Skip to content Skip to sidebar Skip to footer
Business Continuity Awareness Week

BCI Manifesto for Organizational Resilience

The world is an ever-changing landscape in terms of risk, and as these changes happen, the business continuity and resilience industry must evolve. The BCI is proud to be a part of this evolution and we are releasing our Manifesto for Organizational Resilience during Business Continuity Awareness Week (BCAW) 2018. The manifesto positions us within the organizational resilience sphere; not as the ‘know-all’ organization, but as a central point for collaboration across all management disciplines.

Read More

On Stones, Clay and Rubber Balls, by Mark Armour

Why we need to agree on our definitions and change our thinking around risk management, business continuity and resilience.

First, this is not about where the responsibility for business continuity should reside within an organization. It is about the responsibilities of the business continuity profession and its practitioners. Lately, I’ve witnessed the practice of risk management begin to take over that of business continuity. Many practitioners promote this alignment and foster the perception that business continuity is simply a part of the practice of risk management. I say this is bad for both disciplines and the organizations they serve.

Read More

enterprise-security-risk-management-concepts-applications-esrm-book-rothstein-publishing

Enterprise Security Risk Management (ESRM): Concepts & Applications

As a security professional, have you found that you and others in your company do not always define “security” the same way? Have security interests and business interests become misaligned? Brian Allen and Rachelle Loyear offer a NEW approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful! Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks, based on years of practical experience and research. Whether risks you face are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security.

Read More

enterprise-security-risk-management-concepts-and-applications-by-brian-allen-and-rachelle-loyear-rothstein-publishing

Enterprise Security Risk Management: Concepts & Applications

As a security professional, have you found that you and others in your company do not always define “security” the same way? Perhaps security interests and business interests have become misaligned. Brian Allen and Rachelle Loyear offer a new approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful. In their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security.

Read More

enterprise-security-risk-management-concepts-and-applications-by-brian-allen-and-rachelle-loyear-rothstein-publishing

Physical and Logical Security: Joining Forces to Manage your Enterprise Security Risk

Just a decade ago, as security professionals, we could talk reasonably about physical security and logical security requiring different approaches. Five years ago, we might have found ourselves having conversations about the blurring lines between the two types of security discipline, and could have easily pointed to aspects of both physical and logical security that…

Read More

Your Guide to Cybersecurity Law

In today’s litigious business world, cyber-related matters could land you in court. As a computer security professional, you are protecting your data, but are you protecting your company? While you know industry standards and regulations, you may not be a legal expert. Fortunately, in a few hours of reading, rather than months of classroom study, Tari Schreider’s The Manager’s Guide to Cybersecurity Law: Essentials for Today’s Business, lets you integrate legal issues into your security program. Tari Schreider, a board-certified information security practitioner with a criminal justice administration background, has written a much-needed book that bridges the gap between cybersecurity programs and cybersecurity law. He says, “My nearly 40 years in the fields of cybersecurity, risk management, and disaster recovery have taught me some immutable truths. One of these truths is that failure to consider the law when developing a cybersecurity program results in a protective façade or false sense of security.”

Read More

guide-terrorism-risk-insurance-rothstein-publishing

Terrorism, Risk, and Insurance: Essentials for Today’s Business

Check out Rothstein Publishing 's latest eBook Collection titles! Here are a few of our newest titles:

The Manager's Guide to Terrorism, Risk, and Insurance: Essentials for Today's Business

As a manager, you're aware of terrorist acts, are considering the risks, but sense that you need more background. How might terrorism occur? How is it part of risk and threat planning? What insurance strategies might protect your company from financial loss? In a few short chapters, The Manager's Guide to Terrorism, Risk, and Insurance: Essentials for Today'™s Business fills in the blanks for you. by David J. Smith, Mark D. Silinsky; Kristen Noakes-Fry, ABCI, Editor

Read More

BCI, BSI Horizon Scan 2016: Physical security a growing threat to organizations

Physical security is seen as growing concern for business continuity professionals, according to the fifth annual Horizon Scan Report published by the Business Continuity Institute, in association with BSI. Among the ranks of potential threats that organizations face, acts of terrorism gained six places from 10th in 2015 to 4th this year, while security incidents moved from 6th place to 5th place.

Read More