Spring World 2015

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 27, Issue 3

Full Contents Now Available!

Jon Seals

The steady drip of data breaches on the news and in consumers' lives isn't doing anything to build confidence in the state of today's business environment. At the heart of the matter: data privacy, or perhaps more accurately, the lack of it.

A new report from PwC, "10 Minutes on Data Privacy," points out that privacy is evolving beyond a risk and regulatory issue. Winning consumer trust is essential, and privacy polices directly correlate with brand image. How businesses manage data privacy and communicate with customers says everything about public perceptions of trust.

According to the report, 89 percent of consumers surveyed said they avoid doing business with companies they believe do not protect their privacy online, and 85 percent of investors said boards should be involved in overseeing the risk of compromising customer data.

...

http://www.itbusinessedge.com/articles/were-at-a-crossroad-for-data-privacy.html

This week I want to examine in more detail the good news coming out of the 2014 Annual Report on the State of Disaster Recovery Preparedness from the Disaster Recovery Preparedness Council .  Based on hundreds of responses from organizations worldwide, the Annual Report provides several insights into the best practices of companies that are better prepared to recover from outages or disasters.

You can download the report for free at http://drbenchmark.org/

I want to examine why some companies appear to be doing much better at preparing for outages by implementing more detailed DR plans.

...

http://drbenchmark.org/better-prepared-organizations-implement-more-detailed-dr-plans/

TUCSON, Ariz. – On his 50th birthday, John Halamaka, the CIO of Beth Israel Deaconess Medical Center in Boston, was surrounded by his senior staff having cake. Then his second-in-command came in with "some" news.

A physician had gone to the Apple store and returned with a MacBook, downloaded email, and then left the office. When he returned, the new MacBook was gone. On it was a spreadsheet embedded in a PowerPoint with information on 3,900 patients, data for which the hospital was responsible.

The hospital issued a news release, in which Halamka pointed out how the incident was being treated, "extremely seriously," but also being used to bring about change. In this case, accelerating implementation of a program to assist employees with protecting devices they purchase personally.

...

http://www.cio.com/article/749133/A_CIO_Who_Masters_Disasters

Network World — Cisco's Application Centric Infrastructure (ACI) is a revolutionary re-thinking of how to provision and manage data center networks. While the early version we looked at has some rough edges, and Cisco still has some hard problems to solve, ACI has the potential to completely change the way that large, highly virtualized data center networks are configured and built.

Just so there's no confusion, ACI is not Cisco's version of Software Defined Networking (SDN). While SDN, for many network managers, is a solution in search of a problem, ACI is something entirely different. It's Cisco's attempt to solve the most significant and important problems facing data center managers: how to more closely link the provisioning of data center networks with the applications running over those networks.

The goal is to reduce human error, shorten application deployment times, and minimize the confusion that can occur when application managers and network managers speak very different vocabularies.

...

http://www.cio.com/article/749030/Cisco_ACI_Re_Imagines_the_Enterprise_Data_Center_Network

Don Thomas Jacob provides BYOD risk management advice.

BYOD adoption in the enterprise has increased significantly over the last couple of years and the trend is here to stay. While BYOD has been incorporated into some enterprises’ organizational strategy, there are numerous organizations where BYOD has been initiated by the employees themselves and many network administrators are still working out how best to manage the trend.

It is only with practical experience that network administrators can fully understand the problems associated with BYOD and the best methods to solve them. Many organizations are looking for immediate answers and most IT and network admins do not have the time to experiment with various technologies and solutions or research for the right tool to use in the network for BYOD monitoring or management.

Enterprises often begin implementing BYOD strategies by having additional authentication mechanisms, a separate VLAN and a wireless network for handhelds. While this may seem to be the quickest method to adopt BYOD, it also brings with it numerous problems. In addition to the everyday upkeep and maintenance of the enterprise network, IT admins have to take care of mobile device management, bandwidth issues and most importantly keep an eye on possible security issues. In fact, BYOD leaves the network open to a plethora of security issues.

...

http://www.continuitycentral.com/feature1150.html

Poor disaster recovery practices have led to losses of up to $5M

PHILADELPHIA, Pa. – The Disaster Recovery Preparedness (DRP) Councilannounced today findings from its 2014 annual benchmark study which show that 73% of respondent organizations worldwide are not taking adequate steps to protect their data and IT systems. According to participants, poor planning, testing and technological deficiencies have led to more than $5M worth of critical applications failure, data center outages and data loss.

...

http://drbenchmark.org/global-benchmark-study-reveals-73-of-companies-are-unprepared-for-disaster-recovery/

March 3, 2014

Risk vs. Impact

The Risk

Hundreds of thousands of religious extremists are set to march on Jerusalem. Whether or not "hundreds of thousands" will descend on the Israeli capital is to be seen. My guess is that the turnout will be less than expected, but still there will be a sea of black hats.

In preparation for this event, Israel has ordered streets closed, trains to stop running, and buses to stay at the bus station.

The Impact

Whether or not the risk of the mass demonstration occurs - in any volume - the risk already is impacting the capital.

The impact is that people won't be able to 

*    Go to work

*    Go to school

*    Go shopping for essentials (bread, milk, etc.)

*    Get to a hospital or clinic if necessary

Essentially they are trapped in their neighborhoods, if not their homes.

...

http://johnglennmbci.blogspot.com/2014/03/for-what-does-planner-plan-risk-vs.html

IDG News Service — Sears Holdings said a review of its systems does not show evidence yet of a data breach as retailers continue to stay on guard in the light of payment card terminal hacking at Target and Neiman Marcus.

The department store chain, with 2,500 stores in the U.S. and Canada, is the latest company to say it is investigating a possible breach, following the hotel management company White Lodging Services and the arts and crafts chain Michaels.

"There have been rumors and reports throughout the retail industry of security incidents at various retailers, and we are actively reviewing our systems to determine if we have been a victim of a breach," wrote Howard Riefs, director of corporate communications at Sears Holdings, in an email.

 ...

http://www.cio.com/article/749018/Sears_Says_it_Finds_No_Evidence_Yet_of_Data_Breach

National Severe Weather Preparedness Week March 2-8

During National Severe Weather Preparedness Week March 2 to 8, the National Oceanic and Atmospheric Administration (NOAA) and the Federal Emergency Management Agency (FEMA) are calling on individuals across the country to Be a Force of Nature: Take the Next Step by preparing for severe weather and encouraging others to do the same.

Just one tornado can cause catastrophic damage. Last year, the EF 5 tornado that struck Moore, Okla., on May 20 killed 24 people and caused more than $2 billion in damage. In 2013, a total of 903 tornadoes were reported in the United States. Those tornadoes occurred in 43 states on 152 days, resulting in 55 fatalities and more than 500 injuries.

As more people move to tornado-prone areas, knowing what to do when severe weather strikes could save lives.

“With the devastation of last year’s tornadoes fresh in our minds and springtime almost here, I urge individuals to become weather-ready now,” said NOAA National Weather Service Director Dr. Louis Uccellini. “Make sure you have multiple ways to access forecasts and warnings from NOAA’s National Weather Service before severe weather strikes.”

“Being ready today can make a big difference for you when disaster strikes,” said FEMA Administrator Craig Fugate.  “It only takes a few minutes.  Talk with your family and agree to a family plan. Learn easy steps on how to prepare at Ready.gov and find out how your community can take action in America’s PrepareAthon through drills, group discussions and community exercises.”

Our severe weather safety message is simple: know your risk, take action, be an example.

• Know Your Risk: The first step to becoming weather-ready is to understand the type of hazardous weather that can affect where you live and work, and how the weather could impact you and your family. Sign up for weather alerts and check the weather forecast regularly.

• Take Action: Make sure you and your family are prepared for severe weather. Your family may not be together when a storm strikes, so plan how you will contact one another by developing your family communication plan. Make sure you put together an emergency kit and store important papers and valuables in a safe place. Visit Ready.gov/severe-weather to learn more about how to be better prepared and how you can protect your family when severe weather strikes.

• Be an Example: Once you have taken action, tell family, friends, and co-workers to do the same. Share the resources and alert systems you discovered through your social media network. Technology today makes it easier than ever to be a good example and share the steps you took to become weather-ready. Share these new videos to help your friends and families to prepare.

• Get Weather Ready: Before a Tornado - http://youtu.be/uE66ganofF0

• Get Weather Ready: During a Tornado - http://youtu.be/_5TiTfuvotc

• Get Weather Ready: After a Tornado - http://youtu.be/UQ94ESZulA8

NOAA and FEMA’s involvement in the innovative Wireless Emergency Alerts (WEAs) project, a new text-like message system, is part of a national effort to increase emergency preparedness and build a Weather-Ready Nation. Last year millions of individuals across the country received WEAs with life-saving weather warnings via their cell phone. These geographically targeted emergency alerts have allowed people to receive weather warnings they would not have otherwise received, and many people took life-saving action. For more information, visit www.ready.gov/alerts.

NOAA’s mission is to understand and predict changes in the Earth's environment, from the depths of the ocean to the surface of the sun, and to conserve and manage our coastal and marine resources. Join us on Facebook, Twitter and our other social media channels.

FEMA's mission is to support our citizens and first responders to ensure that as a nation we work together to build, sustain, and improve our capability to prepare for, protect against, respond to, recover from, and mitigate all hazards. http://www.ready.gov/

With data from 15,000 customers and over 100 insurance executives, consulting firmCapgemini and Efma found that enhancing customer experiences directly impacted insurers’ profitability. “Given the increasing demand of internet and mobile channels in insurance, digital transformation is an effective approach to create positive experiences, secure customer loyalty, and ultimately improve insurers’ profitability,” the report states.

While many insurers say they are working to improve the user experience, ratings have only increased by about 2% worldwide, with only 32% saying they had positive experiences with their provider. Further, nearly 70% of customers reported that they are considering switching carriers. Digital presence is increasingly important in making customers happy, according to the study. For example, while internet-mobile is the least likely channel to offer a good experience, it has the greatest impact when successful. Overall, as Capgemini and the MIT Center for Digital Business found in 2012, firms with a strong digital presence and customer focus are 26% more profitable.

In addition to the new report, Capgemini released the following infographic with their findings:

...

http://www.riskmanagementmonitor.com/digital-presence-may-improve-critical-customer-satisfaction-for-insurers/