This newsletter highlights all the feature articles published on Continuity Central during September 2020, as well as various resources.

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/roundupoct2020.html

FEATURE ARTICLES

Avalution

Cloud resilience: a collaboration
This article arose out of conversations during the BCI’s Education Month, where a number of business continuity professionals decided to work together on a document exploring various aspects of cloud resilience. Continuity Central was approached to host the article so that it could reach a wider audience; and we are happy to do so.
Read the article
• World

Four tips for protecting your company from ransomware attacks
Index Engines has identified four strategies that organizations should implement to help protect against ransomware attacks. If your organization has a gap in any of these areas then the risk of attack is enhanced…
Read the article
• World

COVID-19 pandemic updates
This Continuity Central resource section is being regularly updated with situational updates, news, resources, and business continuity information related to the COVID-19 pandemic.
Read the article
• World

A case for the creation of the Core Principles of Business Continuity
In this article Rico Andrew Patron points out that, unlike some other professions, the business continuity profession does not have a set of clearly articulated core principles. He makes the case for the development of the Core Principles of Business Continuity and suggests what these could be.
Read the article
• World

Daisy

The good consultant: advice for consultants and hiring organizations
In a detailed paper, Clinton Jayne sets out to capture lessons learned from more than 25 years as a consultant in the continuity and resilience profession. These are aimed at assisting other consultants and also managers with responsibility for hiring consultants.
Read the article
• World

Avoiding the pitfalls of cloud migration
When they go wrong cloud migration projects can results in downtime and disruption. Matt Lock highlights a number of common challenges experienced during cloud migration and what measures can be taken to manage these.
Read the article
• World

Why ‘new normal’ resilience is built upon enterprise-wide workplace transformation
Gary Harrold, Chief Executive Officer at Swiss Post Solutions UK & Ireland highlights some of the lessons that can be learned from the current pandemic for improving future operational resilience practices.
Read the article
• UK / World

Assurance Software

Four common business continuity misconceptions
For any business leader considering implementing business continuity for the first time - or indeed anyone who has a plan and would like to improve it - it’s important to address four common misconceptions that can cause confusion and limit effectiveness says Jeff Keyes.
Read the article
• World

Are you practicing good cyber hygiene? How to clean up your security approach
We hear a lot about good hygiene these days, especially when it comes to personal hygiene. In fact, hygiene has never been more important as a way to protect ourselves and our families. The same is true for protecting an enterprise’s data assets says Dan Garcia.
Read the article
• World

Business continuity through a COVID-19 lens
COVID-19 has brought business continuity under scrutiny, with the opportunity to enhance resilience into the future. Padma Naidoo looks at what worked and how this will influence business continuity in the future…
Read the article
• Africa / World

‘Cascading Failures in Internet of Things: Review and Perspectives on Reliability and Resilience’
Interactions and dependencies between IoT devices can result in cascading failures. A new paper published by the IEEE Internet of Things Journal explores this area and looks at resilience measures.
Read the article
• World

ClearView

RESEARCH, REPORTS & PUBLICATIONS

DDoS attacks increase by 151 percent in first half of 2020
Neustar has released its latest cyber threats and trends report which identifies significant shifts in distributed denial-of-service (DDoS) attack patterns in the first half of 2020. Neustar’s Security Operations Centre (SOC) saw a 151 percent increase in the number of DDoS attacks compared to the same period in 2019.
Read the article
• World

Study shows that business continuity is one of the key factors behind cloud adoption
Aptum has published Part One of its Quarterly Cloud Impact study, which looks at overall planning and migration efforts, and the main business drivers behind cloud adoption.
Read the article
• Various

New guidebook on 'How to Use Exploratory Scenario Planning' published
Exploratory scenario planning (XSP) is a process which can be used for resilience planning, helping managers to make decisions and plans in the face of critical unknowns and unclear futures. Rather than working toward a single vision, practitioners develop distinct potential futures (‘scenarios’) and consider how to measure and prepare for each.
Read the article
• World

RiskResLtd

NIST releases guidance on recovering from ransomware
The US NIST has published new guidance, ‘Data Integrity: Recovering from Ransomware and Other Destructive Events (SP 1800-11)’. This demonstrates how organizations can develop and implement appropriate actions following a detected cyber security event.
Read the article
• US / World

