Spring World 2017

Conference & Exhibit

Attend The #1 BC/DR Event!

Fall Journal

Volume 29, Issue 4

Full Contents Now Available!

Jon Seals

Tuesday, 18 October 2016 00:00

Creating a Culture of Information Security

In today’s sensitive security landscape data protection must be a top priority for every organization. An information security culture is particularly important, especially with the arrival of the General Data Protection Regulation (GDPR), as encryption technology, firewalls and other tactics can only go so far to protect an organization’s data.

The GDPR is designed to better protect citizens’ data and harmonize legislation across Europe. The regulation brings a number of new guidelines for organizations in relation to Personally Identifiable Information (PII). This means organizations must take security, compliance and good governance seriously. But how can organizations ensure that a cultural appreciation of good security hygiene is ingrained within their business?



A well-paid, but heavy responsibility with a built-in ejector seat is one way of looking at the Chief Information Officer (CISO) position.

Data breaches can happen rapidly with devastating consequences and little or no possibility to undo the damage. Sales managers can see which way the wind is blowing in terms of sales revenue and financial directors can ask banks for a loan to shore up corporate finances.

However, security compromises may only come to light when your confidential company data is found offered for sale by hackers on the Internet. Naturally, if not always justifiably, the CISO is one of the first to suffer the backlash. In addition, the following career pitfalls await the CISO too.



As North Carolina residents work to recover from the recent flooding resulting from Hurricane Matthew, they should be on guard for and report suspicious activity of potential fraud and scam artists, identity thieves and other criminals who prey on survivors. The following are a few common post-disaster fraud practices:

Fraudulent phone calls or visits: Individuals claiming to be from FEMA and who do not have proper FEMA photo identification.

  • Survivors will be asked to provide their Social Security number and banking information only when registering for FEMA assistance. They should never give this information to contractors.

Fake offers of federal aid: A phone or in-person solicitor promises to speed up the insurance, disaster assistance or building-permit process for a fee. Other scam artists promise a disaster grant and ask for large cash deposits or advance payments in full.

  • Federal workers do not solicit or accept money.

  • FEMA and SBA staffers will never charge applicants for disaster assistance, inspections or for assisting individuals fill out applications.

  • If in doubt, survivors should not give out information.

Phony housing inspectors: If home damage is visible from the street, an owner/applicant may be especially vulnerable to fraudulent housing inspectors who claim to represent FEMA or the U.S. Small Business Administration (SBA). Applicants should ALWAYS:

  • Ask to see the inspector’s identification badge. A FEMA or SBA shirt or jacket is not proof of someone’s affiliation with the government. ederal employees and contractors carry official photo identification.

  • FEMA inspectors will already have applicants’ nine digit registration number.

  • FEMA inspectors will never require banking or other personal information.

    North Carolina residents should also be aware that FEMA housing inspectors verify damage. They do not hire or endorse specific contractors to fix homes or recommend repairs nor do they determine your eligibility for assistance.


    FS - North Carolina Survivors:  Avoid Disaster-Related Scams and Fraud – Page 2

    Fraudulent building contractors: Disasters also attract fraudulent contractors who offer to begin work immediately and request a cash advance payment. When hiring a contractor: 

  • Residents should only use licensed local contractors who are backed by reliable references and get written estimates from at least three contractors that include the cost of labor and materials. They should also read the fine print.

  • Residents should insist that contractors carry general liability insurance and workers’ compensation. If he or she is not insured, you may be liable for accidents that occur on your property.

  • Don’t pay more than half the costs of repairs upfront.

Bogus pleas for post-disaster donations: Dishonest solicitors may play on the emotions of disaster survivors. These solicitations may come by phone, email, letter or face-to-face.

  • Residents should verify legitimate solicitations by asking for the charity’s exact name, street address, phone number and website address, then phone the charity directly and confirm that the person asking for funds is an employee or volunteer.

  • Residents should not pay donations with cash.

  • Residents should request a receipt with the charity’s name, street address, and phone number.

Unfair Price Gouging:  North Carolina residents should also be on the lookout for price gouging by gas stations, hotels and other businesses serving disaster survivors in the state.

If you suspect someone is perpetrating fraud, call the FEMA Disaster Fraud Hotline at 866-720-5721, your local police department or the North Carolinas Fraud Hotline at 877-5-NOSCAM.

Even though commercial private cloud offerings can offer a lower total cost of ownership in many cases because of the prevalence of qualified administrators, 451 Research says TCO is just one factor in selecting a particular cloud model.

