Companies should be better prepared to deal with losses.

So-called "business continuity plans" have become a primary concern for private firms and government organizations since the sudden destruction of the World Trade Center, experts said.

Even though contingency contingency n. an event that might not occur. preparation is not a new concept in the business world, the collapse of the Twin Towers has prompted companies to reevaluate their planning.

A case in point is New York-based Marsh Risk Consulting, which has been in the business of advising companies on loss analysis and developing continuity plans for the past 150 years. But Marsh had never tested its own internal continuity plan prior to September 11, when it had to be exercised.

About 1,700 of the company's employees worked in offices between the 90th and 100th floors in Tower 1 of the World Trade Center.

One contingency plan A plan involving suitable backups, immediate actions and longer term measures for responding to computer emergencies such as attacks or accidental disasters. Contingency plans are part of business resumption planning. that Marsh had never considered was how to continue operating in the event that the entire staff were incapacitated in·ca·pac·i·tate
tr.v. in·ca·pac·i·tat·ed, in·ca·pac·i·tat·ing, in·ca·pac·i·tates
1. To deprive of strength or ability; disable.

2. To make legally ineligible; disqualify. or eliminated.

"Marsh lost about 300 people that day, and we never thought of that," said Scott Lochman, a senior vice president at Marsh. "We got an opportunity, unfortunately, to exercise our own business continuity plan, and we learned a lot of lessons," he said during an industry conference in Arlington, Va.

Lochman said it is important to consider that you can have the best information technology infrastructure, the best back-up systems in the world, and you can recover in four hours. [But if] you don't have anyone to operate the systems, you cannot continue."

An important consideration is how to transport employees to an alternate location to continue operations if necessary. "You can have 27 laptops set up at an alternate location," but they're worthless if the employees can't get to them, he said. Lochman also recommended that lists of employee contact phone numbers and continuity plans be stored in places other than the office, "in case the office isn't there when you get back."

Lochman explained that consequence management involves more than just disaster recovery. "You can have a disaster last five minutes at your organization, and you can recover from it within five minutes. Business continuity is a natural progression. If something happens, whatever is done needs to flow from the senior chain of command. If it doesn't, you will have a lot of people scurrying scur·ry
intr.v. scur·ried, scur·ry·ing, scur·ries
1. To go with light running steps; scamper.

2. To flurry or swirl about.

n. pl. scur·ries
1. The act of scurrying. around, thinking they know what needs to be done."

There are four types of continuity to consider, Lochman said. They include financial, strategic, operational and hazard-related. "If you don't have a plan in place to recover, your recovery is either extremely slowed, or your processes going on a forward-basis are crippled crip·ple
n.
1. A person or animal that is partially disabled or unable to use a limb or limbs: cannot race a horse that is a cripple.

2. A damaged or defective object or device.

tr.v. ," he said. "How can you protect your operations? Identify the threats and the impact from those threats."

Potential problems that should be considered range from an angry employee who can wreak wreak
tr.v. wreaked, wreak·ing, wreaks
1. To inflict (vengeance or punishment) upon a person.

2. To express or gratify (anger, malevolence, or resentment); vent.

3. havoc on a network and destroy operations, to the more conventional dangers posed by hurricanes or fire damage, he said. Man-made hazards, such as terrorist attacks, should now figure into risk planning, he said.

Cyber-Security

Many companies are investing in cyber-security services to protect and ensure the continuity of their networks in the event of a terrorist attack.

Cyber attacks and cyber-terrorism are on the rise, said Tim Belcher

Timothy Wayne Belcher (Born October 19, 1961) in Mount Gilead, Ohio, is a retired Major League Baseball pitcher. He won the Sporting News Rookie Pitcher of the Year Award in 1988 for the National League. , chief technology officer for Riptech, Inc., which was recently acquired by Symantec Corporation, based in Alexandria, Va. Public companies, particularly those involved in power and energy, financial services The examples and perspective in this article or section may not represent a worldwide view of the subject.
Please [ improve this article] or discuss the issue on the talk page. and high technology, are attacked the most often, he said. Aggressive or severe attacks are twice as likely to occur on public companies' networks, he added.

"You are being attacked 24/7, every day, from anywhere in the world," he said.

