TOKYO (Nikkei)--The Ministry of Defense is moving to assemble a team to protect the nation's computer systems against organized attacks by international hackers.
Japans actions follow continued growth in the threat of organised attacks and the action taken by other countries around the world.
The Cyber Risk Insurance Forum (CRIF), the group established to develop a securityframework for companies taking out cyber insurance, has held its inaugural meeting, expanding its membership and developing two lines of focus for its on-going campaign.
Global information assurance firm NCC Group, with Liberty International Underwriters (LIU), Zurich Insurance, CNA Europe and Oval, established the group earlier this year under the Cyber Insurance Working Group title.
The founding members have now increased to include Thales, Continuity Forum, ACE Insurance and Hill & Knowlton, bringing together a broader spectrum of thought leaders.
CRIF Chairman, Daljitt Barn said: “Cyber insurance doesn’t mitigate the risk of suffering a cyber attack in itself, but if combined with cyber risk best practice, it will. Driving development of those guidelines depends on making organisations aware of the risks that they face.”
The Cyber Risk Insurance Forum seeks to develop a framework of recommended information security practices and policies to support the uptake of cyber insurance, protecting insurers and businesses alike.
The name change was implemented following the group’s first meeting, as part of a concerted focus on risk mitigation.
Matthew Hogg of LIU, a founding Member of CRIF explains: “We realise from our discussions with industry that a two-pronged attack is necessary to drive our campaign forward."
FREE WEBCASTS ON IMPLEMENTATION and CERTIFICATION to ISO 22301
Our Webinars focusing on the new ISO Business Continuity Standard 22301 really have been incredibly popular with a response that has even taken us by surprise!
Following on from the Continuity Forum Webcasts in May, June and July we are adding four more sessions starting in late August and through September covering the next steps for organisations. We are now taking bookings and places will be limited so prompt action is recommended.
ASIS, the International group for Security Professionals, founded in 1955 and based in Virginia in the US, has started work on a new Guidance Standard for Supply Chain Risk Management with the first Technical Committee meeting held this week with Russell Price is representing the Continuity Forum.
This new project addressing Supply Chain Risk comes at an opportune time hot on the heels of ISO 22301 and when completed, hopes to provides a framework for collecting, developing, and implementing best practices for supply chain risk management (SCRM).
The SRCM Standard is intended to be primarily a practitioner's guide and will help connect many of the diverse processes that span Business Continuity and Risk Management. The final guidance when released will provide specific good practice guidelines that can be included or adapted to fit organizations needs as well as outlining possible approaches across a range of scenarios for an organization to consider, including examples of tools other organizations have used.
Whilst there is a current Standard (ISO 28000:2007) many feel more support is needed to support the development of more effective Supply Chain Risk, Resilience and Continuity Management and we hope this SCRM project will add substantial to the thinking and practices used across the relevant sectors and markets.
If you would like to know more about our work in this area or if you have suggestions for key areas that need to be included in the Guidance please do get in touch HERE
There are two new Business Continuity books coming out this summer that are likely to find their way on to the book shelves of many of our readers and partners. They are chalk and cheese in their content, but significant publications as they address two topics that feature highly in the questions we receive here at the Continuity Forum.
For many years one of the most consistent questions we have had, especially from those coming to BCM for the first time, has been, "what would we recommend as an introduction?" and we can now add the Dummies Guide to the Practical Business Continuity Management.
More recently, since the launch of ISO 22301, and perhaps at the other end of the scale, the questions have been centred on getting good advice on how to implement the new ISO Standard; and with virtually perfect timing, Hilary Estall brings us her Guide to Implementing ISO 22301.
The Continuity Forum is part of a government working group researching short to medium term emergency issues relating to risk and the UK's food supply and its security. We are inviting interested parties to contact us to assist in the development of our formal report to the committees involved. We are particularly keen to gather information from Business Continuity, Resilience and Risk Professionals active in sectors relevant to the topic on the wider scope of issues being addressed.
The broad principles of the project are to identify how risks and disruptions may develop and how well the country is currently prepared to cope if they occurred.
In May 2012, the International Standardization Organization (ISO) published ISO 22301 – Business continuity management systems – Requirements. Although this standard was long in the making the response has been very positive - and with the promise of ISO 22313 – Business continuity management – Guidance – before the end of this year, it seems it was worth the wait.
ISO 22301 blends the requirements from several national standards, including those from the USA, Japan, Singapore, Canada and Australia. The similarity with BS 25999-2, however, is most evident. A comparison of the BS and ISO standards reveals little difference in the requirements. And in Clause 8 of the ISO, where the business continuity programme requirements reside, the text is identical in many places.
Forum Partners can request access to sessions or provide something tailored to your exact needs
3PQ is the name of a free industry resource developed by a project team of industry professionals to help organizations better manage the risks concealed in their supply chains.
