This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
This Website Uses Cookies
By closing this message or continuing to use our site, you agree to our cookie policy. Learn More
This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • Home
  • News
    • Security Newswire
    • Technologies
    • Security Blog
    • Newsletter
    • Web Exclusives
  • Columns
    • Career Intelligence
    • Security Talk
    • The Corner Office
    • Leadership & Management
    • Cyber Tactics
    • Overseas and Secure
    • The Risk Matrix
  • Management
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • More
  • Physical
    • Access Management
    • Video Surveillance
    • Identity Management
    • More
  • Cyber
  • Sectors
    • Education: University
    • Hospitals & Medical Centers
    • Critical Infrastructure
    • More
  • Exclusives
    • Security 500 Report
    • Most Influential People in Security
    • Top Guard and Security Officer Companies
    • The Security Leadership Issue
    • Annual Innovations, Technology, & Services Report
  • Events
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
    • Security 500 West
  • Resources
    • The Magazine
      • This Month's Issue
      • Digital Edition
      • Archives
      • Professional Security Canada
    • Videos
      • ISC West 2019
    • Photo Galleries
    • Polls
    • Classifieds & Job Listings
    • White Papers
    • Mobile App
    • Store
    • Sponsor Insights
    • Continuing Education
  • InfoCenters
    • Break-in Prevention
    • Building AppSec in Enterprises
    • Video Management Systems
  • Contact
    • Editorial Guidelines
  • Advertise
Home » A Picture Is Worth a Thousand Words
Security Leadership and ManagementLeadership & ManagementColumns

A Picture Is Worth a Thousand Words

A Picture Is Worth a Thousand Words
January 1, 2017
Lynn Mattice
KEYWORDS business continuity planning / emergency response / security leaders / security planning / security procedures
Reprints
No Comments

Every single thing we do each day is defined as a process. When you get up in the morning until you go to sleep at night, each thing you do is a process. The routine you go through getting ready for the day: dropping the kids off at school, dialing the phone, typing an email, preparing for a meeting, analyzing risk... each and every one of these activities encompasses one or more processes. How well each step of a process is executed determines the effectiveness of the outcome.

Most organizations have done little to truly define and map their processes. Enterprises expect new hires and existing staff to learn “how we do things here.” They expect compliance with policies and procedures without ever providing a true picture of what to do, when to do it, with whom you are expected to coordinate, or the issues that arise if the policy is not followed.

Yes, written proses in most organizations establish policies and procedures for the enterprise. Yet the frequent lack of compliance and violation of policy indicates that no one really reads them. Most just sit on the shelf and gather dust or, if they are online, few ever click on them. If they are read, many times they aren’t understood or worst case, they are simply ignored. Ask yourself: How often and how thoroughly have you read every policy and procedure that affects your enterprise and department, those with which you are expected to comply or that you are tasked with enforcing? Do you thoroughly understand your responsibilities, the expectations of each policy and procedure, or the consequences you, your department or the enterprise face for non-compliance?

The best solution to gaining control of an enterprise’s processes and ensuring broad compliance to the greatest extent possible is to map each process. Like the old saying goes: “A picture is worth a thousand words.” Process mapping produces defined process flow charts and yes-no decision trees. It not only simplifies educating personnel on what is expected, but enhances compliance with how an enterprise wants or must have things done. It also assists in readily identifying where processes can be enhanced or streamlined. When things do go wrong, it also makes it much easier to identify at what point someone deviated from the process or where it failed and to implement necessary changes as part of a root-cause analysis process.

One of the best examples of the value of process mapping and yes-no decision trees can be found in use with guard force procedures. At most enterprises, general instructions alone for the guard force are typically volumes long. On top of that there are numerous post-specific instructions for each location a guard or receptionist is assigned. The first time I deployed process mapping and yes-no decision trees to replace post orders for guards was in the late 1980s, and I was astonished with the results. We went from frequent complaints on the guards failing to do their job to a high number of compliments. We witnessed nearly a 99.9-percent accuracy level on the guards completing their tasks and doing so according to the defined process. We also found that training of new guards was dramatically enhanced, job satisfaction soared and complaints nearly vanished.

If you have a “best practice” or a method you have deployed that was particularly effective, I would appreciate it if you would share it with me. I am looking to potentially highlight them as part of the SECURITY 500 events that I emcee in the Spring on the West Coast and the Fall in Washington D.C.

Subscribe to Security Magazine

Recent Articles by Lynn Mattice

How Security Leaders Can Gain a Seat at the Table

How to Develop an In-Depth Understanding of the Business

How to Research Your Enterprise's Unique Risks

How Connected Are You to the Business?

Here We Go Again! ERM vs. ESRM

Mattice-2016-200px

Lynn Mattice is Managing Director of Mattice & Associates, a top-tier management consulting firm focused primarily at assisting enterprises with ERM, cyber, intelligence, security and information asset protection programs. He can be reached at: matticeandassociates@gmail.com​​​​​​​

Related Articles

What is a Best Practice, and Should You Deploy Them?

How Security Leaders Can Gain a Seat at the Table

You must login or register in order to post a comment.

Report Abusive Comment

Subscribe For Free!
  • Print & Digital Edition Subscriptions
  • Security eNewsletter & Other eNews Alerts
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Popular Stories

Dispelling the Dangerous Myth of Data Breach Fatigue; cyber security news

Major Retailer Macy's Is Hacked

server room, cybersecurity, penetration testing,

Explained: Firewalls, Vulnerability Scans and Penetration Tests

cyber network

How to Achieve Cybersecurity with Patience, Love and Bribery

ransomware-enews

British American Tobacco Suffers Data Breach and Ransomware Attack

cybersecurity-blog

European Hotel Group Suffers Data Breach Impacting 600,000 Hotels Worldwide

SEC2019_Everbridge_1119_360x184customcontent

Events

December 17, 2019

Conducting a Workplace Violence Threat Analysis and Developing a Response Plan

There are few situations a security professional will face that is more serious than a potential workplace violence threat. Every security professional knows and understands that all employers have a legal, ethical and moral duty to take reasonable steps to prevent and respond to threats of violence in their workplace.
January 23, 2020

The Value of a Unified Approach to Critical Event Management

From extreme weather to cyberattacks to workplace violence, every organization will experience at least one, if not multiple, critical events per year. And in today’s interconnected digital and physical world, the cascading safety, brand, and revenue impacts of critical events are more severe.
View All Submit An Event

Poll

Emergency Communications

What does your enterprise use to communicate emergencies to company employees?
View Results Poll Archive

Products

Effective Security Management, 6th Edition

Effective Security Management, 6th Edition

 Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics. 

See More Products
SEC500_250x180 clear

Security Magazine

SEC-December-2019-Cover_144px

2019 December

This month, Security magazine brings you the 2019 Guarding Report, featuring David Komendat, Boeing CSO, and many other public safety leaders to discuss threats and solutions for 2020 and security officer training. Also, we highlight Hector Rodriguez, Director of Public Safety and Security at Marymount California University, CCPA regulations, NIST standards, VMS and much more.

View More Create Account
  • More
    • Market Research
    • Custom Content & Marketing Services
    • Security Group
    • Editorial Guidelines
    • Privacy Policy
    • Survey And Sample
  • Want More
    • Subscribe
    • Connect
    • Partners

Copyright ©2019. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing