Wednesday, July 25, 2012
GET A PLAN!
GET A PLAN!
You can take steps to decrease the impact of a disaster by planning in advance and learning about potential threats. It is important to make sure that your plans are adequate for your family’s situation. Practice your plans regularly.
Having a basic kit on hand to sustain yourself and your family after an emergency is an essential part of preparation. Think first about basic survival needs: fresh water, food, clean air, and warmth. Store your supplies in a portable container as close as possible to an exit and review the contents of your kit at least once a year. Include in your kit:
• 3-day supply of water: at least 1 gallon per person per day
• 3-day supply of non-perishable food
• Manual can opener and eating utensils
• Supplies to care for your pets including 3-day supply of food and water,
ID tags, proof of vaccinations, and veterinarian contact information
• Flashlight
• Portable, battery-powered radio
• Extra batteries
• Basic first aid kit and manual
• Warm clothing and blankets
• Whistle
• Filter face masks (N95 rating)
• List of emergency contact information
• Photocopies of important documents (birth certificate, licenses, insurance information, etc.)
• Cash and coins
• Sanitation and hygiene items (hand sanitizer, moist towelettes, feminine hygiene products, toilet paper, etc.)
• Household chlorine bleach and medicine dropper: 9 parts water to 1 part bleach can be used as a disinfectant, 16 drops of bleach to 1 gallon of water can be used to treat water in an emergency (do not use scented, color safe, or bleaches with added cleaners)
• Items for infants (formula, diapers, bottles, and pacifiers) if applicable
• 4 or 5 solar lights (regular garden lights) – these will light your space all night and recharge during the day
Sunday, April 8, 2012
PS-Prep, FEMA, PPD8: Just more crazy acronyms?
It's been said that we live in a world of TLA's (Three Letter Acronyms) and X-TLA's (eXtended Three Letter Acronyms). How true is that? It doesn't seem to matter the field, we all live with them. The ones mentioned in the title to this blog post are important, though, if you plan to have your business prepared for a worst case scenario. The have to do with BCP (Business Continuity Planning) and the establishment of a BCMS (Business Continuity Management System).
Let's start with the Private Sector Preparedness Program (PS-Prep). PS-PREP (also known as Public Law 110-53: Title IX) constitutes a credible, practical, standards-based approach to certification of a business continuity and emergency management program for private sector organizations. It is managed by the Department of Homeland Security, administered by the American National Standards Institute’s American Society for Quality (ASQ), and accredited by the American National Accreditation Board (ANAB), and came as a recommendation from findings of the 9/11 Commission. Organizations can be certified to PS-PREP by an ANAB accredited certifying body.
Under PS-PREP, the organization has the ability to individually select and implement a set of reasonable and appropriate requirements and controls from any one (or a combination) of three different business continuity and emergency management standards. These include:
The National Fire Protection Association’s NFPA-1600- Standard on Disaster/Emergency Management and Business Continuity Programs dated 2007
The American National Standard ASIS SPC.1-2009 Organizational Resilience: Security, Preparedness, and Continuity Management Systems- Requirements with Guidance for Use
The British Standard Institute’s BS-25999-2:2007 Business Continuity Management- Part 2: Specification.
All of these standards recommend a Plan / Do / Check / Act (PDCA) approach to establishing a BCMS with the enterprise. Since there are very few disasters or crises that you can see coming (hurricanes and floods pretty much round out the set), having a well-practiced, often-exercised plan is imperative for most every business. Basing the plan on proven guidelines make good sense.
Presidential Preparedness Directive 8 (PPD-8) is the newest element of the National Preparedness Directive. Specifically, it identifies six components to improve national preparedness for a wide range of threats and hazards, such as acts of terrorism, cyber attacks, pandemics and catastrophic natural disasters. The system description explains how as a nation we will build on current efforts, many of which are already established in the law and have been in use for many years. These six components include:
Identifying and assessing risks;
Estimating capability requirements;
Building or sustaining capabilities;
Developing and implementing plans to deliver those capabilities;
Validating and monitoring progress made towards achieving the National Preparedness Goal; and
Reviewing and updating efforts to promote continuous improvement.
Most of this can be accomplished through adherence to the standards and programs mentioned under PS-Prep.
The Federal Emergency Management Agency (FEMA) is chartered with managing these programs. A pretty good idea, assuming that getting more entities on board could result in lowered risk and therefore lowered impact to the nation's resources.
