The Importance of Preparedness: Lessons from Recent Cyberattacks on Critical Infrastructure

By |2024-05-24T16:12:56+01:00 24 May, 2024|Resilience|

I was researching cyberattacks on critical infrastructure, when I stumbled across an article about a cyberattack in Ireland in December last year that led to a two-day water supply outage, affecting 180 people. This incident highlights the vulnerability of our critical infrastructure to cyber threats and got me thinking... imagine the repercussions if such an event occurred on a larger scale. The potential disruption could be catastrophic, impacting thousands or even millions of people. Personal resilience through stockpiling In the UK, the recommendation is to stockpile food and water for just three days, with a minimum of 2-3 litres water per person per day. For optimal comfort and hygiene, 10 litres per day is suggested, as water is essential not just for drinking but also for cooking and sanitation. Conversely, in Germany, the Federal Office of Civil Protection and Disaster Assistance (BBK) advises citizens to stockpile food and [...]

Comments Off on The Importance of Preparedness: Lessons from Recent Cyberattacks on Critical Infrastructure

Securing Our Knowledge: Navigating the Aftermath of the British Library Cyber Attack

By |2024-02-12T14:06:43+00:00 6 February, 2024|Business Continuity, News, Resilience|

In today's digital age, cybersecurity is no longer an option but a necessity. The cyber attack on one of the largest libraries in the world in October continues to have effects several months later. Incidents such as the one involving the British Library serve as sobering reminders of the far-reaching consequences that can arise from a single breach, highlighting the critical importance of proactive cybersecurity measures. Let's delve into a detailed timeline of events and explore the enduring impacts of cyber attacks. Timeline of Events: October 29, 2023: The British Library posts on X that they are struggling with "technical issues". October 31, 2023: Following the outage of the online catalogue of about 36 million books and up to 170 million items, the British Library is compromised due to a cyber incident of an undisclosed nature. November 16, 2023: The British Library officially confirms a devastating cyberattack as [...]

Comments Off on Securing Our Knowledge: Navigating the Aftermath of the British Library Cyber Attack

A New Year in Resilience – 2024

By |2024-01-05T12:05:25+00:00 5 January, 2024|Business Continuity, Resilience|

As we step into 2024, businesses in the UK are facing a landscape that is rapidly evolving, shaped by both technological advancements and emerging challenges. This year, our goal is to assist organisations across various sectors in focusing on strengthening their resilience, particularly in areas of Business Continuity Management (BCM) and cyber resilience. The intertwining of these two domains is more pronounced than ever, as digital transformation continues to accelerate. Understanding the Interconnected Landscape: The onset of the digital age has brought about a paradigm shift in how businesses operate. With this shift, the need for robust BCM and cyber resilience strategies has become paramount. BCM ensures that businesses have the necessary processes and plans to maintain or quickly resume their critical functions in the face of disruptive events. Meanwhile, cyber resilience refers to an organisation's ability to continuously deliver the intended outcomes despite adverse cyber events. Best [...]

Comments Off on A New Year in Resilience – 2024

Case study: IT-SCM for an international cheese manufacturer

By |2023-10-31T11:31:24+00:00 31 October, 2023|Business Continuity, News, Resilience|

Introduction: One of the world's leading cheese manufacturers approached Fernao Business Resilience to ensure their operations remained resilient in the face of disruptions. This case study delves into the practical journey of developing an IT-Service Continuity Management (IT-SCM) system to meet this challenge. The Challenge: Our client, a global cheese manufacturer, operates across Europe and in countries such as Australia and the United States. They rely on their IT department for critical functions, including production site management, laboratory quality control, internal IT support, SAP systems, and more. Downtime, for them, wasn't just a matter of inconvenience—it directly threatened production, revenue, and the brand's reputation. They realized the need for a structured approach to resilience. Prior attempts to establish an IT-SCM in-house revealed resource limitations, the complexity of navigating technical aspects without a clear strategy, and limited internal expertise. With nearly 6000 employees globally, they sought a smooth, expert-guided [...]

Comments Off on Case study: IT-SCM for an international cheese manufacturer

Supply chain resilience and BCM

By |2023-10-19T12:58:56+01:00 7 July, 2023|Business Continuity, Resilience|

In today's global marketplace, the traditional linear view of supply chains as sequential processes is no longer sufficient. Modern supply chains are complex and interconnected, resembling intricate webs where disturbances in one area can have far-reaching consequences that ripple throughout the entire system. Events like the suez canal, the war in Ukraine, shortage of chips, even drought in some places and of course COVID-19, have exposed the ease with which disruptions occur and the limited understanding many organisations possess regarding their dependencies.   The complexity of supply chains Companies now face critical questions: How to manage this system of suppliers, which might on top of its complexity, might be fast changing with unkonwns at certain sections? How to continue to deliver a service and stay operational whilst a supplier experiences a disruption?   Moving beyond supply chain management Most companies view supply chain management as a separate discipline, standing [...]

