Top
Search Disaster Preparedness Blog

Entries in Business Continuity (51)

Thursday
Feb172011

Is Your Business Prepared To Shelter In Place?

DateThursday, February 17, 2011 at 9:59AM | |

Does your business know how to handle a shelter in place situation? Chances are if you are like most businesses you do not currently have a plan or the supplies needed to shelter in place.

Fairly recently I was consulting with a client and asked if they had made any preparations or had plans to shelter in place. The response I got back was very interesting, "Sheltering in place, thats only for hospitals isn't it?" This told me all I needed to know about how adequate their planning was.

As a side note, here in the CA, Bay Area, Shelter In Place orders are issued fairly frequently due to various incidents from gas leaks to industrial accidents.

Though I wont mention the particular business I am speaking of, I am paying particular attention to them for a reason. They had just relocated to a new building, that is located right next to an electrical sub-station which if it were to catch fire releases a very large amount of toxic fumes and smoke. These types of fires also burn extremely hot, and have the potential to place nearby structures in danger.

Just to provide you with some example of these types of fires, see the videos below.

 

Florida Sub-Station Fire & Explosion

 

March 2009 Ottawa Sub-Station Fire

Warning: The Video below contains Expletives


 

San Leandro Sub-Station Fire

 These are not the only situations for which a shelter in place can be called, but as I stated, the fumes and smoke from these fires are extremely toxic, and generally contain PCB's. However, transformer fires are fairly a common event and as you can see from these videos, people are unfamiliar with the potential dangers, even having their kids outside to watch.

What does this have to do with business? Well, businesses have a duty to act appropriately to safe guard both employees, and guests or visitors at the business site and knowing what to do when a shelter In Place order is given.

There is a lot more to a Shelter In Place program, but here are some basics to get you started:

  • Close the business, no one should come in or out.
  • Choose an interior room, preferably with no windows, hopefully with a telephone.
  • Ensure and provide for the safety of visitors, and clients, someone will need to direct them what to do
  • Close and lock ALL outside windows and doors If you can close all blinds and curtains
  • Turn off all Fans, heating, and air conditioning systems
  • If possible, have people call their emergency contacts to let them know where they are and that they are safe
  • Get the names of all the people in the room or onsite
  • Seal off the room using the plastic sheeting and duct tape, cover all doors, windows, and vents
  • Listen to the radio for instructions, and for when the shelter in place advisory is over

 If you have questions or concerns about Sheltering In Place feel free to Contact me and I will be glade to help you get this done the right way at your business. 

AuthorKeith Erwood | Comment1 Comment | Reference1 Reference
tagged , , in , , , , ,
Monday
Feb142011

Think Your Business Data Backup Is Adequate? Not So Fast, Read This First Before You Answer

DateMonday, February 14, 2011 at 4:15PM | |

I have had some interesting experiences in my time of either working for, or consulting with businesses, especially in the area concerning data backups and data recovery. Most businesses when asked can tell you that they have adequate backups in place, and a good portion of them do. However, when you really drill down into what their plans are, or how they are actually backing up their data things get interesting very quickly.

Click to read more ...

AuthorKeith Erwood | Comment1 Comment | Reference5 References
tagged , , , , , , in , , ,
Monday
Sep272010

Autofill Bug In Safari Exposes Personal Information

DateMonday, September 27, 2010 at 6:44PM | |

Apple has left an autofill bug in Safari unpatched that could potentially expose personal information you would never intend for anyone else to see.

Apples Autofill feature allows you to quickly fill out forms that you have previously entered, including credit card information and social security numbers.

A security expert has figured out a way of getting that information by tricking you to hit two keys: the "U" key and the "tab" keys. In theory you could place a hidden form behind a game on a web page that utilizes these keys and tricks you into filling out the form, and stealing your information.

Jeremiah Grossman discovered the bug and you can see a video of the flaw being demonstrated on his site under his entry: The Safari AutoFill Hack Lives!

AuthorKeith Erwood | Comment5 Comments | Reference1 Reference
tagged , , , , , in , , ,
Monday
Sep272010

Cyber Warfare Takes Another Possible Leap Forward, Stuxnet Worm Infecting SCADA Systems and Hit’s Iranian Nuclear Facilities Hard 

DateMonday, September 27, 2010 at 9:10AM | |

Updated on Monday, September 27, 2010 at 7:18PM by Registered CommenterKeith Erwood

Many people (most security experts aside) who work with industrial SCADA (Supervisory Control and Data Acquisition) and PLC (Programmable Logic Controllers) systems have long considered these systems safe. In fact if you check the reference sources at the bottom, you will notice a recurring theme of, if you asked me if this was possible last week, I would have said no. I have personally had people tell me they are safe from these kinds of threats because they have multiple layers of firewall's and other "robust" cyber security in place. These people are wrong, and I hope this incident serves as a wakeup call to others who work with these systems everyday. Bottom line - All systems are vulnerable. A worm known as Stuxnet has infected systems from several countries including those of the United States, Indonesia, India, and Iran.

Click to read more ...

AuthorKeith Erwood | Comment1 Comment | Reference23 References
tagged , , , , in , , , , , , ,
Thursday
Aug262010

SEC Makes Climate Change Risk Reporting Mandatory

DateThursday, August 26, 2010 at 3:25PM | |

How up to date is your business when it comes to assessing your risk exposures, contingency planning, and overall risk management?  Now, what would you say if I told you the SEC is requiring ALL publicly traded companies to have a written plan detailing the risks, and how they will respond to climate change?

Even though this occurred back in January of this year, I am finding very few people who have been aware of this new reporting and disclosure requirement.

The other day in my newsletter I mentioned that the SEC had issued interpretive guidance on disclosure related to business or legal developments regarding climate change.  The response has been interesting, from laughter, and dismissal, to shock. Some people wondering just how they are supposed to measure the risk and others to say they have zero risks and exposures to it altogether.  

Now, I am not currently buying into the man-made climate change side of the equation as I mentioned in the newsletter, and personally believe that these events are cyclical and natural. I also recognize that the issue is basically a political hot potato at the moment, and think most people here in the United States feel the same way I do. Though I admit I could be wrong.

The real story like I stated in my newsletter, is that history shows us that the climate will change, and the impacts of those changes can be dramatic, and have a negative impact on the business community. These impacts can occur whether the climate grows colder or hotter. So, even if it is not man-made, does it matter? The impacts will remain the same.

I am not going to add my assessments here as I did in the newsletter, but I did want to mention it here on Disaster Preparedness Blog for those that may not be aware of this, and provide you the links to the information from the SEC.

Here is a copy of the SEC Press Release on this ruling as well their Interpretive Guidance to the ruling at their respective links.

Specifically, the SEC's interpretative guidance highlights the following areas as examples of where climate change may trigger disclosure requirements:

  • Impact of Legislation and Regulation: When assessing potential disclosure obligations, a company should consider whether the impact of certain existing laws and regulations regarding climate change is material. In certain circumstances, a company should also evaluate the potential impact of pending legislation and regulation related to this topic.

  • Impact of International Accords: A company should consider, and disclose when material, the risks or effects on its business of international accords and treaties relating to climate change.

  • Indirect Consequences of Regulation or Business Trends: Legal, technological, political and scientific developments regarding climate change may create new opportunities or risks for companies. For instance, a company may face decreased demand for goods that produce significant greenhouse gas emissions or increased demand for goods that result in lower emissions than competing products. As such, a company should consider, for disclosure purposes, the actual or potential indirect consequences it may face due to climate change related regulatory or business trends.

  • Physical Impacts of Climate Change: Companies should also evaluate for disclosure purposes the actual and potential material impacts of environmental matters on their business.

No matter how you look at this issue, here is one other angle to consider. When looking at future risks, be certain to look at how possible future political and regulatory decisions might impact your business.  



AuthorKeith Erwood | Comment3 Comments
tagged , , , in , , ,
Page 1 ... 2 3 4 5 6 ... 11 Next 5 Entries »