Attacks are made on systems for a variety of reasons. Sometimes, the attackers hope to "sneak into one system, 'trojanize' that system and compromise critical infrastructure. They're looking for Looking for

In the context of general equities, this describing a buy interest in which a dealer is asked to offer stock, often involving a capital commitment. Antithesis of in touch with. systems that allow those footholds," so they can monitor it from the inside, he said.

Symantec publishes a semi-annual Internet security ''This article or section is being rewritten at

Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. threat report, which is a compilation Compiling a program. See compiler. of information about intrusion detection See IDS and IPS. gleaned from its more than 400 customers.

The report said that virtually all statistics indicate that Internet attack activity remains "intense, pervasive and potentially severe."

Attacks on Symantec's custo mer networks increased by 28 percent for the first half of 2002, Belcher said, but "there was no substantial increase after September 11."

Belcher explained that Symantec's attempts to determine "the characteristics of the person that launched the attack," and then assigns Individuals to whom property is, will, or may be transferred by conveyance, will, Descent and Distribution, or statute; assignees.

The term assigns is often found in deeds; for example, "heirs, administrators, and assigns to denote the assignable nature of a level of "aggressiveness" to the attacker. The "aggression metric" quantifies the level of effort attackers exerted to penetrate the network, Belcher said.

Only 2 percent of attacks were at the highest level of aggression, "but they were 26 times more likely to be successful," he said.

Once two client networks are attacked from the same source, Symantec starts profiling the source, gathering information about the types of systems the source is running and attempting to measure the intent of the attacker, Belcher said. Most attacks are perpetrated on Windows-based networks.

The State Department's cyber-terrorism watch list does not convey the landscape of countries to watch, Belcher said. The refore, Symantec has developed its own watch list, based on two types of countries: designated state sponsors of terrorism State Sponsors of Terrorism is a designation applied by the United States Department of State to nations who are designated by the Secretary of State "to have repeatedly provided support for acts of international terrorism. , and "those from which terrorists have reported operated and recruited in the past," the report said.

The report found that attacks were detected from three of seven countries designated as state terrorism State terrorism is a controversial term, with no agreed on definition, used when arguing that there may be a similarity between terrorism and certain acts done by states.

The concept of state terrorism and indeed of terrorism sponsors. "Ninety percent of this activity emanated from Iran, while the remaining 10 percent was split evenly between Cuba and Sudan," said the report.

However, the report noted that Iraq, North Korea, Syria and Libya have few Internet protocol See Internet and TCP/IP.

(networking) Internet Protocol - (IP) The network layer for the TCP/IP protocol suite widely used on Ethernet networks, defined in STD 5, RFC 791. IP is a connectionless, best-effort packet switching protocol. (IP) addresses assigned to them, so it is difficult to determine if attacks are originated in those nations. "Only one severe attack over the past six months came from a country on the watch list," the report noted.

COPYRIGHT 2002 National Defense Industrial Association
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Author:	Book, Elizabeth G.
Publication:	National Defense
Date:	Oct 1, 2002
Words:	967
Previous Article:	Stryker not up to speed in some areas, soldiers claim.
Next Article:	`Persistent' intelligence feeds benefit air combat planners.

Related Articles
Past lessons for the future of war. (Defense & Technology)(Column)
Ace's New Futures Contract Guarantees Coverage, Rates.(Brief Article)
TALKING WITH CHILDREN ABOUT LOSS: Words, Strategies, and Wisdom To Help Children Cope With Death, Divorce, and Other Difficult Times.(Review)
RUSSIA - July 5 - Five Echo Moskvy Editors Quit After Takeover By Gazprom.(Brief Article)
Is your business prepared for the worst? Advance crisis planning can help minimize losses.
Trump must sell GM building under Supreme Court decision.(50-story, $1 bn GM tower for sale)(Brief Article)
The art of closing a deal: tips to apply.
VITESSE SET TO PURCHASE TEXAS FIRM AREA COMPANY TO PAY $66 MILLION FOR CICADA.(Business)(Statistical Data Included)
ENTREPRENEURSHIP 101 STUDENT-RUN GENERAL STORE SELLS ON CAMPUS.(News)
Expect the unexpected.(Business Management)