With BETA11 we have finally decided to commit to the new data structure that has been waiting in the wings for about 8 months.  We continued with the BETA stream on the old 6.2.5 DB structure as long as we could, but now it is hampering our ability to move to the next generation of the RM system.

BETA11 actually uses Release 1. of the new V6.2.6 DB structure and will NOT work with the V6.2.5 Database entirely.  The client and server have been designed to accept the V6.2.5 data structure and apply some intelligent field and table selections based on the differences between the data structures but the client will generate several “non-critical” error warning messages on start up as it attempts to access tables that do not exist in the V6.2.5 data structure.   Obviously, this is not appropriate for production installs. 

The BETA11 structure includes a number of revisions to the data layouts to remove some organisational unnecessary restrictions that in some cases date back over 10 years and surface a raft of new insurance, claims, incident and compliance capabilities.  We are currently working closely with a number of clients feeding requirements for their real-world compliance, claims and OHS operational needs and the V6.2.6 DB structure is intended to meet the architectural requirements of these clients. 

This has been a large project commencing over 12 months ago with just a couple of clients, and over the intervening period has expanded substantially as many more of you have joined the BETA team to provide your own version of these related needs.

BETA11 is a production stable release BUT, for production your DB must be upgraded to the V6.2.6 structure.  We have not built an auto-installer for BETA11 (see below for the reason for this decision), and so if you wish to use it in production you should email me and we will make it available for direct download on your client login page.  In each case we will build a custom upgrade script against our copy of your reference database, or (preferably) we will hand upgrade your database, but you will need to make a backup of your current production database for the  purpose.   For a custom upgrade script against a reference database there will be a small fee.  For a upgrade performed by us against a backup of your production database forwarded to us there will be NO fee.  (The custom script takes a lot longer  to make and is more error prone than if you provide us with a backup of your production database and we run a delta analysis between it and our master reference databases using our tools on our hardware and then provide the upgraded DB back to you – so we are clearly trying to encourage you to do the latter).

The issues are that:

•  the 6.2.6 DB involves some fairly tricky table structure changes to foreign key and version table structures that are very hard to automate outside of the installer package and the installers take about 5 hours to build.  
• the 6.2.6 DB structure is being changed in 3 steps (Release 1 is available now) because we are adding some features that are being designed on-the-fly with a number of clients who want to be able to try some ideas and then enhance and expand the ideas so there are more parts coming over the next two to three weeks.
• there are significant developments occurring on multiple fronts at once which should complete over the next month, so the significant cost in building the installers with automated DB version upgrades is better delayed until there is more stability in the DB structure

Having said that, a conversion to the 6.2.6 structure NOW is safe to do because future changes will be minor enhancements rather than the fundamental re-organisation of a number of tables that the 6.2.5 to 6.2.6 change represents. 

So what should you do?  If you really want to be part of the compliance-insurance-claims-OHS BETA stream – do the change.  If you are happy to use the facilities as we design and build them, then wait until the stable build with the automated installer is released.

What is in BETA11 ?

• Insurance has been moved from being a relatively hidden feature of strategy – control and type-of-control design to front and centre of a new Insurance panel.
• Claims management has been added
• Incidents have been moved from being only a slave table of Risk to being handled independent of risks and able to be linked back to multiple risks (and claims and insurance, etc).
• Legal management has been added to allow for the tracking of legal resources associated with a claim.
• Fixes to screen handling in documents to ensure the document and section master lists are refreshed when documents and sections are added
•  New default inherent likelihood rating level can be set for new unrated topics
• The bubble chart now allows the minimum bubble size to be set so they can be stopped from shrinking to a single pixel when most risks/compliance items are in a single bubble.
• “My Responsibility” summary now accounts for delegated responsibilities.  (Under the cover the responsibility summariser has been hugely expanded to cover all responsibilities in the database so you will soon see a substantially expanded responsibility tracking screen in “My RiskManager” that covers everything for which you have any responsibility).
• A large number of new rules capabilities have been added to the surveymanager engine and enhancements to the JavaScript library.   There is more happening on this front as we progressively expand the direct SurveyManager to RiskManager cross table access.  Our aim on this front is to eliminate the need for the intervening results table to interface the survey engine screens with the RiskManager tables.

Beta 12 will be released this week – look to Friday.  It will mainly be a refinement of the things in Beta11 and expansion (hopefully completion) of the claims management capabilities.  Beta11 is not available as a browser plug-in-client (only in desktop download).

The tutorials are at:

BPC SurveyManager Tutorials

 We will be adding more as time permits.