Comments Off on Supply chain resilience and BCM

How to deal with a ransomware attack: a quick guide

By |2023-06-30T12:51:59+01:00 27 June, 2023|Business Continuity, News, Resilience|

How to deal with a ransomware attack: a quick guide A ransomware attack can be an existential threat to any organization. Dealing with an attack takes weeks and months of hard work and leads to a significant loss of earnings: The attack on Norsk Hydro in 2019 cost around $71 million, the Maersk attack affected global supply chains and lead to losses of around $300 million. Preventing Ransomware attacks is possible and should be the aim of any cyber security strategy, but every organisation should also have a plan for dealing with an attack when it does occur despite best efforts at preventing it. The points below are a basic guide on dealing with a ransomware attack. You can use the 'ask yourself' prompts to help develop or improve a response plan. Technical / organisational Isolate and contain the infection: It is essential to isolate the infected device [...]

Comments Off on How to deal with a ransomware attack: a quick guide

The Human Factor in Resilience

By |2023-10-03T10:21:02+01:00 7 January, 2023|Business Continuity, News, Resilience|

How can we deal with a critical number of employees not showing up for work, maybe because their houses are flooded, there is a transport strike or their children fall ill in an outbreak of flu or the measles? (Do we want them to show up in these cases?) How can we make sure employees perform at their best while at work? How do we help them in being personally resilient to stress, both in their private and professional lives?   When thinking about the human factor in organisational resilience, the line between their professional lives and personal lives becomes blurred. An employee dealing with a personal crisis will not be available or as on-point as they usually are. Personal crises can be individual (e.g. marital problems) or collective (transport or school strikes, natural disasters) and how we respond to them will determine our organisation’s success. First, we [...]

Comments Off on The Human Factor in Resilience

Business continuity aspects of TISAX

By |2023-10-03T10:22:34+01:00 6 December, 2022|Business Continuity, News, Resilience|

The growing importance of Business Continuity Management in the context of a TISAX certification   Introducing TISAX & BCMS TISAX (Trusted Information Security Assessment Exchange) is a certifiable standard for information security, specific to the automotive industry. It was developed by the members of the German Association of the Automotive Industry (Verband der Automobilindustrie e.V.) based on the ISO/IEC 27001 standard for information security management systems (ISMS) and adapted to their specific needs. It covers the secure processing of confidential information, prototype protection, and data protection in the business relationships between automotive manufacturers and their service providers and suppliers. A Business Continuity Management System (BCMS) is designed to ensure the continued existence of the company and the maintenance of important business processes in crisis and emergency situations through holistic crisis management. The associated ISO 22301 requires a risk assessment to ensure that all important processes and procedures are [...]

Comments Off on Business continuity aspects of TISAX

High availability and disaster recovery: What lies ahead for IT in 2022

By |2022-05-27T12:48:23+01:00 25 May, 2022|Business Continuity, News, Resilience|

High availability and disaster recovery: What lies ahead for IT in 2022 In 2021, IT teams had to cope with enormous changes and protect their critical operations against unprecedented threats from Covid, natural disasters, supply chain disruptions and staff shortages. Many moved mission-critical systems to the cloud and hybrid cloud and implemented advanced, application-specific high-availability clustering and disaster recovery solutions. The impact of global change and looming threats continues. What do these changes mean for IT in the coming year? Here are some predictions to consider. Multi-cloud infrastructures will become mainstream With the widespread adoption of cloud computing as a core component of today’s IT infrastructures, organizations will no longer consider a single cloud for their cloud needs. Despite the added complexity of running different workloads on different clouds, a multi-cloud model will allow enterprises to select cloud offerings that are best suited for their unique application environments, [...]

Comments Off on High availability and disaster recovery: What lies ahead for IT in 2022

Leadership – business continuity management and crisis management

By |2022-05-27T12:53:09+01:00 21 February, 2022|Business Continuity, Resilience|

Leadership - business continuity management and crisis management Business continuity management can also mean “emergency and crisis management”. We also find this term in the administrative sector, as in the work of civil protection. But is leadership in the event of crises really the same? This short article is intended to highlight individual differences and similarities between these two emergency and crisis management approaches so that a distinction can be made and differentiation simplified. Causes of crises The causes of crises or disasters in the field of civil protection are almost exclusively external. This means, for example, natural disasters, terrorist attacks or a technical/human failure, which leads to high risks. In the case of companies, there are two additional causes: inadequate attention to operational fluctuations up to the point of escalation and the occurrence of latent problems, which lead to high reputational damage. The crisis is therefore not [...]

Comments Off on Leadership – business continuity management and crisis management
Load More Posts