This newsletter highlights all the feature articles published on Continuity Central during February 2019 as well as various resources.

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/roundupmar2019.html

FEATURE ARTICLES

ClearView

The right to be forgotten versus the need to backup
The right to be forgotten is a fundamental aspect of both the GDPR and CCPA privacy laws; but its impact on personal information in data backups has yet to be tested. Bill Tolson explains the issue and provides some practical advice.
Read the article
• Various

CTO? Why updating your backup strategy should be on your 2019 to-do list
Backup technology has evolved over the years, but the time has come to take a completely fresh approach, says Avi Raichel. In this article Avi explains: Why backup is a CTO concern; What CTOs need to do to update the backup strategies in place; How CTOs can help the business become IT resilient.
Read the article
• World

2018's outages: what are the lessons for 2019?
Doron Pinhas looks at the common factors behind various high-profile technology outages in 2018 and proposes a practical approach which will help organizations reduce unplanned downtime in 2019.
Read the article
• World

Daisy

Adam’s Law? Vulnerability to disruption increases with development
Paul Barry-Walsh argues that as complexity increases in society, so do interdependencies. To prevent cascading disasters, organizations need to implement firebreaks which will ensure that they do not become the weak link in the supply chain.
Read the article
• UK / World

Mind the gap: cloud security best practices
Rich Campagna explores the security and compliance risks associated with data stored in – and accessible from – cloud applications, setting out best practices for assuring end-to-end protection.
Read the article
• World

A review of the new ‘Crisis Management – Building a Strategic Capability’ technical specification
Rick Cudworth and Abigail Worsfold from the Deloitte crisis and resilience team provide a review of the new PD CEN/TS 17091 European technical specification for crisis management, which was launched in December 2018.
Read the article
• UK / Europe

Assurance Software

BS67000: setting the standard for city resilience
City resilience is critically important to economic, organizational, and community well-being. This has been recognised by the development of a standard for city resilience by the British Standards Institution. Robert Hall looks at the new BS67000 standard.
Read the article
• UK

Protecting business networks with the power of AI
Organizations may be tempted to dismiss artificial intelligence as something which is currently out of their reach, but Thorsten Kurpjuhn says that this is definitely not the case. In fact, AI can help businesses of all sizes to ensure network uptime and protection.
Read the article
• World

RESEARCH, REPORTS & PUBLICATIONS

Capital Continuity

EBA publishes revised guidelines on outsourcing arrangements: includes business continuity requirements
The European Banking Authority (EBA) has released revised guidelines on outsourcing arrangements setting out specific provisions for the governance frameworks of all financial institutions within the scope of the EBA's mandate with regard to their outsourcing arrangements and related supervisory expectations and processes. The guidelines include a specific section on requirements for business continuity planning.
Read the article
• Europe

Data breach impacts: US and UK consumers react differently
The consequences of a data breach have a greater impact in the United Kingdom versus the United States, according to a survey into consumer trust and spending habits conducted by payment security specialists, PCI Pal.
Read the article
• US/UK

Attack on UK critical national infrastructure is imminent say survey respondents
More than half (59 percent) of respondents to a poll conducted by Infosecurity Europe 2019 believe that an attack on the UK’s critical national infrastructure is likely in 2019.
Read the article
• UK

eBRP

AI and machine learning now being used to improve the effectiveness of cyber attacks
KnowBe4 has released the results of new survey-based research, ‘What Keeps You Up at Night – The 2019 Report’. The report looks at over 350 organizations globally and reveals their security weaknesses and concerns.
Read the article
• UK / World

Risks for UK businesses adopting 5G and IoT assessed by EY
UK businesses are most concerned about the susceptibility of 5G to cyber attacks according to EY’s latest Technology, Media and Telecommunications (TMT) research.
Read the article
• UK

Digital twins are entering mainstream use: Gartner survey
Gartner defines a digital twin as a software design pattern that represents a physical object with the objective of understanding the asset’s state, responding to changes, improving business operations and adding value. They have potential uses for improving organizational resilience.
Read the article
• World

Fortress

RIMS report looks at artificial intelligence and its impact on risk management
The risk of not adopting some form of artificial intelligence (AI) can be much greater than the potential risks of implementation according to a new RIMS Professional Report, ‘Making Sense of Artificial Intelligence and Its Impact on Risk Management’.
Read the article
• World

UK businesses losing control of network devices
49 percent of UK businesses surveyed are leaving themselves vulnerable to cyber attacks by having unknown devices on their network, new research for Forescout has revealed.
Read the article
• UK

