Spring World 2015

Conference & Exhibit

Attend The #1 BC/DR Event!

Fall Journal

Volume 27, Issue 4

Full Contents Now Available!

Jon Seals

When I first started writing about Big Data, I was very curious about use cases. But CIOs, it seemed, were not. For many, Big Data provided an answer to problems they’d long struggled to solve.

So, Big Data wasn’t a hard sale for most IT organizations.

But investing in a Big Data tool is one thing: Learning to really leverage the data sets is quite another.

...

http://www.itbusinessedge.com/blogs/integration/trying-to-predict-big-datas-next-steps-to-success.html

Generally, any large company with a varied set of products has a communications department, but the name doesn’t accurately reflect what that unit does. I think this is about to change in a major way as technologies come together from a variety of companies to finally make “communications” not only more accurate, but also a much more strategic element of the modern company. I don’t think I’m the only person who sees a massive change coming. IBM has announced its intent to acquire Now Factory, which could give it a lead position in this new world of communications. Let’s talk about why communications departments don’t communicate and how that will change dramatically in the coming years.

...

http://www.itbusinessedge.com/blogs/unfiltered-opinion/the-strategic-future-of-corporate-communications.html

by: Ben J. Carnevale, Managing Editor

Wherever applicable, many organizations might well need to have solid business continuity plans and strong risk management teams in place to deal with the federal government shutdown.

One of most important things an organization may need to with the federal government shutdown is to consider the risks posed to that organization under such shutdown conditions.

Risk Register

One example might be that of a multi-national manufacturer working closely with the Department of Energy, Department of Defense and/or the intelligence community — one of the first things such a manufacturer might do is to take the threat of a government shutdown and place it on their “risk register” or any kind of identifiable early warning system that their business continuity plan might have for putting their organization on notice or at least putting this potential incident on the agenda for the next BC/DR or disaster preparedness team meeting.

According to JDSUPRA.com in an articled hededCQ Employees Who Work Abroad: Are They Covered by U.S. Employment Laws?, “just because an employee works beyond U.S. borders doesn’t automatically exempt him from the protections of the various federal employment statutes. This article provides a brief overview of the applicability (or inapplicability) of the major federal employment laws—Title VII of the Civil Rights Act of 1964 (Title VII), the Americans with Disabilities Act Amendments Act (ADAAA), the Age Discrimination in Employment Act (ADEA), the Fair Labor Standards Act (FLSA), the Equal Pay Act (EPA), and the Family and Medical Leave Act (FMLA)—to employees working abroad.”

Some of the U.S. laws apply even when the employee is working for an organization only controlled by a U.S. company.

According to the article from Bradley Arant Boult Cummings LLP, , not everyone working outside the U.S.’ borders are protected by Title VII, ADAAA, and ADEA. Excluded from the laws’ protections are “non-U.S. citizens even if they’re working abroad for an American employer or a foreign corporation controlled by an American employer, and U.S. citizens working abroad for foreign entities that are not controlled by an American employer.”

...

http://johnglennmbci.blogspot.com/2013/10/erm-bc-coop-americans-working-overseas.html

Wednesday, 02 October 2013 18:51

BCM 2000: Essentials of BCM Series

Looking for a course that is based on international standards?
 
Looking for templates and examples on how to develop a Business Continuity Management System that meets the requirements of the standards? 
 
Do you like to have fun (and maybe even laugh out loud!) when you learn?
 
Then BCM 2000: Essentials of Business Continuity Management is the course for you!  Download the Brochure 

Course Description 
BCM 2000: Essentials of Business Continuity Management provides you with knowledge to develop a standards-based, auditable, and actionable business continuity program for your organization.
This course is the critical starting point to developing a program that can be certified ISO 22301. It is comprised of 10 individual modules that can be taken as a series or in combination over time.

Essentials of Business Continuity Management provides the foundation necessary for new or current professionals interested in either developing a career in Business Continuity Management, seeking certification, or for those professionals responsiblefor developing a business continuity program for their organization.

It is designed to expose the participant to all aspects of a holistic BCM program and to be a solid "how to"guide for building a business continuity program for all types of organizations.


