105th Edition -- September 2013

Thank you for attending ASIS Europe 2013

What the industry says
about ASIS Europe 2013:
2013 ASIS European Security Conference and Exhibits - Testimonials

An overview of the event:

Highlights from the 2013 ASIS European Security Conference & Exhibits

Quick Links

 

 

Sponsor/Exhibit
 

 

Register Now

 

Sponsor/Exhibit 

 

 

Register Now
 

Sponsor/Exhibit

 

In This Issue 

LEADERS

 

Newsletter Survey

 

ASIS EUROPE 2014

  

Super Saver Week - Register Before 11 November 2014 to Save up to €220

 

ASIS INTERNATIONAL NEWS

 

ASIS 2013: Forward-Thinking Education, New Technology, Peer-to-Peer Connections

 

Making Plans to Attend ASIS 2013? Add ASIS Foundation Events to Your Schedule

 

Be a Sponsor or Exhibitor at ASIS 2013, ASIS Asia-Pacific 2013, ASIS Middle East 2014 and ASIS Europe 2014

 

Mark Your Calendar for the CSO Roundtable's European Summit

 

CPPs, PCIs, and PSPs Sought for Security Management Profile

 

 CHAPTER NEWS

 

Expert Series 25: Broken Window Theory

 

HEADLINES

 

 Enhancing the Efficiency and Competitiveness of the Defence and Security Sector in Europe

 

Estonia: Russian Spy Did Not Know EU or NATO Secrets

 

Report: Faulty Software More Damaging Than Cyber Attacks

 

 
Germany "Underestimated" Neo-Nazi Risk

 

Croatia Defies EU on Arrest Warrant

 

EU Data Watchdog to Investigate Prism Scandal

 

Saharan Islamists Target France

 

GCHQ Antihacker Cybersecurity Response Services Open For Business

 

Interpol Open to Abuse by "Criminal States"

 

EDUCATION AND EVENTS

 

Resilience Lead Auditor Course to be Held 18-22 November, 2013, in Madrid, Spain 

 

Global Agenda

 

Professional Development

Join Us on Facebook

ASIS 13th European Security Conference & Exhibition - The Hague, The Netherlands, 1-3 April, 2014

Like us on Facebook


ASIS 59th Annual Seminar and Exhibits - Chicago, IL, USA, 24-27 September, 2013
 
Like us on Facebook
 
 
ASIS 7th Asia-Pacific Security Forum & Exhibition - Macau, China, 3-5 December, 2013

Like us on Facebook


ASIS 5th Middle East Security Conference & Exhibition - Dubai, UAE, 16-18 February, 2014

Like us on Facebook

Join Us on LinkedIn

Join the ASIS International Group

View our profile on LinkedIn 

 

Join the ASIS Europe Network

View our profile on LinkedIn 


Join the ASIS Asia-Pacific Network

View our profile on LinkedIn 

 

Join the ASIS Middle East Network

View our profile on LinkedIn 

President's Perspective

ASIS International's 2013 President, Geoff Craighead, CPP, shares his unique insights on a range of membership and industry issues in his President's Perspective column. Read the latest here.

El Manual del Investigador Profesional ya está disponible en español

 

La guÍ­a explora temas necesarios para ser un exitoso investigador y prepararse para el examen Certificado de Investigador Profesional.

Did You Like This Issue?

The EMEA Bureau of ASIS International strives to increase the editorial benefit of this publication for members. We invite you to contact the editor to contribute feedback, article submissions, or comments.

Updated Links and Resources

Take a look at our updated Links and Resources page. Feel free to contact the EMEA Bureau if you have additional items to contribute.

ASIS International EMEA Bureau

For any queries on ASIS European events, membership, benefits, resources, certification, or other topics, contact the EMEA Bureau at:


287 Avenue Louise, 4th Floor, 1050 Brussels, Belgium.


Tel: +32 2 645 26 74

Fax:+32 2 645 26 71 

contact@asisonline.eu 

www.asisonline.eu
www.asisonline.org 

European Links

Not Yet a Member?

Join ASIS2  
The top reasons you benefit from becoming an ASIS International member:

- Unrivalled networking opportunities with more than 38,000 of your industry peers.

- Up-to-date information, including industry best practices, new technologies, and emerging trends. 

- Complimentary subscription to Security Management magazine, the leading security industry publication. 

- Opportunities to build a professional reputation and credentials.

- Tailored professional development programs to fit your specific career goals. 
- Advocacy of the security industry to the government and business communities.
- Board-certified, professional designations. 

- Members-only access to new career opportunities in security management. 

- Access to more than 300 peer-reviewed, security-related publications. 

- Discounts on program and ASIS Seminar and Exhibits registration, merchandise, and certification programs. 


 More Information... .

New Chapters: Call for Volunteers

ASIS International seeks volunteers to help form new chapters in Iceland, the Baltic States, the Western Balkans, and other European countries that currently lack them.

 

For more information, contact the

EMEA Bureau or click here to download the procedures on forming a new chapter.

Select ASIS Published Titles Now Available for Purchase for

Amazon Kindle

Schedule Your Professional Development Now

A comprehensive educational calendar is available around the clock. Register early and save by taking advantage of early bird rates. Realise additional savings by booking your hotel room before the deadline. Plan ahead to get ahead

Welcome to the 105th edition of EuroDynamics. EuroDynamics is the monthly newsletter dedicated to ASIS International members in Europe covering ASIS news, chapter news, and important European headlines.

 

The ASIS EMEA Bureau would like to invite members to submit updates or articles you wish to share with the ASIS members in Europe.

 

The deadline for the next issue is 2 October.

 

In this issue: Newsletter Survey, ASIS Europe 2014 Super Saver Week, ASIS 2013, ASIS Foundation Events.

 

Please add regionalnewsletters@asisonline.org to your personal address book or safe sender list to ensure correct delivery of your monthly newsletter. 

 

c1Leaders

  

n1Newsletter Survey (Deadline: 2 October 2013)

Please take a few minutes to complete this survey on EuroDynamics.

Your feedback is important to us, and your responses will help us improve EuroDynamics to better meet your needs. Your responses will be kept confidential and will not be used for any purpose other than research conducted by ASIS International.

Thank you in advance for your feedback.

 

c2ASIS Europe 2014

  

a1Super Saver Week -- Register Before 11 November 2014 to Save Up to 220

 

Get ready to register between 4 and 11 November, 2013, for the ASIS 13th European Security Conference & Exhibition, and save up to 220 on the regular registration fee for the full conference!
  

Take advantage of this unique opportunity to join around 500 senior security professionals who will gather in The Hague, Netherlands, on 1-3 April, 2014.

 

6 Reasons why you should be at ASIS Europe:

  1. Industry leaders from important companies and organisations will speak about the latest developments, trends and innovations in security.
  2. Apply lessons learnt from other industries to your own sector.
  3. Connect with high-level security professionals from all over Europe and beyond.
  4. Get motivated by new ideas and information.
  5. Form new partnerships and connect with familiar faces in the industry.
  6. Get social and join discussions on Facebook, LinkedIn, and Twitter.

 Who should attend?

  • Security management professionals
  • Corporate executives in IT, supply chain management, strategic planning, and human resources
  • Representatives from companies providing security solutions and technology
  • Law enforcement and fire protection professionals
  • Facility management professionals
  • Intelligence services and military personnel
  • Government officials (Justice and Home Affairs, Foreign Affairs and Defence)
  • Academics
  • Consultants, vendors, and architects
Register as from 4 November and get access to 33 high-level educational sessions provided by industry leaders. Details will be made available on the ASIS Web site soon.
 
Fees: 

 

Super Saver
Rate available between 4 and 11 November, 2013

Early Rate until 18 February, 2014

Regular Rate after 18 February, 2014

ASIS Member

750

850

970

Non Member

950

1,050

1,170

  

 Like us on Facebook  View our profile on LinkedIn 

 

c3ASIS International News

  

a2ASIS 2013: Forward-Thinking Education, New Technology, Peer-to-Peer Connections

  


 
Security concerns continue to be a top priority for governments and industries in all regions of the world, and keeping up with the latest information, technology, and techniques for dealing with current and evolving threats is the primary goal of the ASIS International 59th Annual Seminar and Exhibits (ASIS 2013). ASIS 2013 is expected to draw more than 20,000 security professionals from approximately 90 countries when it convenes 24-27 September in Chicago, Illinois, USA.

 

In addition to the opportunities afforded ASIS delegates and exhibitors by the colocation of the (ISC)² Security Congress, several other organisations are partnering with ASIS this year by presenting sessions of interest to the security industry: these organisations include BICSI (an IT organisation), the Electronic Security Association, the International Association for Healthcare Security and Safety, and the Security Industry Association. And once again, the PSA Security Network is supporting the Security Integrator track.

 

"The need for the sharing of information and ideas, successes failures, and outlooks for the future has never been greater," says ASIS President Geoff T. Craighead, CPP. "The lines between departments and functional units, as well as between professions, are blurring as the emphasis on cybersecurity increases.  We must work as a team to deal with today's worldwide threats."

 

This year's educational programme offers more than 200 sessions in 24 tracks covering the breadth of issues important to security professionals. In addition to the wealth of innovative solutions found in the Exhibit Hall, free learning opportunities on the show floor will provide even more resources to attendees. Details on technology trends, the poster competition, and Solutions Theater vendor presentations will be available this month and an announcement on a brand-new

Seminar and Exhibits feature will be made soon.

 

General sessions include an international policy roundtable, "From Victims to Vigilantes: Cyber Security Strategies Going on the Offensive," which will be presented by (ISC)2 on 27 September at 8 a.m., followed by "Counterfeiting: From Potions and Lotions to Tractors and Turbines" at 9:30 a.m. And at 11 a.m., "The Security Professional as a Trusted Advisor," will present diverse ways for security professionals to work with the C-suite and break down barriers among key stakeholders.

 

For the latest information on education, networking events, and the Exhibits, visit www.asis2013.org. Visit the International Visitors page for information and travel resources. Register at www.asis2013.org/registration

a3Making Plans to Attend ASIS 2013? Add ASIS Foundation Events to Your Schedule

The ASIS Foundation holds two fundraising events each year in conjunction with the Annual Seminar and Exhibits: a golf tournament and Foundation Night. Both events offer excellent opportunities for networking with peers from all sectors of the security industry. This year's golf tournament will be held on Monday, 23 September, at Harborside International Golf Center. Register and be teamed up with colleagues. It is a great day of fun and a wonderful way to begin your ASIS 2013 experience in Chicago.

 

Foundation Night will be held on Thursday, 27 September, on the scenic 99th floor of the Willis Tower, which is the tallest building in the Western Hemisphere. Attendees can take in a 360-degree view of Chicago, including the city's lakefront and four states. The always-festive evening will feature live music, delicious food and beverages, and an informal atmosphere in which to connect with friends and colleagues. Access to the tower requires a state-issued photo ID. These events provide direct support for the Foundation, which is dedicated to providing high-quality and contemporary research and educational opportunities that serve to enhance the security profession. Be sure to include these events in your travel plans.

    

a4Be a Sponsor or Exhibitor at ASIS 2013, ASIS Asia-Pacific 2013, ASIS Middle East 2014, and ASIS Europe 2014

 

Does your organisation's strategic plan call for growth in the United States, Asia-Pacific, the Middle East, and Europe? If so, sponsorship of the ASIS International 59th Annual Seminar and Exhibits, ASIS Asia-Pacific 2013, ASIS Middle East 2014, and ASIS Europe 2014 offers a great way to gain exposure and to raise the visibility of your brand, products, and services among key decision makers in these regions. 


Click these links to review and select from an extensive list of sponsorship and exhibit opportunities:

Identify the event that is most in line with your organisation's marketing strategy and budget, or contact ASIS to shape a tailored package that best suits your company's needs.

For further information on the ASIS 2013, click here to contact ASIS headquarters.   

