is likely to fail. When was the last time you asked them how happy they are?

Unfortunately, taking your employees happiness for granted is easy to do, but it’s not the most sensible course of action. If your team feel valued and are contributing to something great, they’re more likely to put the effort in.

If you find your staff members are less than happy, take note of the following tips to help you turn it around.

Praise Good Work

If one of your team does something good, make sure they receive praise. It’s human nature to enjoy receiving recognition for a job done well, and all it takes is a simple “thanks for your hard work.”

Reward Hard Work

This tip is going to take a little monetary investment, but your business will be amply rewarded. If there’s a member of your team who has been regularly going above and beyond what is required of them, then it deserves to be rewarded. You don’t have to break the bank to do so, but time off in lieu, a bottle of wine, treating the team to cakes on Monday or a Friday lunchtime meal out will make your team feel valued. If they feel their hard work is being valued, they’re more likely to want to repeat the effort.

Train Them In Sattelite Skills

Sattelite skills are skills that are part of your usual skills package but may not be practiced in the day-to-day. They are lateral capabilities that provide someone with the capacity to widen their professional abilities and help them work together with other professionals more readily. For instance, helping your programmers train in UX/UI development can help them more readily program with interfaces in mind. This can work up to the very top of a field, such as doctors, nurses and other medical or clinical professionals gaining experience in aesthetics training. This shows your willingness to invest in the career of your staff, while providing them a plethora of directions to improve in.

Show that You Care

When employees feel they are cared about, productivity increases. How do you show that you care about them? You need to ask how they are and ask how they feel about working for you. Take the time to find out more about them, whether it’s professionally or personally. You could consider introducing an employee survey platform to help gather the answers you need; you can visit Inpulse.com to find out more. Often, a simple “how are you” is enough to make an employee feel valued.

Take Time Out from the Daily Routine

It’s possible to make the workplace a happier one by planning fun things to do away from the office. Take your employees out for the day and have some fun. If your employees feel you’re doing something nice for them, they’re guaranteed to be happier.

Encourage Community Minded Attitudes

Build a sense of workplace community by encouraging people to greet each. Lead by example, and others are sure to follow. What’s more, make sure all company executives and managers do the same.

Foster Personal Career Goals

It might seem like something selfish you’re encouraging, but when each employee has their own personal career goals, it’s going to keep their minds focused. Rather than getting involved in or stressed about office politics and workplace stress, they’ll have something better to think about.

It’s possible to have a happy workplace as long as you take the time to make it so. If your employee survey highlights the fact that there are people in your organization who aren’t happy, try the tips above, and you’ll be making a difference.

How to deal with cyber-attacks: publicly or privately?

/in , , /by

StrategyDriven Risk Management Article | How to deal with cyber-attacks: publicly or privately?Cyber attacks spiked 164% in the first half of 2017, compared to the same period in 2016, entailing 918 disclosed breaches-according reports on broadcaster CNBC. Threats vary from sector to sector. Healthcare, for example, is more susceptible to crypto-locker ransomware like the infamous WannaCry.

Internet-connected consumer devices often fall prey to malware that shackles them to remotely controlled botnets such as Mirai. Varied though the threat may be, and staggering though these numbers are, the word disclosed highlights a central paradox: While transparency contributes to the overall fortification of cyber-security protocols and procedures, battening down the hatches presumably mitigates further financial risk.

Sure, a disclosure is immensely beneficial in terms of buttressing industrial safeguards, national and global security, and customer protection – not to mention mitigating the longer-term repercussions of an attack – but so too can disclosure exact lasting damage on a bottom line.

Fighting back

The nature, intent, and consequences of an attack notwithstanding, the way companies have responded to breaches is closely related to their designation: public or private. CFOs at public and private companies face different risks and pressures when it comes to cyber-security and disclosure, and exhibit divergent perspectives when it comes to preparation.

Broadly speaking, public company CFOs are more likely to outsource cyber-security to third-party firms, while private CFOs tend to invest in in-house IT teams. Regardless of who secures a company’s network, breaches are often known by CFOs before they are made public. By disclosing a breach, CFOs of publicly traded companies might trigger investor panic and sell-off, whereas private company CFOs risk irreparable harm to consumer and employee confidence.

On one hand, foreknowledge of pending disclosures can put unique pressure on public company executives, who often own considerable amounts of company stock. The ongoing federal investigation of three Equifax C-suite managers for insider trading arose due to alleged stock dumping prior to the revelation of the company’s catastrophic cyber-attack.
Equifax underscores the tension between a public corporation’s responsibility to its board, shareholders, and customers, and the financial implications of both the breach itself and legal requirements governing its reporting and remediation.

On the other, while private companies aren’t under the same legal obligations in terms of disclosure, and while the short-term consequences may be less impactful, these companies still face long-term pitfalls, such as lost trust and tarnished brands. Moreover, a medium-sized business may not have the capital or reserves to recover reputationally or financially after a major data breach the way a multinational corporation can.

