• WHAT IF YOU COULD HAVE A CONTINUITY, COMPLIANCE AND RISK CLOUD SOLUTION THAT... INTRODUCING FRONTLINE LIVE 5 WHERE CONTINUITY AND COMPLIANCE CONVERGE

    Continuity Logic’s Frontline Live 5™ is the first leader in Gartner’s Magic Quadrant Business Continuity (BCMP) software category that has effectively converged continuity, risk and compliance in a one easy to use cloud-based solution.

Fall World 2015

Conference & Exhibit

Attend The #1 BC/DR Event!

Spring Journal

Volume 28, Issue 2

Full Contents Now Available!

Jon Seals

Acquisition Extends Courion’s Technology Leadership in Identity Analytics and Role Management and Grows European Presence

 

WESTBOROUGH, Mass. — Courion®, the market leading provider of intelligent identity governance and administration (IGA) solutions, is excited to announce the acquisition of Bay31 AG (“Bay 31”), an innovative provider of advanced access governance solutions that helps organizations ensure secure access to business processes and reduce the cost of compliance. The combination of the two companies will enable Courion to extend its technology leadership in identity analytics and enhance the company’s product offerings in role mining and role-based access control, particularly for large and complex applications.

Bay31’s solutions, which complement and interface with existing identity management products, leverage proprietary in-memory technology and data-mining algorithms that analyze high volumes of access control data in real-time.

 

Commenting on the acquisition Chris Sullivan, GM of Intelligence/Analytics at Courion said, “Bay31’s in-memory capabilities will enhance Courion’s existing intelligence and analytics offerings resulting in even faster solutions for the largest and most complex applications. This will enable us to solve important problems that the market has not even considered possible.”

 

In response to the acquisition, Cris Merritt, founder of Bay31, said, “We are thrilled to join Courion Corporation. The company’s perennial leadership in the Gartner Magic Quadrant for IGA and its installed base of customers will enable us to deliver dynamic analytics capabilities to organizations that need to better manage access to critical information and processes.”

 

Bay31 team members will be attending CONVERGE 2015 in Las Vegas May 19-21. Customers can meet the team and learn more about Bay31 at CONVERGE. For more information on CONVERGE 2015 and how to attend visit www.courion.com/converge.

 

To learn more about Courion’s intelligent IAM solutions for managing both the cloud and enterprise, contact (1) 866.Courion or info@courion.com.

 

ABOUT COURION

With deep experience and more than 600 customers managing more than 10 million identities, Courion is the market leader in identity governance and administration (IGA), from provisioning to governance to identity and access intelligence (IAI). Courion provides insight from analyzing the big data generated from an organization’s identity and access relationships so users can efficiently and accurately provision, identify and minimize risks, and maintain continuous compliance. As a result, IT costs are reduced and audits expedited. With Courion, you can confidently provide open and compliant access to all while also protecting critical company data and assets from unauthorized access.

To learn more, contact 866.Courion or info@courion.com or visit www.courion.com or follow linkedin.com/Courion-Corporation.

  • Leading French Identity and Access Management firm brings a suite of award winning, robust IT security products
  • Addresses the challenges associated with increased mobility, cloud based solutions, wearables and Internet of Things
  • Sets ambitious growth targets in UK as part of broader expansion plans - aiming to generate 50 per cent of revenue from outside France within five years

 

LONDON — Leading French Identity and Access Management (IAM) solutions firm, Ilex International, today announced its expansion to the UK, offering enterprises the highest level of IT security products. The expansion to the UK is part of a broader growth strategy, with an ambitious target to generate 50 per cent of its revenue from outside France within five years.

 

Formed in 1989, Ilex International is the clear IAM and IT Security leader in France. It serves sectors ranging from banking, finance and insurance, to defence, healthcare, Government departments and retail. Clients include Aegis Media, Air France, Airbus, Argenteuil Hospital Centre, Bank of France, Canal+, French Ministry of Defence, French National Assembly, Joint Chiefs of Staff, and Société Générale. Ilex’s suite of solutions includes access management and global Single Sign On (SSO), mobile SSO, identity and authorisation management, and authentication device management.

 

Identity and Access Management remains a significant consideration for UK enterprises, as many fail to adequately prepare and plan for this aspect of their business. This challenge can be compounded by a shortage of skilled staff, which negatively affects how organisations respond to IT security issues. While the instances of information security breaches in the UK were down slightly in 2014, 81 per cent of large organisations and 60 per cent of small businesses experienced a breach in the past 12 months.

