Purpose
This chapter describes each of the main business functional areas of major risk and security for the following business functional area:
S&M within the functional area
S&M is an important business functional area for any business. S&M is the revenue generating functional area. Identifying risk in this area takes higher priority before it hits the revenue and sales. See the following reference:
Chief marketing officer’s top security threats
https://cisoinsights.com/top-3-cyber-security-risks-every-chief-marketing-officer-care/
S&M Functional Area
S&M get involved with the operations and activities that promote and sell products and services. The strategy is to sell and distribute products or services. S&M includes research and development of pricing, research, development, distribution, customer service, sales, and communications. Typically, the sales department has an obligation to advise the marketing department with possible customers and focuses.
The marketing department makes the decisions and the sales workforce uses the ideas to sell the products and services. An example could be software products. The sales workforce uses the ideas to sell the software packages. Both the marketing and sales jobs contribute information, ideas, and research to aid with marketing strategies and brainstorm approaches for various products and services that will lead to special promotions, sponsored events, and other ideas.
The coordination between the marketing and sales departments can lead to risk and security issues. At all cost, organizations want to avoid those problems to increase sales and promotions.
CRM Functional Area
CRM is a tool used for contact and sales management. CRM enhances sales and promotes environmental relationships. CRM aids in coining strategic relationships and interactions with customers and potential customers. CRM promotes connection with customers, streamlines processes, and eventually improves an organization’s profitability.
Important features of CRM:
Contact management: CRM helps the organization better connect with customers.
Mobility: CRM can access customer data and other important information on the customers.
Analytics: CRM helps refine important actionable items that are defined by the organization.
Customization: The CRM system is customizable to suit the organization in unique situations. A flexible CRM allows synchronization of operating systems that provide full control over the kind of data being used and updates and reevaluates the processes when required.
Simplicity: CRM is simple to use. Employees using the system should embrace it to make it worthwhile. The CRM is easy to understand, intuitive to use, and straightforward in its reports.
The aforementioned features are necessary in order to avoid risk and security issues.
Other CRM risks are as follows:
All identified risks must be mitigated appropriately to keep the environment safe.
Financial Management Functional Area
The financial management areas consist of strategy, marketing, finance, human resources, technology and equipment, and operations.
The primary areas of business finance consist of the following:
The three areas tend to overlap and tend to cover distinct aspects of finance.
There are risks in financial management, such as an entity making an investment decision that exposes financial risks. The different types of risks in finance are credit risk (i.e., if an organization takes a loan and not able to pay back), liquidity risk, and equity risk (the third type of financial risk).
Financial risks must be assessed completely to determine loss on an asset, loan, or investment. The rate of return needs to be determined and effort must be made for a particular investment to succeed.
Human Resource Functional Area
Human resources manage valuable resources for positions with other organizations. The human resources recruiter recruits new hires, maintains benefits and payroll, mediates conflict, and engages in training and development of new hires. Here are other functions of human resources:
Human resources has two types of risks: production decrease and reduction of human resource. These risks must be mitigated by means of risk management. Typical mitigations are increasing productivity (i.e., strategic planning that minimizes the probability of financial losses) based on excellent leadership (i.e., trust, motivation, planning, delegation of authority, and the development of policies and procedures to document best practices), training (i.e., a systematic approach, patience, and an honest evaluation), communication, evaluation skills, motivation (i.e., motivate the employee), evaluation, and conflict resolution.
Manufacturing Functional Area
The following are some of the risks in the manufacturing functional area:
Here are additional risks in the manufacturing functional area:
All the risks and security issues can be mitigated appropriately.
Operations Management Functional Area
Operations management ensures the timely outcome of raw material into finished products. It is safe to say that operations management is important when it comes to project management. In an organization, the business function is responsible for planning, organization, coordinating, and controlling the resources required to produce the organization’s services and products. High priorities ensure timely delivery of products and services.
Operations management involves similar management for organizational sectors irrespective of the type or nature. The main idea is to properly cater to the resources such as labor, raw material, money, and other resources. Organizations will use available resources in the best possible way to achieve end goals and improve overall productivity. The organization tries to provide products to align with customer requirements. This strategy helps to market and sell the end products rapidly, resulting in enormous profits for the organization. Operations management manages sectors such as design, operations, and maintenance of the system used to produce goods.
The operations management process cannot be underestimated and in-depth knowledge is required. A mishandled environment leads to risk and security issues that impact the organization’s growth and success.
The risks of operations management include loss based on personnel, procedures, systems, and external events. Personnel-based risks include personnel who are not trained well and good employees leaving the organization. Operational risk and loss stems from preplanned detrimental activity, such as employees committing criminal offenses that could potentially harm the organization.
Other risks and security issues are:
All risks and security issues must be well managed and mitigated accurately.
SCM
SCM includes the activities required to plan, control, and execute a product’s flow, from obtaining raw materials and production through distribution to the final customer (Samson 2010). SCM controls product quality, inventory levels, timing, and expenses. Other examples are farming, refining, design, manufacturing, packaging, and transportation.
Retail organizations often get involved in SCM because product quality is controlled all the way to the end customer. See Figure 6.1.
Figure 6.1 SCM
SCM has risks and needs that must be managed appropriately. The following are some basic types of supply chain risks:
The risks in the supply chain must be managed using supply chain risk management (SCRM). The SCRM uses strategic steps to identify, assess, and mitigate the risks embedded in the supply chain process. It is necessary to manage all tiers of supply and risk objects (suppliers, locations, and ports). See Figure 6.2.
Figure 6.2 Supply chain risk management
R&D
R&D is the process where an organization searches for new knowledge to create new products, services, or systems (Hill et al. 2019). The goal is to make money for the organization. Pharmaceutical and technology organizations carry out R&D; however, other types of organizations also use R&D. Usually, R&D is basic or applied in order to acquire new knowledge.
Here are some of the risks associated with R&D:
R&D should be well planned and include a detailed risk management plan. The plan should contain contingency in terms of time, scheduling, and funds.
AI and Automation Functional Area
The goal of AI is to make a computer mimic human behavior and intelligence. Automation is a hardware or software capable of doing some things automatically. Automation may be based on AI.
Some fear that in the future, AI, ML, and automation will replace 7 percent of jobs in the United States alone. AI and automation are forecasted to eliminate most routine tasks, freeing IT to think more strategically.
Here are some of the risks of AI and automation:
Mitigation or preparation for the game changing: