106th Edition -- October 2013

Hear what delegates, sponsors and exhibitors thought about ASIS Europe 2013

What the industry says
about ASIS Europe 2013:
2013 ASIS European Security Conference and Exhibits - Testimonials

An overview of the event:

Highlights from the 2013 ASIS European Security Conference & Exhibits

Quick Links

 

 

Sponsor/Exhibit
 

 

Register Now

 

Sponsor/Exhibit 

 

 

Register Now
 

Sponsor/Exhibit

 

In This Issue 

LEADERS

 

SRVP's Column: Introduction to EuroDynamics

 

Contribute to EuroDynamics and Earn CPEs

 

ASIS EUROPE 2014

  

Super Saver Week - Register Before 11 November, 2014, to Save up to €220

 

ASIS INTERNATIONAL NEWS

 

Be a Sponsor or Exhibitor at ASIS Asia-Pacific 2013, ASIS Middle East 2014, and ASIS Europe 2014

 

Mark Your Calendar for the CSO Roundtable's European Summit

 

CPPs, PCIs, and PSPs Sought for Security Management Profiles

 

 CHAPTER NEWS

 

   ASIS Italy Chapter: Call for Consultation on the Definition of the Security Liaison Officer

 

Design as if Your Life Depended on It: Mall Security and the Nairobi Attack

 

ASIS Austria Chapter Tours Vienna Professional Ambulance Services  


ASIS Russia Chapter Hosts the 3rd CEE Security Roadshow 


HEADLINES
 

 

 Lawmakers Accused of Rushing EU Data Protection Law

 

Communication from the Commission on Evaluating National Regulations on Access to Professions  

 

MEPs Call for Suspension of EU/US Finance Tracking Deal

 

Boosting the Security of Postal Processes via New Screening and Threat Identification Solutions

 

EU Institutions' Telecommunications Provider Subjected to Malware Attack

 

ENISA Interim Report on Top Cyber Threats

 

Up to €2.2bn of EU Funds Stolen in Eight Member States  

EDUCATION AND EVENTS

  

Resilience Lead Auditor Course to be Held 18-22 November, 2013, in Madrid, Spain 

 

Global Agenda

 

Professional Development

Join Us on Facebook

ASIS 13th European Security Conference & Exhibition - The Hague, The Netherlands, 1-3 April, 2014

Like us on Facebook
 
 
ASIS 7th Asia-Pacific Security Forum & Exhibition - Macau, China, 3-5 December, 2013

Like us on Facebook


ASIS 5th Middle East Security Conference & Exhibition - Dubai, UAE, 16-18 February, 2014

Like us on Facebook

Join Us on LinkedIn

Join the ASIS International Group

View our profile on LinkedIn 

 

Join the ASIS Europe Network

View our profile on LinkedIn 


Join the ASIS Asia-Pacific Network

View our profile on LinkedIn 

 

Join the ASIS Middle East Network

View our profile on LinkedIn 

President's Perspective

ASIS International's 2013 president, Geoff Craighead, CPP, shares his unique insights on a range of membership and industry issues in his President's Perspective column. Read the latest here.

El Manual del Investigador Profesional ya está disponible en español

 

La guÍ­a explora temas necesarios para ser un exitoso investigador y prepararse para el examen Certificado de Investigador Profesional.

Did You Like This Issue?

The EMEA Bureau of ASIS International strives to increase the editorial benefit of this publication for members. We invite you to contact the editor to contribute feedback, article submissions, or comments.

Updated Links and Resources

Take a look at our updated Links and Resources page. Feel free to contact the EMEA Bureau if you have additional items to contribute.

ASIS International EMEA Bureau

For any queries on ASIS European events, membership, benefits, resources, certification, or other topics, contact the EMEA Bureau at:


287 Avenue Louise, 4th Floor, 1050 Brussels, Belgium.


Tel: +32 2 645 26 74

Fax:+32 2 645 26 71 

contact@asisonline.eu 

www.asisonline.eu
www.asisonline.org 

European Links

Not Yet a Member?

