The Continuity Logic customized demo provides an opportunity for qualifying organizations to evaluate Frontline Live 5™, with their plans, desired controls, policies, and procedures. This first-of-its-kind system for both business continuity and many other areas of Governance, Operational Risk and Compliance (GRC) is powerful, but often best viewed with some of your familiar plans, data and templates.


Spring World 2016

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 28, Issue 3

Full Contents Now Available!

Jon Seals

Thursday, 11 June 2015 00:00

Rising Concerns Over Next Global Pandemic

As South Korean authorities step up efforts to stop the outbreak of Middle East Respiratory Syndrome, or MERS, from spreading further, the president of the World Bank Jim Yong Kim has warned that the next global pandemic could be far deadlier than any experienced in recent years.

Speaking in Frankfurt earlier this week, Dr Kim said Ebola revealed the shortcomings of international and national systems to prevent, detect and respond to infectious disease outbreaks.

The next pandemic could move much more rapidly than Ebola, Dr Kim noted:

The Spanish Flu of 1918 killed an estimated 25 million people in 25 weeks. Bill Gates asked researchers to model the effect of a Spanish Flu-like illness on the modern world, and they predicted a similar disease would kill 33 million people in 250 days.”



Thursday, 11 June 2015 00:00

Look Who’s Doing Risk Management

If you’re wondering how much risk management should become part of your organisation’s rulebook, you may already be looking around to see who else is doing it. Insurers and bankers are obvious examples, because their businesses are centred on risk calculation, whether in terms of setting insurance premiums or defining credit interest rates. Many insurers are also ready to discuss risk management with potential customers in a variety of different industry sectors. These can range from agriculture and aviation to sports and transportation. However, there are other perhaps unexpected examples that show how far the concept of risk management has spread in general.



Thursday, 11 June 2015 00:00

Is It Time for the Data Center OS?

It doesn’t take a lot of imagination to see the digital ecosystem as a series of concentric circles. On the processor level, there are a number of cores all linked by internal logic. The PC contains multiple chips and related devices controlled by an operating system. The data center ties multiple PCs, servers, storage devices and the like into a working environment, and now the cloud is connecting multiple data centers across distributed architectures.

At each circle, then, there is a collection of parts overseen by a software management stack, and as circles are added to the perimeter, the need for tighter integration within the inner architectures increases in order to better serve the entire data ecosystem.

It is for this reason that many data architects are warming to the idea of the data center operating system. With the data center now just a piece of a larger computing environment, it makes no more sense to manage pieces like servers, storage and networking on an individual basis than to have multiple OS’s on the PC, one for the processors, another for the disk drive, etc. As tech investor Sudip Chakrabarti noted on InfoWorld recently, the advent of virtualization, microservices and scale-out infrastructure in general are fueling the need to manage the data center as a computer so the distributed architecture can assume the role of the data center.



More than 20% of consumers use passwords that are more than 10 years old, and 47% use passwords that have not been changed in five years, according to a recent report by account security company TeleSign. What’s more, respondents had an average of 24 online accounts, but only six unique passwords to protect them. A total of 73% of accounts use duplicate passwords.

Consumers recognize their own vulnerability. Four out of five consumers worry about online security, with 45% saying they are extremely or very concerned about their accounts being hacked – something 40% of respondents had experienced in the past year.



(TNS) — The newly appointed director of the National Flood Insurance Program said the organization needs to focus more on the welfare of disaster victims and rethink gaps in coverage that bedeviled homeowners after superstorm Sandy.

Roy Wright, who takes over the federal program next week, said in an interview Tuesday that flood insurance policies have become laden with complex loopholes that nickel-and-dime homeowners and undermine their ability to rebuild after floods.

"The center of gravity needs to continue to shift in favor of the policyholder," Wright said.



MetricStream's Business Continuity Management App integrates with the Everbridge Unified Critical Communications platform to provide users an effective solution for end-to-end business continuity and disaster recovery management.

PALO ALTO, Calif. – MetricStream, the market leader in Governance, Risk, and Compliance (GRC) Management Apps, announced today that it is integrating MetricStream's Business Continuity Management (BCM) App with the Everbridge Unified Critical Communications platform to provide users with an integrated communication management capability that supports the end-to-end disaster recovery process.