According to 451 Research’s latest Cloud Price Index, in many cases, security and control of private clouds outweigh any financial considerations when managing mission-critical apps.

While commercial private cloud offerings such as VMware and Microsoft currently offer a lower total cost of ownership when labor efficiency is below 400 VMs managed per engineer, when labor efficiency is greater than this, OpenStack is a better financial option. The report says that past this tipping point, all private cloud options are cheaper than both public cloud and managed private cloud options.



FEMA, Whole Community partners work to decrease earthquake, fire risks in Bay Area

OAKLAND, Calif. — This week marks the 27th anniversary of the devastating Loma Prieta earthquake that took place on October 17, 1989.  Two days later, on October 19th, marks the 25th anniversary of the Oakland-Berkeley Hills Fire that killed 25 people, destroyed more than 3,000 homes, and did an estimated $1.5 billion in damage.

Since then, the U.S. Department of Homeland Security’s Federal Emergency Management Agency (FEMA) has leveraged $866 million dollars to support the state of California’s efforts to reduce the risks of catastrophic earthquake and fire.  Federal dollars are leveraged with state funds to provide typically 75% of a projects cost.  In the Bay Area, $201 million has gone to various projects with $448 Million awarded in Los Angeles County.  These funds have been used for seismic retrofit projects, fire risk reduction and flood elevation projects to protect various types of critical infrastructure, including homes, local city governments and public schools and infrastructure. 

In the City of Oakland, FEMA recently approved a $3 million dollar grant for the Safer Housing for Oakland: Soft Story Apartment Retrofit Program that will retrofit 35-50 Oakland apartment buildings.  Also in Oakland, FEMA has approved $3 million for the Earthquake- Safe Homes Program that will retrofit and install seismic safety measures in up to 300 1-4 unit homes located within the City of Oakland.   This year, FEMA also has awarded $6 million dollars in seismic retrofits to the Los Angeles Unified School District and another $4 million in flood mitigation elevations in Sonoma County.   

Examples of some of the types of projects that have been have funded include:

•           $40 million in federal grants has been awarded for city hall seismic retrofits.

•           $171 million in federal grants has been awarded in seismic retrofits of schools.

•           $7 million in federal grants has been awarded for fire-resistant roofing.

•           $83 million in federal grants has been awarded for at risk buildings in the floodplain that were elevated or purchased and converted to open space.

FEMA is only one part of the community that is engaging and developing national, regional, public, and private sector risk reduction.  Several partners throughout the state have taken the call to action through advanced preparedness methods. 

The City of Los Angeles is committed to addressing resilience by strengthening the city’s physical, social, and economic foundations. The City has adopted far-reaching strategies to develop the tools needed to rebound from disasters. Programs like Soft-Story Retrofitting, the new JUMP START 5 Steps to Neighborhood Preparedness emergency planning tool and NotifyLA making individuals and neighborhoods more resilient against earthquakes for a stronger Los Angeles.

Following the 27th and 25th Anniversaries of the Loma Prieta Earthquake and Oakland Hills Firestorm, respectively; October 20, 2016 is International ShakeOut Day when millions of people worldwide participate in local Great Shakeout Earthquake Drills, at 10:20 a.m local time. Participants include individuals, schools, businesses, local and state government agencies, and many other groups.  To take part in The Great ShakeOut, individuals and organizations are asked to register to participate at www.ShakeOut.org. Once registered, participants receive regular information on how to plan their drill and become better prepared for earthquakes and other disasters.      


FEMA’s mission is to support our citizens and first responders to ensure that as a nation we work together to build, sustain, and improve our capability to prepare for, protect against, respond to, recover from, and mitigate all hazards.

New revision will lead to improved flood maps with both current risk and future climate conditions
New Yorkers will save tens of millions of dollars in flood insurance premiums as a result of City’s flood map appeal

NEW YORK – Mayor Bill de Blasio and the Federal Emergency Management Agency (FEMA) today announced an agreement to revise New York City’s flood maps. This is the result of the de Blasio administration’s 2015 appeal of FEMA’s flood risk calculations for New York City and the region, which mapped 35,000 more homes and buildings across the city into highest flood risk areas.

FEMA’s flood maps require homeowners in the highest flood risk areas to purchase flood insurance to cover the cost of flood damage, if they have a mortgage. Revised flood maps will provide New York City residents with more precise current flood risk data, in addition to providing a new map product reflecting future conditions that account for climate change. The innovative revisions will assist New York City in making coastlines more resilient and climate-ready, while ensuring homeowners are not required to purchase more insurance than their current flood risk requires.

