Vol 678 – Fighting the Mentality of “Check the Box” Resilience

December 7, 2023

The work of resilience professionals can be difficult. Between the ever-changing threat landscape, the increasing reliance on technology, and the constant need to keep stakeholders engaged, the last thing needed is for leadership teams to have a check-the-box mentality.

Resilient Journey podcast host, Mark Hoffman, is joined by thought leader Jason Hoss in Episode 112. They discuss the challenges that resilience professionals often face when working for an organization that has a check-the-box approach to business continuity.

Vol 677 – Polycrisis – The Current State of the World

November 16, 2023

Global uncertainty over the past few years has birthed several new or recently rediscovered words. The first word was “permacrisis”, the Collins Dictionary’s word of the year for 2022. This year the world is abuzz with the latest new word – Polycrisis.

Global risks have shifted with a significant focus on three issues. Esteemed crisis management specialist, Regina Phelps, explains “polycrisis” and lays out actions that resilience professionals should be doing in response.

Vol 676 – AI Tops Concerns of Global Tech Leaders

November 2, 2023

2,104 tech leaders have weighed in on a global survey. Their input has culminated in a report with numerous findings in 5 key areas.

The 25th annual Nash Squared Digital Leadership Report has revealed numerous findings in 5 key areas — Generative AI Demands, Tech Investments, Inclusion and Hybrid Working, Tech Talent Shortage, and Tech Leaders on the Board. This executive summary outlines key issues in the 5 areas

Vol 675 – Cybercriminals Target Businesses During Natural Disasters

October 19, 2023

According to one cyber threat intelligence director, there is almost always an uptick in cyber-attack attempts after a major disaster event.

Natural catastrophes create chaos and uncertainty. People are not focusing on basic cybersecurity best practices or refreshing their network’s security controls but are instead spending their energy on recovering from the event. Zac Amos explains 5 ways organizations can defend themselves from cyber-attacks following a natural disaster.

Vol 674 – No more BIAs? No more Plans?

October 5, 2023

How do you respond to someone who challenges the very foundation of your profession?

What do you say to someone who tells you that your methodology is not only wrong, but that it shouldn’t exist in the first place?

Mark Hoffman, host of the Resilient Journey podcast, had an interesting discussion with business continuity professional, antagonist, and overall contrarian Mark Armour. In Episode 99 Mark explains “adaptive business continuity” and why he doesn’t like BIAs, plans or documentation. His approach would forego the methodology in favor of principles. It was a friendly and respectful debate. The host discovered that the two even agreed on a few things!

Vol 673 – Supply Chain Resilience Standards Can Help Formulate Policy

September 21, 2023

Achieving resilient supply chains can be a complex process, especially if components in the supply chain are at risk. As chains get increasingly complex and further removed from the primary organization, a break in a supply chain may be almost impossible to predict and detect – until it occurs, and the domino effect is felt.

Paul Kirvan outlines several supply chain updates that provide insight and also guidance to assist in three important ways: formulate a policy on supply chain resilience, clarify procedures for analyzing supply chains and develop procedures for mitigating disruptions.

Vol 672 – Update on Cloud Standards & How to Use Them to Benefit Your Organization

September 7, 2023

When considering a cloud solution or even when examining options for expanding or reducing cloud investments, knowledge of standards, frameworks and practices addressing cloud technology can be very helpful. From an audit perspective, documented compliance with key cloud standards is essential during an audit. Prospective and existing customers will also appreciate that cloud services are being deployed in compliance with standards.

Paul Kirvan not only outlines a 2023 cloud standards update, he offers 17
recommended steps to take when applying for a standard to a specific activity. You won’t want to miss his expertise

Vol 671 – Enable Innovation by Transforming Business Cybersecurity

August 17, 2023

Delivering innovations and ensuring the organization stays safe are two of the biggest priorities for the modern company. Unfortunately, many see these two priorities as being at odds, with the ever-increasing number of cybersecurity requirements and regulations seeming to slow down and stifle work and innovation at every turn. But does that have to be the case? Research shows a link between cybersecurity and business success.

Zac Amos offers valuable thoughts and suggestions on balancing risk-taking with risk management and why maximizing cybersecurity can help rather than hinder your mission.

Vol 670 – 23 Business Continuity Statistics You Need to Know

August 3, 2023

By popular demand we are back to you with another practical and meaty article by Dale Shulmistra – this time on business continuity statistics.

Today’s stats reveal that small and mid-sized businesses (SMBs) have gotten better about embracing business continuity planning over the last few decades. Particularly following the attacks of September 11, 2001, and the ever-increasing reliance on business data, organizations have implemented stronger technologies and protocols to limit interruptions from unexpected disasters.

However, statistics suggest many organizations still face costly disruptions, due to a wide range of threats. Here’s a breakdown of the 23 most telling stats on business continuity and disaster recovery.

Vol 669 – 6 Reasons Not to Pay the Ransom in a Ransomware Attack

July 20, 2023

The ransomware threat is huge. By encrypting data, hackers effectively lock companies out of their computer systems, bringing operations to a halt and in some cases forcing businesses to shutter their doors permanently. Given these high stakes, it’s no surprise that many businesses are forced to consider giving hackers what they want — a ransom payment to decrypt the data. But should they? In most cases, the answer is no. Businesses should avoid paying the ransom unless they have no other viable options for survival. In this post, Dale Shulminstra explores the reasons.

Vol 668 Enhancing Digital Operational Resilience The PIE FARM Approach

July 6, 2023

Businesses are increasingly reliant on digital systems to operate efficiently. Technological advancements come with vulnerabilities that can disrupt operations. To mitigate these risks, organizations must develop robust digital operational resilience programs. New regulatory changes are in scope for some financial services institutions via the new European Union’s Digital Operational Resilience Act (EU DORA). Developing an effective approach has become increasingly important. Experts James Seaman and Michael Gioia explain how the PIE FARM approach can enhance the development of an effective “Digital Operational Resilience Program”.

Vol 667 – Understanding the Cost of Recovery: Lessons from a Category 4 Hurricane

June 22, 2023

The damages from Hurricane Ian remind us all too well of the potential costs associated with a major Category 4 Hurricane. How can you predict the cost of recovery and why does it seem to cost more than estimated property values?

Commercially speaking, estimating the cost of a future build can be quite different from calculating the cost of recovering a building given conditions may be worse and extremely difficult to manage. Recovery expert and veteran, Jim Wills, explains that circumstances in a recovery operation generally are met with obstacles beyond our control.