Pandemic response highlights siloed approach to business continuity and crisis management
A new Airmic and Control Risks report captures some of the lessons that organizations have learned from the COVID-19 crisis. ‘New challenges, new lessons’ says the pandemic has highlighted the siloed approach to business continuity management and crisis management that is present in many organizations.
Read the article
• World

Work 2035: what will future business continuity managers need to consider?
Citrix Systems has presented the results of a year-long examination of global work patterns and plans, to understand how work will change and the role that technology will play in enabling this.
Read the article
• World

Closing the Gaps on Reputational Risk Management: new guide published
RIMS, Airmic, and RepTrak have jointly released a new report exploring best practices and challenges for effectively managing reputational risk. It is based on interviews with 40 risk leaders in the US and Europe, as well as discussions between academics and industry thought leaders.
Read the article
• World

Fortress

British Chambers of Commerce survey shows that many UK businesses are unprepared for Brexit risks
The British Chambers of Commerce (BCC) has published the results of a survey which found that only 38 percent of companies surveyed have carried out a Brexit risk assessment in 2020, compared to 57 percent in 2019.
Read the article
• UK

Ransomware operators are banding together says Cyber Threatscape report
Positive Technologies has released its most recent Cyber Threatscape report, an analysis of Q2 2020 cyber incidents. The report says that there is increasing evidence that ransomware operators have started cooperating with each other.
Read the article
• World

Protiviti updates 'Guide to Business Continuity & Resilience': adds 50 new critical questions business leaders must ask
Protiviti has completed a major update to its Guide to Business Continuity and Resilience. First produced in 2005, the guide has been updated to reflect today's new threats and business realities, especially in light of lessons learned from the COVID-19 pandemic.
Read the article
• World

US Insurance Institute for Business & Home Safety updates business continuity planning toolkit
In conjunction with US National Preparedness Month, the Insurance Institute for Business & Home Safety (IBHS) has launched an updated edition of its free business continuity planning toolkit, Open for Business-EZ (OFB-EZ).
Read the article
• US / World

Risk Logic

C-suite executives expect changes made in response to COVID-19 to become permanent
The vast majority (83 percent) of C-level executives expect the changes they made in the areas of people, processes, and applications as a response to the COVID-19 pandemic to become permanent, according to data from a new survey-based report published by Radware.
Read the article
• World

GPMB report highlights weaknesses in pandemic preparedness and highlights lessons learned so far from COVID-19
In a new report, ‘A World in Disorder’, published by the World Health Organization, the Global Preparedness Monitoring Board (GPMB) provides an assessment of pre-COVID pandemic planning, highlights lessons learned, and makes recommendations for improvements for future pandemic preparedness.
Read the article
• World

Gartner survey explores the evolving threat landscape
At its Virtual Gartner Security & Risk Management Summit, Gartner analysts discussed the results from a survey looking at how enterprise security and risk leaders are responding to the evolving threat landscape. This was ranked as the top driver impacting information security during the next three to five years.
Read the article
• World

Many organizations failing to effectively manage remote working: creating risks
A global survey conducted by Wrike, has found that six months since the wide-spread adoption of remote working began, many workers are still unsure as to what their employer expects of them. This lack of clarity opens organizations up to cyber risks and results in reduced productivity.
Read the article
• Various

Half of UK healthcare workers expect a second pandemic wave within three months
Nine out of ten healthcare professionals believe there will be a second wave of the COVID-19 pandemic in the UK - and many anticipate it will be soon, according to a YouGov survey. The survey found that 46 percent healthcare professionals surveyed say that this scenario is very likely and 44 percent say it is fairly likely.
Read the article
• UK

Aon survey highlights steps companies taking to accelerate workforce resilience and agility
Aon plc has released the results of a new global pulse survey focused on how companies are rethinking their human capital strategies in response to the humanitarian and economic impacts of the COVID-19 pandemic.
Read the article
• World

Top threats facing telecommunications companies highlighted by new report
While telcos have largely risen to the challenge of withstanding a surge in network demand during the COVID-19 pandemic, pressure to maintain infrastructure resilience and expand reach emerges as the most pressing sector challenge.
Read the article
• World

