In “NotesOn: The Four Fundamental Life Cycles of IT” I made what now proves to be an erroneous statement. Further research on my part has shown that the phrase “Risk Management Life Cycle” has indeed been used in the past. However it has not been defined, graphically or in written form, as I have done in the above and subsequent posts.
Recently I was doing some further “look-see” into the subject and a change in how I searched for the title (or an increase in the number of searches for the subject matter) finally popped up a couple of references in which the phrase Risk Management Life Cycle was literally used. As an example, one of these usages can be found in a book entitled “IT Auditing”, published in 2006, written by Chris Davis, Kevin Wheeler and Mike Schiller.
So, my previous statement from the above post – “One of the four is a new Life Cycle (LC) that while present and in use has never before been named.” – has proven to be incorrect in that the phrase itself has been used, although in no reference was it defined in the manner in which I have done, and done without reference to their articles.
My apologies to others in the past who have used this phrase.
DP Harshman
[...] at the beginning of this post, the fundamental definition of a life cycle). [Note, please see "NotesOn: Risk Management Life Cycle Addendum" for a correction to this [...]