“We are building a stronger, more resilient city to confront climate change. Our city needs precise flood maps that reflect real risks, both today and years from now—and we have to do that fairly. We will work closely with FEMA to ensure New Yorkers in the floodplain are prepared, and that the tools to make them more resilient, like flood insurance, remain available and affordable. We are grateful to FEMA to agreeing to this partnership,” said Mayor Bill de Blasio.

“We have been working with Mayor de Blasio and his administration throughout the appeal process to obtain additional data from city officials in order to ensure we have the most accurate maps possible,” said FEMA Regional Administrator Jerome Hatfield. “The coastal flood risk has not been updated since 1983, and this process required proper diligence and the City’s involvement, all accomplished through our partnership.”

“We applaud the administration for adopting, and keeping in place the preliminary maps for construction permitting, which will ensure the city is more resilient in the face of stronger and more frequent storms. We are committed to working together to identify the best path forward as the coastal flood hazard analysis is completed,” said FEMA Assistant Administrator for Mitigation Michael Grimm.

NYC’s Flood Map Appeal

During FEMA’s formal 90-day appeal period in the summer of 2015, New York City officials submitted technical analyses and data that revise the flood risk depicted in the preliminary Flood Insurance Study (FIS) and preliminary Flood Insurance Rate Map (FIRM) for New York City and the region. FEMA and City officials agreed that the information submitted during the appeal period should be utilized to revise the preliminary FIS study and preliminary FIRM. This effort will be funded by FEMA, and the City will continue to work with FEMA and provide expert input in the development of revised flood maps.

New, Future-Looking Flood Maps

In addition, FEMA and the City will work together to create a new methodology to incorporate the growing risks of climate change and sea level rise onto flood maps. This ground-breaking step will be based on the best-available science, as guided by the New York City Panel on Climate Change, and will result in a new set of flood maps for planning and building purposes that better accounts for the future risk of sea level rise and coastal storm surge. This will also protect the affordability of flood insurance, which will continue to be priced against the revised FIRMs depicting current flood risk.

“The City’s OneNYC resiliency program requires the best-available climate science and accurate flood maps," said Daniel Zarrilli, Senior Director, Climate Policy and Program and Chief Resilience Officer, New York City Mayor’s Office. “FEMA’s decision to redraw New York City’s flood maps, and to work with us to produce innovative, climate-smart flood maps, allows us to begin separating the calculation of annual insurance premiums against current risk from the necessary long-term planning and building we need to do as a city to do adapt to rising seas and climate change.  All homeowners should consider purchasing flood insurance to protect their homes and families.  Thanks to FEMA for agreeing to this important partnership.”

Flood Insurance Rates / Building Code Requirements

Until the new flood maps are issued, flood insurance rates in New York City will continue to be based on the prior effective FIRMs saving coastal households tens of millions of dollars per year, in aggregate. For those outside of the highest risk areas on those maps, flood insurance will remain less expensive; both FEMA and the City encourage residents to purchase this affordable flood coverage because we know that there is flood risk outside of the highest risk areas. Until new flood maps are developed that both accurately reflect current flood risk and also provide an assessment of future climate conditions for long-term planning purposes, the city’s building code will continue to reflect the 2015 preliminary FIRMs to ensure that new buildings are better able to withstand flood risk from rising sea levels and coastal storm surge, and so that recovery from Hurricane Sandy can continue without interruption.


Conveying flood risk accurately to affected residents is among FEMA and the City’s top priorities. As the maps are being revised, it is crucial that New Yorkers remain aware of their current and future flood risk. To ensure residents keep their home and finances safe, the City has launched a consumer education campaign directing residents to FloodHelpNY.org, a one-stop shop for flood risk information. Once the revised flood maps come in effect, additional extensive outreach and education programs will be provided for all communities.

Other Resources



(TNS) - Augusta showed off its hospitality to thousands of Hurricane Matthew evacuees, but officials say lessons can be learned from the rare occurrence.

Thousands fled coastal areas by car to the homes of friends and family and an estimated 22,000 stayed in Augusta, Ga., hotels. Hundreds of patients were evacuated to Augusta hospitals and nursing homes.

An additional 2,500 were under the direct care of the Richmond County Emergen­cy Management Agen­cy under an agreement, renewed in 2011, to shelter and feed up to 5,000 evacuees from Chatham County in Richmond County school facilities.



