DRJ's Spring 2019

Conference & Exhibit

Attend The #1 BC/DR Event!

Winter Journal

Volume 31, Issue 4

Full Contents Now Available!

How prepared are your employees and organization to navigate the next major blizzard?

If you don’t know how you will keep employees informed and safe while you maintain business continuity, you can do more.

Imagine your employees waking up in the morning after a snowstorm has hit. The Weather Channel details the icy roads and slippery streets. Social media is crowded with photos and updates of vehicles buried in the snow and children celebrating the snow day. But what about work? Your employees must decide if they should brave the hazardous roads or stay home and potentially miss a workday. With no incoming messages and calls that lead only to voicemail, your employees become confused and frustrated.

Keep in mind that if your employees don’t know what to do in the event of a snow or ice storm, they can put themselves at risk. They may attempt to report to work but find the office closed. Alternatively, they could get into an accident on the way. Please don’t put them, or yourself, in that position.



(TNS) - The Northridge earthquake that hit 25 years ago offered alarming evidence of how vulnerable many types of buildings are to collapse from major shaking.

It toppled hundreds of apartments, smashed brittle concrete structures and tore apart brick buildings.

Since then, some cities have taken significant steps to make those buildings safer by requiring costly retrofitting aimed at protecting those inside and preserving the housing supply.

But many others have ignored the seismic threat. And that has created an uneven landscape that in the coming years will leave some cities significantly better prepared to withstand a big quake than others.



For the past five years Continuity Central has conducted an online survey asking business continuity professionals about their expectations for the year ahead. This article provides the results of the most recent survey and identifies some interesting changes from previous years…


134 survey responses were received, with the majority (78.4 percent) being from large organizations (companies with more than 250 employees). 12.7 percent were from small organizations (50 or less employees) and 8.9 percent were from medium sized organizations (51 to 250 employees).

The highest percentage of respondents was from the USA (38.5 percent), followed by the UK (23.1 percent). Significant numbers of responses were also received from Canada (6.1 percent) and Australasia (5.4 percent).

Change levels

The survey asked respondents: ‘What level of changes do you expect to see in the way your organization manages business continuity during 2019?’

12 percent of respondents expect to see no change in the way their organization manages business continuity. 54.1 percent expect to see small changes, whilst a third (33.9 percent) are anticipating large changes.

The 88 percent of respondents expecting to see changes were asked to provide details of the one area that is likely to have the biggest impact on business continuity practices or strategies within their organization. Key themes that emerged were as follows:
‘Making major revisions to BCM strategies and/or BCP(s)’ topped the list of changes that business continuity managers expected to see in 2018 and, in 2019, this was again top of the list, with 22 percent of respondents saying that this was the biggest change they expected to see.



(TNS) — A critical emergency alert system designed to warn UC Davis students and staff failed to fully notify the campus until more than an hour after Davis police Officer Natalie Corona was shot and killed blocks from the university, officials announced, calling the breakdown “unacceptable.”

The WarnMe-Aggie Alert sends text and email messages to UC Davis students and staff and is designed to alert 70,000 people. But the system initially notified only a fraction of those people about the events unfolding less than a mile from the campus and locked campus public safety officials out of some notification lists.

“The system failure we saw on January 10 was unacceptable and we will take all necessary measures to ensure 100 percent performance in the future,” said UC Davis Chancellor Gary S. May in a statement Tuesday.

The chancellor’s downtown Davis residence is also just blocks away from where the 22-year-old Corona was gunned down and where others were sent fleeing when Kevin Limbaugh opened fire from his bicycle as the rookie officer responded to a traffic stop.



Business continuity practitioners have plenty of reasons to be advocates for good fire and life safety practices at their organizations, even if that’s not one of their core responsibilities.

In today’s post, we’ll share 13 tips business continuity management (BCM) professionals can follow to make sure their companies are doing what they should to promote fire and life safety for their staff and facilities.



Moving Beyond Day-to-Day Data Cleansing

In the financial services industry, regulation on due process and fit-for-purpose data has grown increasingly prescriptive, and the risks of failing to implement a data quality policy can be far-reaching. In this article, Boyke Baboelal of Asset Control looks at how organizations can overcome these challenges by establishing and implementing an effective data quality framework consisting of data identification and risk assessment, data controls and data management.

Too many financial services organizations fail to implement effective data quality and risk management policies. When data comes in, they typically validate and cleanse it first before distributing it more widely. The emphasis is on preventing downstream systems from receiving erroneous data. That’s important, but by focusing on ad hoc incident resolution, organizations struggle to identify and address recurring data quality problems in a structural way.