Student activities are included throughout the course and are designed as knowledge checks to reinforce lesson materials and to provide attendees with hands-on activities that will enable them to become familiar with and apply these principles in their jobs.

Delivery Structure
Essentials of BCM is offered as an elearning course that includes the following elements: Download the Brochure
  • Voice over ppts teaching online
  • pdf's of the course book
  • Templates of how to implement the requirements of the standards (sample policies, reports, etc.)
  • Multi-media that is relevant & fun!
  • BCI's 2013 Good Practice Guidelines 
  • Case study
  • Open for Business Toolkit
  • Course review activities to evaluate for comprehension
  • Practice exam questions (for DRII's Qualifying Exam)
  • Online essay for CEU credit  
  • Email access to a qualified expert for questions
  • Online CORS in BCM Certification Exam included in course fee 
Certification Requirements
Successful completion of the BCM 2000 series with a passing grade on the online CORS in BCM exam completes the educational component for certification as a Certified Organizational Resilience Specialist (CORS) in BCM.

null
Holders of the CORS certification are entitled to apply for statutory membership with the BCI at the AMBCI or MBCI level, subject to evidence of required experience.
With ISO 22301 as an international standard allowing companies to demonstrate their ability to cope with major threats; as well as provide a management systems approach to business continuity management, this course provides you with what you need todevelop a program that complies with these certification standards.

Register Here

Lynnda Nelson, President
The International Consortium for Organizational Resilience
Education@theicor.org
866.765.8321 US/Canada  +1630.705.0910 International Calls
 
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">BCM 2011:  BCM Program Development 
In order to develop a Business Continuity Management System, it is important to understand the requirements of management systems, the core concepts of business continuity, and how to determine the scope of the program, develop policy, and the requirements for leadership and governance. BCM 2011 provides an overview of each of these topics as the foundation for developing and managing the BCMS.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2021:  The Business Impact Analysis
The BIA process is covered from beginning to end with a focus on the identification of the organization's key products and services and the critical activities and resources that support them.  Examples of BIA data gathering questions, methodology, analysis and reporting provided. 
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2022: The Risk Assessment
Using the ISO 31000 standard on Risk Management as its basis, this course describes the process of conducting a risk assessment and analyzing the results to mitigate risks.  From risk identification, risk description, risk analysis, risk evaluation, risk communication, and risk reporting, this course covers the entire risk assessment process using an enterprise risk management approach.   A key requirement of the standards is the identification of the organization's risk appetite or acceptance and this course provides the methodology for this identification. In addition, BCM 2022 includes a review of different quantitative and qualitative methods for analyzing risk.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2023:  Developing Strategies / Options to Protect the Organization
This course introduces the student to the challenges of selecting the appropriate strategies / options
for the continuity and recovery of business processes, critical functions, operations and the supporting information technologies within the specified recovery time objective.  Building on the information gathered during the BIA and risk assessment, BCM 2023 explores how to evaluate the different strategies necessary for mitigating risk, continuing operations when possible, and recovering operations if interrupted. BCM 2023 reviews strategies for people, property, assets, technology and information, reputation, suppliers, and financial viability.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2031:  Plan Design, Program Structure & Required Documentation
In order to develop the actual plan documents the organization will need to decide on the approach, methodology and the plan document structure. BCM 2031 outlines the necessary roles and responsibilities of the members of the organization, the key elements that must be included in every plan type, and how to meet the requirements for managing documentation.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2032:  Incident Response, Management & Communications
Implementing procedures for responding to an incident of any kind, managing the incident, and ensuring successful communication with all interested parties before, during and after the incident is an essential requirement for all business continuity programs. BCM 2032 also ties to the requirements of ISO 22320 on Incident Management and PAS 200 on Crisis Management & Communications.  The objective of BCM 2032 is to develop and implement procedures for response to and stabilization of the situation following an incident or event, including establishing and managing an Emergency Operations Center and local command centers during the crisis.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2033:  Business Continuity & Recovery Plans
All of the procedures developed as part of strategy development need to be documented in the business continuity and recovery plan. BCM 2033 reviews the requirements for business continuity plans and how to document procedures according to ISO 22301.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2034:  ICT Continuity / IT DR Plans & Procedures 
The focus of the ICT Continuity and the IT Disaster Recovery Plan is on the IT infrastructure that supports the business operations and ensuring that the plan in place protects the key infrastructure of
the organization. ISO 27031 on ICT Continuity outlines the methodology for ensuring that the ICT infrastructure supports the BCM infrastructure to ensure that there are no unsupported critical processes and the RTOs can be met. BCM 2034 reviews the guidelines for ICT continuity under ISO 27031, ISO 27001, and NIST 800-34.
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2041:  Awareness, Training, Testing & Exercising 
Building a BCMS culture is an essential component of ensuring a successful program. Determining competence of all parties involved in the business continuity management system and increasing competence through awareness, training, testing, and exercising is a key component of this process and is vital to the success of the BCMS. BCM 2041 also aligns to the guidance of ISO 22398 for developing exercise programs. 
https://imgssl.constantcontact.com/letters/images/1101093164665/auto-titlebg1.jpg); color: #ffffff; background-repeat: repeat-x; font-family: Arial Narrow,Arial MT Condensed Light,sans-serif; letter-spacing: 2px; background-color: #900000; text-align: left;" rowspan="1" colspan="1" align="left">
BCM 2042: Program Evaluation, Improvement & Audit 
It is impossible to keep the BCM program current and actionable or to move to a management system without monitoring, measuring, analyzing, and evaluating the BCMS. BCM 2042 explores the requirements for internal audit and management review of the BCMS. Also included are the requirements for writing the audit report based on ISO 19011 and ISO 17022. 
If you would like to submit an article or presentation for a future ICORrespondence Newsletter submit it to Lynnda@theicor.org.