 

“In a world of increasing and more impactful global cyber attacks, it has never been more important for businesses to get their IT security infrastructure in place,” said Thierry Bettini, Sales Director at Ilex International. “Too often, Identity and Access Management is an afterthought, but enterprises must show a commitment to it in order to know who has access to what on their IT System. Failing to adequately address and minimise the risk of cyber attacks could be catastrophic for a modern business.”

 

“Mobility is definitely the biggest challenge UK enterprises face with IT security. With the rise of BYOD, cloud based solutions, wearable technology and the Internet of Things - users and consumers have never been more mobile. Enterprises must take a holistic approach when it comes to mobile devices. Mobile can not be seen as an exception to security infrastructure, instead they must be managed by the same authentication, access and single sign-on solution. Ilex offers a complete and comprehensive solution for UK enterprises,” Mr Bettini said.

 

As part of their expansion to the UK, Ilex will open their first office in London and are currently seeking integration partners across the IT channel. For Ilex, partners are instrumental in ensuring the quality of service the clients require. The vendor proposes a partner program in order to build a long-term relationship of trust with its partners while maintaining a consistent development strategy.

 

Interested organisations should contact Thierry Bettini, partner@ilex-international.com, for more information.

 

 

About Ilex International

Ilex International is a European software vendor which specialises in Identity & Access Management solutions (IAM).

Their offer is centred around 4 products: Sign&go (Web Access Management, Enterprise SSO and Identity Federation), Meibo (workflow, provisioning and identity management), Meibo People Pack (a turn-key solution for enterprise employee lifecycle management) and IDen Park (a solution for managing the lifecycle of authentication devices).

Founded in 1989, the company is based in France and provides solutions and services in Europe and Africa through its Moroccan office. Our R&D and integration teams are composed of high level IT engineers who are passionate about IT Security. We have been providing, over the past 25 years, state of the art solutions, support and integration services to a large international customer base.

For more information : www.ilex-international.com

LONDON – Leading high-performance dedicated server hosting company 100TB, part of UK2 Group, today launched a new state-of-the-art Tier 3 data center in New York City. The data center incorporates redundant power sources, cooling equipment, and multiple 10Gbps uplinks to maximize uptime – in addition the data center is secured with multi-layer authentication to prevent unauthorized access – all of which makes it suitable for hosting mission critical servers and computer systems.

 

Located in Manhattan, the facility will benefit from fast, robust connections at one of the world’s largest international internet exchanges, the New York International Internet Exchange (NYIIX), which has fiber connections across the Atlantic Ocean and out to the rest of the United Sates.

 

The fully redundant energy-efficient cooling system, complete with 30” raised floors and advanced canopy cold aisle containment, ensures that racks are kept at an optimal temperature with maximum efficiency.

Designed for clients that need to offer maximum performance and to reach a high concentration of users on the East Coast, particularly in the New York metropolitan area, the new data center has achieved a number of certifications, including SSAE 16, HIPAA, PCI compliance, Safe Harbor and CPNI accreditation.

 

John Morris, COO UK2 Group, said: “The launch of our third owned data center is a significant element within the overall investments we have been making in our hosting services infrastructure. With businesses becoming more and more reliant on 100% uptime and looking to maximize performance, this new data center is key to delivering our mission to offer customers a first-class experience.”

 

Initially the facility will support the company’s Premium Network services with the intention to roll out a full-service offering in the coming months. There will be a wide range of servers available, including custom configurations.

 

This is 100TB’s third owned data center location, the company also owns facilities in Salt Lake City in Utah and London in the UK. In addition, 100TB holds capacity at SoftLayer data centers to enable a global reach.

 

About 100TB

Part of UK2 Group, 100TB owns and operates world-class data center networks in Salt Lake City and London. The infrastructure is second to none, harnessing the power of Cisco’s Nexus platform and ASR, the “designer labels” of web hosting technology. 100TB also uses capacity at SoftLayer operated networks, which utilize Juniper routing equipment, delivering high-performance hosting for customers globally.

 

About UK2 Group

UK2 Group is the parent company of a global group of web hosting brands which include UK2.net, WestHost, Midphase, VPS.net and 100TB. With head offices in the heart of start-up territory in Shoreditch, London, UK2 Group’s businesses offer a range of services including domain names, website builders, web hosting, VPS and dedicated servers.

Its founding brand, UK2.net, was launched in 1998 and has sold more than 1 million domain names to customers from more than 190 countries globally. The company also hosts thousands of shared and dedicated customers at its state-of-the-art, multi-million pound data centers in both the UK and US.

