HIPAA Security Rule Toolkit — Free Offering from NIST

In a response to some of our reader’s questions and comment concerning the HIPAA Security Rule(s), our staff search activities recently came across a new tool offered by the National Institute of Standards and Technology’s (NIST) Information Technology Laboratory.  This “NIST HIPAA SECURITY TOOLKIT” is an easy to learn and easy to use resource intended to help organizations better understand the requirements of the HIPAA Security Rule(s), implement those requirements, and asses those implementations in their own organization’s operational environment. According to information received on … [Read more...]

Emergency Alert System Group Looks for Continuous Improvement Input

As a follow-up to an earlier posting on this website regarding our nation’s first-ever Nationwide Emergency Alert System (EAS) Test, held on November 9th,  U.S. based enterprise organizations, private sector companies and public community based emergency management entities are encouraged to attend a Federal Emergency Management Agency (FEMA) Integrated Public Alert and Warning System (IPAWS) special web event entitled “What’s Next for Improving the Emergency Alert System? – Nationwide EAS Test Findings and Observations, Lessons Learned and Way Forward."  In addition to FEMA IPAWS, the event … [Read more...]

Disaster Preparedness Family Resource Offered by the Sesame Street Workshop

In response to some inquiries from our readers asking for assistance for families to prepare and be ready for emergencies, our staff recommends a viewing of the Sesame Workshop Let’s Get Ready website. Recently, the Sesame Workshop group, along with its project partners, created a series of instructional and training videos -- one of which is called “Let’s Get Ready!  Planning Together for Emergencies. ™” Other preparedness “tool kits” vidoes offered on this site include: “Talk, Listen, Connect” – Resources and support for the special challenges faced by military … [Read more...]

ENISA Offers Free IT Security Awareness Training Videos in All 23 Official EU Languages

Does your organization struggle and need help training its workforce(s) in a foreign language regarding policies, procedures and strategies supporting their organization's information security compliance efforts?  The European Network and Information Security Agency (ENISA) has launched a series of free videos in all 23 official EU languages. Designed to help raise awareness of information security risks and encourage secure handling of electronic data, the 13 video clips range from how to use strong passwords and protect sensitive data to locking down and securing your computer. This … [Read more...]

Disaster Preparedness and Power Failure Response Strategy

  In a recent article written by Dr. Jim Kennedy, and posted on the ContinuityCentral website, Dr. Kennedy explains how to develop –step by step – a potential power failure response strategy. According to a recent Forrester Research survey nearly half of the declared disasters reported over a one-year period were due to power failures. To ensure that this type of event does not escalate into a disaster that results in business disruption and lost revenue for your organization you need to be prepared. And this requires a power failure response strategy as part of a wider business … [Read more...]

Black Friday / Flash Mobs / Risk Management

  Risk managers and business continuity planners of retail sales organizations consider many issues regarding potential increased levels of activities requiring proactive risk mitigation strategies during the start of the 2011 holiday shopping season.  However, it is a rather new dynamic for many of these risk management teams to consider flash mobs – e.g. groups of people that organize through social media to assemble suddenly in a public place – as a new threat in 2011. And while most of us may think of flash mobs as entertaining social gatherings, perhaps it is time to … [Read more...]

Cyberplanner Tool Now Available from FCC

The Federal Communications Commission (FCC), is now offering a new easy-to-use online tool to educate business owners about basic steps that they can take to protect their companies from cyber security threats and to actually assist in writing their own company’s Cybersecurity Planning Guide. This offering resulted from an unprecedented collaboration between government experts and private IT and security related companies. The online tool is available at www.fcc.gov/cyberplanner. This tool will be of particular value for businesses that lack the resources to hire a dedicated staff … [Read more...]

Disaster Preparedness and “The Waffle House Index”

The term “Waffle House Index,” was first coined by DHS Federal Emergency Management Agency (FEMA) Director W. Craig Fugate in the wake of the Joplin, Mo. tornado May 22, 2011. The index, based on the extent of operations and service at the Waffle House restaurant following a storm, is meant (according to Fugate) to indicate how prepared a business is in case of a natural disaster occuring in its general area of location. However it is also referenced in courses on supply chain risk management conducted by Panos Kouvelis, PhD, the Emerson Distinguished Professor of Operations and … [Read more...]

Cybersecurity Predictions for 2012 Report Released

In a recent PR release from Websense Security Labs, Dan Hubbard, chief technology officer, writes about his company's predictions of what will occur in Cyber Security in 2012. Since last year’s Websense Security Labs  predictions were very accurate, Hubbard’s predictions could prove to be very useful guidance for information security professionals trying to mitigate the expected risks involving cybersecurity in 2012. Here are some highlights of the seven (7) areas of predictions released: Your social media identity may prove more valuable to cybercriminals than your credit … [Read more...]

Risk Management Efforts Lead to Earnings Stability — New Report Findings

Judging from comments this website continues to receive, organizational business continuity and PS-Prep strategy planning groups have a full time job reminding and/or convincing upper management to invest in proactive risk management practices throughout the entire organization. The results of a recent study entitled “The Risk/Earnings Ratio: New Perspectives for Achieving Bottom-Line Stability” may be just what the doctor ordered to shed some light on this topic --- especially, given the fact that many organizations today continue to reduce budgeted capital and other resources across … [Read more...]