Training offered to help develop knowledge and technical skills unique to Healthcare Data Management

WOBURN, Mass. – BridgeHead Software, a leader in healthcare data management, today announced the introduction of a new series of technical training courses designed for health IT professionals. These courses encourage technical skills development and are organized around the types of healthcare applications that health IT professionals are responsible to manage, such as HIS/EMR, database, PACS, and Microsoft applications. Along with the new courses, BridgeHead has also introduced a new recognition program for professionals who complete the HDM courses.

See a complete list of the new HDM training courses at:

http://www.bridgeheadsoftware.com/services/training_and_education/

“Technical skills development is of paramount importance in today’s healthcare IT arena,” said Steven Giangregorio, VP of Professional Services, BridgeHead Software. “The sophistication of the technologies comprising IT infrastructure in hospitals has leap-frogged older technology environments within recent years, and the pace of change continues to accelerate. Health IT is now at the cutting edge of data management in the world among all industries. Expanding the breadth and depth of our training schedule provides health IT professionals with greater access to BridgeHead’s unique expertise and experience.”

With its HDM recognition program, BridgeHead hopes to help bring more awareness to the healthcare industry of the importance of skills development for its IT professionals, as well as recognition of skills excellence by health IT professionals, which rivals that of professionals in any industry. Recognized professionals will receive HDM Professional certificates suitable for use in social media profiles, as well as exclusive invitations to participate in the new HDM Professional group, which BridgeHead introduced on LinkedIn in Sept. Any health IT professional completing training with BridgeHead since Jan 2011 will be formally recognized into the program.

Interactive Resources

Join the HDM Professionals LinkedIn Group at: http://www.linkedin.com/company/45907?trk=vsrp_companies_res_name&trkInfo=VSRPsearchId%3A20859421378736013576

Follow the BridgeHead Software blog with our RSS feed at: http://www.bridgeheadsoftware.com/company/blog/

Watch BridgeHead instructive videos at: http://www.youtube.com/user/BridgeHeadHDM

About BridgeHead Software

With 20 years’ experience in data and storage management, and 12 years in healthcare, BridgeHead Software is trusted by over 1,000 hospitals worldwide. Today, BridgeHead Software helps healthcare facilities overcome challenges stemming from rising data volumes and increasing storage costs while delivering peace of mind around how to storeprotect and share clinical and administrative information.

BridgeHead’s Healthcare Data Management (HDM) solutions are designed to work with any hospital’s chosen applications and storage hardware, regardless of vendor, providing greater choice, flexibility and control over the way data is managed, now and in the future. For more information, visit http://www.bridgeheadsoftware.com or follow on Twitter at @BridgeHeadHDM.

