This newsletter highlights all the feature articles published on Continuity Central during August 2021, as well as various resources.

NOTE: If you cannot read this newsletter properly visit www.continuitycentral.com/roundupsept2021.html

FEATURE ARTICLES

Key considerations when building a disaster recovery plan for private cloud
One of the most persistent and baseless misconceptions about private cloud is that companies don’t need a disaster recovery plan for their business applications. Girish Dadge explains why this is a misconception and looks at what needs to be in place for effective DR.
Read the article
• World

Five tips for improving organizational resilience
Developing a truly resilient business means moving beyond business continuity says Padma Naidoo. Here she gives five tips for companies that are making this journey.
Read the article
• World

Three supply chain risk management lessons learned from COVID-19
As the COVID-19 pandemic quickly spread around the world, businesses and individuals had to make quick decisions to adapt to the crisis. As the world gradually attempts to make a return to normal, there are several important supply chain lessons we can take into the post-pandemic business environment.
Read the article
• World

Why Backup-as-a-Service solutions are replacing traditional backup methods
As organizations navigate the changing operating and threat environment Backup-as-a-Service (BaaS) is becoming increasing popular as an alternative to on-premises storage. Jonathan Bowl describes the advantages compared to traditional backup methods.
Read the article
• World

Why cyber resilience and security leadership must come from the top of organizations
In this article, Rick Jones suggests that, rather than finding someone to blame when security measures fail, it is imperative that company executives and boards take the lead when it comes to cyber resilience and security.
Read the article
• UK / World

Closing the gap between cyber security and business continuity management
With cyber attacks increasingly aiming to create business disruption, it is important for organizations to ensure that cyber security and business continuity management teams work together says Terry Storra. Here he outlines the advantages of integration between these two protective disciplines.
Read the article
• UK / World

Building an effective enterprise risk management culture
In this article, Alberto G. Alexander, Ph.D , MBCI, describes a framework to help organizations develop an effective enterprise risk management culture. He also looks at best practices for managing and maintaining a risk culture once it is place.
Read the article
• World

RESEARCH, REPORTS & PUBLICATIONS

ISACA introduces new guidance for IT business continuity and disaster recovery auditing
Global IT association ISACA is helping auditors expand their expertise by introducing a new audit program to provide guidance on assessing IT business continuity and disaster recovery capabilities.
Read the article
• US / World

UN publishes Asia Pacific Disaster Report: regional ‘riskcape’ is expanding
The convergence of the COVID-19 pandemic with natural hazards, made worse by climate change, has reshaped and expanded the disaster ‘riskscape’ in Asia and the Pacific, according to a new report published by the UN.
Read the article
• Asia Pacific

Remote working has not led to an increase in IT downtime, finds Databarracks research
New research by Databarracks has found that 27 percent of surveyed organizations experienced no unplanned IT downtime in the last 12 months, the same figure as in a similar survey in 2019. This is despite widespread remote working and a heavy reliance on connectivity and cloud services.
Read the article
• UK

Lessons learned from Australia’s November 2021 ASX Trade outage published
The Australian Securities and Investments Commission (ASIC) and the Reserve Bank of Australia (RBA) have released a summary of an independent expert review of the 16th November 2020 ASX Trade outage.
Read the article
• Australia

Trickle-down of nation state tools and techniques expected to increase effectiveness of cyber attacks
HP Wolf Security has released the findings of a global survey of 1,100 IT decision makers (ITDMs), examining their concerns around rising Nation State cyber attacks.
Read the article
• World

Survey highlights why threat hunting is important for cyber resilience
A new Ponemon survey, commissioned by Team Cymru, has found that half of attacks on organizations that caused severe business disruption were by repeat offenders - and 61 percent of these were never resolved.
Read the article
• World

RDDoS attacks on organizations becoming as important as ransomware says report
44 percent of organizations have been the target or victim of a ransom-related distributed denial of service (RDDoS) attack in the last 12 months, according to new research from the Neustar International Security Council (NISC).
Read the article
• World

Security researchers find ‘staggering number’ of industrial control system vulnerabilities in 2021
Industrial control system (ICS) vulnerability disclosures are drastically increasing as high-profile cyber attacks on critical infrastructure and industrial enterprises have elevated ICS security to a mainstream issue according to the third Biannual ICS Risk & Vulnerability Report released by Claroty.
Read the article
• World