Additionally, the moderate scale of many private companies sometimes instills a false sense of security. Middle-market businesses often assume they’ll be overlooked by attackers, whether due to a large number of similar companies, or a lack of enticing assets. After all, isn’t it the bigger fish that stockpile the type of data and info that hackers tend to target?

Be prepared

A lack of proper preparation only exacerbates the panic once an attack does occur. Attempting to deal with an attack on the down low can earn private enterprises a reputation as easy marks, and provoke subsequent attacks. Further, if the rearguard strategy backfires, or is exposed by the press, this can amplify the damage to a company’s brand and leadership, not to mention potential legal consequences if a court can prove negligence.

In terms of the bigger picture, the lack of reliable data pertaining to attacks on private companies leads to lopsided analysis regarding the multifaceted aims and motives driving these attacks, resulting in a sort of half-finished portrait of the threat landscape.

While cybersecurity prevention could be vastly improved by greater information sharing, some surveys of CSOs indicate that only one in seven attacks are reported to authorities. Alas, as it stands, adequate event modeling, and risk and security assessments, are being stymied by a lack of shared intel on private company breaches, effectively hampering the development of comprehensive prevention and management strategies.

This lack has precipitated the introduction of numerous cyber-security regulations around the world, and though the regulatory ecosystem is in a state of flux, the global trend is invariably toward greater transparency. CNBC notes that “governments around the world are introducing legislation which will force more companies to disclose data breaches,” a reach that already extends to private enterprises.

Regulatory environment

Both private and public companies are compelled to comply with local, national and global disclosure regulations, including Sarbanes-Oxley (SOX), the Health Insurance Portability and Accountability Act (HIPPA), and the EU’s General Data Protection Regulation (GDPR).

The GDPR, which regulates the collection and storage of customer information and data, and can levy fines of up to €20 million, requires that private companies disclose if they have a footprint in Europe, or otherwise handle the information of European citizens.

In the US, Sarbanes-Oxley (SOX) indexes the responsibilities of both public and private companies, including rules pertaining to compliance with federal prosecutors, and criminal penalties. Further, HIPAA governs how any company, public or private, handles personal health information.

Though public companies, traditionally, may have shouldered an inordinate amount of the fallout from disclosure, this has left them better readied for the implementation of legislation designed to enforce transparency. Even more advantageous, public companies now have hard-won practice mitigating the financial risks and ramifications resulting from disclosure.

Private companies, by contrast, are less aware and agile in terms of prevention and response; protecting their brand, for example, or proactively communicating with clients. Simply put, having been in battle, public CFOs are stepping up and getting more involved with cyber-security, while private CFOs, hovering on the sidelines, appear far more circumspect.

Make no mistake: this problem is only getting worse. The situation could improve rapidly if execs from companies of all stripes and sizes shared details of attacks with the larger corporate community.

Whether you are a CFO of an international, publicly-traded conglomerate, or a mid-sized regional business, it is well within your portfolio to do everything possible to properly prepare for the threat. Engage with the board, secure funding for proper security controls, and encourage leadership to be forthcoming when not if, your company’s cyber attack occurs.

About the Author

Andrew Douthwaite has over 17 years of technology experience joining VirtualArmour in 2007 as a senior engineer. Now as Chief Technology Officer, Andrew focuses on leading growth in the managed security services business and ensuring VirtualArmour is a thought leader in the security industry.

Take A More Strategic Approach To Hiring

/in /by

I thought it would be interesting to explore the concept of “strategic” when it comes to hiring. Both in terms of positioning hiring within the context of the organisation and when undertaking hiring itself.

One of the challenges when hiring is to move it from a tactical activity, reluctantly undertaken when a vacancy arises, to a strategic activity that contributes to organisational excellence. Until hiring is firmly positioned as a key strategic activity, organisations will face problems such as weak talent pipeline, significant opportunity costs, higher hiring errors (it is worth taking the time to work out the cost of hiring errors), business stagnation and eroded organisational value. Additionally, ambitious business leaders will not invest sufficient time, early enough in their careers, to learning and honing their hiring skills. I have, over the years, worked with many great leaders (visionary, decisive, strategic, charismatic, brilliant) who simply cannot hire well. Yet, hiring the right or wrong people will have a huge impact on the organisation. Recruitment is both an art and a science and organisational leaders need to master both elements

In terms of hiring itself, I would suggest that you need to approach the activity strategically. Namely, to think longer term and put it in a broader context. This will enable you to build organisational capability and bench strength and develop the organisation for longer term growth. Thus, by taking a more strategic approach to recruitment you can recruit for the future at least as much as for the present. By this I mean that you can start to plan the skills and competencies you will need to be successful in the future. It also allows you to hire people today that you can develop into the roles you will need in the future which reduces the amount of ‘crisis’ hiring you need to do which is risky, expensive and can reduce motivation of more junior staff with high potential. I believe that a certain amount of external hiring (rather than all internal promotion) is healthy for an organisation but it needs to be intentional and not forced upon you due to the lack of well-developed internal staff.

