Spring World 2015

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 27, Issue 3

Full Contents Now Available!

Jon Seals

This document builds upon the current practice of CERTs with responsibilities for ICS networks, and also on the earlier work of ENISA on a baseline capabilities scheme for national/ governmental (n/g) CERTs (make an internal link to the main 'baseline capability' page). The document is an initial attempt to provide a good practice guide for the entities that have been tasked to provide ICS Computer Emergency Response Capabilities (ICS-CERC). On the other hand, this guide does not have the ambition to prescribe to the EU Member States which entities should be entrusted with provision of ICS-CERC services.

Dec 04, 2013


When end users circumvent the IT department and start using software-as-a-service (SaaS) applications without permission, the IT pros complain about the plague they call "shadow IT." But it would seem the professionals are also operating in the shadows, according to a survey out today.

The report entitled "The Hidden Truth behind Shadow IT," was a collaboration of consultancy Frost & Sullivan and McAfee. The survey asked 300 IT pros and 300 line-of-business employees whether they used SaaS applications in their jobs without official approval. Eighty percent admitted they did, with only 19% of the business employees and 17% of IT claiming to be innocent.



I’m starting to see more pieces about using master data management (MDM) with Big Data.

If the very idea gives you a headache, you’re in good company — but stick with me. I’ve been juicing vegetables, and feel energetic enough to tackle some questions about the topic.

Do people really combine MDM and Big Data, or are vendors just piling hype on top of hype?



A recently released study by IBM that involved more than 4,000 C-suite leaders from 70 countries, including hundreds of midmarket leaders, gave interesting insight into digital strategies employed by various companies. Among the results are some compelling facts about how small to midsize businesses (SMBs) view their digital influence on their customers.

Of those SMBs who responded, 43 percent believe their company has an integrated physical and digital strategy already in place. The study identified that digitization of information is changing the way businesses relate with customers:



CHICAGO, IL -- The U.S. Department of Homeland Security’s Federal Emergency Management Agency (FEMA) and Illinois Emergency Management Agency (IEMA) urge Illinois residents affected by recent severe storms, straight-line winds and tornadoes to be alert for potential fraud and to keep these points in mind:

  • A FEMA inspector will first contact you by phone to arrange a visit to your damaged home or apartment to determine if you have uninsured, eligible losses. A FEMA inspector will always have an official badge visible during the inspection. Ask to see the badge before allowing him/her to enter your home.
  • FEMA will not contact you requesting your personal information to process a prepaid credit card.
  • FEMA does not charge for information that it gives out. Apply free online at www.DisasterAssistance.gov or call 1-800-621-3362 (TTY 1-800-462-7585).
  • FEMA does not send out text messages asking recipients to call fee-based telephone numbers. The toll-free numbers above are used for all contact with FEMA, including applying and follow-up.
  • FEMA and the U.S. Small Business Administration do not charge fees for information regarding filling out the SBA loan applications. Free assistance is available by calling SBA’s toll-free number, 1-800-659-2955 (TTY 1-800-877-8339).

Anyone with knowledge of fraud, waste or abuse may call the FEMA Fraud Hotline at 1-800-323-8603. You may also send an email to DHSOIGHotline@dhs.gov. Complaints may also be made via the FEMA Helpline at 1-800-621-3362 (TTY 1-800-462-7585) or with state or local law enforcement officials or consumer agencies.

FEMA's mission is to support our citizens and first responders to ensure that as a nation we work together to build, sustain, and improve our capability to prepare for, protect against, respond to, recover from, and mitigate all hazards.

Follow FEMA online at twitter.com/femaregion5, www.facebook.com/fema, and www.youtube.com/fema.  Also, follow Administrator Craig Fugate's activities at twitter.com/craigatfema. The social media links provided are for reference only. FEMA does not endorse any non-government websites, companies or applications.


SAN FRANCISCO IObit, the provider of system utility software for PC and mobile security, optimization and maintenance to over 10 million active users, today announced the release of its outstanding all-in-one utility, Advanced SystemCare Ultimate 7, for top PC security and PC performance. With greatly expanded database and re-designed handy UI, Advanced SystemCare Ultimate 7 sets a new standard for PC protection and optimization.

Recent reports showed that PC and Internet security is still one of the hottest affairs that family users are concerning about. Family users are suggested to pay close attention to the security problem of their PC and privacy as more online financial transactions are involved in daily life. Advanced SystemCare Ultimate 7, the anti-virus version of award-winning system utility Advanced SystemCare, comes to the market with both No. 1 ranked Bitdefender anti-virus engine and IObit exclusive anti-malware engine, which makes this antivirus program much more professional in detecting and removing virus, spyware, malware as well as protecting computers from various malicious attacks, privacy disclosure, and scams in real time. To strengthen its protection capability, Homepage Protection is newly added to further protect users’ homepage and search engine from undesired modification. Apart from this, Surfing Protection provides family users with Parent Control setting to help parents create a clean and secure Internet environment for their kids. Meanwhile, Advanced SystemCare Ultimate 7 is fully compatible with other antivirus programs.

Also, Advanced SystemCare Ultimate 7 inherits all the features of newly released Advanced SystemCare 7 to optimize family users’ PCs and maximize their benefits. For example, in Toolbox, IObit Uninstaller 3, an independent uninstall tool developed by IObit, is free to provide users with a simple, smart and effective way to powerfully scan and uninstall stubborn programs. Especially, it is good at removing browser toolbars, extensions, and plug-ins to greatly improve the online security with light and clean browsers.

"Advanced SystemCare Ultimate 7 is a real all-in-one solution for family users. Comparing to Advanced SystemCare 7, it not only speeds up and optimizes PC but also protects them from all kinds of threats and malicious attacks. Advanced SystemCare Ultimate 7 is highly recommended to family users for everyday use." Says Antonio Zhang, Marketing Director at IObit.

Now Advanced SystemCare Ultimate 7 is available for download on Softonic.com and IObit.com. It also provides full support for Windows 8.1, IE 11, as well as 31 languages. To celebrate this new release, IObit will provide their customers with once-per-year special offer - 70% off, US$29.99 for 1 year subscription for 3 computers.

About Advanced SystemCare Ultimate 7

Advanced SystemCare Ultimate 7, an all-in-one program with No. 1 ranked Bitdefender anti-virus engine and IObit’s exclusive anti-malware engine, provides comprehensive, automated and effective protection against all kinds of security threats, malicious attack and fixes system slowdowns, freezes and crashes. For more information, please download its free trial here: http://www.iobit.com/advanced-systemcare-antivirus.php

About IObit

Founded in 2004, IObit provides consumers with innovative system utilities for Windows, Mac, and Android OS to greatly enhance their performance and protect them from security threats. IObit is a well-recognized industry leader with more than 100 awards, 200 million downloads and 10 million active users worldwide.


NOC Provides 100% Critical Uptime, Availability and 24x7 Monitoring & Support for RSNAnet
  • INOC announces today the completion of a temporary NOC for the Radiological Society of North America (RSNA®) 2013 Annual Meeting, taking place December 1-6, 2013 at McCormick Place in Chicago, IL.
  • The network, exclusively built and monitored by INOC, delivers premium Ethernet services using a flexible Juniper virtual switching fabric along with equipment from Extreme, Fortinet and Blue Coat.
  • “From providing access to meeting programs and exhibit and session information to enabling the efficient exchange of radiological images, INOC delivers critical uptime for our network - creating a safe, reliable and always-on networking environment for both RSNA and its members,” says Steve Drew, Assistant Executive Director, RSNA.

NORTHBROOK, Ill.INOC, LLC, a 24x7 Network Operations Center (NOC) and global provider of NOC monitoring, reporting and support services, announces the completion of a temporary NOC for the Radiological Society of North America (RSNA®) 2013 Annual Meeting, taking place December 1-6, 2013 at McCormick Place in Chicago, IL.  The NOC supports the RSNA network (RSNAnet), providing 100% network uptime as well as critical availability for the duration of the six-day conference.

The RSNA is an international society of radiologists, medical physicists and other medical professionals with more than 53,000 members from 140 countries across the globe.  Its Annual Meeting is the world’s premier event in medical imaging, bringing together more than 700 exhibitors and over 55,000 attendees to educate the market about the industry’s latest technological innovations and scientific advancements. INOC has built a temporary NOC at the convention facility to monitor and manage the RSNA network, which is backed by INOC’s primary and Disaster Recovery NOCs in Madison, WI and Chicago, IL.  The NOC leverages INOC’s NOC Operations Platform and implements detailed processes and procedures for monitoring and managing RSNAnet 24x7.
The network, exclusively built and monitored by INOC, delivers premium Ethernet services using a flexible Juniper virtual switching fabric along with equipment from Extreme, Fortinet and Blue Coat.  A virtual server infrastructure using VMware is used to run DNS, DHCP and a variety of additional monitoring tools, including NetFlow and sFlow tools to support both remote and on-site incident response teams.  RSNAnet spans 120 network closets covering two million square feet of floor space and meeting rooms.