So - how are YOU doing? Does your company have a BCP? Is it compliant with one or more of the BCP Standards? Do you exercise it regularly? Has it been audited by an external resource?
Let me know if you need help answering any of these questions.
Ed.minyard@responseforce1.com
Let's start with the Private Sector Preparedness Program (PS-Prep). PS-PREP (also known as Public Law 110-53: Title IX) constitutes a credible, practical, standards-based approach to certification of a business continuity and emergency management program for private sector organizations. It is managed by the Department of Homeland Security, administered by the American National Standards Institute’s American Society for Quality (ASQ), and accredited by the American National Accreditation Board (ANAB), and came as a recommendation from findings of the 9/11 Commission. Organizations can be certified to PS-PREP by an ANAB accredited certifying body.
Under PS-PREP, the organization has the ability to individually select and implement a set of reasonable and appropriate requirements and controls from any one (or a combination) of three different business continuity and emergency management standards. These include:
The National Fire Protection Association’s NFPA-1600- Standard on Disaster/Emergency Management and Business Continuity Programs dated 2007
The American National Standard ASIS SPC.1-2009 Organizational Resilience: Security, Preparedness, and Continuity Management Systems- Requirements with Guidance for Use
The British Standard Institute’s BS-25999-2:2007 Business Continuity Management- Part 2: Specification.
All of these standards recommend a Plan / Do / Check / Act (PDCA) approach to establishing a BCMS with the enterprise. Since there are very few disasters or crises that you can see coming (hurricanes and floods pretty much round out the set), having a well-practiced, often-exercised plan is imperative for most every business. Basing the plan on proven guidelines make good sense.
Presidential Preparedness Directive 8 (PPD-8) is the newest element of the National Preparedness Directive. Specifically, it identifies six components to improve national preparedness for a wide range of threats and hazards, such as acts of terrorism, cyber attacks, pandemics and catastrophic natural disasters. The system description explains how as a nation we will build on current efforts, many of which are already established in the law and have been in use for many years. These six components include:
Identifying and assessing risks;
Estimating capability requirements;
Building or sustaining capabilities;
Developing and implementing plans to deliver those capabilities;
Validating and monitoring progress made towards achieving the National Preparedness Goal; and
Reviewing and updating efforts to promote continuous improvement.
Most of this can be accomplished through adherence to the standards and programs mentioned under PS-Prep.
The Federal Emergency Management Agency (FEMA) is chartered with managing these programs. A pretty good idea, assuming that getting more entities on board could result in lowered risk and therefore lowered impact to the nation's resources.
So - how are YOU doing? Does your company have a BCP? Is it compliant with one or more of the BCP Standards? Do you exercise it regularly? Has it been audited by an external resource?
Let me know if you need help answering any of these questions.
Ed.minyard@responseforce1.com
Sunday, August 28, 2011
Complacency: Letting your Guard Down after Irene?
Complacency is an interesting phenomenon. It usually occurs after great success. Ever wonder why so few pro teams "3 peat"? It's because they couldn't "repeat." Why? Because they become complacent. In our business - that of disaster response and emergency management - complacent kills.
In NOLA, most of the folks who died had the attitude that they could "ride this one out", just as they and their parents had all the "other storms." Complacency, writ large.
So, here we are, on 8/28/2011 - one day shy of the 6th anniversary of Katrina. Irene is literally passing my front door right now, here in the White Mountains of New Hampshire. We've had 7 inches of rain since 10AM (ok, I could have been up earlier, but WHY?), and the wind is till puffing about. 15 lives lost have been contributed to this storm, and who knows how much property damage? 4 million people are without power (which, for those of you who haven't spent a few days without power, really sucks) and flooding is all over. But, you know what? NO ONE WAS COMPLACENT! Everyone took this seriously.
That said, since it wasn't "so bad," will the same folks along the east Coast take the next storm seriously? Will folks evacuate, when told, in the face of the next, inevitable, storm? Man, I truly hope so.
In 2008, my team and I were back in NOLA, helping to execute an evacuation plan which, 2 years earlier, we helped to write. We got out everyone that needed to get out.
Then, the storm went around us.
Mayor Nagin, at that time, like Mayor Bloomberg, this time, made a very hard and costly decision. Made in the spirit of saving lives. I was also in Mexico City when Mayor Marcelo Ebrard made the tough decision to shut that giant city down, when faced with H1N1 - again, to save lives.