3PQ was originally conceived and developed following lively discussions at a BANG London Meeting on the difficulties Business Continuity Professionals faced in responding to and managing the Supply requirements and capabilities of different organisations.
It was a common problem crying out for a simple, yet effective solution... the 3PQ project was born.
Our Webinars focusing on the new ISO Business Continuity Standard 22301 really have been incredibly popular with a response that has even taken us by surprise!
To meet this interest we have decided to add two extra sessions on the 20th and 27th on June at 09:30 and 16:30 respectively (UK time) for those that have been unable to participate so far
These sessions are being provided free of charge.
We are also running a special breakfast briefing on the new standard on the morning of July 5th in London. Keep an eye out for the details on the news and events pages or send a mail to us here to book a place at this special briefing.
ISO has published an International Standard addressing business continuity management to contribute making organizations in both public and private sectors more resilient.
ISO 22301:2012, Societal security – Business continuity management systems – Requirements, will help organizations, regardless of their size, location or activity, to be better prepared and more confident to handle disruption of any type.
Incidents can disrupt an organization at any time and applying ISO 22301 will ensure that organizations can respond and continue its operations. Incidents take many forms ranging from large scale natural disasters and acts of terror to technology-related accidents and environmental incidents. However, most incidents are small but can have a significant impact and that m
akes business continuity management relevant at all times.
The Continuity Forum has been working for a number of years looking at how the expertise and experience gained by Risk and Business Continuity professionals can help change our future.
Climate Change is a very real threat that needs united action by the public and private sector if the risks it brings are to be effectively countered.
Across disparate areas, expert opinion has confirmed everyone needs to be more active and to start considering how Climate Chnage may affect them. The Continuity Forum has developed relationships with government and academia, investigating the contribution our professions expertise can make to this challenge.
What has become clear over this time is that there are very few people in better positions to understand the risks and consequences to organisations and communities than the BC and Risk Management Communities. Whether its Flooding or Drought, Supply Chain disruption or Fire, even natural disasters, our sectors have real experience of how to cope more effectively. Moreover, with the changing landscape and profile of Business Continuity and Risk Management across the world the time is now right to seek positive engagement on how we can help deliver cost-effective, viable and sustainable solutions.
Partner briefings can be arranged for individuals or groups of up to 25 staff initially. Larger sessions will follow shortly.
The opening briefings will look at the background to ISO 22301 and the likely options for transition to the new standard and will help organisations understand how they may be affected.
In addition to the live sesions, we can provide organisation focused and branded versions for internal use or run sessions on behalf of companies to engage with their internal teams, customers or other stakeholders. Sessions can be recorded for reuse.
UPDATE - Partner sessions are now available please contact us to arrange your organisations personal brieifing on ISO 22301.
Due to demand we are commencing our public sessions w/c 21st May
If you have registered already we will shortly be sending your dates and the registration details
With the publication of ISO 22301in Mid May we know there are going to be lot of questions. Consequently, we have decided to to run both Breakfast Briefings and Webinars in June and July to outline the likely issues and how organisations can start to plan their transition to the new ISO Standard.
We cannot yet confirm the exact dates, but are offering you the chance to pre-register for these events now as we expect demand to be high.
We are running four Webinar sessions starting on 30th May and are expecting to run the Breakfast Briefings during the fourth week of June and into early July. Venues are likley to be in London, Birmingham and Edinburgh.
To BOOK for the online webinars please use the links above and to register register your interest in any of the Breakfast Briefings please email us here!
If you would like to know more immediately or find out how your organisation can get involved please call us on + 44 208 993 1599.
The BSI has confirmed that the new International Standard for Business Continuity - ISO 22301 Societal Security Business Continuity Management Systems Requirements - will be officially published in mid May.
We expect that copies will be available for purchase from around the 15th May from this official link.
With the publication of ISO 22301 it is expected that many countries around the world will formally adopt the International Standards Organization Standard for Business Continuity, enabling much greater international consistency to be realised between national requirements and better meeting the needs of global organizations.
In addition, as part of the ISO framework of standards, the new format helps create opportunities to manage what have often been independent systems in a more integrated way through common terms and processes. This should assist in better embedding of the various management systems available from ISO within organisations.
The Continuity Forum is part of a government working group researching short to medium term emergency issues relating to risk and the UK's food supply and its security. We are inviting interested parties to contact us to assist in the development of our formal report to the committees involved. We are particularly keen to gather information from Business Continuity, Resilience and Risk Professionals active in sectors relevant to the topic on the wider scope of issues being addressed.
ISO has published an International Standard addressing business continuity management to contribute making organizations in both public and private sectors more resilient.
FOR ONLINE BOOKING FOR OUR ISO 22301 WEBINARS CLICK HERE 