Join ASIS2  
The top reasons you benefit from becoming an ASIS International member:

- Unrivalled networking opportunities with more than 38,000 of your industry peers.

- Up-to-date information, including industry best practices, new technologies, and emerging trends. 

- A complimentary subscription to Security Management magazine, the leading security industry publication. 

- Opportunities to build a professional reputation and credentials.

- Tailored professional development programs to fit your specific career goals. 
- Advocacy of the security industry to the government and business communities.
- Board-certified, professional designations. 

- Members-only access to new career opportunities in security management. 

- Access to more than 300 peer-reviewed, security-related publications. 

- Discounts on program and ASIS Seminar and Exhibits registration, merchandise, and certification programs. 


 More Information..

New Chapters: Call for Volunteers

ASIS International seeks volunteers to help form new chapters in Iceland, the Baltic States, the Western Balkans, and other European countries that currently lack them.

 

For more information, contact the

EMEA Bureau or click here to download the procedures on forming a new chapter.

Select ASIS Published Titles Now Available for Purchase for

Amazon Kindle

Schedule Your Professional Development Now

A comprehensive educational calendar is available around the clock. Register early and save by taking advantage of early bird rates. Realise additional savings by booking your hotel room before the deadline. Plan ahead to get ahead

Welcome to the 106th edition of EuroDynamics. EuroDynamics is the monthly newsletter dedicated to ASIS International members in Europe covering ASIS news, chapter news, and important European headlines.

 

The ASIS EMEA Bureau would like to invite members to submit updates or articles that you wish to share with the ASIS members in Europe. Note that board certified professionals are entitled to claim up to 9 CPE credits per article.

 

The deadline for the next issue is 30 October.

 

Highlights of this issue: SRVP's Column; Call for Articles; ASIS Europe 2014 Super Saver Week; ASIS Italy Chapter: Call for Consultation on the Definition of Security Liaison Officers; and Design as if Your Life Depended on It: Mall Security and the Nairobi Attack.

 

Please add regionalnewsletters@asisonline.org to your personal address book or safe sender list to ensure correct delivery of your monthly newsletter. 

 

c1Leaders

  

n1SRVP's Column: Introduction to EuroDynamics

Dear Colleagues,

 

As the ASIS International EMEA Bureau in Brussels prepares this edition of EuroDynamics, the Programme Committee is about to meet for final planning of the ASIS 13th European Security Conference & Exhibition.

 

This unique programme, which will be held at the World Forum in The Hague, The Netherlands, from 1-3 April, 2014, will address a full spectrum of topics. These include: retail facility protection, supply chain security, loss prevention, hotel security, intellectual property, oil and gas security, maritime piracy, counter-terrorism, executive protection, internal theft and fraud, competitive intelligence, brand protection, physical security, cyber security, 

investigations, and due diligence.

 

Join your colleagues in The Hague. In addition to extraordinary programme content, this event will offer a chance to learn about key industry groups, including ASIS Young Professionals and Women in Security. You will also learn about European Union regulations and initiatives likely to affect the security industry. Register during the Super Saver Week, on 4 -11 November, 2013, to receive special discounts to members and non-members.

 

This newsletter, EuroDynamics, offers a way for all members in Europe to air views, share news, and provide information. Please submit articles and commentaries on matters of interest to you and your colleagues.

 

With warm regards, and looking forward to seeing you next April in The Hague,

 

Thomas Vonier, CPP

ASIS International

Senior Regional Vice President, Region 9 (Europe)

   

a2Contribute to EuroDynamics and Earn CPEs 

ASIS International invites members to submit articles that will be published in future editions of EuroDynamics.


Whether you would like to write a case study, an article about legislation in your nation, or about threats and opportunities for the security profession, any article that allows the sharing of knowledge and best practices with other ASIS members is welcome.

Board certified professionals are entitled to claim up to 9 CPE credits per article.

General writing guidelines: 

  • Articles must be in English only.
  • Articles should not exceed 500 words.
  • If you would like to submit longer articles, please submit a 500-word summary that will be published in the newsletter and on the Web site with a link to the full article.
  • Sales/marketing submissions will not be accepted.
You are invited to contact the editor with questions or for more information.

