This newsletter highlights all the feature articles published on Continuity Central during October 2017 as well as various resources.

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/roundupnov2017.html

FEATURE ARTICLES

Daisy

The BIA is here to stay: but the chosen methodology is irrelevant
Rico Andrew Patron enters the contentious debate about the future of the business impact analysis, responding to two recent articles on Continuity Central, and concluding that, while the BIA will continue to be the foundation from which the BCM program is built, the BIA method chosen must match the unique needs of individual organizations.
Read the article
• World

Future business continuity: how technology and strategy improvements will impact the profession
The business world is facing a period of rapid change with various emerging technologies, especially artificial intelligence and machine learning, expected to fundamentally change the structure of organizations and society. How might these developments impact the business continuity profession? Charles Boffin makes some suggestions...
Read the article
• World

Making the cloud security experience as safe and secure as possible
Cloud security is an on-going headache for IT many organizations, with difficulties getting the same level of visibility into cloud-based workloads as they have on their physical network. Andrew Lintell explores the issue and points to the way forward.
Read the article
• UK / World

ClearView

Managing the psychological impact of distressing and traumatic incidents: six steps to build a successful strategy
When organizations encounter sudden, unexpected and disruptive events, business continuity plans aim to quickly restore operational functioning. However, without stabilising the people who deliver those operations, the best laid plans may only be partially successful. Liz Royle looks at six steps that organizations can take to manage this area.
Read the article
• UK / World

The importance of ‘Report Responsibly’ for information security
Many security breaches are enabled by a lack of prioritization given to patching and updating. In this article Adesh Rampat explains why adopting a ‘Report Responsibly’ system will enable organizations to take better strategic and tactical decisions when it comes to vulnerability management.
Read the article
• World

Where the Emergency Management Framework for Canada falls down
Pat Curran and Tor Fosnæs respond to the release of Canada’s Federal Provincial Territorial Emergency Management Framework (FPT EMF) and point to what the authors consider a serious flaw in that framework: namely that business continuity functions, listed as pillars of the plan, are not actually delineated or promoted by adopting the framework.
Read the article
• Canada

Continuity2

Mission command: how to empower employees to act fast in a crisis
The ability of an organization to respond almost instantaneously to a crisis or potential crisis affects whether the event is manageable or escalates into something more serious. In this article Rob McAllister investigates how a philosophy of mission command can help organizations create a crisis management system that is fit for the digital era, where swift decision-making by effectively empowered people is vital.
Read the article
• UK / World

How to ensure that IT security is not a brake on business agility
Implementing a lifecycle approach to network security policy management can speed up application deployment, whilst strengthening security and compliance says Joanne Godfrey…
Read the article
• World

Key trends in business continuity invocations
Each year Sungard AS publishes a summary of its business continuity service invocations, providing useful insights into incident trends. Here Daren Howell presents four key trends from the most recent data.
Read the article
• UK

Business continuity in 2018
Every year Continuity Central conducts a survey looking at the changing trends and challenges in the business continuity profession. We have now launched the latest survey in the series and would like to invite all business continuity professionals to take part.
Take part in the survey
• World

Work area recovery insights: Modern options for work area recovery
Fortress has made available a report which looks at the subject of work area recovery covering the following:

The recovery position

The day to day operation of many firms has changed from physical office space to a much more fluid, remote and online existence. Martin Allen Smith asks what this means for work area recovery and the need for back-up facilities should the worst happen.

Building resilience
We all know that teams work better in engaging work environments, being more creative, making faster and better decisions. This dynamic does not need to change in times of crisis. Andrew Lawton explains how.

More details
• UK

 

RESEARCH, REPORTS & PUBLICATIONS

eBRP

Approaches to unplanned downtime are changing according to a new survey
A global research study by Vanson Bourne has found that strategies to deal with unplanned downtime are changing from being recovery focussed to being focussed on pre-emptive actions.
Read the article
• US / UK / Europe

System compromises are the top cyber concern for European businesses
System compromises are now the greatest cyber concern for IT security leaders, with nearly one in four (23 percent) security leaders citing them as the biggest threat to their business, according to new research from the Neustar International Security Council (NISC).
Read the article
• UK / Europe

New Refinable Attack Investigation (RAIN) systems enables rapid assessment of cyber attacks
Until now, assessing the extent and impact of network or computer system attacks has been largely a time-consuming manual process. A new software system being developed by cyber security researchers at the Georgia Institute of Technology will largely automate that process allowing investigators to quickly and accurately pinpoint how intruders entered the network, what data they took and which computer systems were compromised.
Read the article
• US / World

Perpetual Solutions

Survey shows that many organizations are using multiple cloud providers to enhance resilience
‘The Truth in Cloud’ study by Vanson Bourne and commissioned by Veritas Technologies, surveyed 1,200 global business and IT decision makers in 13 countries, revealing that customers are embracing multi-cloud as a key component of their business strategies.
Read the article
• World

Risk management continues to move to the cloud to extend across the enterprise and out to supply chains
Sword Active Risk has released the latest findings from its annual Active Risk Manager (ARM) Global Customer Survey. Responses came from over 100 Risk Managers in companies worldwide across highly risk-aware industry sectors.
Read the article
• World

More than half of organizations say their third-party risk management programs are maturing or advanced
NAVEX Global has published the release of its 2017 Ethics & Compliance Third-Party Risk Management Benchmark Report. While concerns about third-party risk remain high – particularly regarding cyber security – more than half of organizations (58 percent) ranked their programs as maturing or advanced.
Read the article
• Various

Capital Continuity

PwC survey highlights massive corporate planning failures when it comes to cyber security
44 percent of the 9,500 executives in 122 countries surveyed say they do not have an overall information security strategy; 48 percent do not have an employee security awareness training programme, and 54 percent don’t have an incident response process.
Read the article
• World

