Meetings are generally held on the 2nd Tuesday of each month, except August.
Speakers' slides, where available, can be found by following the topic links.
January 2019 Meeting
Date: Tuesday, January 8, 2019 11:30 AM - 2 PM
Location: Eversource Berlin, CT
Speaker: Dominick Violante
“The Aftermath & Recovery of Disruptive Events: You Should Have a Plan “A” and “B” for That" - presented by Dominick Violante, Hartford HealthCare Corp
Having the right plan in place is critical to effectively react to and recover timely from various disruptive events. In the case of the ever-increasing rise of shootings in our nation, many organizations (businesses, schools, hospitals, public venues) have developed emergency plans and provided Active Shooter Response Training to their staff. Unfortunately, the importance of having an “Aftermath and Recovery Plan” has often not contemplated to help mitigate the long term after effects of disruptive events, which can have a severe negative impact on the ability to quickly recover.
The presenter will share developments with OHSA, including attempts at making Active Shooter Training a “Need to Comply” rule nationwide. Many of the principles discussed surrounding this training are obtained from the ALICE (Alert Lockdown Inform Counter Evacuate) Active Shooter Program – our nation’s oldest certified Active Shooter Program which has been used since 2001. The FBI, DHS and DOJ leveraged principles of ALICE to design the RUN, Hide, Fight, and the Get Out, Hide Out, Take Out, programs.
The chaos, confusion and consequences that a disruptive event can create – whether the event directly or indirectly occurs to your organization – can be lessened with good planning, training and practicing drills on a regular basis. Don’t miss this informative session on emergency planning, insights about ALICE training and potentially new OSHA regulatory requirements surrounding Active Shooter.
About the Presenter
Dominick Violante has worked in Law Enforcement for over 30 years. He is the founder of several self-defense and safety awareness programs that he has taught to both law enforcement, public safety and security officers, and the general public since 1983. He also has owned and operated a Martial Arts School since 1982. Dominick currently serves as the Public Safety Training Officer and Education Resource Coordinator for Hartford Hospital and Hartford HealthCare Corp. He is a certified National Instructor for the ALICE Training Program and holds certifications through various agencies, including the Massachusetts Criminal Justice Bureau, FBI and FEMA.
February 2019 Meeting
Date: Tuesday, February 12, 2019 11:30 AM - 2 PM
Location: Eversource Berlin, CT
Speaker: Dr. Edward Goldberg, Eversource Energy
Risks and Strategies Involved with an Electro Magnetic Pulse (EMP) Attack
There is concern and fear, long running but exacerbated over the last couple of years by the threat from North Korea, that even a crude nuclear device detonated over the U.S. would destroy electronics, disable the grid, etc. Further, some scenarios have 90% of the population dead within a year. With electricity being the basis of what makes us a modern society there is deep concern for this threat. A major EMP event – whether natural or manmade – would be devastating for the U.S. and possibly the planet. The risk of such attack is real, and, in some cases, growing. An attack may never happen but the more vulnerable the U.S. is to such an attack the more likely it is to be used against us.
One response to EMP is to have cooperation on the part of government and private sector entities. InfraGard is a large national membership organization established to serve as a public-private partnership between U.S. businesses and the FBI – enabling collaboration, timely exchange of information and analysis, and mutual learning opportunities on the protection of Critical Infrastructure. InfraGard formed a national EMP special interest group (SIG) represented by numerous relevant critical infrastructure sectors to address any high-impact low-frequency threat that could cause long-term nationwide collapse of critical infrastructure. The EMP SIG meets annually in D.C. with an array of government officials and politicians.
It is vital that the nation’s critical infrastructures are resilient and prepared for major disasters. The presenter will provide an overview of EMP – what it is, how it could affect us, why it's an issue, what's being done to protect the country, and what considerations might need to be included in our own plans. More will also be shared about InfraGard and the recent meeting held at the U.S. Capitol full of presentations by various government leaders involved in EMP matters.
SPEAKER BIO: Dr. Edward Goldberg has expert level knowledge of business continuity, disaster recovery and workplace safety, and is a specialist in management and leadership, change management and IT technical management. Ed has nearly 30 years of experience in the energy sector. He currently manages Enterprise Business Continuity, Disaster Recovery and Threat Assessment programs for Eversource in Berlin, CT (formerly Northeast Utilities). This includes corporate functions as well as former operating companies (Connecticut Light and Power, Western Massachusetts Electric, NSTAR Public Service of New Hampshire, all Transmission/CONVEX and Yankee Gas companies - all of which are now called Eversource. In addition, Ed worked at Millstone Nuclear Power Station and Dominion Nuclear. Dr. Goldberg has served on many boards and committees – including currently serving on the Edison Electric Institute’s (EEI) Business Continuity Committee, Board of Directors of the Connecticut Business Leadership Network, ACP National Board and ACP CT Chapter Board, and Subject Matter Expert for the Energy Sector with InfraGard. Ed is a Certified Business Continuity Professional (CBCP) and earned a B.S. in Engineering, an MBA concentrated in Computer Communication Networks, and a Doctorate in Management and Organizational Leadership.
