This newsletter highlights all the feature articles published on Continuity Central during October 2019 as well as various resources.

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/roundupnov2019.html

FEATURE ARTICLES

ClearView

Business continuity trends and challenges 2020
For the past six years Continuity Central has conducted an online survey asking business continuity professionals about their expectations for the year ahead. This survey is being repeated again this year and the survey is now live.
Take part in the survey
• World

Why being proactive is the key to effective cyber security…
Traditional cyber security is based on protecting the organization with barriers and reacting to any breaches that occur. Dean Moulden explains why this is no longer effective: and why taking a proactive, zero trust, approach is now essential.
Read the article
• World

Robot risks: examining the underlying insecurities in the future of robotics
The social influence of robots on people and the insecurities this can bring should not be underestimated. Research conducted by Kaspersky and Ghent University has found that robots can effectively extract sensitive information from people who trust them, by persuading them to take unsafe actions.
Read the article
• World

Daisy

Why automated network security management matters
A 2019 AlgoSec study found that over 42 percent of organizations had experienced an application or network outage caused by a human error or misconfiguration. Kyle Wickert explains why this figure is so high; and why automation is key to improvement.
Read the article
• World

Six steps to a robust cyber security strategy
This October marks the 16th annual Cybersecurity Awareness Month, and this should serve as a reminder that businesses of all sizes need to implement strong cyber security. Graham Marcroft highlights six areas that combine to help create a holistic cyber security strategy.
Read the article
• UK / World

Seven legal implications UK businesses should be aware of before Brexit
Commercial legal solicitors, Spratt Endicott, has shared a checklist of items that UK business owners should be aware of and putting into action in a bid to place their business in the best possible position ahead of the Brexit deadline…
Read the article
• UK

Assurance Software

What a ‘Brexit Operating Regime’ is and how it can help your organization prepare for Brexit
The 31st October potential Brexit deadline is approaching rapidly! In this article Charlie Maclean Bristol explores how the concept of a Brexit Operating Regime can help organizations that may be exposed to Brexit impacts to prepare for them.
Read the article
• UK / Europe

Observability and visibility in cyber security: key reasons they are not the same; and why it matters
In today’s increasingly complex cyber landscape, it is now more important than ever for organizations to be able to analyse contextual data in order to make informed decisions regarding their network security policy.
Read the article
• World

Some thoughts about the BIA debate…
In a response to recent articles about the BIA’s role in business continuity, Dr. David Lindstedt responds, saying that much of the debate is predicated on a misunderstanding and is therefore, naturally, rather unproductive. In this article he seeks to clarify the nature of the debate regarding the value of the business impact analysis (BIA) and proposes new questions for consideration.
Read the article
• World

eBRP

Making the case for work-area recovery
Work-area recovery (WAR) is sometimes seen as one of yesterday’s business continuity strategies. In this article, Innes le Roux explains why he believes that this is not the case and why you’re not truly resilience without work-area recovery.
Read the article
• Africa / World

The right way to IaaS: achieving secure flexibility and scalability
Infrastructure as a service (IaaS) offerings allow enterprises to focus on business growth, gain flexibility and scalability, as well as achieve significant cost savings. However, IaaS also raises some unique data leakage concerns that must be addressed. Anurag Kahol looks at three cornerstones of security when considering IaaS platforms...
Read the article
• World

RESEARCH, REPORTS & PUBLICATIONS

Fortress

Organizations are struggling to predict the impact of threats and vulnerabilities associated with emerging tech
More than half of risk professionals worldwide say that their organization’s risk levels have increased in the past 12 months, according to new research from ISACA, CMMI Institute and Infosecurity Group.
Read the article
• US / World

Study shows the real benefits where companies share cyber security risk management information
Research by the North Carolina State University shows that when one company experiences a cyber security breach, other companies in the same field also become less attractive to investors. However, companies that are open about their cyber security risk management fare significantly better than peers that don't disclose their cyber security efforts.
Read the article
• US / World

Cloud Security Alliance releases anti-DDoS research paper
The Cloud Security Alliance (CSA) has published new research on using a software-defined perimeter (SDP) as a distributed denial-of-service (DDoS) attack prevention mechanism.
Read the article
• US / World

Capital Continuity

‘Prepare for a new cyber Cold War in 2020’: Check Point
Check Point Software Technologies has published its cyber security predictions for 2020. They highlight the major cyber incidents and technical developments that Check Point’s researchers anticipate will impact our societies and businesses in the coming year...
Read the article
• World

55 percent of enterprises don’t know how Brexit will affect their backup and disaster recovery plans
UK enterprises are increasingly concerned over whether they will be able to transfer data when the UK leaves the European Union – according to research by 4sl.
Read the article
• UK

Mobile malware is a much bigger organizational threat than commonly thought
BlackBerry has released a new report into mobile malware, ‘Mobile Malware and APT Espionage: Prolific, Pervasive, and Cross-Platform’, which examines how advanced persistent threat (APT) groups have been leveraging mobile malware in combination with traditional desktop malware in ongoing surveillance and espionage campaigns.
Read the article
• World

5G and AI expected to bring heightened cyber security risks: study
An overwhelming majority of cyber security and risk management leaders believe that developments in 5G wireless technology will create cyber security challenges for their organizations.
Read the article
• UK / World

88 percent of financial services organizations experienced DNS attacks in the past 12 months: survey
The financial services sector is the most targeted industry, according to the EfficientIP sponsored IDC Infobrief 2019 Global DNS Threat Report, with 88 percent of financial services respondents experiencing under-the-radar DNS attacks in the past year.
Read the article
• World