 

c2ASIS Europe 2014

  

a1Super Saver Week: Register Before 11 November 2014 to Save Up to 220

 

Get ready to register between 4 and 11 November, 2013, for the ASIS 13th European Security Conference & Exhibition, and save up to 220 on the regular registration fee for the full conference!   

 

Take advantage of this unique opportunity to join around 500 senior security professionals who will gather in The Hague, Netherlands, on 1-3 April, 2014.

 

6 Reasons why you should be at ASIS Europe:

  1. Industry leaders from important companies and organisations will speak about the latest developments, trends and innovations in security.
  2. Apply lessons learnt from other industries to your own sector.
  3. Connect with high-level security professionals from all over Europe and beyond.
  4. Get motivated by new ideas and information.
  5. Form new partnerships and connect with familiar faces in the industry.
  6. Get social and join discussions on Facebook, LinkedIn, and Twitter.

 Who should attend?

  • Security management professionals
  • Corporate executives in IT, supply chain management, strategic planning, and human resources
  • Representatives from companies providing security solutions and technology
  • Law enforcement and fire protection professionals
  • Facility management professionals
  • Intelligence services and military personnel
  • Government officials (Justice and Home Affairs, Foreign Affairs and Defence)
  • Academics
  • Consultants, vendors, and architects
Register as from 4 November and get access to 33 high-level educational sessions provided by industry leaders. Details will be made available on the ASIS Web site soon.
 
Fees: 

 

Super Saver
Rate available between 4 and 11 November, 2013

Early Rate until 18 February, 2014

Regular Rate after 18 February, 2014

ASIS Member

750

850

970

Nonmember

950

1,050

1,170

  

 Like us on Facebook  View our profile on LinkedIn 

 

c3ASIS International News

  

a4Be a Sponsor or Exhibitor at ASIS Asia-Pacific 2013, ASIS Middle East 2014, and ASIS Europe 2014

 

 

Does your organisation's strategic plan call for growth in Asia-Pacific, the Middle East, and Europe? If so, sponsorship of ASIS Asia-Pacific 2013, ASIS Middle East 2014, and ASIS Europe 2014 offers a great way to gain exposure and to raise the visibility of your brand, products, and services among key decision makers in these regions. 


Click these links to review and select from an extensive list of sponsorship and exhibit opportunities:

Identify the event that is most in line with your organisation's marketing strategy and budget, or contact ASIS to shape a tailored package that best suits your company's needs.

For further information on other ASIS global conferences, contact the ASIS EMEA/AP Bureau: Tel: +32 2 645 26 74; e-mail:

europe@asisonline.org or asiapacific@asisonline.org.  
a5Mark your Calendars for the CSO Roundtable's European Summit

The ASIS International CSO Roundtable will hold its European Summit on 16 December, 2013, in Paris, France. The programme is being developed in partnership with CDSE (Club des Directeurs de Sécurité des Entreprises). Attendees will learn more about the issues that affect companies throughout Europe and network with senior security executives from around the region at this annual event. More information on the full programme will be available soon at www.csoroundtable.org.

   

a6CPPs, PCIs, and PSPs Sought for Security Management Profiles

Each issue of Security Management features an ASIS International board-certified professional. The short, monthly column profiles a certificant and provides insight into his or her career, personal motivations to earn a credential, and the benefits of the achievement. Interested members or prospects can contact ASIS Marketing Manager Leigh A. McGuire for details.

 

c4Chapter News

  

a8ASIS Italy Chapter: Call for Consultation on the Definition of Security Liaison Officers

 

By Alessandro Lega, CPP

 

Last June, I was contacted by Professor Roberto Setola of the University Campus Bio-Medico of Rome (UCBM) to evaluate a proposal for a project to be funded by the European Union (EU) that focused on better defining the profile of the security liaison officer (SLO). The project was submitted to the EU Commission the following month and the approval process took roughly six months. In January 2013, the commission gave its positive endorsement. All of the partners were immediately informed of the approval and were invited to attend a kick-off meeting in Rome, Italy, on 5 June, 2013.

 

In the short term, the goal of the SLO project is to create awareness of the SLO  professional profile- that is to say its skills, responsibilities and job description. Currently, there is not enough attention on such profiles. Even in the commission's staff working document, which was published with the proposal for a Directive on Critical Infrastructure Protection (SWD/2012/190), no specific analysis was undertaken of SLOs.

 

In the medium term, we expect that the output of the project, and the awareness that the SLO project will create of SLO profiles, will promote a more detailed and standardised definition of the SLO profile.

 

In the long term, the most important project legacy will be the number of SLOs nominated by critical infrastructures. Clarifications on the SLO profile will increase both its efficiency and value. In addition, this will facilitate the identification and nomination process. It will also reduce internal conflicts, and will allow upper-management to have a clearer vision of the importance of the position to the resilience of critical infrastructures.

 

The main partners of the project are UCBM and the Romanian Association for the Protection of Critical Infrastructures. It is also supported by the ASIS International Italy Chapter, among others.

 

The project will collect input from experts and stakeholders during workshops to take place Italy, Romania, and Belgium in the last quarter of 2013 and the first quarter of 2014, and also with a public consultation through the use of a specific questionnaire. ASIS members are invited to take part to the project. The results will be illustrated during a workshop in Rome in May 2014.

 

All the information related to the SLO project, including the questionnaire, is available at
www.slo-project.eu/. For more information, contact Alessandro Lega at alessandro_lega@tin.it
 
Alessandro Lega is a senior security advisor in Merate, Italy. He is ASIS International assistant regional vice president, Region 9C. 
a9Design as if Your Life Depended on it - Mall Security and the Nairobi Attack

By Thomas Vonier, CPP

 

Could design features have helped to avert the massacre at the Westgate Premier Shopping Mall in Nairobi, Kenya, or somehow helped to reduce the death and injury toll? These are reasonable questions because shopping centers of this kind are ubiquitous, therefore they may now be attractive targets worldwide. Could improved design help to: 

  • Deter, thwart, or provide early warning of violent attacks?
  • Increase the odds of people surviving when such attacks occur?
  • Defeat or isolate attackers quickly, blunting their purposes?

Paying careful attention to security issues during design and planning stages can make a difference. Design features and technical measures cannot take the place of human beings-there's no substitute for alert, well-trained, and motivated security personnel-but security-conscious design can facilitate police and security work by concentrating effort, focusing on vulnerabilities, and providing early warning.

 

Classical defensive tactics also apply, even if some are at odds with the aims of commercial attraction: limit and control the number of entries and keep the premises under constant surveillance. Prepare for rapid incident response-armed if necessary. Conduct background checks on vendors, leaseholders, and key personnel. Provide safehavens and the means for the rapid, systematic close-down of key areas (while recognising that this may also shut off avenues of escape).

 

Security measures can go further. For example, security can inspect people and vehicles entering a mall at a location removed from the place itself. Such steps have some deterrent effect, and they may signal or slow down planned attacks.

 

The same holds true for deliveries and service personnel. There is some evidence that Nairobi attackers may have had insider confederates who stocked weapons prior to the attack.

 

Beyond these techniques, through trying to counter risks in extreme-threat regions, we've seen the development of new systems for enhanced surveillance, and new ways to disable would-be assailants, at least for a time. And in these situations, time counts.

 

In the aftermath of incidents like the Nairobi mall attack, the refrain is heard that it is impossible to deter determined, well-armed, and well-trained attackers if they're prepared to lose their own lives to take others'. That may be so, but we can make it more difficult for violent attackers to achieve their aims. We can take steps that will slow their progress. We can improve the chances for those under attack.

 

A small group of shoppers hid in an employees' break room at the back of a store, barricading the doors and arming themselves with whatever came to hand. Could other victims have reached "safe" rooms and sheltered in them?

 

Nobody can say when or where we may see the next such attack. All we know is that one is likely. Yet, even knowing only this-that such attacks are likely, and could strike anywhere-owners and operators of places attracting large groups must meet a standard of care that takes reasonable precautions and extends reasonable protections.

 

Thomas Vonier, CPP, is consulting architect/FAIA/RIBA of Thomas Vonier LLC of Paris. He is ASIS International senior regional vice president, Region 9 (Europe). 

a10ASIS Austria ChapterToursVienna Ambulance Services

Feichtelbauer receives an ASIS Certificate of Appreciation from Chapter Chair Werner Preining, CPP, of the ASIS Austria Chapter. 

 

By Werner Preining, CPP

Austria Chapter Chair

 

On 12 September, the ASIS Austria Chapter held its forth meeting of 2013 at the central building of the Vienna Professional Ambulance Services in Vienna, Austria. The meeting was organised by Chapter Treasurer Ivo Lagler.

The event started with a few words of welcome from host Erwin Feichtelbauer and Chapter Chair Werner Preining, CPP.

Following a report on chapter administrative issues, Mr. Feichtelbauergave a presentation on the history of the Vienna Professional Ambulance Services. The unit was established after a disastrous fire in one of the famous theatres of Vienna in the 19th century. About 400 persons perished during this tragic incident. The investigation that followed led to safety changes within performing arts venues and to the creation of the Vienna Professional Ambulance Services.

Mr. Feichtelbauer explained the continuous evolution of the unit since its founding in the areas of transportation and communications equipment and operations was reviewed, revealing the unit as one of the best equipped of its type in the world today. The services' disaster-relief aid operations that have been provided to Romania, Iran, and Turkey were also discussed.

 

Partly view of the most advanced ambulance-dispatch-center in Europe.

 

After the presentation, those present received a tour of the unit's communication centre and its simulation centre. The latter is used to train responders, and it includes a road accident simulator.All types of road accidents can be simulated, including those caused by rain, fog, darkness, as well as crashes with motorbikes and cars. The simulator can also role play a scenario in which a car rolls over. Chapter members acted as occupants of a vehicle that flipped over onto its roof. Before belting up, the participants were instructed on how to behave and how to free themselves once the car was upside down. 

 

 
The road accident simulator at Vienna Professional Ambulance Services.

  

a11ASIS Russia Chapter Hosts CEE Security Roadshow

By Radek Havlis, CPP

ASIS Regional Vice President, Region 9F

 

The 3rd CEE Security Roadshow took place in Moscow on 17-18 June, 2013.

The event was hosted and organised by the Moscow office of Deloitte&Touche with support of Deutsche Telekom. The event was headed by Volker Wagner, senior vice president, group business security, Deutsche Telekom AG; Dr. Christoph Rojahn, director-forensic, Deloitte & Touche GmbH; and Radek Havlis, CPP, vice president international security, Deutsche Telekom AG, and ASIS International regional vice president, Region 9F.

 

As has been the case in previous years, the roadshow meetings were well attended by ASIS Russia Chapter members, the local security community, and representatives of large multinationals.

 

On 17 June, roadshow members had an opportunity to participate in an ASIS Russia Chapter regular meeting and to network with security professionals from a number of large international corporations and local companies.

 

On the second day, ASIS, the Russia Chapter, Deloitte & Touche, Deutsche Telekom, and some external guests exchanged views on the role of corporate security, the future growth of ASIS and its regional chapters, the specifics of the Russian business environment, and other issues.

 

One of the most important outcomes of the roadshow was that several security professionals joined the ASIS Russia chapter right after the roadshow delegation departed to St. Petersburg to continue with its business agenda. 
From left to right: Radek Havlis, CPP, RVP, Olesya Abramenko, ARVP (Russia) and Uwe Heim

 

c5Headlines

  

a12Lawmakers Accused of Rushing EU Data Protection Law

Euractiv reported that policymakers and the information technology industry clashed over the timeline of the draft EU Data Protection Regulation during a data protection and privacy conference held in Brussels on 17 September, 2013.