Security has to be a top priority as organizations consider transforming technologies
Over the next five years, the top three technologies that are set to move from the fringes to the business mainstream are Artificial Intelligence (AI), Blockchain and the Internet of Things, according to CBI research. In fact, half of businesses think AI will soon fundamentally transform their sector.
Read the article
• UK

Business insurance practices are out of date: spending on property-related risk is four times higher than cyber risk
The 2017 EMEA Cyber Risk Transfer Comparison Report, released by Aon in collaboration with the Ponemon Institute, found that organizations recognize the growing value of technology and data assets relative to historical tangible assets, though they are spending four times more budget on insurance for property, plant and equipment (PP&E) risks.
Read the article
• Various

Capital Continuity

Many business leaders still in the dark about new data protection rules: IoD
A survey of business leaders has revealed that there are still a worrying number of companies across the UK that are not aware of the costs, complexities and responsibilities associated with the new GDPR rules.
Read the article
• UK

New fire-protection guidelines for robot-driven warehouses
Robots make warehouses more efficient but also may introduce new fire risks. It’s a threat that has prompted FM Global to produce new advice on using automatic storage and retrieval systems (ASRS).
Read the article
• North America / World

Cyber risk rises to top of corporate agenda: Marsh survey
Cyber risk has been elevated to the top of the corporate agenda for organizations doing business in Europe according to a survey conducted by Marsh. The European Union’s General Data Protection Regulation (GDPR), which takes effect in May 2018, is one of the key drivers of this rise.
Read the article
• Europe / World

Risk management is at a crossroads says FERMA President
Risk management is at a crossroads as they face a changing European environment and the Fourth Industrial Revolution, the President of FERMA Jo Willaert stated as he opened the 2017 FERMA Forum in Monaco.
Read the article
• Europe / UK

Top companies are losing control of their digital attack surface
Unpatched web infrastructure and de-centralised web management practices are leaving UK organizations vulnerable to cyber attacks and high profile data breaches, according to new RiskIQ research which reveals a loss of control amongst the FT30, expanding their digital attack surface and opening doors to cyber criminals.
Read the article
• UK

Emerging threats: widespread and long-lasting power outages due to a nation-state EMP attack
The US Homeland Security Committee’s Oversight and Management Efficiency Subcommittee has held a hearing which, amongst other things, looked at the threats to critical infrastructure from an electromagnetic pulse attack (EMP) attack by North Korea.
Read the article
• US / World

DNS attacks: telecoms industry is the top target
EfficientIP has published its latest report on cyber security in the global telecoms industry. The report states that telecoms organizations face the most DNS-based attacks, and each attack costs companies an average of £460,000 to remediate.
Read the article
• World

Cascading effects and escalations in wide-area power failures
A new academic paper has been published that looks at the cascading impacts of wide-area power outages. Supported by London Resilience, the paper has been written by the Cascading Disasters Research Group of UCL’s Institute For Risk And Disaster Reduction.
Read the article
• UK / World

New NIST guidance focuses on recovering from ransomware attacks
The National Cybersecurity Center of Excellence (NCCoE), a part of the US NIST, partnered with Tripwire to develop NIST SP 1800-11 ‘Data Integrity: Recovering from Ransomware and Other Destructive Events’.
Read the article
• US / World

Cyber criminals increase attacks on remote working technologies
UK businesses were subjected to more than 600 cyber attacks a day during the third quarter of 2017, according to new data from Beaming. Between July and September, the average UK firm experienced 55,314 attempts by hackers to access their data or take control of IT systems.
Read the article
• UK / World

Cyberattacks bringing down the electric distribution grid is a growing threat
Almost two-thirds (63 percent) of utility executives believe that their country faces at least a moderate risk of electricity supply interruption from a cyberattack on electric distribution grids in the next five years.
Read the article
• World

Roundup of September’s major environmental disasters
Impact Forecasting, Aon Benfield's catastrophe model development team, has published the latest edition of its monthly Global Catastrophe Recap report, which evaluates the impact of the natural disaster events that occurred worldwide during September 2017.
Read the article
• World

Businesses need to adopt ‘continuous adaptive risk and trust’ says Gartner
As businesses transform due to the digital revolution, approaches to security risk management will also need to change and, according to Gartner, continuous adaptive risk and trust assessment (CARTA) will be an important new development in this area.
Read the article
• World

New network security standards aim to protect Internet routing system
Electronic messages traveling across the Internet are under constant threat from data thieves, but new security standards created with the technical guidance of the US National Institute of Standards and Technology (NIST), will reduce the risk of messages being intercepted or stolen.
Read the article
• US / World

New BIFM winter guidance aims to support business continuity
The British Institute of Facilities Management (BIFM) has launched its latest Good Practice Guide to Winter Maintenance. The guide is the latest in the BIFM’s Good Practice Guide series...
Read the article
• UK

Study highlights IT professionals lack of confidence in their company's cyber security
A Ponemon study of IT professionals in the UK, US, Germany and Australia, shows that less than half of global IT professionals are confident they have the ability to prevent, detect and resolve data breaches.
Read the article
• Various

Manufacturing companies bear the brunt of ICS computer attacks
In the first half of the year, manufacturing companies were the most susceptible to cyber threats: their industrial control system (ICS) computers accounted for about one third of all attacks, according to the Kaspersky Lab report ‘Threat landscape for industrial automation systems in H1 2017’.
Read the article
• World

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

This email was from:
Portal Publishing Ltd, PO Box 1393, Huddersfield, HD1 9TN, UK, Tel: +44 1484300750

Continuity Central is a registered trademark