It is through the company’s combined experience and increased purchasing power that it is able to offer exceptional products at a price that most businesses, whatever size or stage of development, can afford.

    Data from a LogicNow survey shows global IT Service Management industry in discord

o      Significant misalignment between what services IT departments most want to buy and IT Service Providers try hardest to sell

o      71% of IT Service Providers want a more strategically-focused customer relationship – but only 13% of IT departments feel the same

o      45% of IT Service Providers invoice in a way that frustrates IT departments – and 53% are not planning to change

 

DURHAM, N.C.LogicNow, the world’s leading integrated IT Service Management platform provider, has today announced the results of its Global IT Service Providers Harmony Report, an annual healthcheck of the global IT Service Management market. Rather than find Harmony between IT Service Providers and their customers, the ‘compare and contrast’ survey found a concerning level of Discord between what customers need and expect, and what IT Service Providers are delivering.

 

LogicNow surveyed over 1,300 IT departments and almost 700 IT Service Providers across eight geographies: North America, UK, Germany, Italy, Brazil, Benelux, France and Australia & New Zealand, in order to gain an understanding of market needs across the globe, and if they were being met.

 

Key findings:

    IT Service Providers’ offerings fail to match IT Departments’ priorities: The research showed that IT departments initially reach out to IT Service Providers to help tackle an immediate, business-critical need. But in response, many IT Service Providers immediately try to offer a wider, more consultative service – prioritizing this above addressing the immediate requirement. Considering IT departments rank the provision of CIO consultancy at the very bottom of their priorities, this is an area of huge potential frustration for IT Service Providers’ customers.

 

 

IT Departments – What are the most important deciding factors in choosing potential IT Service Providers?

IT Service Providers - Which attributes do you emphasize most strongly in your promotional material and sales pitches?

1

Cost savings / advantages

Breadth of services / capabilities

2

Experience with companies with similarly structured IT estates

Cost savings / advantages

3

Experience with companies of your size

Experience with companies with similarly structured IT estates

4

Clarity of pricing structure

Ability to provide CIO-level consultancy

5

Breadth of services / capabilities

Clarity of pricing structure

6

Flexibility of pricing structure

Experience with companies of customer's size

7

Experience in your vertical

Flexibility of pricing structure

8

Ability to provide CIO-level consultancy

Experience in customer's vertical

 

    A misunderstanding of relationships: The researchfound a substantialdisconnectbetween IT Service Providers and IT departments in how their relationships should evolve. 71 percent of US IT Service Providers polled were keen for their customer relationships to move towards greater strategic consultancy – keen to offer wider, more diverse knowledge-based services. But only 13 percent of IT departments felt the same, with the remainder split evenly between wanting no change at all, and actually wanting morefocus on tactical, technical IT support instead.

 

    Future of Managed Security Service provision flawed: Askedwhere managed security offerings should improve, IT departments are most keen to see better email security; better web protection; and better anti-virus. IT Service Providers on the other hand are planning on prioritizing security consultancy and offering more proactive system updates and patching – both indicative of the misalignment in the relationship mentioned above. Indeed, IT departments ranked both of these “improvements” to the managed security offering towards the bottom of their priorities.

 

 

IT Departments – How do you want managed security offerings to evolve?

IT Service Providers – How are you planning to evolve your managed security offerings?

1

Improved email security

Security consultancy

2

Improved web protection

More proactive patching and system updates

3

Improved anti-virus

Improved web protection

4

Tighter endpoint security

Improved anti-virus

5

Provision of security education for employees

Improved mobile device security

6

Security consultancy

Improved email security

7

More proactive patching and system updates

Tighter endpoint security

8

Improved mobile device security

Provision of security education for employees

 

    Unfriendly pricing structures: 78 percent of US IT departments want to pay for Managed Security Services with a single invoice on either a monthly, quarterly or annual basis that encompass all the charges for all their IT security needs – technology licences and associated services combined. Concerningly, 45 percent of IT Service Providers are invoicing in exactly the wrong way; on an ad hoc basis – and even worse, 53 percent are deliberately not planning to change their invoicing processes in the next 12 months.

 

“At LogicNow, we champion the Managed Service Provider model. IT departments benefit most from proactive support rather than Service Providers simply reacting when things go wrong. And at the same time, it’s a more profitable business model for IT Service Providers,” said Dr Alistair Forbes, General Manager, LogicNow. “However, our Global IT Service Providers Harmony Report clearly shows that IT Service Providers need to be patient in their pursuit of this model and choose their timing carefully. Pushing strategic consultancy too early in the relationship gives an impression of under-valuing the immediate concern weighing heaviest on the customer’s mind. Businesses engage with Service Providers because they have a particular problem that needs solving. This must be addressed first to earn the opportunity of a strategic engagement later on.”