 

The draft regulation proposed in January 2012 is currently being negotiated among members of the European Parliament. The new rules propose to include provisions catering for the right to be forgotten, data portability and access to personal data.

 

Paul Nemitz, director of Fundamental Rights and Citizenship at the European Commission's Directorate-General for Justice, said the new rules will be a boost to the economy and to the protection of the individual. "I think we should all work together to get this act through the council and the parliament before the next parliament elections- and those who keep being bigoted and wanting changes, they may carry the responsibility that we will not be able to come up with this boost for the economy," he added. 

 

Christopher Graham, the UK's information commissioner, said he strongly supports the intention of the reform, the idea of a regulation and consistency. However, he stressed that "It's not fair to say that all the good guys who are in favour of growth are behind the regulators and those who are raising questions are somehow standing out against prosperity." It will be a big mistake if the council, commission, and parliament "just march on" to be done with the regulation before the elections, he continued.

 

Graham's views were backed by industry representatives who stressed that both policymakers and the industry have the same goal but that questions are remaining as to the way to achieve.

 

Source: Euractiv

 

Please click here for more.

   

a13Communication from the Commission on Evaluating National Regulations on Access to Professions

The European Commission published on 2 October, 2013, a communication that launches an evaluation process of national regulations on access to qualified professions.

 

Regulated professions are jobs that require specific qualifications. The commission believes that restrictive conditions discourage young people from entering the qualified professions, and different regulatory regimes prevent them from applying to jobs in other member states. Moreover, loosening unreasonable national controls over the professions could increase employment and enhance economic growth, since professional services amount to around 9 percent of European Union's GDP.

 

As a first step, each member state will have to draw up a list of professions that it regulates, which the commission will publish as a European map displaying which professions are regulated in which countries.

 

Then, member states will carry out a "mutual evaluation" process over the next two years to examine the barriers preventing access to certain professions.

 

Stakeholders representing professionals will be involved in the process, which will be conducted on a profession-by-profession basis.

 

Source: European Commission Directorate-General for the Internal Market

 

Please click here for more.

a15MEPs Call for Suspension of EU-US Finance Tracking Deal 

EU Observer reported on 10 September that members of the European Parliament (MEPs) have called for an immediate suspension of the joint European Union and United State's Terrorist Financial Tracking Programme (TFTP) agreement following reports that the U.S. National Security Agency (NSA) hacked into international bank transfer firm Swift.

 

"We cannot continue loyal co-operation in data exchange with U.S. authorities with this NSA dark cloud hanging over our heads," said Belgian Liberal MEP Guy Verhofstadt. Verhofstadt, along with Dutch liberal MEP Sophie in 't Veld and German Green MEP Jan Philipp Albrecht, wants the European Commission to suspend the TFTP agreement pending clarifications into the snooping revelation first made by Globo TV, a Brazilian television network.

 

The network, which based its report on leaked documents from the former NSA contractor Edward Snowden, added that Google, the Brazilian energy company Petrobas, and the French ministry of foreign affairs were also NSA targets.

 

In 't Veld has requested the European Commission to suspend the agreement, which gives agents from the U.S. Treasury Department access to data on Europeans' financial transactions in a bid to identify terrorist money.

 

The EU signed off on the TFTP agreement with the United States in 2010 under the condition that strict privacy rules would be met. The commission at the time said the agreement includes data protection guarantees restricting the United States' use of the information.

 

Source: EU Observer

 

Please click here for more.

a17Boosting the Security of Postal Processes via New Screening and Threat-Identification Solutions

Good things don't always come through the mail. Letter bombs, illegal drug shipments, small arms, or toxic agents can all find their way into the postal stream with malevolent effect, as public figures know only too well. Incendiary bombs were sent to a football coach in Northern Ireland in April 2011, for example, and letter bombs to high-level German politicians in April 2013. Indeed, postal authorities estimate that one illegal or dangerous item slips into the mail for every 30,000 senders or every 180,000 packages.


Keeping such threats out of postal infrastructures and logistics chains is a complex challenge, but one that EU security research is now tackling via a large-scale cooperative effort.

