Those who were directly responsible for the security failure have been shown the door either willingly or under pressure from a combination of higher command, media and public anger.
I would like to discuss it as a project failure and conduct (with reader participation) the post mortem analysis on what went wrong and how it could have been avoided. The discussion should be based upon information available from news analysis.
Let me start with lessons learned that translate to projects:
Issue #1: The Indian Intelligence Bureau (IB) is claiming it had informed the government about a possible attack from seaside but no action was taken. There was a risk identified but no mitigation plan was prepared for it. It is important to monitor risk areas and take preventive action before it gets too late.
In projects, it is the responsibility of project managers to spread awareness about the risks in their projects and their mitigation plans. Don't take even a minor issue casually. If you don't have time to look into the issue, then assign it to someone else and track it to closure.
Issue #2: India had a couple of terror incidents in the past but no measure was taken to prevent them in the future. It is a universal truth that prevention is always better than correction so it's good to have check points and preventive measures in place before you lose money and resource time.
Document lessons learned from previous mistakes and ensure everyone is aware of them. It's better to review the learning database periodically and update it if required.
Let's keep the conversation going. What other lessons learned can you find in these events?