James Bone’s career has spanned 29 years of management, financial services and regulatory compliance risk experience with Frito-Lay, Inc., Abbot Labs, Merrill Lynch, and Fidelity Investments. James founded Global Compliance Associates, LLC and TheGRCBlueBook in 2009 to consult with global professional services firms, private equity investors, and risk and compliance professionals seeking insights in governance, risk and compliance (“GRC”) leading practices and best in class vendors.
James is a frequent speaker at industry conferences and contributing writer for Compliance Week and Corporate Compliance Insights and serves as faculty presenter and independent consultant for several global consulting firms specializing in governance, risk and compliance, IT compliance and the GRC vendor market. James created TheGRCBlueBook.com to provide risk and compliance professionals with transparency into the GRC vendor marketplace by creating a forum for writing reviews on GRC products and sharing success stories on the risk practices that are most effective.
James is currently attending Harvard Extension School for a Master of Arts in Management with an emphasis in accounting and finance. James received an honorary PhD in Letters from Drury University in Springfield, Missouri and is a member of the Breech Business School Hall of Fame as well as the Missouri Sports Hall of Fame. Having graduated from the Boston University Graduate School of Education, James received his M.Ed. in Management and Organizational Design in 1997 and a Bachelor of Arts in Business Administration from Drury University in 1980.
The Danger – and Simplicity – of Cognitive Attacks The allegations of Russian influence on the 2016 election have been in the news for months. President Trump has claimed that Russian meddling was a hoax, but according to the Mueller investigation, that’s been proven false. While the Russians didn’t hack into polling systems, they did employ a different kind of attack: a...
Read more
The Driver Behind Enterprise Situational Awareness Intelligent automation is an emerging solution to enable intelligent decision-making at the strategic level, but it doesn’t necessarily have to be complex or require cumbersome new infrastructure. In fact, since overly complicated approaches to intelligent automation tend to result in project failure, simplicity may be the order of the day. “Intelligent Automation” is such a new...
Read more
Creating Situational Awareness Several prominent Wall Street firms are transitioning to a cognitive risk management environment. The changes they’ve made are significant, but there’s still work to be done. James Bone asserts that a more comprehensive approach is needed: one that includes intentional control design and machine learning – technology to help humans become more productive. In my previous articles, I introduced...
Read more
Musings of a Cognitive Risk Manager To drive change, you need buy-in, and to achieve buy-in, your people need to know the “why” behind the change. This is the premise behind cognitive risk governance, the “designer” of human-centered risk management. James Bone, author of Cognitive Hack: The New Battleground in Cybersecurity…the Human Mind, further explains the cogrisk framework. In my last article,...
Read more
Risk management has undergone a sea change over the past few decades, yet risk management practices have evolved very little. scarcely evolved to keep pace. Though organizations enjoy robust technological capabilities, they grow more fragile and vulnerable to massive systemic risks all the time. A risk program centered on human behavior and decision-making.
Read more
You don’t have to look far for examples of cognitive hacking. Unfortunately, the evidence is virtually everywhere. Many believe cognitive hacking led to Donald Trump winning the presidential election. James Bone cautions that security professionals should become intimately familiar with cognitive hacks, how they work and what can be done to protect against them. Much is at stake.
Read more
On paper, risks may seem one-dimensional, but they can be far more complex in reality. A one-dimensional approach to three-dimensional risks won’t suffice. Especially at a time when risk management is undergoing a global transformation, organizations must ensure ERM is creating value for the organization.
Read more
The Trust Conundrum Users’ trust in the internet increases with greater usage. On the flip side, as internet usage increases, so does users’ risk exposure. James Bone explores this conundrum; it’s one hackers know well, and one they’re quick to exploit. And yet, businesses across all sectors depend on users’ trust. What’s a company to do? By: James Bone "It takes two...
Read more
The discipline of behavioral science is picking up steam as an alternative perspective on decision-making. Humans are limited in their abilities to predict probability, and they’re subject to errors in judgment; enter the cognitive risk framework, a pathway to enhance enterprise risk using advanced analytics to inform decision-making.
Read more
In the age of Big Data, truth seems increasingly fluid. This is one of the reasons risk management fails. James Bone warns against taking an “archaeological” approach to risk management in the face of uncertainty, creating stories from past experience and imperfect information to describe the new truths using old methods.
Read more
Once upon a time, having a reputation for integrity was enough to encourage goodwill and prevent unethical behavior. That’s not the case so much anymore. James Bone makes the argument that integrity is often viewed as a commodity – something to be bought and sold. This unfortunate perspective can lead to some risky behavior, not to mention ethical lapses.
Read more
The Financial Stability Oversight Council published its sixth annual report in June, and this year’s list of the top threats isn’t much different from the one the FSOC put out six years ago. Are U.S. markets just ignoring risks we know are systemic? And is it because we fervently hope the risks don’t actually occur, or because we don’t understand the severity...
Read more
CCI is the Web's premier independent news source for compliance, ethics, audit & risk. CCI is owned and managed by CCI Media Group LLC.