March 2019 Meeting
Date: Tuesday, March 12, 2019 11:30 AM - 2 PM
Location: Eversource Berlin, CT
Presentation available here
Speakers: Jim Slavin, Engagement Director, PwC, Joseph Krause, Director, PwC, Michael Isaac, CBCP, Manager, Advisory, PwC
In today’s rapid and ever-evolving business environment a high percentage of companies – as high as 90% – rely on third parties to some degree to power their operations. Third party services have also evolved, especially technologies supporting just about every aspect of a business – cloud, robotics, Internet of Things, drones, smart machines and artificial intelligence to name a few. The evolution of third-party services offers plenty of opportunities and rewards – as well as some sort of risk. Given the increased reliance on third parties an organization failing to prepare both strategically and tactically for disruptions can mean much greater adverse impact than it can readily handle.
Regardless of your organization’s size, your role or level of expertise, this presentation will be very informative for anyone tasked with risk management, business continuity or organizational resilience – as well as those providing services to risk professionals. Presenters will share the latest “cross industry” trends on how companies are trying to ensure resiliency by their third parties. A brief overview will be provided on a Third Party Risk Management Program (TPRM) framework which includes the lifecycle designed for managing cybersecurity and business continuity risk. Attendees will learn how they can identify and mitigate these risks and leverage inherent risk assessments. Also covered will be practical methods for determining the nature, timing and extent of ongoing monitoring as well as for conducting due diligence, including the advent of consortium models and leveraging outside data.
What level of "assurance" is actually possible from third parties? Companies can never be 100% resilient; however, they can be more aware of risks and much better prepared to minimize or stop the impact of a situation with a third party from becoming a crisis. Attendees can expect to takeaway aspects from this presentation that can help their organization to achieve one of its top priorities – ensuring commitments can be met in the face of disruptive events, regardless of point of failure.
ABOUT THE SPEAKERS
Jim Slavin, Engagement Director
Jim Slavin is a Director with PwC’s Third Party Risk Management (TPRM) group, within the firm’s broader Cybersecurity & Privacy practice. He works with clients in multiple industries to provide guidance on effective third party due diligence and compliance programs. Jim has extensive experience in performing current state assessments of TPRM programs and developing TPRM frameworks including design, implementation and ongoing third party monitoring. In addition, Jim has written numerous white papers, viewpoints and articles on the Foreign Corrupt Practices Act, UK Bribery Act and compliance program management that have been published in various U.S. and international publications. Jim has also been a featured speaker and has presented at webinars and industry roundtable events across the country. Jim is a graduate of Boston College’s Honors Program and Boston College Law School. He is a member of the Connecticut Bar and previously practiced in Connecticut as a litigation attorney, is a Certified Compliance & Ethics Professional and a member of the Society of Corporate Compliance and Ethics.
Joseph Krause, Director
Joseph Krause is a Director with PwC’s Cybersecurity and Data Privacy practice, focused on Cybersecurity for the Northeast market. He has over 23 years of experience assisting organizations of all sizes in the development and management of Information Security governance programs, as well as performing security compliance and IT risk assessments against a variety of Information Security frameworks. Currently Joe leads a team within PwC’s Cybersecurity practice which works with clients to identify and manage cyber risk. Joe began his career in Cybersecurity at the National Security Agency (NSA) where he was a member of the Advanced Data Communications Engineering team. He then took positions in the private sector – serving as Vice President of Product Management for Trustwave (a global Managed Security Services firm) and Vice President of Technology Audit and Assessment Services at Coalfire Systems. Joe has a Bachelors of Arts in Mathematics from the University of Maine, a Masters of Science in Computer Science from The Johns Hopkins University, and a Masters of Business Administration from Suffolk University.