Hiring needs to be part of an integrated talent management framework. This sounds complicated and clearly, for very large organisations, it can be, but even with much smaller organisations these elements should be in place: Planning the resources that you need, investing in resourcing (i.e. finding the talent), job design and organisation design (you may need to flex the organisation to allow people to grow and develop), management hiring and selection skills, staff engagement and retention, staff and management development. In my experience, large organisation can lose sight of the ‘why’ and become lost in the systems and infrastructure. They focus on developing complex processes but not deriving real value from them, or even worse, ignoring them when faced with decisions such as a senior promotion. And smaller organisations do not always think broadly enough and can make short term hiring decisions. In my experience, one of the main causes of slow growth in smaller organisations is that they do not hire early enough, or strategically enough.

About the Author

StrategyDriven Talent Management Article | Hiring Staff | Take A More Strategic Approach To HiringLisette Howlett is author of The Right Hire: Attract And Retain The Best People, a licensed Sandler Trainer located in London Central, and she has fifteen years of global change leadership and business development experience. Howlett is called upon by business owners of small and medium-sized companies for strategy and business development. Her experience includes financial services, technology, pharma/biotech, manufacturing, IT, media, recruitment and professional services.

For more information please visit this link.

Strategy Driven – A Reality Check

/in /by

StrategyDriven Strategic Planning Article | Strategic Planning | Strategy Driven – A Reality CheckMost modern organizations claim to be strategy-driven. But when you cut through the hyperbole, what do you find?

The Oxford dictionary defines strategy as “a plan of action designed to achieve a long-term or overall aim.” People tend to focus on the word “plan” in this sentence. We think about strategy as the highest-level, guiding plan for an organization, but if we want to objectively determine the strategy of an organization, this is where we’ll hit a problem.

A plan is an intention to do things in the future, but you can’t objectively study or observe an intention. An intention has no physical presence, we can only witness people talking about it. Walk into an organization and ask to see their strategy and you will likely be given a one-line “mission” statement and a document filled with words and diagrams. The document is real and can be observed. However, the intention that the document describes is not real. We should never confuse the two – having a physical document does not mean that you have a strategy.

But don’t give up hope yet! I cannot physically find gravity and yet I know that it is real because I can witness the impact of gravity on the real world. Newton observed a falling apple and was able to use this data to infer that gravity existed.

So what is the equivalent of Newton’s apple when it comes to strategy? Think about the dictionary definition. A strategy is a not just “a plan”, it is “a plan of action”. I cannot physically witness the plan, but I can certainly witness actions and use them to infer the strategy. If I walk into an organization and carefully examine the action, then I will be able to determine the strategy which is at play.

This might sound a bit backward. After all, the strategy is all about the big picture, about how we will conquer the world tomorrow, not about what is happening today. I disagree – the only way that you can witness a strategy is to carefully look at what is happening today and then infer the strategy from that data.

Let’s look at an example. Some years ago, I worked with a company that was on a sustained journey to improve safety in its operation. Their strategy document declared that “Safety comes first. There is nothing more important for us than the safety of our people and the community in which we operate.” As a strategy statement, it couldn’t be clearer. When I went looking for the action however, I found something different.

At their project portfolio meeting I found something interesting. As is frequently the case, this company had many more potential projects than it had budget. Because of this, the company had to choose which projects to progress and which projects to defer or cancel. Given their strategy of “safety comes first”, I should have witnessed that all the safety projects were approved first and then, only if there was remaining budget, would commercial projects be approved. What I witnessed instead was that a large number of safety projects had been deferred to make space for a more evenly balanced selection of commercial and safety projects. The individuals responsible for making these calls were under a great deal of stress.

“Safety first” was what we call the espoused strategy and it was clearly not real. By witnessing the company’s actions, we can see that the real strategy was to balance commercial and safety interests. They were very committed to their safety journey, but not in a way that put them out of business!

The most concerning thing that I observed was the stress placed on the decision makers. They were implementing the real strategy of the senior management. But they were then placed in a highly compromised position by the same senior management espousing a completely different “strategy”.

As a leader in your organization, I encourage you to constantly check that the actions in your organization match the strategy you espouse. Only then can you truly claim to be strategy-driven.

About the Author

StrategyDriven Strategic Planning Article | Strategic Planning | Strategy Driven – A Reality CheckGraeme Findlay is an Associate Fellow at the University of Oxford Saïd Business School. He consults to industry as an executive coach and change management advisor. Prior to specializing in leadership development, Findlay held executive management roles and was accountable for delivering operational transformations and performance turnarounds on world-scale mega-projects. His passion for high performance teams led to academic research at Oxford University and HEC Paris. Findlay holds a Masters degree in Consulting and Coaching for Change. For more information, please visit www.graemefindlay.com