November 24, 2014

2014 US State of Cybercrime Survey Report Now Available

cyberville

Recently, a report entitled the “2014 US State of Cybercrime Survey” was released and made available to the public.  This survey was co-sponsored by PwC, CSO magazine, The CERT® Division of the Software Engineering Institute at Carnegie Mellon University, and the United States Secret Service.  Cybersecurity leaders from these organizations worked together to evaluate survey responses from more than 500 executives of US businesses, law enforcement services, and government agencies where they identified requirements for effective cyber security processes and procedures and evaluated these … [Read more...]

Emergency Management Planning Guide — Useful Writing Tips

Photo courtesy of pilotfishseo.com

Often our staff tries to avoid a “re-inventing the wheel” approach when addressing inquiries from our readers.  To that point and answering several inquiries of “how do I?” organize an Emergency Management or Disaster Preparedness guide for where I work, and for where I live …our staff reviewed its inventory of past articles and disaster recovery materials and decided to focus on a recent project completed in the Santa Rosa County in the state of Florida. Knowing that emergencies and disasters can happen anywhere and anytime, the Santa Rosa County Board of Commissioners supported and … [Read more...]

Cyber Intelligence Sharing Website Newly Launched

Our staff would like to bring your attention to the fact that U.S. retailers have recently joined forces and have launched a website called “Retail Cyber Intelligence Sharing Center”. In order to create a structure for this website and to better address the needs of the retail industry, the R-CISC was developed with input from more than 50 of America’s largest retailers, and in consultation with key stakeholders including federal law enforcement, government agencies and subject matter experts. For the record, the R-CISC is an independent organization, the focus of which is a Retail … [Read more...]

Business Continuity Management Systems Planning

Following the occurrence of a disruptive incident to your organization, what is your perception of how prepared your organization is to properly respond to that event and to provide a repeatable approach to minimize downtime resulting from that event? Do you believe that disaster preparedness is present in the planning capability or culture of your organization? Unfortunately, observed results of organizations reactions to disasters in many organizations, indicate that a “business continuity management” "BCMS) awareness is often not given enough attention. Once your organization is able to … [Read more...]

Risk Frontier Survey 2013 — What Really Matters to Risk Management Professionals

Risk Frontier Survey 2013

Many of our readers should find the topics and outcomes of the 2013 Risk Frontier Survey interesting reading.  Although largely centering of matters of the European risk and insurance management community, this survey has valuable information that applies to all organizations in all parts of the world. New risks require new thinking – and, this is why “The Risk Frontiers Survey” is so worthwhile as it delivers an in-depth picture of the current state of the risk management profession, gleaned from its leading practitioners.  It also outlines the big risk issues and ideas on how risk … [Read more...]

Context Aware Security: Is It Time for Your Organization to Implement this Approach in Protecting Its Assets?

Photo Courtesy of ComputerWeekly.com

Has your organization adopted a “context aware” IT security model?  Perhaps, it has adopted a single password model of IT security approach ---and, if it has done so, then as members of your organization’s information and network security team, it is your responsibility to at least consider the benefits of moving beyond an IT security equivalent of “putting all your eggs in one basket” to an IT security model smart enough to add context to a security event. As Leon Ward states in a recently posted article, “…..context aware security is the use of situational information (such as identity, … [Read more...]

Free Online Small Business BC / DR Planning Tool Now Offered by IBHS

emergency planning

Keeping your doors open for business is a concept that the Insurance Institute for Business & Home Safety (IBHS) has promoted for many years with its long standing popular business continuity planning toolkit.  Many of our website readers are familiar with this disaster preparedness planning tool. As the anniversary of Hurricane Sandy approaches, our staff research team found that IBHS has just recently launched a free, online version of their business continuity planning toolkit ----entitled OFB-EZ™ (Open for Business-EZ).  This online version is a somewhat streamlined version which … [Read more...]

Red Teaming Course Now Offered by Watermark Institute

Photo courtesy ooda.com

Amy E. Hutchens, CCEP, General Counsel, Vice President Compliance & Ethics Services at Watermark Risk Management International, LLC – and a contributing writer to this website -- has brought our staff’s attention to a valuable disaster preparedness resource stemming from the recent launching of “Red Teaming” courses now offered by the Watermark Institute led by its director, Dr. Mark Mateski. Red Teaming According to the “Red Team Journal” publication, red teaming is the practice of viewing a problem from an adversarial, competitive, or contrarian point of view. Red teams seek to … [Read more...]

“In Case of Crisis” Mobile App Version Embraced by George Mason University

iPad desirulez dot net

Our staff recently was informed of a new emergency and disaster preparedness free mobile app solution called the “In Case of Crisis” mobile solution. The “In Case of Crisis” mobile solution --  created and developed by Irving Burton Associates (IBA) --allows institutions – e.g. educational, corporate, government or hospitality -- convenient and secure access to emergency information with features such as easy-to-read instructional and building diagrams, one-tap key contact calling, and push notifications for updates/alerts and maps. The app includes access to a library of 85 possible … [Read more...]

Mobile Device Threats in Corporate Environments are Real and Costly

Photo courtesy of desirulez.net

While few risk management teams would fail to recognize the growing potential for information security threats involved in mobile devices, the fact remains that a lack of integrated mobile security is continuing to cost companies in terms of everything from lost productivity to lost data. Cyber criminals also continue to target mobile workers as easy potential access portals to a company’s backend IT infrastructure. As a result, many organizational security risk management teams can argue that their company might need to supplement its integrated mobile defense program with a coherent … [Read more...]