 

First-of-Its-Kind Mobile App Provides Students, Faculty and Staff Actionable Emergency Guidance at their Fingertips

 

HERNDON, Va.  Pushing the technology envelope into emergency preparedness, In Case of Crisis, a mobile emergency response and business continuity solution, announced today that George Mason University has rolled out its mobile app solution to students, faculty and staff. With more than 32,000 students, 800 acres and four separate campuses, George Mason University is leveraging In Case of Crisis’ mobile app to proactively prepare the comprehensive university for specific emergency situations.

In Case of Crisis allows George Mason University to publish their specific emergency procedures and instructions via an online portal to faculties’, students’ and staffs’ Apple and Android mobile devices. This information is then saved to the In Case of Crisis mobile app for immediate access even when data and cellular services are lost.

“Like any high-growth institution with a diverse student population dispersed among multiple major campuses, we required a cohesive way to deliver emergency information into the hands of every person on campus,” said David Farris, Director of Emergency Management/Fire Safety, George Mason University. “The In Case of Crisis app allows George Mason to proactively address both major and minor emergencies and empower students, faculty and staff to take charge of their situations.”

Complementing George Mason University’s traditional emergency preparedness efforts, including posters, flipbooks, guides and a website, the university-branded In Case of Crisis mobile app offers easy-to-use and secure mobile plans for emergency and business continuity scenarios, e.g., fire, earthquake, active shooter, etc., as well as appropriate responses, including steps to take, visual aids and key emergency contacts tailored to their multiple locations and audiences.
 

“Most people today keep their smartphone even closer than their wallet or keys, so it is natural for students, faculty and staff to reach for their phone in the event of an emergency,” said Chris Britton, General Manager, In Case of Crisis. “Enabling everyone on campus to immediately know who to call, what to do, where to go and how to act at a touch of a button is a critical step for a institution like George Mason. In Case of Crisis gives administrators the flexibility to continuously update plans as campus needs evolve.”

The In Case of Crisis mobile solution allows institutions convenient and secure access to emergency information with features such as easy-to-read instructional and building diagrams, one-tap key contact calling, and push notifications for updates/alerts and maps. The app includes access to a library of 85 possible emergency event scenarios with templates and images or organizations can customize with their own event detailsdedicated client success team provides hands-on coaching and best practice tips for publishing emergency plans to mobile devices.  Additionally, the In Case of Crisis mobile solution emergency and business continuity plans can be tailored to support the needs of each audience within an institution.

 

About In Case of Crisis
In Case of Crisis is a purpose-built mobile emergency response and business continuity solution designed to allow organizations to publish their specific emergency procedures and instructions via an online portal to employees’, students’ and constituents’ Apple and Android mobile devices. With four editions including education, corporate, government and hospitality, the In Case of Crisis app promotes organization and business continuity by offering mobile users current, actionable emergency guidance when and how they need it, regardless of connectivity. In Case of Crisis is an Irving Burton Associates (IBA) service headquartered in Herndon, Va. For more information visit www.incaseofcrisis.com

 

BridgePoint Recognizes Nine Years of Providing Quality IT Business, Staffing and Managed Services Solutions to Customers Across Multiple Verticals
 
  • BridgePoint Technologies celebrates the ninth anniversary of its founding in 2004.  For the past nine years, BridgePoint Technologies has been dedicated to fulfilling the technology needs of small, mid-sized and enterprise businesses with its comprehensive suite of innovative, proven technology services and solutions.
  • Since its inception, BridgePoint has evolved from a small start-up into an established and trusted technology leader as well as one of Illinois’ fastest-growing private IT consulting firms, underscoring its expertise and commitment to serving its customers.
  • “Furthermore, this accomplishment reaffirms BridgePoint’s continued spirit of innovation as well as our ongoing pledge to quality service.  Such a momentous achievement would not be possible without the support of our valued customers, who have entrusted their technology needs to BridgePoint, as well as our talented BridgePoint team, who has devoted immeasurable effort into making the organization what it is today,” says Michael Millhouse, President and CEO, BridgePoint Technologies.
 