Fortinet's Advanced Security-as-a-Service (SaaS) Portfolio Hosted Locally in the European Union (EU)


Michael Xie, founder, president and chief technology officer at Fortinet
"Competing in today's digital economy requires businesses of all sizes to be agile, lean and scalable at a global level which is why so many look at cloud-based services. However, concerns about data security and privacy can often be perceived as a barrier to the adoption of such services. Fortinet built our new European cloud data center to eliminate these barriers and enable European business to adopt security solutions delivered from the cloud in the EU and enable their growth. Thousands of customers trust in Fortinet to deliver their security from the cloud everyday."

News Summary
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the opening of their new FortiCloud European data center based in Germany. Fortinet's new cloud data center enables European customers to leverage the broadest and most mature portfolio of hosted cybersecurity services in the market, with the confidence that their private data remains within European borders.

  • Fortinet's European cloud data center address privacy concerns and reduces compliance burdens, enabling enterprises in the EU to adopt cloud-based security solutions and realize the superior protections of the Fortinet Security Fabric.
  • The European cloud data center further extends regional support for Fortinet's extensive security solutions with higher performance, scalability, flexibility and simplicity.
  • Fortinet is a global leader in Network Security and the #1 security vendor in four countries across Europe, according to IDC's latest security appliance tracker.

Global Security, Local Data Privacy
Defending an organization against today's increasingly sophisticated and exponetially expanding threat landscape requires an integrated, collaborative and adaptive cybersecurity response. Fortinet's Security Fabric vision is changing the way businesses think about their security, delivering an integrated security architecture that scales to cover the entire organization and across attack vectors.

This new data center gives European customers ability to implement the advanced protections of the Fortinet Security Fabric with the flexibility to select the deployment models that best fit business goals. IT teams can realize the operational efficiencies of cloud services and leverage Fortinet's industry leading FortiCloud and FortiSandbox Cloud SaaS offerings with the assurance that their private data never leaves the region.

Fortinet's FortiCloud and FortiSandbox Cloud solutions hosted in the European data center are available now.

Additional Resources

  • FortiCloud analytics, log retention and provisioning services unify deployment, configuration and visibility across FortiGate, FortiWIFI and FortiAP security devices to protect organizations from IoT to the Cloud, with the Fortinet Security Fabric.
  • FortiGuard FortiSandbox Cloud Service offers proactive detection and mitigation of today's most advanced, persistent and targeted attacks using real-time threat intelligence that proactively adapts defenses across the Security Fabric.
  • Follow Fortinet on Twitter and LinkedIn, and Facebook.
  • Join the conversation on the Fortinet Blog.

About Fortinet
Fortinet (NASDAQ: FTNT) secures the largest enterprise, service provider, and government organizations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network - today and into the future. Only the Fortinet Security Fabric architecture can deliver security without compromise to address the most critical security challenges, whether in networked, application, cloud or mobile environments. Fortinet ranks #1 in the most security appliances shipped worldwide and more than 280,000 customers trust Fortinet to protect their businesses. Learn more at http://www.fortinet.com, the Fortinet Blog, or FortiGuard Labs.


Copyright © 2016 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and unregistered trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, FortiGate, FortiGuard, FortiManager, FortiMail, FortiClient, FortiCloud, FortiCare, FortiAnalyzer, FortiReporter, FortiOS, FortiASIC, FortiWiFi, FortiSwitch, FortiVoIP, FortiBIOS, FortiLog, FortiResponse, FortiCarrier, FortiScan, FortiAP, FortiDB, FortiVoice and FortiWeb. Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, binding specification or other binding commitment by Fortinet, and performance and other specification information herein may be unique to certain environments. This news release contains forward-looking statements that involve uncertainties and assumptions. Changes of circumstances, product release delays, or other risks as stated in our filings with the Securities and Exchange Commission, located at www.sec.gov, may cause results to differ materially from those expressed or implied in this press release. If the uncertainties materialize or the assumptions prove incorrect, results may differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Fortinet assumes no obligation to update any forward-looking statements, and expressly disclaims any obligation to update these forward-looking statements.

Tuesday, 18 October 2016 00:00

Symantec to Webcast Quarterly Earnings Call

MOUNTAIN VIEW, Calif.--()--Symantec Corp. (NASDAQ:SYMC) will webcast its quarterly earnings conference call on Thursday, November 3, at 5 p.m. ET / 2 p.m. PT to discuss the results of its fiscal second quarter, which ended September 30, 2016.