IDC survey finds more than one third of organizations worldwide experienced ransomware-related downtime in last 12 months
A new International Data Corporation (IDC) survey has found that more than one third of organizations worldwide have experienced a ransomware attack or breach that blocked access to systems or data in the previous 12 months.
Read the article
• World

Latest US NTAS Bulletin highlights threats associated with 9/11 anniversary
The US Secretary of Homeland Security, Alejandro N. Mayorkas, has issued a new National Terrorism Advisory System (NTAS) Bulletin regarding the heightened terrorism threat environment across the United States.
Read the article
• US

Europol issues Islamic State and al-Qaeda terrorism threat assessment
Europol has issued the third edition of its annual report on Online Jihadist Propaganda, which provides an analysis of ‘the major trends and developments in online propaganda of the most prominent jihadist organizations for the year 2020’.
Read the article
• World

FEMA announces full launch of National Risk Index
FEMA has announced the full application launch of the new US National Risk Index, an online resource that provides a clear, visual guide to natural hazard risks throughout the United States as well as information to help communities and organizations to understand and reduce those risks...
Read the article
• US

Cyber security needs a ‘radical cultural change at boardroom level’: KPMG
Organizations across the world have made strides in remote working and collaboration during the COVID-19 pandemic, but the proliferation of digitization is creating significant new cyber threats that require radical cultural change at boardroom level, says KPMG.
Read the article
• World

ESG regulatory requirements grow as a source of risk: Gartner
Regulatory risk related to environmental, social and governance (ESG) disclosures has rapidly risen to the second overall position in Gartner’s latest Emerging Risks Monitor Report. ESG regulatory requirements present organizations with both notable risks and opportunities...
Read the article
• World

Businesses impacts of bot attacks explored in new report
Netacea, the bot detection and mitigation specialist, has released results from a new survey-based report that reveals the high price that businesses pay because of bot traffic.
Read the article
• US / UK

New academic paper explains how lower magnitude volcanic eruptions can have cascading impacts on critical infrastructure
A new open-access paper by academics from the University of Cambridge Center for the Study of Existential Risk highlights seven global pinch points where a clustering of global critical systems converges with regions of volcanic activity. This is presenting a new landscape for catastrophic volcanic risk says the paper.
Read the article
• World

Survey shows increasing organizational reliance on AWS; and highlights security blind spots
Vectra AI has released the findings of its new PaaS and IaaS Security Survey Report. The report presents the results of a survey of 317 IT executives all using AWS, 70 percent coming from organizations of 1,000+ employees.
Read the article
• World

Global study provides a snapshot of risk and compliance programs around the world
NAVEX Global survey report shows that business continuity plans helped organizations mitigate the pandemic’s impact; also highlights reductions in leadership support when risk and compliance clashes with business objectives.
Read the article
• World

Climate change is widespread, rapid, and intensifying: IPCC report puts the scale of climate risk in perspective
Scientists are observing changes in the Earth’s climate in every region and across the whole climate system, according to the latest Intergovernmental Panel on Climate Change (IPCC) Report, released on August 9th.
Read the article
• World

SMBs becoming prime cyber attack targets according to the Acronis Cyberthreats Report mid-year update
Acronis has released its Cyberthreats Report Mid-year 2021 update, an in-depth review of the cyber threat trends the company’s experts are tracking. The report warns that small and medium-sized businesses (SMBs) are at particular risk based on the attack trends seen during the first six months of the year.
Read the article
• World

COSO issues guidance document on Enterprise Risk Management for Cloud Computing
The Committee of Sponsoring Organizations of the Treadway Commission (COSO), in collaboration with Crowe LLP, has developed new ERM guidance: ‘Enterprise Risk Management for Cloud Computing’.
Read the article
• World

ENISA report looks at the Threat Landscape for Supply Chain Attacks
According to a new ENISA report – ‘Threat Landscape for Supply Chain Attacks’, which analysed 24 recent attacks, strong security protection is no longer enough for organizations when attackers have already shifted their attention to suppliers.
Read the article
• Europe

CALL FOR PAPERS

Written a relevant article or white paper? We'd like to consider it for publication on Continuity Central. Simply e-mail editor@continuitycentral.com

PRIVACY NOTICE

You can read our privacy information at https://www.continuitycentral.com/index.php/privacy-and-cookies

You have subscribed to this newsletter. To unsubscribe visit:
http://www.continuitycentral.com/index.php/unsubscribe or e-mail webmaster@continuitycentral.com

Continuity Central is a registered trademark