But, it turns out, none of those events turned out to be as bad as the "hype" made them seem.
So, what about next time?
My guess? People will die. They will die because of complacency. That John Wayne attitude that says, "How bad can it be? I survived the last one!"
As I write this, there are several new storm systems developing in the Atlantic and one predicted for the Gulf of Mexico. We are not yet at the peak of Hurricane Season 2011. We've just had a 5.9 earthquake on the EAST COAST.
Seriously, Are You Ready?
Or are you COMPLACENT?
In NOLA, most of the folks who died had the attitude that they could "ride this one out", just as they and their parents had all the "other storms." Complacency, writ large.
So, here we are, on 8/28/2011 - one day shy of the 6th anniversary of Katrina. Irene is literally passing my front door right now, here in the White Mountains of New Hampshire. We've had 7 inches of rain since 10AM (ok, I could have been up earlier, but WHY?), and the wind is till puffing about. 15 lives lost have been contributed to this storm, and who knows how much property damage? 4 million people are without power (which, for those of you who haven't spent a few days without power, really sucks) and flooding is all over. But, you know what? NO ONE WAS COMPLACENT! Everyone took this seriously.
That said, since it wasn't "so bad," will the same folks along the east Coast take the next storm seriously? Will folks evacuate, when told, in the face of the next, inevitable, storm? Man, I truly hope so.
In 2008, my team and I were back in NOLA, helping to execute an evacuation plan which, 2 years earlier, we helped to write. We got out everyone that needed to get out.
Then, the storm went around us.
Mayor Nagin, at that time, like Mayor Bloomberg, this time, made a very hard and costly decision. Made in the spirit of saving lives. I was also in Mexico City when Mayor Marcelo Ebrard made the tough decision to shut that giant city down, when faced with H1N1 - again, to save lives.
But, it turns out, none of those events turned out to be as bad as the "hype" made them seem.
So, what about next time?
My guess? People will die. They will die because of complacency. That John Wayne attitude that says, "How bad can it be? I survived the last one!"
As I write this, there are several new storm systems developing in the Atlantic and one predicted for the Gulf of Mexico. We are not yet at the peak of Hurricane Season 2011. We've just had a 5.9 earthquake on the EAST COAST.
Seriously, Are You Ready?
Or are you COMPLACENT?
Wednesday, August 24, 2011
Hurricanes and Earthquakes
Last year, I gave a presentation on the probable impacts of a Cat 3 storm hitting NYC. Well, today we are faced with a possibility of all that occurring. Here are a few points from my presentation:
According to a 1995 study, a category three hurricane on a worst-case track could create a surge of up to 25 feet at JFK Airport, 21 feet at the Lincoln Tunnel entrance, 24 feet at the Battery, and 16 feet at La Guardia Airport. These figures do not include the effects of tides nor the additional heights of waves on top of the surge.
In the event of a hurricane, authorities would focus their efforts on moving those in low-lying areas of the city- roughly 3.3 million people- to higher ground. However, New York can provide shelter for only 800,000 people, leaving the potential of more than 2 million people to fend for themselves.
A category 3 storm would put Wall Street under 10 feet of water in moments, its winds would turn skyscrapers into perilous wind tunnels.
A major hurricane in New York would create a national setback of enormous proportions.
So, what about earthquakes? In NYC? Yep, very possible and has already happened -
The city can expect a magnitude 5 quake, which is strong enough to cause damage, once every 100 years, according to the report addressed in the following link. (Magnitude is a measure of the energy released at the source of an earthquake.) The scientists also calculate that a magnitude 6, which is 10 times larger, has a 7 percent chance of happening once every 50 years and a magnitude 7 quake, 100 times larger, a 1.5 percent chance.
http://www.gothamgazette.com/article/iotw/20080929/200/2660
So, the question is, ARE YOU READY?
According to a 1995 study, a category three hurricane on a worst-case track could create a surge of up to 25 feet at JFK Airport, 21 feet at the Lincoln Tunnel entrance, 24 feet at the Battery, and 16 feet at La Guardia Airport. These figures do not include the effects of tides nor the additional heights of waves on top of the surge.
In the event of a hurricane, authorities would focus their efforts on moving those in low-lying areas of the city- roughly 3.3 million people- to higher ground. However, New York can provide shelter for only 800,000 people, leaving the potential of more than 2 million people to fend for themselves.