Airport report provides useful lessons on resilience for all organizations
A major study into the resilience of UK airports has found that the agility of airports to adapt to both long-term strategic changes and short-term operational shocks is critical in sustaining their competitive advantage and business prosperity.
Read the article
• UK / World

NIST requests comments on guidance about Resilient Interdomain Traffic Exchange
NIST has released a second public draft of NIST Special Publication (SP) 800-189, Resilient Interdomain Traffic Exchange: BGP Security and DDoS Mitigation. This document provides technical guidance and recommendations for technologies that improve the security and robustness of interdomain traffic exchange.
Read the article
• US / World

Cyber security age-gap research shows importance of considering generational differences in strategies
According to a new report on behaviour and attitudes to cyber security among different age groups, employees over the age of 30 are more likely to adopt cyber security best practice than younger colleagues who have grown up around digital technology.
Read the article
• World

Only 28 percent of US enterprises say CEO and board approves acceptable level of cyber risk
Ponemon Institute research, evaluating accountability for ensuring the effectiveness and efficiency of security practices, technologies, and controls within enterprises, demonstrates a clear lack of accountability, especially on the board and among C-suite executives.
Read the article
• US

CEO and CISO disconnect puts Australian organizations at risk: Unisys survey
Chief executive officer (CEO) confidence regarding an organization's ability to detect and manage cyber concerns far outstrips that of chief information security officers (CISOs) – a disconnect that puts organizations at risk of cyber attacks, according to research released by Unisys Corporation.
Read the article
• Australia

The cost of ransomware-related downtime has increased more than 200 percent
Datto, Inc., has announced findings from its fourth annual Global State of the Channel Ransomware Report. The survey of more than 1,400 MSP decision makers that manage the IT systems for small-to-medium-sized businesses (SMBs) found that ransomware remains the most common cyber threat to SMBs.
Read the article
• World

Corporate boards ‘significantly overconfident’ when it comes to risks
Board members have greater confidence in their organizations' ability to manage key risks than members of management actually do, according to a survey of board members, executive management, and chief audit executives released by The Institute of Internal Auditors (IIA).
Read the article
• US / World

Employees’ poor password habits remain a key obstacle to business’ security
LastPass by LogMeIn has released the results of its 3rd Annual Global Password Security Report, a study that offers insights into employee password activities as well as emerging trends around identity and access management in businesses worldwide.
Read the article
• World

The costs of major natural disasters are disproportionately increasing
While the economic cost of natural disasters has not increased much on average, averages can be deceptive. The costs of major disasters have increased to a disproportionately larger extent than those of lesser events, and these major disasters have become far more expensive, according to an international team of researchers.
Read the article
• World

Research reveals negligent users as top cyber security threat to German organizations
SolarWinds has released findings of its latest cyber security research which highlights the threats technology professionals face today and those they expect over the next 12 months. The study found that internal factors are the most prominent cyber security threat.
Read the article
• Europe

The industrial cyber threat landscape explored
Kaspersky solutions were triggered on 41.6 percent of industrial control system (ICS) computers in the energy sector globally in the first six months of 2019. This was followed by automotive manufacturing (39.3 percent) and building automation (37.8 percent).
Read the article
• World

Only 12 percent of UK enterprises can detect anomalous activity in their IT networks
ManageEngine has announced the findings of its ‘State of IT in the UK - 2019’ survey, which was conducted on behalf of the company by Vitreous World, an independent research consultancy.
Read the article
• UK

Study looks at the views of risk managers about cyber risk management
Zurich Insurance, in collaboration with Advisen, has released the ninth annual cyber survey of corporate risk managers and insurance buyers revealing current views about information security and cyber risk management. A key finding of the 2019 survey is that business interruptions due to cyber events are a top concern.
Read the article
• World

New findings on the board’s role in effective risk management
The Shared Assessments Program has published ‘The Board’s Role in Realizing Effective Risk Management’ – a new set of findings and recommendations developed with C-level executives and risk experts from a number of organizations.
Read the article
• US / World

Cyber attacks and fiscal crises top list of business risks in 2019: World Economic Forum
Economic issues dominate concerns for business executives around the world, according to the World Economic Forum’s ‘Regional Risks for Doing Business 2019’ report.
Read the article
• World

GAO report highlights increasing cyber security risks facing the US electric grid
The United States’ electric grid is becoming more vulnerable to cyber attacks - particularly those involving industrial control systems that support grid operations; this is one of the key findings of a new GAO report...
Read the article
• US

Cyber threats move to the top of the list of concerns for US businesses
The Travelers Companies, Inc. has announced the results of the 2019 Travelers Risk Index, which found that cyber risks are the top concern among US businesses of all sizes for the first time since the survey began in 2014.
Read the article
• US

Bank of England releases results from financial sector resilience exercise
The Bank of England has published the high level findings of the financial sector cyber simulation exercise that took place last year.
Read the article
• UK

C-suite involvement in business continuity planning is growing in the UK
New research from Databarracks has found that senior leadership (CEO, CFO, MD or FD) are in charge of business continuity plans in 25 percent of UK organizations, up from 21 percent in 2015. IT is in charge of business continuity plans in 42 percent of organizations.
Read the article
• UK

Confidence in organizational risk management slips
A recent survey for the 2019 Compliance and Procurement Sentiment report from Dun & Bradstreet found that 85 percent of respondents were confident about the effectiveness of risk management within their organization; 8 percent lower than the previous survey.
Read the article
• World

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

PRIVACY NOTICE

You can read our privacy information at https://www.continuitycentral.com/index.php/privacy-and-cookies

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

This email was from:
Portal Publishing Ltd, PO Box 1393, Huddersfield, HD1 9TN, UK

Continuity Central is a registered trademark