New technical report on violence in US workplaces aims to reduce risks
The American Society of Safety Professionals (ASSP) has published a technical report – registered with the American National Standards Institute (ANSI) – that can help guide companies to safer environments and a coordinated response should a hostile event occur.
Read the article
• US

Risk Logic

RAND releases report on building an effective and practical national approach to terrorism prevention
The US Homeland Security Operational Analysis Center (HSOAC), operated for the Department of Homeland Security by the RAND Corporation, has released a new report on how to build an effective and practical national approach to terrorism prevention.
Read the article
• US

Healthcare sector putting itself at risk by not dealing with legacy applications
A new white paper entitled, ‘Legacy Applications: A Healthcare Cybersecurity Nightmare’ highlights that legacy applications continue to pose serious cyber security risks in the healthcare sector.
Read the article
• US / World

New Incident Management Flowchart published by the Security Executive Council
The Security Executive Council (SEC) has added a new Incident Management Flowchart to its resilience best practices knowledge base.
Read the article
• US / World

The 2019 Cyber Security Risk Report
Aon plc has released its 2019 Cyber Security Risk Report. The report, which details the greatest cyber security threats and challenges organizations are currently facing, discusses that as companies continue to use technology to speed up the transfer of information, game-changing business opportunities are created, as well as increased cyber risk.
Read the article
• World

Health and safety incidents become the biggest loss driver for organizations
Organizations focused on high impact risks such as cyber attack and IT outages under-estimate the impact of more frequent events finds the 2019 BCI Horizon Scan report.
Read the article
• World

New paper says that cascading environmental risks could lead to societal breakdown
A new paper from the UK Institute for Public Policy Research (IPPR) says that the world is facing ‘a new domain of risk’ with cascading environmental risks potentially leading to severe impacts on human systems from local to global levels.
Read the article
• UK / World

89 percent of UK organizations say that cyber attacks have become more sophisticated
Carbon Black has published the results of its second UK Threat Report. The research indicates that the UK’s cyber threat environment is intensifying: attacks are growing in volume, and the average number of breaches has increased.
Read the article
• UK

DDoS attacks increase in volume and complexity during Q4 2018
Cloud anti-DDoS vendor Link11 has released its DDoS findings for Q4 2018, revealing that the volume and complexity of attacks continued to grow during the final quarter of 2018.
Read the article
• Europe / World

Majority of US CFOs don’t feel fully prepared to handle the current risk landscape
Nearly 75 percent of CFOs are at least moderately concerned about the risks they might face in the next 12 months, according to a national survey released today by Euler Hermes Americas.
Read the article
• US

Study on US electric grid resiliency finds that metrics are missing
Cost recovery for electric sector cybersecurity investments and development of resilience metrics to gauge the industry's progress are two of several recommendations in a new study by researchers.
Read the article
• US

Report looks at penetration testing of corporate information systems: identifies many weaknesses
In external penetration testing undertaken for corporate clients in industrial, financial, and transport verticals in 2018, Positive Technologies found that, at the vast majority of companies, there were multiple vectors in which an attacker could reach the internal network.
Read the article
• World

Third of UK businesses say that they are unprepared for a no-deal Brexit
With less than 50 days to go until the date which has been fixed for the UK to leave the European Union, a recent YouGov survey shows that a third of UK businesses believe that they are not ready for the event.
Read the article
• UK

AI has growing implications for European risk managers says FERMA
The development and application of artificial intelligence (AI) has growing implications for European risk managers, the Federation of European Risk Management Associations (FERMA) has told the European Commission.
Read the article
• UK / Europe

ENISA publishes online tool for IoT risk assessments
ENISA, the EU security agency, has released an online tool aimed at helping IoT users to conduct risk assessments and to save time when identifying threats and prioritising security areas of importance.
Read the article
• Europe

Lack of awareness amongst top management is adding to cyber security issues says report
A new report from The Bunker has highlighted that senior executives are still often the weakest link in the corporate cyber security chain and that cyber criminals target this vulnerability to commit serious data breaches.
Read the article
• UK / World

The use of cyber threat intelligence needs improving finds SANS survey
There is substantial room for improvement in the use of cyber threat intelligence (CTI), according to the results of the 2019 SANS Cyber Threat Intelligence Survey.
Read the article
• US / World

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

PRIVACY NOTICE

We have updated our Privacy Notice. You can read it at https://www.continuitycentral.com/index.php/privacy-and-cookies

You have subscribed to this newsletter. To unsubscribe visit:
https://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

This email was from:
Portal Publishing Ltd, PO Box 1393, Huddersfield, HD1 9TN, UK, Tel: +44 1484300750

Continuity Central is a registered trademark