“As the world’s most important annual event in medical imaging, maintaining optimal network availability is critical to the daily activities as well as the overall success of RSNA’s Annual Meeting,” says Steve Drew, Assistant Executive Director, RSNA.  “From providing access to meeting programs and exhibit and session information to enabling the efficient exchange of radiological images, INOC delivers critical uptime for our network - creating a safe, reliable and always-on networking environment for both RSNA and its members.”  

“RSNA’s temporary NOC is strategically designed and purpose-built to provide 100% uptime and high performance to support all facets of RSNA’s networking activity.  Furthermore, our experienced engineers monitor the network 24x7, ensuring rapid identification and resolution of any issues before they can become service-affecting,” adds Ben Ludeman, Manager of Network Services, INOC.  “We understand the technical requirements needed to fulfill the unique uptime needs of the RSNA; with INOC, the society can be confident that its network will not go down.”

For more information about INOC, visit www.inoc.com or email info@inoc.com.  To schedule a meeting with INOC at the RSNA Annual Meeting, email inoc@imillerpr.com.
INOC is a 24x7 NOC and global provider of outsourced NOC monitoring and reporting services for enterprises and carriers.  From a primary NOC in Madison, WI, and a Disaster Recovery NOC near Chicago, IL, our 24x7 staff provides a hands-on approach to incident resolution.  INOC proactively processes critical IT support issues and delivers timely information to improve the uptime, availability and performance of applications, servers, and networks.  A client web portal, NOCVIEW4, provides extensive reporting capabilities and visibility into IT infrastructure monitoring and support activity in real-time.  INOC cost-effectively integrates 24x7 NOC support into a client’s existing IT operation to deliver greater uptime.  For more information on INOC and its services, send an email to info@inoc.com or call (877) NOC-24X7 (877-662-2497).  You will also find additional information on our website, www.inoc.com, or by following INOC on Twitter, LinkedIn and Google+.

Expansion represents Webtrends' growth and leverages ViaWest’s SOC-compliant Hillsboro facility

PORTLAND, ORWebtrends today announced the expansion of its global SaaS operations to ViaWest’s Data Center Complex in Hillsboro, OR. The expansion is a strategic move to reinforce the commitment Webtrends continues to make to its customers by providing the best security and uptime.  

“We handle billions of transactions a day and reliability, availability and security are primary considerations for Webtrends and our customers,” said Bruce Kenny, Executive Vice President of Product at Webtrends. “ViaWest provides world-class operations with proactive compliance with SSAE 16/SOC 1, 2 and 3 and overall security. This and their partnering model was a crucial factor in our choosing them as our data center partner. We are pleased to expand with ViaWest as they share our fanatical focus on being the very best stewards of our customers’ digital assets.”

ViaWest is one of the largest privately-held cloud computing and managed services providers in North America with 27 data centers across the country. The Hillsboro data center complex features more than 50,000 square feet of usable space, the latest in energy-efficient systems, and is the largest SSAE 16/SOC 1, SOC 2 and SOC 3-compliant facility in the state of Oregon. The facility also has 8.5 megawatts of backup power generation to ensure, in the unlikely event of power loss, Webtrends operations will not be affected.

“Webtrends is well known for their success in working with many of the world’s largest and most well-known brands,” said Jim Linkous, Regional Vice President Sales and General Manager for ViaWest. “Webtrends'  requirements are at the highest levels of compliance and security with a 24/7 workload. We are proud that we met their stringent demands and that Webtrends entrusted ViaWest with continuing their unmatched reliability and security record. We look forward to continuing to provide first-class colocation services as Webtrends grows into the future.”

SSAE 16, also called Statement on Standards for Attestation Engagements 16, is a regulation created by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA) for redefining and updating how service companies report on compliance controls. SSAE-certification is a highly sought-after requirement for brands that want to provide customers a well-understood format for control compliance reporting, underscoring the commitment to industry best practices, and safeguarding information.

About Webtrends Inc.
Webtrends offers a portfolio of digital solutions that help brands understand consumer behaviors and enable them to act on those insights in the very moment they need to act. Utilizing advanced big data analytics, Webtrends solutions provide a consistent customer experience across all digital channels on any device the customer uses, helping brands remain connected and relevant to their customers, increase productivity and maximize yield on investments. 

Webtrends invented the analytics industry and is continually re-inventing it for more than 2,000 global brands including, Lloyds Banking Group, Barclays, HSBC, ASOS, Microsoft, BMW, Toyota, Play.com, AllSaints, The Telegraph and many more.

