This newsletter highlights all the feature articles published on Continuity Central during May 2019 as well as various resources.

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/roundupjune2019.html

FEATURE ARTICLES

ClearView

How to use stress testing to increase resilience in a complex and uncertain world
Conventional risk management tools are appropriate for managing known or anticipated risks; but threats outside these areas need a different approach. Dr Sandra Bell says that stress testing is one tool that provides the answer, helping identify and correct organizational vulnerabilities in a safe environment.
Read the article
• UK / World

Why a global file system should be a core component of your business continuity strategy
Recovering unstructured data after an outage can be a significant challenge, but one which can be made significantly easier through the use of a global cloud-based file system. Warren Arnold looks at the issue...
Read the article
• US / World

Trust no-one: a quick guide to the zero trust security model
First developed in 2010, the zero trust security model has recently grown significantly in popularity. Jan van Vliet explains why zero trust security offers several benefits over and above traditional network-based security approaches; and describes the fundamental aspects required for implementing it.
Read the article
• UK / World

Assurance Software

Rethinking Resilience Analytics
A new academic paper published in the Risk Analysis journal ‘examines the efficacy of resilience analytics by answering a single motivating question: Can big data analytics help cyber–physical–social (CPS) systems adapt to surprise?’
Read the article
• US / World

Flying through downtime: the importance of IT resilience in the airline industry
On 27th May 2017 a data centre outage grounded thousands of British Airways customers at a cost to the company of over £50 million. In this article Caroline Seymour looks at the issue of IT resilience in the airline sector...
Read the article
• UK / World

The business of weather: and managing the risks to your organization
Weather risks are some of the most common cause of disruption to businesses in all regions of the world; and like all risks, the actual impact is related to how well the risk is managed. Ann Pickren provides some useful advice…
Read the article
• US / World

Daisy

Adaptive BC: the business continuity industry’s version of The Emperor’s New Clothes?
Updated with reader comments
Adaptive Business Continuity (Adaptive BC) is an alternative approach to business continuity planning, ‘based on the belief that the practices of traditional BC planning have become increasingly ineffectual’. In this article, Jean Rowe challenges the Adaptive BC approach.
Read the article
• World

Disaster recovery testing: how to get it right
With an article prepared for Business Continuity Awareness Week, Ryan Weeks, chief information security officer at Datto shares five tips that business managers and IT teams should follow to help ensure that disaster recovery testing efforts are effective.
Read the article
• World

Eight steps for a dependable disaster recovery plan
Disaster recovery is an essential part of any business protocol, but each year we see numerous organizations fall short. By following these eight basic principles, Rod Harrison says that businesses can ensure that they have a complete DR plan that will provide full business continuity...
Read the article
• World

Fortress

Changing the game: reputation risk in the cyber era
With the explosion of social media today, can you actually get a rendering of what is being said about you, your organization, etc. so as to enable you to protect your reputation? Or, is it just too much and too overwhelming due to the velocity of information that exists today? Geary Sikich explores…
Read the article
• World

Business continuity of business models: Evaluating the resilience of business models for contingencies
A new academic paper proposes that a shift is needed in business continuity approaches from value preservation to value creation. Written by researchers from the University of Turku and the University of Jyvaskyla, the paper also charts ‘new and novel areas of collaboration between two important areas of information management – business continuity and business models’.
Read the article
• World

It’s 2024: will passwords have become obsolete?
Every month at least one major hack or data leak takes place in which millions of records, including passwords, are exposed or stolen. This article looks five years into the future to see whether the password has been replaced by other technologies.
Read the article
• World

RESEARCH, REPORTS & PUBLICATIONS

eBRP

ICS professionals say that human factors are by far the biggest source of cyber risk
People remain the greatest threat to industrial control systems (ICS) and associated networks, as found by a new SANS survey focused on better understanding cyber security risks to operational technology (OT) systems.
Read the article
• US / World

Most North American organizations are over-confident in their ability to stop data breaches
Centrify has announced the results of a new survey, conducted in partnership with TechVangelism, that indicate the majority of organizations are ill-prepared to protect themselves against privileged access abuse, the leading cyber attack vector.
Read the article
• US / Canada

UK workers lose 5 percent of each working day due to IT issues finds survey
A survey of 1,137 UK workers in full or part-time employment, carried out by technology services provider Probrand has revealed that workers lose an average of 5 percent of their working day due to connection or technology related issues.
Read the article
• UK

Capital Continuity

Key results from the IDC Business Resilience Readiness Thought Leadership Survey
Phil Goodwin, Research Director at IDC, previewed the results of the 2019 IDC ‘Business Resilience Readiness Thought Leadership Survey’ during his keynote at ZertoCON, Zerto’s annual conference, which took place recently.
Read the article
• World

Researchers suggest a new supply chain risk propagation model
Researchers from the University of Shanghai for Science and Technology have written a paper which presents a new way to model the risk propagation mechanism of supply chain risk.
Read the article
• World

Learning lessons from large-scale data breaches
Bitglass has released findings from its latest report: Kings of the Monster Breaches. Bitglass researched the three largest data breaches of publicly traded companies from each of the last three years in order to uncover cyber security trends and demonstrate the extensive damage that can be done by improper security.
Read the article
• World

Risk Logic

Study identifies challenges in managing cloud environments: human error and configuration mistakes the biggest causes of outages
The Cloud Security Alliance (CSA) and AlgoSec have announced the results of a new study, ‘Cloud Security Complexity: Challenges in Managing Security in Native Cloud, Hybrid and Multi-Cloud Environments’.
Read the article
• World