Researchers discover that one in three IT environments are vulnerable to Ripple20 threat
ExtraHop has issued a report warning of the potential impact of Ripple20 vulnerabilities if affected software goes undetected and unpatched. Analyzing data across its customer base, ExtraHop threat researchers found that 35 percent of IT environments are vulnerable to Ripple20.
Read the article
• World

‘The Future of Business Continuity and Resilience’ – a new report from the BCI
The BCI, in association with FortressAS, has published a new report looking at how business continuity and resilience may develop following the shake-up that the pandemic has given the profession.
Read the article
• World

Future climate risks being discussed in boardrooms but few organizations have plans in place
Climate risks are being discussed in Britain’s boardrooms, but the majority of businesses have yet to implement a clear plan, according to new research from KPMG. The firm questioned more than 160 business leaders, representing a range of industries from across the UK on their environmental, social, and governance (ESG) credentials.
Read the article
• UK

Researchers warn that the COVID-19 pandemic may be followed by a period of significant social unrest
From the Black Death to the Spanish Flu, history teaches that social tension accumulated over an epidemic can lead to significant episodes of rebellion, according to a study by Massimo Morelli and Roberto Censolo from Bocconi University.
Read the article
• Europe / World

Collaboration between various state cyber agencies results in comprehensive technical guidance for incident response
A joint advisory has been issued which presents the result of a collaborative research effort by the cyber security authorities of Australia, Canada, New Zealand, the UK, and the US. It highlights technical approaches to uncovering malicious activity and includes mitigation steps according to best practices.
Read the article
• Various

61 percent of companies have experienced an insider attack over the last year says report
Bitglass has released its 2020 Insider Threat Report, which looks at the state of enterprise security as it pertains to insider threats. Bitglass partnered with a cyber security community and surveyed IT professionals to understand how their businesses balance budgetary and data protection concerns while defending against insider threats.
Read the article
• US / World

New global ransom DDOS campaign targets organizations in finance, travel, and e-commerce
Since the middle of August, Radware has been tracking several extortion requests from threat actors. Letters are being delivered via email and typically contain victim-specific data such as Autonomous System Numbers (ASN) or IP addresses of servers or services they will target if demands are not fulfilled.
Read the article
• US / World

Many businesses did not evaluate business continuity risks for cloud services prior to switching to remote working
New research from Databarracks shows that just 46 percent of UK organizations surveyed had evaluated their business continuity risks for cloud services compared with on-premises IT in the months before widespread remote working – and the accompanying growth in the use of cloud applications – began.
Read the article
• UK

DDoS-for-hire threat landscape continues to grow
Radware has highlighted the continued growth of the DDoS-for-hire industry, despite global efforts in the last two years from law enforcement agencies, independent researchers and corporations to curb growth through a series of takedowns and arrests.
Read the article
• World

‘Clearing the Cloudiness of SaaS: A SaaS Continuity Control Certification Framework’
A Masters thesis by N.P. Xavier from the Utrecht University Faculty of Science looks at the requirement for maintaining the continuity and availability of SaaS applications and proposes a certification framework.
Read the article
• Europe / World

New Zealand Trade and Enterprise releases series of videos on building resilient businesses
To help businesses build resilience in the wake of COVID-19, New Zealand Trade and Enterprise (NZTE) has teamed up with Deloitte and PwC to create a new video series. Insights in the series have been drawn from NZTE’s Export Business Continuity Service workshops, which helped more than 400 companies navigate the fallout from COVID-19.
Read the article
• New Zealand

New research looks at how US organizations used AI to support business continuity during the pandemic
IPsoft has published new research, in partnership with Censuswide, examining the uptake of AI during the COVID-19 pandemic and its continuing impact on the American workforce.
Read the article
• US

Most firms say business continuity plans have been a success during pandemic: Association of Compliance Officers in Ireland
A survey of 600 members of the Association of Compliance Officers in Ireland (ACOI) has shown how important business continuity planning has been in helping Irish businesses respond effectively to the COVID pandemic and stay afloat over the last few months.
Read the article
• Europe

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

PRIVACY NOTICE

You can read our privacy information at https://www.continuitycentral.com/index.php/privacy-and-cookies

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

Continuity Central is a registered trademark