Known as SAFEPOST ("Reuse and development of Security Knowledge assets for International Postal supply chains"), this €14 million project brings together Europe's postal authorities, research institutes, and industry. They are cooperating to boost the security of postal processes while avoiding any slow down in the screening and delivery of the enormous flows of parcels and letters that criss-cross Europe each day.

One of SAFEPOST's principal goals is to integrate new screening and threat-identification solutions that minimise interruption to mail flows, but which also lend themselves to Europe-wide distributed information. In the case of suspicious items, such solutions could generate valuable data for law enforcement and customs officials. 
 

 

Source: European Commission - Directorate-General for Enterprise and Industry

 

Please click here for more.

a50EU Institutions' Telecommunications Provider Subjected to a Malware Attack

PC World reported on 3 October that Belgacom, a Belgian company that provides Internet and telecommunications services to the European Commission, the European Parliament, and the European Council, was subjected to a malware attack.

The attack was discovered in June and, according to the company's internal investigation, could only have perpetuated by a nation state due to its complexity.

Belgacom's representatives told a Parliamentary inquiry that only internal systems were affected. However, members of the European Parliament wondered why a state would have only targeted Belgacom's systems.

The company refused to comment on the origin of the attack, but according to press reports, the United Kingdom's Government Communications Headquarters led the attack.

Presently, the Belgian federal prosecutor is investigating the issue while the company is carrying out its own probe.


Source: PC World

Please click here for more.

a18ENISA Interim Report on Top Cyber Threats

On 19 September, the European Union Agency for Network and Information Security (ENISA) presented its list of top cyber threats, as a first installment of its Threat Landscape 2013 report. The study analysed recent reports from security industry, networks of excellence, standardisation bodies, and other independent institutes to identify an increase in threats to infrastructure through targeted attacks, mobile devices, and social media identity thefts carried out by cybercriminals over cloud services.

 

Some key trends identified in the study are:

  • Cybercriminals are increasingly using advanced methods to implement attack techniques (vectors) that are nontraceable and difficult to take down. Anonymisation technologies and peer-to peer systems (also known as distributed technologies) play an important role in this. It is clear that mobile technology is increasingly exploited by cybercriminals. Threats of all kinds that were encountered in the more traditional IT arena of will affect mobile devices and the services available on these platforms.
  • The widespread use of mobile devices has led to an increase in abuse based on knowledge/attack methods targeting social media.
  • The availability of malware and cyber-hacking tools and services, together with digital currencies (e.g. Bitcoins) and anonymous payment services, has opened up new avenues for cyber fraud and criminal activity.
  • There is a real possibility of large-impact events when attacks combining various threats are successfully launched.
  • As noted by ENISA in its report on major cyberattacks, cyber-attacks are the sixth most important cause of outages in telecommunication infrastructures, and they affect a considerable number of users. Taking into account these incidents, and denial-of-service threat developments, there has been an increase in infrastructure threats in 2013.

The executive director of ENISA, Professor Udo Helmbrecht, commented: "This short, interim report informs security stakeholders as early as possible about developments in cyber threats, so that they are able to take countermeasures".

 

Source: European Network and Information Security Agency

 

Please click here for more.

a19Up to €2.2 Billion of EU Funds Stolen in Eight Member States

According to EU Observer the figures, released on 1 October at a European Parliament conference on corruption, represent the estimated overall direct costs of corruption in public procurement in five major sectors like construction and water treatment.

 

France, Hungary, Italy, Lithuania, The Netherlands, Poland, Romania and Spain were selected at random for the study.

 

According to the study, the cost of corruption is equivalent to 3 to 4 percent of the total procurement budget. "This seems, at first sight, a higher estimate than the commission first published two years ago," said European Union Anti-Fraud Commissioner Algirdas Semeta. The Commission put the estimate at 1 percent.

 

To combat conflict of interests, the EU developed a definition, which they included in a revised version of the public procurement directive. Tabled in 2011, the directive is under legislative scrutiny at the European Parliament. A high-ranking commission official at the conference said that the definition, which covers actual, potential, or perceived conflicts of interest affecting staff members of the contracting authority or of procurement service providers, would create a legal upheaval in some member states.