2019 FM Global Resilience Index ranks the resilience of nations’ business environments
FM Global has published the 2019 edition of the FM Global Resilience Index, adding a new driver, corporate governance, to its ranking of 130 countries and territories by the resilience of their business environments.
Read the article
• World

Survey finds that the UK retail sector struggles with unplanned network outages
A new study by Cradlepoint shows that the retail industry is still facing challenges with network downtime. The study found that the majority of those surveyed (75 percent) are experiencing unplanned network downtime and outages impacting business during peak hours.
Read the article
• UK

The Internet’s Border Gateway Protocol is a key risk area which needs focus says ENISA
ENISA, the European Union’s network and information security agency, has warned that hijacking attacks aimed at the Border Gateway Protocol (BGP) are increasing, creating risks to the resilience of the Internet.
Read the article
• Europe / World

Few organizations are using advanced technologies to manage operational risk
The majority (79.2 percent) of C-suite and other executives recently polled by Deloitte say that significant operational risk events impact shareholder value over the long term; yet, just 39.5 percent leverage advanced analytics to manage operational risk and only 6 percent use emerging technologies like cognitive computing and machine learning to do so.
Read the article
• World

Top risks: many organizations report that they may be less prepared than they have ever been
Aon has published its Global Risk Management Survey 2019, a web-based biennial research report which this year features responses from 2,672 risk decision makers from 33 industry sectors.
Read the article
• World

BCI’s Head of Thought Leadership gives her thoughts on Adaptive BC
In an article published on May 17th 2019, Rachael Elliott, the BCI’ s Head of Thought Leadership has given her views on Adaptive BC, asking the question: “Adaptive BC: a ‘revolution’ or ‘a useful set of tools and approaches in the right circumstances’?”
Read the article
• World

Almost two thirds of data breaches are a direct result of human error
Apricorn has released new research which found that 89 percent of surveyed UK organizations have experienced a data breach, and human error is still the prevailing cause.
Read the article
• UK

The Securities Commission Malaysia issues business continuity guidance
The Securities Commission Malaysia (SC) has published a new document ‘Guiding Principles on Business Continuity’ for capital market entities, as part of its ongoing efforts to enhance the systemic resiliency of the capital market.
Read the article
• Asia Pacific

Report highlights common challenges and good practices to overcome risk management difficulties
A new report by Cass Business School for the ACCA (the Association of Chartered Certified Accountants) uncovers how board-level risk management activities vary in organisations as a result of internal and external factors.
Read the article
• UK / World

Winter storms, communications failure top list of business interruptions for Canadian companies
A survey of Canadian mid-sized businesses published for Business Continuity Awareness Week took the pulse of managers, owners and executives to find out what types of disasters they had encountered, and what their level of preparedness they felt they had in place.
Read the article
• Canada

‘Managing Disruption: Business Continuity for Legislatures’ - new guidance launched by LABCoN
The Legislative Assemblies Business Continuity Network (LABCoN) has used Business Continuity Awareness Week as a platform to launch new business continuity guidance specifically aimed at legislatures.
Read the article
• World

Survey shows that many UK organizations struggle to keep their business continuity plans up-to-date
To mark the start of Business Continuity Awareness Week, Databarracks has released preliminary data from its upcoming Data Health Check survey on business continuity practices in the UK. The data reveals that only 54 percent of UK organizations are confident that their business continuity plans are up-to-date.
Read the article
• UK

The C-suite is the latest target for cyber attacks warns 2019 Data Breach Investigations Report
C-level executives – who have access to a company’s most sensitive information, are now the major focus for social engineering attacks, according to the Verizon 2019 Data Breach Investigations Report.
Read the article
• World

DDoS attacks decline in Q1 2019, but hyper-scale attacks increase
Cloud anti-DDoS vendor Link11 has released its DDoS statistics for Europe for Q1 2019. The data shows that the quarter saw the number of attacks decline by nearly 20 percent compared with Q4 2018, to 11,177 from 13,910.
Read the article
• Europe

Many organizations still taking risks by not effectively managing open source use
A new report highlights trends and patterns in open source use. It finds that many organizations are not effectively managing open source applications and components, resulting in significant vulnerabilities.
Read the article
• World

Study on third party IoT risk: companies don’t know what they don’t know
The Santa Fe Group has published the results of the Third Annual Ponemon Institute’s study on Third Party Risk for the Internet of Things (IoT). Ponemon reports an increase in IoT-related data breaches specifically due to an unsecured IoT device or application.
Read the article
• World

Improving the use of data and analytics is the top priority for risk managers
Risk managers are operating in an environment rich in data that when combined with growing alternative risk solutions can result in more robust risk finance strategies and more resilient organizations, according to a new survey report published by Marsh and RIMS.
Read the article
• US / World

Many companies are putting their data at risk by failing to secure BYOD
Research from Bitglass has found that organizations are enabling bring your own device (BYOD) without putting proper security tools, training, and best practices in place. This represents a significant threat to the safety of corporate information.
Read the article
• UK / World

BCI publishes report looking at trends in supply chain disruption
The Business Continuity Institute has released a new report, ‘Supply Chain Resilience - 10 Year Trend Analysis’, in association with Zurich. The report looks at emerging key risks are and what organizations can learn from the past 10 years of research in this area.
Read the article
• World

Research looks at what UK companies are doing when it comes to energy resilience
According to a report from Centrica Business Solutions, energy resilience has become a top level business risk, but there are steps that businesses can take to de-risk energy supply interruption.
Read the article
• UK / World

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

PRIVACY NOTICE

You can read our privacy information at https://www.continuitycentral.com/index.php/privacy-and-cookies

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

This email was from:
Portal Publishing Ltd, PO Box 1393, Huddersfield, HD1 9TN, UK

Continuity Central is a registered trademark