The illustrated list of input controls is at http://riskwiki.bishopphillips.com/index.php?title=BPC_SurveyManager_-_Questions_and_Input_Controls

Among the new features recently added to the BPC SurveyManager libraries is a new password protected portal mode, so you can  now selectively surface surveys in each organisation to a simple portal without writing a portal survey of your own.   We have added more capabilities to the auto publish functions so that you can have anonymous responders for any survey by setting a flag, and impose login requirements per survey without adding user login questions at the start.

The portal mode will be particularly useful to teachers running classed based surveys, because you can now use the portal on a class wide basis in a school based computer for all students to concurrently access a class based survey without you having to publish to them first or send invitations.

There is lots more coming to survey manager over the next few weeks so keep tuned.   Among the changes coming to the SM library is a significant expansion of Survey Manager’s ability to directly interrogate and update risk, insurance claims and incident tables for those using BPC SurveyManager as part of their BPC RiskManager application suite.

The BPC SurveyManager Maintenance WebClient is getting some new features to expand the range of surveys that can be built with it.  We have kept it artificially simplified now for a number of years as it was always intended to be an entry point solution, but the increasingly complex surveys some of the heavier survey manager clients wish to create mean that we really must make more of the survey engines huge range of capabilities available in the web client.   We have recently completed an analysis of the types of clients using our survey technologies heavilly, and those of you making the heaviest and best use of the tech are also those attempting the most complex of surveys.  

The current web client just does not do the underlying survey engine justice and we feel it is time to really let it stretch its legs.   We will try and keep the over-all feeling of simplicity the same, and in fact some things will seem to get simpler because the current release tries makes some things just too mindless by doing a whole lot for you in the background.

Even so, we are told, our web client is still way more powerful than most similar survey clients, but if you like the current one, just wait for the enhancements coming.

Oh, and don’t forget, that we host surveys on our servers, so you can contract us to manage your survey needs on your behalf.  The service includes your own database, the survey engine, emailing invitations, the portal, at least daily backups, 24 hour monitoring, responder assistance, maintenance of the data and content and even assistance with creation of surveys.  All clients are encouraged to try out this extremely economical service as an alternative to doing it yourself.  The distributed nature of BPC SurveyManager means you can exchange surveys and data with our servers to feed back into your risk systems, for example (or just point your survey manager or risk manager clients at our servers in addition to using the web client).

Recently I found it again, and although the author has long since stopped updating it, it still makes brilliant, entertaining and educational reading.  It has been moved to a better blogging system and is available for your amusement on:  http://www.sankey.ca/caesar/cat_01_campaign_against_the_helvetii.html

That link will take you to the first page of the blog.  The author’s clever idea was to pretend to be Caesar blogging every few days about his time as Governor and the campaign in Gaul.  It is an excellent example of one of the outstanding potential uses of blogging in education.  Unfortunately the original blog system he was using did not seem to allow him to record the dates other than the dates he wrote the blog.  The slightly confusing result is that the date shown for each entry is the date when the item was written, rather than the date when the item was pretending to have been written.   That aside, it is very worth reading this blog.

I just wish he had kept updating it for longer than the couple of years it ran (and solved his entry dating problem).    Any-who   – take a look if you have the time, it is worth it.  Maybe with a few collective words of encouragement the original author might resume the project.

In this release:

RM Server

• AD Active Directory Authentication with Groups – AD LDAP and WinNT authentication is now supported in AD.  WinNT is faster and supports groups, while LDAP is account lockout “safe”  but may not be able to check group membership. 
• AD Active Directory Authentication account lockout on bad password bug fixed.  Under the WinNT where max retries are set on account logins in AD, the user will be locked out if an incorrect password is supplied.  In this case you can use the AD LDAP provider. Groups may or may not be available (use the test program to find out), depending on how the AD access rights are defined.
• AD Active Directory Authentication now accepts OPTIONAL canonical strings for DC filters.
• AD Active Directory Authentication now accepts a flag to select LDAP/WinNT ADSI providers.
• RM Beta8 Bug fix:  Strategies can now be deleted again.

RM Client

• RM Significant speed up in risk, compliance and topic solver screens on risk scrolling.
• RM Risk calculations now update the summary assertion group for each risk
• RM Risk calculations now update and display audit ratings separately from self and reviewer risk ratings
• RM Risk Audit ratings can now have form edit and reading visibility defined.
• RM Risk Audit assessments now display in a dedicated rating level and can be edited in multiple locations.
• DM Refresh of browser list after detailed document record changes fixed.  (Auto-Refresh after document record insert is not yet available. You will have to use reload until then).

BPC RiskManager V6.2.5.18 – BETA8  Desktop client installer has been uploaded to the download site for those clients that need a desktop installer for internal distribiution on local networks. 

