Security Controls, Self-Audit, and Testing

As the digital ecosystem within enterprises proliferate, so do the cybersecurity risks and vulnerabilities. Before organizations look outside for effective governance, risk and compliance, and business continuity tools to manage this ecosystem, they also need to understand the importance for defining proper organizational security controls and self-audit requirements. The controls and tests can form an… Continue reading Security Controls, Self-Audit, and Testing

Kidnap & Ransom: The Risks of Working Globally

The global economy is in a significant state of disharmony involving the flow of trade between the world’s nations. This has resulted in most of the recent major economic calamities. In April 1959, then Sen. John F. Kennedy said, “The Chinese use two brush strokes to write the word ‘crisis.’ One brush stroke stands for… Continue reading Kidnap & Ransom: The Risks of Working Globally

In Search of ‘Constructive-Discomfort’

As business continuity practitioners, we should maintain an attitude of “constructive-discomfort.” This mindset should influence our view of our role in the organization, our interaction with supported teammates and staff, the artifacts we produce, and our relationship with management. If one separates “constructive-discomfort” into both components, it would be easy to favor the former and… Continue reading In Search of ‘Constructive-Discomfort’

Emergency Management May Reduce the Risk of CERCLA Liability for Natural Disasters

The federal Comprehensive Environmental Response, Compensation, and Liability Act (CERCLA), and corresponding state laws were designed to impose liability on parties determined to be responsible for releases of hazardous substances into the environment, and the potential costs of liability can be devastating. Natural disasters can lead to unexpected liabilities under these laws. Emergency managers should… Continue reading Emergency Management May Reduce the Risk of CERCLA Liability for Natural Disasters

Data Management: Top 5 Overlooked Considerations

A successful data management organization enables the achievement of business goals and objectives efficiently and in a cost-effective manner. DM organizations which consistently achieve this have a clear, robust, and well-defined data management strategy. Overlooking these five simple but often forgotten considerations when building your data management strategy will diminish the data management organization’s ability… Continue reading Data Management: Top 5 Overlooked Considerations

Closing the Delta Between RTO and RTC

The ability to recover critical systems in a timely manner during an event is the cornerstone of any effective disaster recovery program. All too often large and small organizations fail to recover their critical infrastructure and applications because of the inability to recognize the variance between the time they would like to recover, known as… Continue reading Closing the Delta Between RTO and RTC

BCM Industry Compass: Where Are We Heading?

One of the projects I am most excited about in 2016 is my role as BCI US Group chairperson for the Business Continuity Institutes’ 20/20 Think Tank initiative. In the title of this article, you will observe that I use the term BCM, or business continuity management. One of the challenges we all face is… Continue reading BCM Industry Compass: Where Are We Heading?