A category 3 storm would put Wall Street under 10 feet of water in moments, its winds would turn skyscrapers into perilous wind tunnels.
A major hurricane in New York would create a national setback of enormous proportions.
So, what about earthquakes? In NYC? Yep, very possible and has already happened -
The city can expect a magnitude 5 quake, which is strong enough to cause damage, once every 100 years, according to the report addressed in the following link. (Magnitude is a measure of the energy released at the source of an earthquake.) The scientists also calculate that a magnitude 6, which is 10 times larger, has a 7 percent chance of happening once every 50 years and a magnitude 7 quake, 100 times larger, a 1.5 percent chance.
http://www.gothamgazette.com/article/iotw/20080929/200/2660
So, the question is, ARE YOU READY?
Saturday, July 30, 2011
Standards
One of our RF1 clients asked us, "Why should we be worried about 'standards'?" This was in relation to work that we're currently doing for this entity. So, what's the answer?
In general standards generate efficiencies and competitiveness in the sectors that adopt them.
Prime examples of successfully adopted standards include the Internet Protocol (IP), Global System for Mobile Communications (GSM), Code Division Multiple Access (CDMA), General Packet Radio Service (GPRS) and Hyperlink (HTML). Could you imagine the state we'd be in if EVERYONE who developed an "app" just did their own thing, their own way? You don't have to look back too far to get my drift. For those of us of a certain age, just click back to the battle between VHS and BETA formats for VCR's. For those of you who don't know what a VCR is, look at the issues today in resolving 3D TV standards.
As they evolve, standards can generate linked effects which exist where the more parties that adopt a particular way of doing something, the greater immediate benefit is achieved to new parties who subsequently adopt the same way of doing it, as well as increasing the value to those who have already adopted it. These linked effects can generate greater economies of scale as costs reduce for example, as mobile phones and the GSM, CDMA and GPRS standards have grown in popularity, the cost of purchasing a handset has reduced significantly. Standards can also increase competition. If a standard approach to development, construction or deployment exists between different suppliers, the choices to the consumer become more broad, therefore leading to a more competitive environment.
Possibly the single most important benefit of standards relates to operational efficiencies. New participants can benefit from the lessons learned by earlier adopters of the process or technology-at-hand.
All this having been said, as evidenced by the references to the cellphone "standards" (GPRS / CDMA / GSM), the best thing about standards is, there are so many to choose from! Don't go blindly into an approach without doing some homework.
In general standards generate efficiencies and competitiveness in the sectors that adopt them.
Prime examples of successfully adopted standards include the Internet Protocol (IP), Global System for Mobile Communications (GSM), Code Division Multiple Access (CDMA), General Packet Radio Service (GPRS) and Hyperlink (HTML). Could you imagine the state we'd be in if EVERYONE who developed an "app" just did their own thing, their own way? You don't have to look back too far to get my drift. For those of us of a certain age, just click back to the battle between VHS and BETA formats for VCR's. For those of you who don't know what a VCR is, look at the issues today in resolving 3D TV standards.
As they evolve, standards can generate linked effects which exist where the more parties that adopt a particular way of doing something, the greater immediate benefit is achieved to new parties who subsequently adopt the same way of doing it, as well as increasing the value to those who have already adopted it. These linked effects can generate greater economies of scale as costs reduce for example, as mobile phones and the GSM, CDMA and GPRS standards have grown in popularity, the cost of purchasing a handset has reduced significantly. Standards can also increase competition. If a standard approach to development, construction or deployment exists between different suppliers, the choices to the consumer become more broad, therefore leading to a more competitive environment.
Possibly the single most important benefit of standards relates to operational efficiencies. New participants can benefit from the lessons learned by earlier adopters of the process or technology-at-hand.
All this having been said, as evidenced by the references to the cellphone "standards" (GPRS / CDMA / GSM), the best thing about standards is, there are so many to choose from! Don't go blindly into an approach without doing some homework.
Sunday, July 24, 2011
It's Hurricane Season, Folks - Are You Ready?
So - Are You Ready?
What should you be doing...RIGHT NOW...to prepare? Here are a few guidelines:
What Steps Should be Taken?
For the Enterprise
Organizations should have a “ready response” initiative in place that will enable them to communicate and respond immediately following a disaster. Ready response could entail pre-staging essential communications equipment, durable mobile communications vehicles, call centers and disaster recovery sites outside the impacted geographic area, mobile command centers and physical security to protect physical assets. The next critical step is to choose the key people, and their alternates, to implement the plan. Take appropriate steps to ensure that they understand their roles and responsibilities in advance.
