An international law enforcement operation has struck a major blow against the gang behind Shylock, one of the world’s most dangerous financial Trojans. The takedown, which was led by the UK National Crime Agency, resulted in the seizure of a command and control (C&C) servers, in addition to domains that Shylock uses for communication between infected computers.
A key element of any business continuity professional’s job description is helping the...
At the International Crisis & Risk Communication Conference, I delivered a...
Counting The Costs & Benefits For Business Continuity From The Perspective Of A Veteran Deployment Housing WarriorMarch 18, 2014 10:17 am | by Michelle Lowther, Continuity Housing | Comments
Who knew it could cost $1,000 per person per day just to house critical personnel near their...
For many organizations, the project-based accounting approach, in which departments “buy” datacenter utilization based on specific project needs, is getting out of hand for both IT and the business units it serves. Virtualization should have made project-based IT simple and cost-effective. Instead, the four vCPU minimum required by Microsoft’s SQL Server licensing means history is repeating itself.
Continuity Insights is going to undergo an overhaul in the coming weeks and months. As new editor, I want to reach out to members of the business continuity community to provide more original content on the website. One aspect of the site I would like to focus on is the blogs section.
Continuity Insights began reporting on the use of social media for emergency management in 2012, expanding the survey in 2013 to include social media strategy, risk and views on effectiveness. Both of these reports give the baseline for the 2014 survey.
We often think of drills as face-to-face exercises, but forecasters’ recent use of Twitter for a ‘tornado drill’ demonstrates that drills have equal importance in the virtual realm — and even in social media.
We’re only weeks into 2014, but reports of new threats have dominated the news. 2014 is shaping up to be a diverse year for business continuity professionals. Luckily, as threats diversify, the pool of knowledgeable professionals grows ever deeper.
This perspective is the fifth in a series to discuss key elements of the ISO 22301 business continuity management system. Today we’re going to take a look at Clause 9.1.2, the standard’s requirement for evaluation of business continuity procedures.
I’m gearing up for the holidays, and my house wouldn’t be the same without numerous strings of white lights. Winter wouldn’t be bearable without the heat that pipes through the vents, and time off work wouldn’t be nearly as fun without a road trip to see family. What do all of these things have in common? Infrastructure. It lights up my lights, supplies my heat and powers my car. (Note: Cheer sold separately.)
One of the key elements of all management systems is the ability to monitor, measure and continually improve the performance of the organization. In Clause 9 – Performance evaluation, ISO 22301 provides the requirements for evaluating the BCMS and the business continuity procedures.
Mobile work-area recovery, while not the perfect solution for all organizations, can offer significant benefits to companies in need of a flexible recovery solution. For some business continuity leaders, mobile-work area recovery has emerged as the best solution for their organizations’ needs, and serves many purposes by delivering not only fully equipped trailers but also select components.
My first real encounter with mass notification happened when my university implemented a campus-wide alert system. When I look back at this experience — after becoming more familiar with mass notification and crisis communication system options, strategies, and best practices throughout the years — I can’t help but put myself in administration’s shoes.
While all business continuity standards require documented analysis and plans, ISO 22301 requires that organizations document procedures (to drive repeatable performance) and outcomes of the planning process (to serve as evidence). While this effort is necessary if an organization chooses to seek certification, there are several benefits organizations can achieve just by conforming to the ISO 22301 standard.
Just being a member in a trade association sets you apart as an individual dedicated to our profession. Adding a professional designation gives you access to positions you wouldn’t get otherwise. Membership in a professional organization highlights that business continuity/disaster recovery is your profession, and not just your job.
We all know they are out there: the State Association of [insert chosen profession here] or a National Association of…. Did you know there is a National Association of Airline Passengers? You might think there is little value to joining an association. Allow me to share some experience that might change your mind.
Perhaps due to the location of Superstorm Sandy, and the incredibly media-savvy and connected population in New York and New Jersey, social media quickly became the story as images of flooding and damage were immediately publicized. In Sandy’s aftermath, groups discussed some of the lessons learned.
From an outsider’s perspective, Sandy Hook Elementary school did everything right. They practiced active-shooter drills, locked the campus doors every morning after 9:30 AM, and relied on an access control system.