The file you need is :

BPCRiskManagerEnrimaV625_18Client_Setup.zip

You will need to unpack this and deploy the enclosed exe to whichever location/solution you are using to push desktop installers onto remote desktops.  The enclosed exe is a signed windows installer.  It should be recognised as an upgrade to any existing Build 14 install, but you can also uninstall the wny existing desktop and run this install as a fresh install as well.  Nothing will be lost on the desktop.

Clients patching full single user installations on desktops will need both this zip and the BETA8 zip to fully patch their desktops, although only the enterprise BETA8 zip is actually required to actually use the single user install.  

The patch in this update contains ONLY the desktop client for use where users do not have a full single user install on their desktops.  While you CAN install the client portion of the single user app with installer in this blog post, the result will mean that the desktop can talk to the remote server, but not the local server, until the server is also updated (from the BETA 8 zip).

There are no new capabilities in this update.  If you need an activeX version of this client build let us know and we will generate it, otherwise we might let it wait until BETA9.

Use your client credentials to login and download as usual.

In this release:

RM Server

• Active Directory Authentication with Groups is now supported.  You can group all your RM users into a common group and authenticate against AD and that group membership. The AD solution avoids ldap so you do not need a dedicated bind account.
• Business Group/Business Unit reassignment.  You can now move a business unit with risks to a new business group, and all business unit level access rights will move with the business unit to the new business group.

RM Client

• Document and Sections can be created by copying and pasting between XL and the RM Client App.
• Risks / Topics / Compliance items can be created using copy / paste from XL (or other tab delimited column source)
• Risk Causes can be copied from one risk and pasted into another, or copied and pasted to and from XL
• New DB repair component with automated repair actions available to administrators from the client.
• Revised MS Word automation options and behaviour when the MS SpellCheck is used to eliminate a bug that allowed the RM Client to terminate MS Word instances created after RM has started without save when RM is shut down.  The new handling is NOT engaged by default, but is available from the My Settings panel.
• Fixed a bug that prevented documents from being added if there was not at least one document already in the RM database.
• Fixed a bug that defaulted the first document in the document centre list to section insert mode if there were no sections in the document

We received an excellent specification from one of our clients – MFS – for a ‘Topic Based” view of compliance to augment the risk of non-compliance concept supported in the earlier BETA’s and we have integrated that concept into this release of Beta7.   

There are some new charts, report views and export capabilities to be brought into the system yet to complement the assertion views of risk so expect BETA7  to be rapidly replaced by BETA8 

In this release:

1. Main Features Added

• Document Management
• Topic View and Topic Solver
• Publishing Authorities
• Current and Residual Bubble Charts and Expanded MS Word export

2. Detail

• Vastly improved flow of control in Compliance Unit.
• New custom screen architecture to allow inclusion of user customised data entry and access views and other optional screens.  The MFS Topic Solver is the first such example.
• New configurable MFS Risk/Compliance Topic Solver Sub-system.
• New Document management with sections module.  A Document+Section  can be linked to each risk, and compliance questions/assertion tested against the documents.  The document management centre and finder support views of risks by document list, document, section list and section, with word export and drill through to risk details from the document centre.
• New Current and residual risk bubble charts with controls ratings views
• Revised chart screen presentation
• Revised and improved MS Word export from Chart screen.
• Associated new Administration and Setup-Profiles configuration screens.
• SurveyManager – New data entry modes and markup tags added
• SurveyManager – New anonymous and on-demand survey publishing support
• SurveyManager – Potentially annoying bug due to bug tracking system dependencies removed.
• Bug Tracking – The “Phone Home” behaviour of the RM bug tracking system has been changed to write a local log instead.  The phone home system was good where client networks allowed the message through (as some of you discovered when we phone you to tell you there was something wrong with your server, but too unreliable for general use due to the few clients allowing the transmissions.  We have therefore replaced it with a log file, in the temporary files directory so we can at least get the log data if needed. It is only written in the event of a critical system issue.

In this BETA our latest thinking on how a whole of organisation/government governance system should work starts to become clear.   The unique twist is that we are using the risk record to store risks, compliance obligations and compliance obligation events.  So every risk record contains all the information necessary for it to be a compliance record, and vice versa.  Thus every risk has a compliance view and every compliance issue has a risk view – and you can enter data into either view at the same time.  With the addition of documents and sections (for legislation, policy & procedure references, etc) each of which has at least one person responsible for it, you can also see all the compliance obligations + the calculated risk of the obligation breaches by document/section.  Combining this with the already existing other of ways of structuring risks (folders, master-child trees, documents, people, complex searches, etc) you can navigate and summarise the risk/compliance landscape from different angles and using differing ratings and tie it all back to the corporate plan.