About ViaWest

ViaWest is the leading colocation provider in North America. We enable businesses to leverage both their existing IT infrastructure and emerging cloud resources to deliver the right balance of cost, scalability and security. Our data center services include a comprehensive suite of fully compliant environments, premium wholesale and retail colocation, private and public clouds and managed services. For additional information on ViaWest, please visit www.viawest.com  or call 1-877-448-9378. Follow ViaWest on LinkedInTwitter or visit their YouTube channel.

BridgeHead partner INHS implements secure, on-site private Cloud that lets hospital protect its data within the firewall

Chicago, Ill.  BridgeHead Software today announced that The Good Shepherd Medical Center (GSMC), a progressive, not-for-profit hospital located in Hermiston, Oregon, has deployed the BridgeHead Software Health Data Management (HDM) platform in a private Cloud as part of its overall disaster recovery strategy.  Implemented by BridgeHead partner INHS, the new disaster recovery environment is helping Good Shepherd to align with MEDITECH best practices.

INHS helped Good Shepherd to install BridgeHead’s MEDITECH ISB and IDR Backup as well as the BridgeHead MEDITECH SCA Archiving Agent both in the hospital’s primary and secondary data center.  The combined BridgeHead HDM platform gives Good Shepherd Medical Center a single solution for protecting both its MEDITECH system and its MEDITECH image server with all its enterprise image stores. As a result, the hospital IT staff is confident in the effectiveness of its protection and is experiencing the following benefits from its BridgeHead HDM platform:

·         Shortened Exposure – Instead of one nightly snapshot, the hospital completes a snapshot every four hours for more effective backups in a shorter amount of time.

·         Successful MEDITECH SCA Protection – Overcoming the size constraint of its MEDITECH SCA, the hospital is successfully doing ongoing policy based archiving.

·         Local and Remote IDRs – With completion of primary and secondary data centers, the hospital is able to do backups in each location for disaster recovery protection.

·         Capacity Pricing – Enables hospital to add as many new virtual machines as necessary without worrying about the expense of licensing each new agent as it comes online.

“BridgeHead’s cloud-enabled backup and archive allows Good Shepherd Medical Center to protect three times as much data – including the enterprise images that we could not protect before -- in the same amount of time,” said Rob Rizk, Director, Information Technology at Good Shepherd Health Care System. “It’s also put us on a path to MEDITECH best practices, which means that if we need their help in recovery they have the expertise to help us where before working with  BridgeHead it might not have been that easy.”

BridgeHead enables two types of cloud solutions for hospitals:  backup-to-cloud and archive-to-cloud. BridgeHead’s cloud-enabled backup solutions make use of block-level deduplication to ensure efficient use of both local and remote storage as well as to reduce network bandwidth. BridgeHead’s cloud-enabled archive capabilities use file level deduplication and compression to achieve the same purpose. With options for data encryption in-flight and at-rest, these solutions transform the possibilities for hospitals to securely manage and protect all application and data types.

“BridgeHead’s cloud solutions are helping hospitals to achieve their disaster recovery strategies without forsaking their need to maintain their data within the firewall,” said Chad Skidmore, director of infrastructure and technology, INHS. “BridgeHead allows hospitals to create policies that identify older, static data on their primary file server platforms and copy or move that content to a centrally managed archive where it is de-duplicated, compressed and encrypted.”

Interactive Resources

Read the BridgeHead blog: Debunking the Fear of Cloud for Healthcare IT

Download the INHS hospital cloud solutions sheet: http://www.bridgeheadsoftware.com/resources/inhs_hospital_cloud_solution_sheet_resource/

Learn more about cloud solutions for healthcare with links to resources and industry commentary by visiting the Hospital Cloud Knowledge Center at:


About INHS

With over 20 years of extensive experience, INHS provides a wide range of MEDITECH related infrastructure solutions including hardware refresh, virtualization, data migration, data center migration, and implementation. INHS leverages strong relationships with BridgeHead Software, IBM, HP, and NetApp to deliver fully tested and certified MEDITECH solutions. As one of MEDITECH’s largest hosting partners, INHS hosts and operates large MEDITECH environments including the integration of a wide range of applications typically found in a hospital environment.

About BridgeHead Software

With 20 years’ experience in data and storage management, and 12 years in healthcare, BridgeHead Software is trusted by over 1,000 hospitals worldwide. Today, BridgeHead Software helps healthcare facilities overcome challenges stemming from rising data volumes and increasing storage costs while delivering peace of mind around how to storeprotect and share clinical and administrative information.

BridgeHead’s Healthcare Data Management (HDM) solutions are designed to work with any hospital’s chosen applications and storage hardware, regardless of vendor, providing greater choice, flexibility and control over the way data is managed, now and in the future. For more information, visit http://www.bridgeheadsoftware.com or follow on Twitter at @BridgeHeadHDM.