 

"I was told by a series of member states that such a broad concept would be a legal revolution in their systems," said Joaquim Nunes De Almedia, director of the public procurement department in the Commission's Directorate-General on the internal market.

 

The reformed directive includes setting up national oversight bodies to ensure contracts worth at least €1 million are properly implemented, but De Almedia noted that corruption is largely a question of culture and of social acceptance of corrupt practices. "To change this we need much more than new laws and new databases," he said.

 

Source: EU Observer

 

Please click here for more.

 

c6Education and Events

  

a7Resilience Lead Auditor Certification Course to be Held 18-22 November, 2013, in Madrid, Spain

Managing the risks of disruptive events is critical to the survival and competitiveness of any organisation. The ASIS International Resilience Lead Auditor certification will help you assess organisational and supply chain risks, maintain and improve resilience management systems, and successfully conduct resilience management system audits. The RABQSA-certified training programme supports standards that address the management of risk related to events that may disrupt an organisation's operations. The RABQSA-RES Competency Unit covers the requirements of resilience standards (e.g., ANSI/ASIS.SPC.1: 2009; ISO 28002:2011; DS 3001:2009; or NEN 7131:2010), as well as discipline-specific standards in business continuity management (e.g. ANSI/ASIS/BSI BCM.1:2010; BSI 25999:2007; or ISO/FDIS 22301), and security management (e.g. ISO 28000:2007, ASIS/WD.PAP.1). The course seamlessly integrates with the ISO 31000 Risk Management standard to allow organisations to develop a cost-effective, holistic approach to managing risk.    

 

Date:

Location:

Instructor:

Fees: 

 

 

 

18-22 November, 2013

Hotel Petit Palace Embassy, Serrano 46, Madrid, Spain

Dr. Marc Siegel, global standards commissioner, ASIS International

$2,500 ASIS members

$3,000 nonmembers

650 for 5 nights

(VAT included. Single room + breakfast. Dinner not included)

 

Please click here for more information.

a22Global Agenda

4-11 November, 2013: Super Saver Week - ASIS 13h European Security Conference & Exhibition

 

18-22 November, 2013: Resilience Lead Auditor Course, Madrid, Spain

 

3-5 December, 2013: ASIS 7th Asia-Pacific Security Forum & Exhibition, Macau, China

Registration is open!

 

16 December, 2013: CSO Roundtable - European Security Summit, Paris, France

16-18 February, 2014: 
ASIS 5th Middle East Security Conference & Exhibition, Dubai, UAE 
Registration is now open!


1-3 April, 2014: ASIS 13th European Security Conference & Exhibition, The Hague, The Netherlands


29 September - October, 2014: ASIS 60th Annual Seminar & Exhibits, Atlanta, GA, USA
a23Professional Development

Webinars

22 October, 2013: Communications: From Village to One!


30 October, 2013: Stop Issuing Secure Credentials to Imposters!

 

12 November, 2013: Strategic Planning Made Easy: How a Security Department can Compete to get Their Slice of the Budgetary Pie


13 November, 2013: Impact of ACA on the Contract Security Industry


4 December, 2013: Hiring Practices in the Security Industry

 

Webinar Archive  

Corporate Kidnapping: Preparing Management for the Unthinkable


Maritime Security Piracy Countermeasures

Security Responds to International Disasters

High Risk Operations: Mexico, a Case Study for Security Supporting Business

Surviving Security Threats During Political Instability and Religious Conflict in the West African Sub-Region   

 
Full list of archived titles

  

e-Learning 

 
This month's highlight: Fiber Optics and IP Networking.  

  

Full list of programmes.

 

Classroom Programmes and Webinars

 

2013 at a glance.

a24Chapter and Certification Events
Please click here to access the European agenda.

ASIS EUROPE. ADVANCING SECURITY WORLDWIDE. © 2013
To unsubscribe please contact the editor
.