All interested parties are invited to listen to Symantec's chief executive officer, Greg Clark, and executive vice president and chief financial officer, Thomas Seifert, present the quarterly earnings results, highlights and guidance.

Investors will have the opportunity to listen to the conference call over the Internet through Symantec's Investor Relations website at http://investor.symantec.com/investor-relations/events-calendar/. To listen to the live call, please go to the website at least 15 minutes early to register, download and install any necessary audio software. For telephone access to the conference, call (844) 308-7865 within the United States or (708) 669-0631 from outside the United States. Please call 15 minutes early on November 3 and give the operator conference ID number 98652039.

For those who cannot listen to the live broadcast, a replay will be available on the website within 24 hours of the call.

About Symantec

Symantec Corporation (NASDAQ: SYMC), the world’s leading cyber security company, helps organizations, governments and people secure their most important data wherever it lives. Organizations across the world look to Symantec for strategic, integrated solutions to defend against sophisticated attacks across endpoints, cloud and infrastructure. Likewise, a global community of more than 50 million people and families rely on Symantec’s Norton suite of products for protection at home and across all of their devices. Symantec operates one of the world’s largest civilian cyber intelligence networks, allowing it to see and protect against the most advanced threats. For additional information, please visit www.symantec.com or connect with us on Facebook, Twitter, and LinkedIn.

Solution delivers monitoring and controls for sensitive and regulated HIPAA and ePHI data

RICHARDSON, Texas & NASHVILLE, Tenn.--()--Armor, a leading provider of managed cloud security, has been selected by BlueStrata, an electronic health records (EHR) software company, as its security partner. BlueStrata’s EHR solution, on display at the 63rd Annual American Health Care Association and National Center for Assisted Living (AHCA/NCAL) Convention and Expo in Nashville from Oct. 17 to 18, is hosted and secured by Armor Complete.

“BlueStrata recognized that they needed a partner to focus on cyber threats and complex regulations, so they can continue to deliver for their customers at a high level. Armor Complete helps make this easy, and we are grateful to have earned their trust.”

Tweet this

“Healthcare operates on very tight margins, especially in post-acute care,” said Tony Coco, president and CEO, BlueStrata EHR. “It is one of the least reimbursed aspects of healthcare, which means that providers are forced to do more with less while still delivering the same level of care. This will become an even more pressing issue as the median age continues to increase. With our solution, secured by Armor Complete, we can ensure that our customers can overcome this challenge and maintain a sustainable level of dependable and effective care through enhanced performance and cost efficiencies.”

BlueStrata EHR’s namesake product is a browser-based SaaS EHR software platform specifically designed for the long-term care. As the most comprehensive clinical and billing system in the industry, it integrates clinical, financial and point of care services to provide streamlined access and management of ePHI data regulated by HIPAA compliance standards. Through a tailored approach to customer support, which includes 24/7 live support and performance-indicated contracts, BlueStrata EHR delivers unique services and outcomes to its customers.

Armor Complete enhances security and controls through fully-managed hosting services delivered through the world’s most secure cloud. BlueStrata EHR can instantly monitor and defend their critical data and applications while also relying on Armor’s compliance expertise to meet HIPAA requirements. The solution was specifically designed to surpass demanding compliance standards and help customers remain “audit-ready” and secure year-round.

“The unique demands of long-term care place a special emphasis on data security, flexibility and compliance to remain efficient and profitable,” Jared Day, president, Armor. “BlueStrata recognized that they needed a partner to focus on cyber threats and complex regulations, so they can continue to deliver for their customers at a high level. Armor Complete helps make this easy, and we are grateful to have earned their trust.”

About BlueStrata EHR

BlueStrata EHR is a SaaS model electronic health record system designed and tailored specifically for the needs of the long-term care market. Our mission is to improve the quality of resident care while increasing operational, administrative and financial performance. The BlueStrata implementation process incorporates the customer’s work-flow into the training program and allows users to adapt quickly, integrating the full EHR solution throughout the organization. The system provides reliable, secure and HIPAA compliant storage of resident health records.

About Armor

The leader in active cyber defense, Armor offers customer-centric security outcomes for retail and eCommerce enterprises, healthcare organizations, payment leaders and financial institutions. Armor protects highly sensitive data for the most security-conscious companies in the world. With its proven cybersecurity approach and proprietary cloud infrastructure built specifically for security, compliance and performance, responsible businesses choose Armor to reduce their risk. For more information, visit armor.com or call 1-844-682-2858. For more information, visit armor.com or follow @armor.

Page 6 of 1149