VESTA®/Sentinel® 4 system’s geo-diversity allows three public safety answering points in San Bernardino County to now operate as one

TEMECULA, Calif. Cassidian Communications, an EADS North America company, today reports that Public Safety Answering Points (PSAPs) in San Bernardino County, Calif. have increased operational efficiency and enhanced interoperability following the implementation of the latest release of its VESTA®/Sentinel® 4 system.

The release of this next-generation 9-1-1 (NG9-1-1) call taking system was tested during the last year in close collaboration with the communications managers for the San Bernardino County Sheriff’s Department (SBCSD) and the consolidated fire dispatch center, CONFIRE. The PSAP operations at Valley Control Center (VCC), Desert Control Center (DCC) and at CONFIRE now have industry leading capabilities, including user role and agency selection at login as well as interoperability between PSAPs.

The enhanced VESTA/Sentinel 4 system makes it possible to configure applications, displayed information and workflows for each user based on their role selected at login. This allows 9-1-1 supervisors to quickly and efficiently adapt to changing operational requirements, such as unusually high or low call volumes.

In addition, the new multi-tenancy/multi-agency capability makes it possible to create virtual ‘agencies’ within a single VESTA/Sentinel 4 system, assigning specific resources (i.e. call detail records, lines groups, user roles and layouts) to specific agencies. The ability to select an agency at user login gives 9-1-1 budget managers the opportunity to maximize operational benefit from existing resources, enabling them to assist their fellow PSAPs when help is necessary or time allows.

Because of its geo-diverse design, the VESTA/Sentinel 4 NG9-1-1 call taking system also allows the main PSAPs at VCC and DCC, along with the secondary PSAP at CONFIRE, to be connected via a wide area network with redundant links. Should one PSAP become unavailable, one of the other centers is capable of running the entire network, providing the county with sophisticated backup, disaster recovery and overflow operations.

SBCSD has relied on Cassidian Communications’ call taking technology for more than 15 years to serve approximately two million residents across 20,000 square miles. Together the three centers receive nearly 1.2 million calls annually.

“The concept of what we wanted to do this time is very different. Our goal was to create interoperability between the three centers so we can share call volumes and work load. The VESTA/Sentinel 4 system with dual servers and geo-diversity is exactly what we were looking for,” said Brian Acosta, CONFIRE communications manager and county 9-1-1 coordinator. “I don’t think I’ve ever worked with a company that has the level of care for the customer experience that Cassidian Communications does. It’s clear the Cassidian Communications’ team wanted to understand what we were looking for and were committed making it happen.”

All three San Bernardino County PSAPs also use Cassidian Communications’ Aurora® MIS (Management Information System) to facilitate reporting of data from the VESTA/Sentinel 4 NG9-1-1 call taking system. Ron Dunn, communications manager for DCC, said the Aurora MIS saves him time by enabling him to quickly run reports on call volume, talk time, 911 vs. non-emergency calls and more. The system also separates information by call center so information as broad or as narrow as needed is accessible.

“The VESTA/Sentinel 4 system provides us with added functionality plus the user interface is familiar to our end users, which was very important to us. We like the fact that the user interface is so easy to modify,” said Cyndee Freeman, communications manager for VCC. “Cassidian Communications has been very attentive to our needs, really listening to what we want and committed to making sure our system works as planned. We are really appreciative of their service and ongoing support.”

About Cassidian Communications (www.CassidianCommunications.com)

Cassidian Communications, an EADS North America company, is a global leader and trusted source for mission-critical communications technologies, including NG9-1-1 call taking systems, emergency notification solutions and services, and P25 land mobile radio networks and LTE. For over four decades, Cassidian Communications has upheld its promise to keep people connected when it matters most, consistently designing solutions with an open mind and creating smarter, more effective ways to ensure communities are safe. For Cassidian Communications, “Critical matters”. The company is headquartered in Temecula, Calif., with facilities located in Richardson, Texas, Franklin, Tenn. and Gatineau, Quebec.

About EADS North America (www.eadsnorthamerica.com)

EADS North America is the U.S.-based operation of EADS, a global leader in aerospace, defense, and related services. EADS contributes more than $14 billion to the U.S. economy annually and supports over 225,000 American jobs through its network of suppliers. EADS North America, headquartered in Herndon, Va., offers a broad array of advanced solutions to meet U.S. military and commercial requirements, including fixed- and rotary-wing aircraft, homeland security systems, public safety communications, defense electronics and avionics, and threat detection systems.