OAK BROOK, Ill.BridgePoint Technologies, a full service information technology consulting firm, celebrates the ninth anniversary of its founding in 2004.  For the past nine years, BridgePoint Technologies has been dedicated to fulfilling the technology needs of small, mid-sized and enterprise businesses with its comprehensive suite of innovative, proven technology services and solutions.
 
BridgePoint Technologies was founded by President and CEO Michael Millhouse, Vice President Brian Sharp, Vice President and COO Laura Barker, and Vice President and CTO John Gavilan.  Since its inception, BridgePoint has evolved from a small start-up into an established and trusted technology leader as well as one of Illinois’ fastest-growing private IT consulting firms, underscoring its expertise and commitment to serving its customers.  BridgePoint now employs over 35 full-time staff members and represents hundreds of customers across multiple industries and verticals.
 
“BridgePoint’s nine-year anniversary marks the organization’s ongoing commitment to our customers, team members, and partners,” says Michael Millhouse, President and CEO, BridgePoint Technologies.  “Furthermore, this accomplishment reaffirms BridgePoint’s continued spirit of innovation as well as our ongoing pledge to quality service.  Such a momentous achievement would not be possible without the support of our valued customers, who have entrusted their technology needs to BridgePoint, as well as our talented BridgePoint team, who has devoted immeasurable effort into making the organization what it is today.”
 
The last nine years of operation have been marked by countless and collective achievements that have contributed to BridgePoint’s milestone and continue to serve as a foundation for the company’s future initiatives.  BridgePoint’s anniversary celebration comes on the heels of several recent announcements including: the selection of BridgePoint’s Managed Services offering by Symphony Clinical Research℠, the acquisition of various strategic partnerships including Xamarin and Nintex, and the selection of VP and CTO John Gavilan as the Daily Herald Business Ledger Entrepreneurial Excellence Award winner for ‘Innovation’.  Leveraging a combination of its proven, enduring foundation as well as an unyielding commitment to innovation, BridgePoint is poised to excel and continue its success in the years ahead.
 
Learn more about BridgePoint Technologies by visiting www.mybridgepoint.com.
 
 
 
About BridgePoint Technologies
BridgePoint Technologies delivers innovative, scalable business solutions to help its clients reduce costs, increase revenue and gain competitive advantage through technology.  The company works closely with clients to understand their unique business needs and develop a roadmap on how best to achieve those goals, helping customers achieve maximum ROI utilizing traditional and emerging technologies. BridgePoint has three strategic business units – IT Staffing, IT Business Solutions and Managed Services – that offer a full suite of IT solutions to its clients, including custom and mobile application development, SharePoint and Virtual Office.  For more information about BridgePoint Technologies, please visit www.mybridgepoint.com.  Additional information about BridgePoint can be found on the company’s Facebook, Twitter and LinkedIn pages.

Wednesday, 02 October 2013 17:23

Scenario modeling is anything but a guess

Emergency management professionals say,  “The plan is useless, but the planning is priceless.”  There is a lesson in there for risk managers and it’s about the value of scenario modeling.

In 2010, the Federal Emergency Management Administration (FEMA) conducted a study to determine the likelihood and impact of a hurricane hitting New Orleans. FEMA assembled the paramedics, fire department, emergency room doctors, parish officials, and other responders in a hotel in New Orleans for "Hurricane Pam". Their goal was to plan for the worst-case scenario. The group was given the following scenario:

...

http://blogs.forrester.com/renee_murphy/13-10-01-scenario_modeling_is_anything_but_a_guess

Wednesday, 02 October 2013 17:21

5 Ways to Disaster-Proof Your Data Backups

PC World — The anniversary of Hurricane Sandy reminds us that businesses can fall victim to the forces of nature. Whether it's a blaze that burns through your office, or a flash flood that sends water coursing through your server room, disasters can hit at any time, and the most likely casualty is your data.

According the U.S. Small Business Administration, 25 percent of businesses never reopen after being hit by a disaster. But you can beat the odds by designing a backup plan that protects against worst-case scenarios. On the data storage front, having a single backup is not sufficient when the survival of your business hangs in the balance, so consider implementing at least two backup strategies.

...

http://www.cio.com/article/740722/5_Ways_to_Disaster_Proof_Your_Data_Backups