Michael Isaac, CBCP, Manager, Advisory
Michael Isaac is an Advisory Manager with PwC's Cybersecurity & Privacy practice, specializing in business continuity management (BCM). He also served as a Vice President for a leading financial services company where he managed the organization’s domestic Business Continuity/Incident Management Program and provided program oversight to more than 200 business continuity coordinators representing nearly 100 business functions across multiple lines of business and US locations. Mike has nearly 30 years of risk management experience, management consulting, project management and technical writing, and leading organizations in both regulatory and non-regulatory environments in the development and implementation of sustainable process improvement solutions to address a wide range of complex operational and technological issues. Over the course of his career he has performed and/or managed physical security and environmental controls reviews, third-party technology regulatory risk reviews, and numerous advisory and audit related BCM engagements. Mike also has extensive experience assessing, designing, implementing, testing and executing business continuity, disaster recovery and crisis management programs for clients and their service providers, and providing subject matter expertise and training to management and staff across a variety of industries. Michael holds a Bachelor of Science degree in Business Administration and Career Writing from Roger Williams College and is a Certified Business Continuity Professional (CBCP) through the Disaster Recovery Institute International (DRII).
April 2019 Meeting
Date: Tuesday, April 9, 2019 11:00 AM - 2 PM
Insights into New England’s Power Grid Operation
Location: ISO New England, 800 Day Hill Road, Windsor, CT.
Guests Welcomed / Registration required
Ever wonder how electricity is produced, transported and delivered to homes and businesses? Don’t miss this opportunity to visit and learn more about the Independent System Operator New England (ISO New England), the organization of engineers and technical experts that run and ensure the reliability of New England’s electricity grid. For example, ISO New England determines when additional electricity generation plants must be turned on during a summer heat wave to make sure that there is no blackout when demand is higher, especially at peak times. In short, ISO New England ensures the reliability of the power grid in New England for all consumers – citizens, businesses and government. Representatives from key functional areas will cover:
- Overview of ISO New England Mission – ISO New England External Affairs Representative
- Overview of System Operations Function – Stephen George, Head of Operational Performance, Training, and Integration
- ISO Emergency Management and Business Continuity Function – Jeff Trask, Head of Emergency Management and Business Continuity
- Facility Tour – Roland Lucier, Head of Facilities and Security
ISO New England is the independent, not-for-profit company authorized by the Federal Energy Regulatory Commission (FERC) to perform three critical, complex, interconnected roles for the region spanning Connecticut, Rhode Island, Massachusetts, Vermont, New Hampshire, and most of Maine. The three critical responsibilities which help protect the health of the region’s economy and the well-being of its people by ensuring the constant availability of competitively-priced wholesale electricity today and for future generations are: Grid Operation, Market Administration and Power System Planning.
- Grid operation: Coordinating and directing the flow of electricity over the region's high-voltage transmission system, every minute of every day.
- Market administration: We design, run, and oversee the billion-dollar markets that attract a large and diverse mix of participants to buy and sell wholesale electricity at the most competitive prices.
- Power system planning: We do the studies, analyses, and planning to make sure New England's electricity needs will be met over the next 10 years.
May 2019 Meeting
Date: Tuesday, May 14, 2019 11:30 AM - 2 PM
Weaver or Slow Poke Driver: All Drivers Need a Strategic Roadmap for Organizational Resilience
Organizational Resilience - the ability of an organization to resist, absorb, recover and adapt to business disruption in an ever-changing and increasingly complex environment to enable it to deliver its objectives, and rebound and prosper - is a new organizational capability and strategic imperative.
To date, few organizations have resilient operations; there may be pockets at specific levels and functions of the organization, but no enterprise can claim to be fully resilient. For this strategic imperative to succeed, it must evolve with the changing needs of the modern digital world as well as the impact of changes to the environment, geopolitical perspectives and societal norms. Gartner offers a three- to five-year outlook and guidelines for security and risk management leaders to advance this discipline and achieve business outcomes.
This presentation will discuss how to rollout an organizational resilience program that matches your organizational risk type.
Location: Eversource Berlin, CT
Speaker: Roberta Witty
ABOUT THE SPEAKER
Roberta Witty is a Vice President in Gartner Research, where she is part of the Security and Risk Management Leaders research team. Ms. Witty is the Key Initiative Lead for this research team and her primary area of focus is business continuity management and organizational resilience. Prior to joining Gartner in 1999, Ms. Witty managed information security, business continuity management and technology risk management functions for various business units of NYC-based financial institutions: The Chase Manhattan Bank, ING (New York), and the heritage organizations of both Chase and Chemical Bank.
June 2019 Meeting
Date: Tuesday, June 11, 2019 11:30 AM - 2 PM
July 2019 Meeting
August 2019 BREAK
September 2019 Annual ¾ Day Event
October 2019 Meeting
November 2019 Meeting
December 2019 Annual Gathering
ALL 2019 Program Developments
|HOST SPONSOR:||GOLD SPONSOR|
|SILVER SPONSOR||GOLD SPONSOR|
updated: 05022019 ds