Organizations should also have a well–written and well-exercised DRP and BCP. Standards such as CobIT, ISO 17799, NFPA 1600 and others are excellent, proven guidelines for such plans. This author suggests that those plans should be aligned with frameworks such as the National Response Framework, the National Incident Management System and the National Critical Infrastructure Protection Plan, as well. I suggest that because, in an incident of national significance, your facilities, employees, distribution systems and infrastructure may become an integral part of a broad-based response effort.
For the Individual
Develop an emergency plan, make sure that everyone in your family knows about it an practices it. No matter what the disaster, the most basic element of planning is to agree on at least two places for families to meet in the event that one’s home becomes unsafe. Develop a solid communications plan – in many cases, it will actually be easier to call long distance than locally. Have a coordination point outside of your local area that family members can contact.
Think of how many displaced families could have been reconnected if this type of preparedness had taken place prior to Katrina.
Part of your planning effort should include the assembly of a “go kit”, containing important papers, prescription pharmaceuticals, non-perishable food, water, batteries, a battery-operated or hand crank-powered weather radio, etc.
Don’t count on help for at least three days after a major disaster event. It may not be there.
Remember that any emergency is local first. FEMA IS NOT A First Responder!!
You should be prepared to be on your own for at least 72 hours. I repeat: FEMA is NOT a First Responder! Go to the FEMA website http://www.fema.gov/areyouready/ ; That may be the only help anyone gets from FEMA until well after any emergency. It’s full of good advice, including a list of items to be included in a “go kit”.
Remember that a Hurricane is one of the very few disaster you can see coming. That said, the advice her will help you be better prepared for ANY disaster.
Stay safe.
What should you be doing...RIGHT NOW...to prepare? Here are a few guidelines:
What Steps Should be Taken?
For the Enterprise
Organizations should have a “ready response” initiative in place that will enable them to communicate and respond immediately following a disaster. Ready response could entail pre-staging essential communications equipment, durable mobile communications vehicles, call centers and disaster recovery sites outside the impacted geographic area, mobile command centers and physical security to protect physical assets. The next critical step is to choose the key people, and their alternates, to implement the plan. Take appropriate steps to ensure that they understand their roles and responsibilities in advance.
Organizations should also have a well–written and well-exercised DRP and BCP. Standards such as CobIT, ISO 17799, NFPA 1600 and others are excellent, proven guidelines for such plans. This author suggests that those plans should be aligned with frameworks such as the National Response Framework, the National Incident Management System and the National Critical Infrastructure Protection Plan, as well. I suggest that because, in an incident of national significance, your facilities, employees, distribution systems and infrastructure may become an integral part of a broad-based response effort.
For the Individual
Develop an emergency plan, make sure that everyone in your family knows about it an practices it. No matter what the disaster, the most basic element of planning is to agree on at least two places for families to meet in the event that one’s home becomes unsafe. Develop a solid communications plan – in many cases, it will actually be easier to call long distance than locally. Have a coordination point outside of your local area that family members can contact.
Think of how many displaced families could have been reconnected if this type of preparedness had taken place prior to Katrina.
Part of your planning effort should include the assembly of a “go kit”, containing important papers, prescription pharmaceuticals, non-perishable food, water, batteries, a battery-operated or hand crank-powered weather radio, etc.
Don’t count on help for at least three days after a major disaster event. It may not be there.
Remember that any emergency is local first. FEMA IS NOT A First Responder!!
You should be prepared to be on your own for at least 72 hours. I repeat: FEMA is NOT a First Responder! Go to the FEMA website http://www.fema.gov/areyouready/ ; That may be the only help anyone gets from FEMA until well after any emergency. It’s full of good advice, including a list of items to be included in a “go kit”.
Remember that a Hurricane is one of the very few disaster you can see coming. That said, the advice her will help you be better prepared for ANY disaster.
Stay safe.
FEMA Camps
I have to tell you, it makes me laugh out when I Google "FEMA Camps" and see all the crazy BS out there. As some of you may know, we have been operating such camps for 3 years. Contrary to "Google World", they are NOT interment camps, death camps or concentration camps. Just comfortable, convenient paces to lay your head and eat when responding to disasters.
At least that's what FEMA tells us...
At least that's what FEMA tells us...
Subscribe to:
Posts (Atom)
