Fall World 2017

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 30, Issue 2

Full Contents Now Available!

Jon Seals

Jon Seals

There has always been some degree of risk involved in transporting dangerous goods (DG)/hazmat, with the responsibility for compliance typically assigned solely to the compliance or shipping department. Today, with more than 1.4 million DG shipments being made daily in the U.S. and a greater number of goods now classified as hazardous, that risk has multiplied exponentially — and so have rules and regulations.

The challenge of ensuring compliance with these complex and changing regulations is made even more difficult due to shifts in responsibility within many organizations, with the role of hazmat compliance now often involving a number of divisions, including IT, supply chain, compliance, warehouse, shipping, EHS (environmental, health and safety) and more.

The path to safety and compliance requires a commitment to developing the necessary infrastructure, establishing the right processes and having the right personnel to carry it out.

The result is not just enhancing your company’s brand by being a good corporate citizen; it can give your business a competitive edge and boost your bottom line by helping to reduce costs, mitigate risk and virtually eliminate penalties and fines due to violations and rejected shipments.



The world is littered with thousands of examples of the problems associated with data center strategy mistakes around capacity and performance.

For example, Lady Gaga fans brought down the vast server resources of Amazon.com soon after her album “Born This Way” was offered online for only 99 cents. Similarly, a deluge of online shoppers caused the data center to crash after they bombarded Target.com for a mammoth sales event. And, of course, there was the famous healthcare.gov debacle, when an ad campaign prompted millions of Americans to rush to the website for healthcare coverage only to face long virtual lines and endless error messages. In total, it is estimated that more than 40,000 people at any one time were forced to sit in virtual waiting rooms as available capacity had been exceeded.

Each of these examples highlights why data center managers have to make sure their data center strategy stays ahead of organization expansion needs as well as watching out for sudden peak requirements that have the potential to overwhelm current systems. The way to achieve that is via data center capacity planning.



Thursday, 25 May 2017 14:45

CEO Forum: WannaCry Raises the Red Flag

Cybercrime is one of the biggest challenges society faces today.

As the world becomes more digitized and dependent on connected systems and devices, the threat and the potential impact is exponential.

As we just recently witnessed the WannaCry attack, this is a wake-up call and we should expect to see global attacks of this nature accelerate.

There is good news.



Having the right business continuity tools can make the work you do on your BCM program easier and more consistent. In this post, we’ll explore categories of tools that will make your program more efficient and help you be prepared to respond effectively to a crisis event.

Here at MHA Consulting, we have had the opportunity to see multiple business continuity tools in action. While we strive to be tool-agnostic, not necessarily recommending any single tool, we do work with our clients to ensure that the tools they use will best meet their needs and requirements.

There are many providers in these spaces; the ones listed are those we are familiar with through use in client engagements or other situations. A review of these tools may be a good place to start.



Thursday, 25 May 2017 14:35

BCI: US more prepared for GDPR than UK

The Business Continuity Institute

With only one year to go before the European Union General Data Protection Regulations (GDPR) deadline, many US businesses with European customers are not fully prepared to comply with the new laws, which include ‘Right to be Forgotten’ customer consent mandates and regulations on how customer data is handled. US companies, or any organization that stores data on EU citizens, will face hefty fines or lawsuits if they don’t fully comply - up to 4% of annual turnover or €20 million, whichever is greater.

US large-company CIOs saying they are well-briefed on the impending laws, up from 73%, when asked the same question last year. However, only 60% have detailed plans in place to address the new laws’ requirements. This is up from 33% from last year’s survey, but suggests there is still significant work ahead.

94% of the large US company CIOs surveyed say their companies have personally identifiable information (PII) on EU customers, making the new mandates applicable to them.

Particularly challenging is the mandate to obtain customer permission to use PII in application testing, a critical part of software development. 55% of US firms have a plan in place to address this, but nearly one-third say they don’t fully understand the impact of this ruling.

The data complexity of modern systems is also an issue, as 85% admit it’s sometimes difficult to know exactly where all their customer data resides, an increase from last year’s survey with 78% then admitting that difficulty.

“US organizations are heading in the right direction on GDPR compliance, but there is still work to be done to improve data governance capabilities,” said Chris O’Malley, CEO of Compuware. “Manual processes that are used to locate and protect customer data must be replaced with automated capabilities that enable businesses to quickly, accurately and visually manage data privatization and protection.”

The findings also reveal US organizations are better prepared for the GDPR than their European counterparts. Compared to the 60% of US companies saying they have detailed and far-reaching plans in place, only 19% of UK companies have such plans prepared, a modest improvement of only 1% since last year.

US respondents ranked their biggest GDPR compliance hurdles to overcome as follows:

  • Design and implementation of internal processes (65%)
  • Securing customer consent to use their personal data and handling the process of data withdrawal if requested by the customer (64%)
  • Ensuring data quality (52%)
  • Cost of implementation (43%)
  • Data complexity (41%)
Page 1 of 2588