To rectify this, they need to the ability to more continuously carry out analysis targeted at understanding their data quality and reporting on it over time. Very few organizations across the industry are currently doing this, and that’s a significant problem. After all, however much data cleansing an organization does, if it fails to track what was done in the past, it will not know how often specific data items contained gaps, completeness or accuracy issues, nor understand where those issues are most intensively clustered. Financial markets are in constant flux and can be fickle, and rules that screen data need to be periodically reassessed.



(TNS) — Tyler Cooper had a pile of work he needed to tackle at his desk in John Deere’s Cary office on Tuesday, but he and some of his coworkers decided to spend the day doing housework instead.

They boarded a bus in the early morning and headed to the rural Whitestocking community outside Burgaw, a section of Pender County where the Cape Fear River ran 10 feet deep across the landscape during flooding from Hurricane Florence last September.

They climbed into coveralls, put on protective goggles and breathing masks, and crawled under a house to start yanking out insulation still damp from the flood.

“There were a lot of people impacted by the storm,” Cooper said, dragging out torn sheets of ruined yellow fluff. “I just wanted to help out.”

Tens of thousands of homes across Eastern North Carolina were damaged by floodwaters from the storm, and five months later, many still have not been stripped to the studs so they can dry out and be rebuilt.



No business owner wants to think about a violent event happening at their workplace, but each year, more than 2 million American employees report having been a victim of various types of workplace violence. According the U.S. Bureau of Labor Statistics, 409 workers were fatally injured in work-related attacks in 2014. To put that into perspective, that’s about 16 percent of the 4,821 workplace fatalities in the same year.

What Are The Main Types Of Workplace Violence?

OSHA defines workplace violence as “any act or threat of physical violence, harassment, intimidation, or other threatening disruptive behavior that occurs at the work site. It ranges from threats and verbal abuse to physical assaults and even homicide. It can affect and involve employees, clients, customers, and visitors.”

The National Institute for Occupational Safety and Health reports that the types of workplace violence can be categorized into four buckets:



Thursday, 17 January 2019 14:48


Job Description: As the Lead Technology Service Continuity Specialist, you will lead the disaster recovery program requirements. You will maintain close alignment with partners to develop, implement and support the disaster recovery function. We would love for you to use your experience to maintain the program and assure the recovery readiness of information technology and its critical functions. We want to bring to bear your skills and years of experience to drive these results by focusing on our company’s strategic plans; ensuring a forward-thinking future for yourself and XPO.

What you’ll do on a typical day:

Assist manager in designing and maintaining standards and policies for the disaster recovery program
Develop, maintain, and improve program processes and tools used to identify and protect critical systems and applications
Analyze possible risk scenarios which may jeopardize system availability
Develop risk mitigation strategies and recovery plans
Describe and outline critical systems/applications dependencies
Assist business continuity team in business impact assessment process
Address all aspects of disaster recovery testing: preparation, performing, communication, reporting, and post review
Identify test scenarios and criteria for critical applications
What you need to succeed at XPO:

At a minimum, you’ll need:

Bachelor's degree in Business, Computer Science, or Information Systems
7 or more years of experience in any of the following: leading and planning events, systems and/or people, project management and communication, disaster recovery, or leading the planning and executing of a large-scale disaster recovery or business continuity processes
Additional equivalent work experience may be substituted for the degree requirement
It’d be great if you also have:

Experience working within an information technology infrastructure library framework
Crafting and delivering process metrics and reporting experience
Experience working with third party vendors and/or software/hardware suppliers
Be part of something big.

How to Apply: 
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Thank You.

Cloud adoption is increasing and, at the same time, advances in technology are occurring at a rapid pace. In this article Joe Kinsella looks at six trends which business continuity and enterprise risk managers need to be aware of.

As we move through 2019, organizations will begin to fully embrace the technological advances that move companies beyond standard adoption, and instead prompt organizations to redefine how they use cloud across lines of the business, specific applications and wider infrastructures. After years of discussing Cloud 2.0, we have finally welcomed in a new era of cloud. Looking ahead at this Cloud 3.0, we will continue to see impressive cloud adoption across all industries and with this, a resolute determination from the cloud industry to build solutions and integrated data tools that best meet user needs. The cloud space is evidently getting more crowded, complicated and competitive - but what will be the key trends that we can expect to see this year?

#1 The rise of multicloud deployment

In 2019, multicloud will become the most dominant approach as organizations deploy diverse clouds and operations within a single heterogeneous infrastructure in order to meet their different services and needs. It will continue to be used as a key strategy in bringing choice to the organization to pick and choose specific solutions as business requirements become more challenging due to increasing demand for digital transformation. 

Leaders will choose multi-cloud strategies to avoid dependence on a singular cloud provider and mitigate the risk of a single point of failure so to reduce impact and financial risk across the entire enterprise. In a time when security threats are at their greatest, leveraging two or more service providers will greatly decrease the risk of disaster during downtime.