The MetricStream Business Continuity Management App provides users with an advanced system to manage end-to-end business continuity and disaster recovery plans, including analyzing the impact of business continuity risks, creating and testing business continuity plans, and managing all related disaster recovery activities. The App connects BCM programs and processes with an enterprise risk management framework to ensure a risk-centric and data-driven approach is used to manage business continuity and disaster recovery efforts.

"Today's modern, global and highly networked organizations require the most advanced technologies to support real-time business critical communications," said Vasant Balasubramanian, Vice President of Product Management at MetricStream. "In the face of disaster, the ability to coordinate business continuity and disaster recovery activities both globally as well as locally is a top priority. By leveraging the integrated MetricStream BCM App and Everbridge Unified Communication platform, users will be able to more simply and accurately communicate key business recovery steps and notifications."

"This is a dynamic partnership that will provide customers with streamlined access to cloud and mobile apps for both GRC and critical communications," said Imad Mouline, CTO of Everbridge. "We're excited to deliver this powerful combination to enable corporations to improve risk management, business continuity and enterprise notification in the face of evolving cyber-attacks, IT outages and other security incidents."

The integration of business continuity, IT services continuity, cybersecurity, risk management, and crisis communications efforts can help organizations respond and recover quickly to complex and evolving threats. Organizations need to consider adopting a common platform to manage all IT and cyber risks, business continuity processes, and crisis management plans in order to meet increasingly stringent response and recovery objectives. The MetricStream Business Continuity App and Everbridge Unified Critical Communications platform supports real-time risk-based decision-making, protects reputation, and enables organizations to achieve greater resiliency by reaching the right people, at the right time, on their preferred device.

About MetricStream

MetricStream is the market leader in enterprise-wide Governance, Risk, Compliance (GRC) and Quality Management Solutions. MetricStream solutions are used by leading global corporations in diverse industries such as Financial Services, Healthcare, Life Sciences, Energy and Utilities, Food, Retail, CPG, Government, Hi-Tech and Manufacturing to manage their risk management programs, quality management processes, regulatory and industry-mandated compliance and other corporate governance initiatives. MetricStream's customers include UBS, Societe Generale, Pfizer, Philips, Cummins, Kellogg's, Mondelez International, SanDisk, and NetApp. MetricStream also owns and operates the www.ComplianceOnline.com portal - the largest GRC advisory network and one of the largest GRC communities. MetricStream is headquartered in Palo Alto, California, USA (www.metricstream.com).

About Everbridge

Everbridge is the leading unified critical communications platform trusted by corporations and communities of all sizes that need to reach the right people for immediate action, collaboration, and decision-making. Connecting more than 100 million people and internet-connected devices, the company provides reassurance that secure, compliant messages are delivered, locally and globally, received and responded to, no matter the recipient's location. Everbridge is based in BostonLos AngelesSan FranciscoBeijingand London. For more information, visit www.everbridge.com, read the company blog, http://www.everbridge.com/blog, and follow on TwitterFacebook and LinkedIn.

Scale Computing and ActualTech Media survey nearly 600 IT pros on IT Infrastructure

INDIANAPOLIS – Small to mid-sized companies struggle with storage complexity, data center complexity, cost, and time investments, according to the 2015 State of SMB IT Infrastructure Survey, conducted by ActualTech Media. 

Nearly 600 technology professionals from organizations with fewer than 500 employees responded to the survey, conducted from March 11th to March 25th by ActualTech Media principals Scott Lowe and David Davis for sponsor Scale Computing, the leading Mid-market provider of hyperconverged solutions combining storage, servers, virtualization, and management. 

Scaling the infrastructure – both servers/compute and storage – remains a challenge for 34 percent of respondents, and 24 percent cited infrastructure concerns including managing complexity, troubleshooting, and keeping infrastructure current. 

The study showed wide variety in the degree to which SMBs have rolled out virtualization. There was an even split among respondents, with 50 percent reporting that half or more of their servers are virtualized, and the other 50 percent saying less than half are. ActualTech Media credits this to it being widely known that not every workload is easily virtualized, and reluctance to move their mission critical applications to such environments. 50 percent of respondents also reported that they had dedicated less than 10 TB to server virtualization.