 

“However, despite the apparent Discord, there are positives that emerge from the research,” concluded Forbes. “The market opportunity for Managed Services remains buoyant – every researched country showed a strong appetite for outsourcing IT, and that Service Providers have a strong track record of closing managed services deals. The key to harmony and longer-lasting, profitable relationships between service providers and IT departments is the responsibility of the service provider to deliver a better customer experience.”

 

The full Global IT Service Providers Harmony Report is available for download at: http://wp.logicnow.com/harmony-whitepaper

 

About LogicNow

LogicNow was created when GFI Software restructured to support rapid growth across its portfolio. LogicNow, which includes MAXfocus (formerly GFI MAX), IASO cloud back-up and ControlNow (formerly GFI Cloud and Mail Essentials Online), delivers SaaS technologies under a subscription model.

As the world’s most widely-trusted managed service provider & IT support platform, MAXfocus has a decade of technology expertise, the backing of a 10,000-strong community and the industry vision to define and deliver the future of the MSP market. IASO is one of the leading brands in Hybrid Cloud Backup, Disaster Recovery Software and cloud storage for MSPs, large enterprises, telecommunication and hosting providers. ControlNow is an IT management solution for thousands of Corporations and is winning market share from traditional on-premises competitors as companies IT becomes more complex and fragmented and the need for management in the cloud increases.

(TNS) — Investigators rushed to the scene of a derailed Amtrak train in Philadelphia Wednesday morning as the death toll climbed to six after the deadly accident in one of the nation’s busiest transportation corridors.

Dawn showed the extent of the devastation from the Tuesday disaster with all seven cars of the Amtrak train askew, off the rails in a chaotic wreck. One car was seemingly collapsed like an accordion and three cars were overturned. The other three were a twisted mess.

Hundreds of rescue workers using heavy equipment were at the scene, searching for survivors.

“It is an absolute disastrous mess,” Philadelphia Mayor Michael A. Nutter told reporters. “I have never seen anything like this in my life.”

The train was carrying 238 passengers and five crew when it left Washington for New York Tuesday.

...

http://www.emergencymgmt.com/disaster/Train-Derails-Philadelphia-Killing-At-Least-5.html

(TNS)East Naples might not be the place most people think of when they think of rising sea levels, but that's what Jerry Kurtz sees.

On the north side of U.S. 41, not far from the Walmart, a weir that controls water flows into Haldeman Creek and eventually Naples Bay is one of four aging weirs that sit on the county's front line against climate change.

With the National Oceanic and Atmospheric Administration predicting sea levels to rise as much as 2 feet by 2050 and by as much as 6.6 feet by 2100, the new weirs being planned need to be built to handle any extra water that might slosh their way, Kurtz said.

...

http://www.emergencymgmt.com/disaster/Florida-Doesnt-Have-Plan-Rising-Sea-Levels.html

Wednesday, 13 May 2015 00:00

Cyber Losses vs. Property Losses

The financial impact of cyber exposures is close to exceeding those of traditional property, yet companies are reluctant to purchase cyber insurance coverage.

These are the striking findings of a new Ponemon Institute  survey sponsored by Aon.

Companies surveyed estimate that the value of the largest loss (probable maximum loss) that could result from theft or destruction of information assets is approximately $617 million, compared to an average loss of $648 million that could result from damage or total destruction of property, plant and equipment (PP&E).

Yet on average, only 12 percent of information assets are covered by insurance. By comparison, about 51 percent of PP&E assets are covered by insurance.

...

http://www.iii.org/insuranceindustryblog/?p=4057

 


Nearly nine in 10 financial services firms plan to increase their investment in risk management capabilities in the next two years in response to the emerging risks of cyber security and fraud, according to a new report from Accenture.

The Accenture 2015 Global Risk Management Study – based on a survey of more than 450 senior risk management executives in the banking, capital markets and insurance industries – found that 86 percent of respondents said their organizations plan to increase their investment in risk management capabilities in the next two years, with one in four (26 percent) planning to increase it by more than 20 percent. In addition, three in 10 respondents (29 percent) said their companies plan to increase by more than 20 percent their investment in cloud / software-as-a-service (SaaS) and big data and analytics.