Every risk or compliance item can have an indefinite number of groups of assertions/questions linked to it so differing teams can apply multiple and differing checklists and evaluation criteria to the same issue.  In this mode, risk-causes become factors explaining a less than optimal question response adding a layer of structure to a risks usually flat causes list, and each cause/contributing factor can have its own list of strategies / controls to manage / respond to it.   Thus the risk’s flat strategy list becomes structured by the causes of the risk.  Given that all this can be linked to a document and a section within that document (and the document and section have their own activation and update control responsibilities and tracking) you now have an additional set of ways to slice the risk/compliance data.

There is quite a bit more coming in this area as we surface the new corporate planning, compliance obligations, financial elements, and performance management modules progressively over coming releases.  There are a number of other components in the wings.  You may noticed the FlowCharting module with its script engine already in your client that has been there for sometime.  Apart from allowing you to draw and execute scripted multi-user flowcharts, the module is also intended to connect to hooks sewn through your database.  It has been waiting for the some of the other parts of the system to catch up, and you should soon see new flowchart views hooking the various objects  like risks, obligations, strategies, etc together.

It is an ongoing debate internally how much of the compliance support should be delivered through survey manager (which in theory could do most of it) and how much through the RiskManager client.  So far we are essentially doing both – we are adding features and tags to the SurveyManager library to support compliance tables for those that will decide to run with a heavy compliance survey focus and adding the all the compliance capabilities to the main RiskManager client.  So it is taking longer than we would like.

The other major project is a detailed documentation of the bowels of the SurveyManager engine and posting of the same on the riskwiki, so you may have noticed that there are lots of changes happening there as we progressively document the huge tag and property lists directly from the code base.  This is also seeing a cleanup of some of the SurveyManager code, and inevitably addition of even more features.

The new SurveyManager library has been deployed into our live servers so those undertaking surveys are actually using the updated system.  We have not yet deployed it to off site clients, but will include it in the next Beta release.

We hope to have a Beta7 out before Christmas… so watch this space.

The Beta includes a new Client and Server  and Database update is the BETA1 update.

The database update can be applied to the V6.2.5.6 database without degrading your 6.2.5.6 release. This will be the last BETA that will work on the 6.2.5.6 data structure.  We originally intended that this  BETA would require a structural update to the database that would NOT invalidate V6.2.5.6 clients, but would invalidate BETA 1 through 5 Servers and clients.  We have since worked out how to continue the BETA release without impacting data structure, so you can continue to apply the BETA’s until further notice. 

Although this is a beta release, the code released is production-ready and safe to apply in test / training or production environments for existing functionality.

BETA6 includes:

- Draw speed up on risk maintenance screen &

- Fixes to compliance table syncing that were broken in BETA3.

Regards

JB

The Beta includes a new Client, the Server update is the same as BETA4 and Database update is the BETA1 update.

The database update can be applied to the V6.2.5.6 database without degrading your 6.2.5.6 release. This will be the last BETA that will work on the 6.2.5.6 data structure. The next BETA will require a structural update to the database that will NOT invalidate V6.2.5.6 clients, but will invalidate BETA 1 through 5 Servers and clients (the forum post was incorrect in this regard).

Although this is a beta release, the code released is production-ready and safe to apply in test / training or production environments for existing functionality.

BETA4 included:
- Revision of the risk filtering on the server so that the heat-map views of the entire risk database by users with minimal access rights (and therefore the most time intensive risk filtering has been sped up dramatically. The update is now almost instantaneous, even on very large databases.
- Revised Risk Maintenance screen handling to improve accuracy of right hand justified control alignment on low resolution computers.
- Fix to the access rights check on users with lower global rights, but higher specific risk rights. Screens now use the correct rights set.

The BETA5 includes:
- Fix to the access rights check on opening of the risk maintenance screen by users with unlimited rights. The BETA4 version did not correctly check their access rights.
- Update to the revised Risk Maintenance screen handling to improve accuracy of right hand justified control alignment on low resolution computers. The update improves speed, and cleans up some minor positioning untidiness.
- Replacement of all remaining db date lookup fields for compatibility with Win7 IE8 protected mode, with compliant date lookup controls.
- Repositioning of some screens on opening so that they position in the centre of the screen on low-resolution terminals
- Addition of force window scrolling region in risk maintenance and strategy maintenance windows for low resolution windows that otherwise can result in some fields not being visible in the tree view mode due to insufficient screen width.

Use you BPC login ID and download from the download site.  Ypu must be a registered user to access the BETA.