VMware vSphere is the most popular hypervisor in place, with 46 percent, followed by Microsoft Hyper-V at 25 percent, and all others combined representing 29 percent. 

“We believe that this data indicates an opportunity for SMB-focused infrastructure and hyperconvergence vendors to serve these customers and to make a significant impact when it comes to improving their operational efficiency,” said Scott Lowe, Co-founder of ActualTech Media. “This also presents an opportunity for education of this market, and helping SMB customers better understand that most of their workloads would be well supported with modern hypervisors and related tools.”

“We know SMBs are adopting virtualization to keep their infrastructures up to date, but questions about the current state from which they are evolving, what they are using, what challenges they have, and what they’re spending are too rarely asked of this important and diverse market segment,” said Jeff Ready, CEO of Scale Computing. “We leaped at the chance to work with ActualTech Media on this survey, which offers the most comprehensive information currently available on the needs of small to mid-sized companies.”

In addition to market studies, ActualTech Media services include custom whitepapers, webinars, videos, product reviews and more. For more information see www.actualtechmedia.com.

Scale Computing’s HC3® systems are designed to provide high availability, scalability and simplicity for SMB environments. The HC3 platform brings storage, servers, virtualization, and management together in a single, comprehensive system. With no virtualization software to license and no external storage to buy, HC3 products lower out-of-pocket costs and radically simplify the infrastructure needed to keep applications running. HC3 products make the deployment and management of a highly available and scalable infrastructure as easy to manage as a single server.

Survey - http://info.scalecomputing.com/l/46782/2015-06-10/fjfm5 

About Scale Computing
Scale Computing integrates storage, servers, and virtualization software into an all-in-one appliance based system that is scalable, self-healing, and as easy to manage as a single server. Using industry standard components, the HC3 appliances install in under an hour, and can be expanded and upgraded with no downtime. High availability insulates the user from any disk or server failure and a unified management capability driven by the patented HyperCore Software™, efficiently integrates all functionality. The result is a data center solution that reduces operational complexity, allows a faster response to business issues, and dramatically reduces costs. For more information, call 877-SCALE-59 or visit www.scalecomputing.com.

Many organizations are hesitant to adopt cloud services for cloud storage and cloud-based file sharing.  Although there are many customers that don’t understand cloud security (and don’t want to), slow adopters present a special challenge for managed service providers (MSPs).

One way to sell organizations on the importance of their own security practices is to point out how far cloud services have come in terms of safety and reliability.  How can you do this?  Here are some ways that MSPs can convince slow-to-adopt organizations to take responsibility for their data security:



Andrew MacLeod argues that insights into, and more importantly understanding of, an organization’s culture help to ascertain the risk appetite of an organization and can therefore be used to enhance organizational resilience. For an organization to truly enhance its resilience it needs to embed a culture of resilience at every level.

By Andrew MacLeod BA (Hons) MBCI

“The concept of organizational culture must be recognised as one of vital importance to the understanding of organization and all activities and processes operating within and in connection with organization.” (Brooks, 2003)

As Brooks states, the concept of culture and therefore insights into its operation within an organization are fundamental. However, to fully understand how culture can enhance organizational resilience, one must be clear by what is meant by both organizational resilience and organizational culture. This paper will define organizational resilience in the contemporary context and explore what is meant by culture. It will be demonstrated that culture is a complex field of study and that every organization has its own unique culture which is interwoven with concepts of individual and national culture. This paper will argue that insights into, and more importantly understanding of, an organization’s culture help to ascertain the risk appetite of an organization and these insights can be used to enhance organizational resilience. It will be shown that for an organization to truly enhance its resilience it needs to embed a culture of resilience at every level.



Businesses often struggle on with legacy server rooms due to budget constraints and fear of upgrade risks. In this article Mark Allingham challenges BC managers to face up to this problem.

One of the basic rules of business continuity management is to ensure that everyday information technology systems are protected and fit for purpose but often businesses struggle on with legacy server rooms. Mark Allingham challenges BC managers to

The server room is the beating heart of any but the smallest business. You rely on your servers for vital files, essential information and the day to day running of the organization, so any risk of failure is a considerable threat to business continuity. Legacy server rooms with outdated equipment and limited capacity are liable to power outages, downtime and worse. So any business continuity manager should consider carefully whether their existing server room is fit for purpose.