The report found clear evidence of the increasing impact that cyber security and fraud is having on financial services firms’ business and the risk management function in particular.  For example:

  • More than one-third (34 percent) of respondents said that understanding cyber risk will be the most-needed capability in their risk function.
  • Nearly two-thirds (65 percent) of respondents said that cyber/IT risk will have an increased impact on their business in the next two years, with 26 percent saying that the increase would be significant.
  • More than eight in 10 respondents (82 percent) said that emerging risks, such as cyber and social media, account for more of the chief risk officer’s (CRO) time than ever before.

“The combination of market forces, advances in technology and customer demands are pushing financial institutions to become more digital and requiring a broader range of skills from today’s risk management professionals,” said Steve Culp, senior global managing director for Accenture Finance and Risk Services. “Financial services firms are struggling to keep pace with the demand for people with highly specialized skills, such as cyber risk experts, business analysts, security specialists and fraud experts. To fill these gaps, most firms will have to look outside of their organizations — and the competition for the right people is increasingly intense.”

The report indicates that the surging demand for talent by financial services institutions in recent years shows no signs of abating. While firms are focusing on enhancing their specialized skills, fewer than half (41 percent) claim to have extensive skills in understanding digital technologies. Only 10 percent said that their risk function has the resources needed in specialized areas like emerging risks.  Many respondents said that in the past two years, their recruiting has targeted cyber risk experts (cited by 48 percent of respondents) and fraud experts (36 percent), and 36 percent of firms said they have hired former hackers.

Rising impact of digital

In response to today’s low-growth, low-return environment, financial institutions are focusing on new paths to profitability. As a result, risk appetites are increasing, although in a targeted fashion.  More than four in 10 financial services firms (43 percent) said they have a higher risk appetite for developing new products than they had two years ago, and more than one-third (36 percent) have a greater appetite for taking on major digital initiatives. 

“At a time when the regulatory focus has never been keener, financial services firms are taking a hard look at their existing strategies and starting to identify where they want to extend their business to achieve growth,” Culp said. “The willingness to accept greater business risks will also expose financial services firms to emerging risks – including cyber, data privacy, reputational, social media and new conduct risks – requiring risk professionals to play an enhanced role.”

Nearly three-quarters (73 percent) of respondents said that managing emerging digital risks and the increased velocity, variety and volume of data challenge their ability to be effective. Fewer than one in 10 (9 percent) said that consistent and updated data is regularly available to decision makers across the organization.

Increased role of the risk function 

Increasingly, CROs seek to play a more strategic role in their companies. Only 36 percent of capital markets respondents and 29 percent of banks said that, when delivering regulatory change programs, their senior managers go beyond basic regulatory compliance, such as by integrating with ongoing change initiatives.  For firms that go beyond basic compliance, there is much greater coordination on regulatory issues between the risk function and the rest of the business.

At the same time, the majority of financial services firms have some distance to travel before risk management becomes fully aligned with broader strategic planning.  While more than eight in 10 respondents (83 percent) said they believe that risk management has contributed to enabling long-term profitable growth for their company, nearly three-quarters (73 percent) said that gaining the trust of the business is a top challenge to their effectiveness. Fewer than one in five respondents (17 percent) said that their companies have a framework that supports major strategic decision-making with input from risk management.

“CROs can help their institutions become digital leaders by capitalizing on the insights generated from the wealth of data they hold,” Culp said. “While many have said the increase in data has posed a challenge, risk teams can free up time by automating data collection and analysis in order to focus on more strategic management activities. Better data is required by regulation, but it will also help CROs advise their stakeholders on meeting key goals around risk-adjusted profitability and performance.”

www.accenture.com

A great start to the Australasian BCI Summit in Sydney today. If you are reading this at the Summit please come and find me to say hello. If you are not able to attend the event you can still interact with attendees and the ideas being presented via the Twitter tag

The theme for the conference is intriguing, “Looking to the future, learning from the past” and it will be interesting to see if this realises the potential. Good start thus far!

...

http://blog.vrg.net.au/conferences/4-things-we-can-do-to-help-bc-evolve-towards-resilience/

As so many IT security experts and analysts have preached through the years, small to midsize businesses (SMBs) should be just as concerned with cybersecurity as large enterprises. It seems the warnings are finally sinking in. A recent survey by the Endurance International Group shows that 81 percent of SMBs are currently concerned about cybersecurity and 91 percent think about it “often.”

In a release, Hari Ravichandran, CEO of Endurance International Group, says it’s time for small businesses to take cybersecurity to heart, but perhaps more should be done:

...

http://www.itbusinessedge.com/blogs/smb-tech/smbs-finally-realize-they-can-be-targeted-by-cyberattacks.html