 

For further information on other ASIS global conferences, contact the ASIS EMEA/AP Bureau: Tel: +32 2 645 26 74; e-mail:

europe@asisonline.org or asiapacific@asisonline.org.  
a5Mark your Calendars for the CSO Roundtable's European Summit

The ASIS International CSO Roundtable will hold its European Summit on 16 December, 2013, in Paris, France. The programme is being developed in partnership with CDSE (Club des Directeurs de Sécurité des Entreprises). Attendees will learn more about the issues that affect companies throughout Europe and network with senior security executives from around the region at this annual event. More information on the full programme will be available soon at www.csoroundtable.org.

a6CPPs, PCIs, and PSPs Sought for Security Management Profile

Each issue of Security Management features an ASIS International board-certified professional. The short, monthly column profiles a certificant and provides insight into his or her career, personal motivations to earn credential, and the benefits of the achievement. Interested members or prospects can contact ASIS Marketing Manager Leigh A. McGuire for details.

 

c4Chapter News

  

    

a10Expert Series 25: Broken Window Theory


 

A new book by Ed Posthumus, CPP, a Dutch member of ASIS International and a CPP since 2005, has been published. The book connects Broken Window Theory, as proposed by social scientists James Q. Wilson and George L. Kelling in1982, to the sliding scale of unacceptable human behaviour. What makes the book of true interest to security professionals is the author's use of the various Crime Prevention Through Environmental Design (CPTED) principles in an attempt to solve some of the theory's acknowledged problems.

 

The book is currently only available in Dutch.If there is enough interest, the book will also be published in English. To express your interest for an English version, contact the publisher directly.

 

Please click here for more.

 

c5Headlines

  

a19Enhancing the Efficiency and Competitiveness of the Defence and Security Sector in Europe

On 24 July, the European Commission adopted the communication titled Towards a more competitive and efficient defence and security sector. This communication states that "the world's balance of power is shifting as new centres of gravity are emerging and the US is rebalancing its strategic focus towards Asia. In this situation, Europe has to assume greater responsibilities for its security at home and abroad. To punch its weight, the EU needs to develop a credible Common Security and Defence Policy (CSDP). This evolution must be fully compatible with NATO and its principles."

 

According to Anna Barcikowska, an associate fellow at the EU Institute for Security Studies, the aim of the paper is to provide a basis for discussion ahead of the European Council meeting in December to "discuss concrete proposals to bolster the Common Security and Defence Policy." The paper itself goes on to describe how EU defence spending has been dwindling since the beginning of the century, and this has had a negative effect on the EU defence research and development industry, which in turn has knock-on effects for the wider European economy. "From 2001 to 2010, EU defence spending declined from €251 billion to €194 billion. Between 2005 and 2010 there was a 14% decrease in European R&D budgets down to €9 billion." This downturn in defence spending severely hinders the EU's ability to understand, counter, and protect against future threats.

 

In its communication, the commission outlines a number of steps to help tackle the major challenges facing the European defence sector where its funding and instruments might be best used to help to facilitate increased spending. These solutions include:

  • Strengthening the internal market for defence and security by encouraging innovation, diversity of suppliers, new entrants, and inward investment. The Commission will also tackle market distortions and contribute to improving security of supply between Member States.

  • Strengthening the competitiveness of European industry by developing a defence industrial policy based on:
    • Support for competitiveness, including developing hybrid standards to benefit security and defence markets.
    • Support for Small and Medium Enterprises (SMEs), including development of a European Strategic Cluster Partnership to provide links with other clusters and support defence-related SMEs in global competition.
  • Exploiting the dual-use potential of research to the maximum extent by concentrating on exploring civil/military synergies and developing cost-effective cooperation between civilian security and defence research activities.
  • Developing capabilities by building on its work on nonmil­itary capability requirements for civil protection, crisis management, protection of external borders, and mari­time surveillance to ensure that Europe disposes of the full range of security capabilities it needs. This will also enhance further interop­erability of information service sharing between civilian and defence users.

Source: EU Institute for Security Studies

 

Please click here for more.

   

a12Estonia: Russian Spy Did Not Know EU or NATO Secrets

In early August, a 63-year-old Estonian intelligence officer, Vladimir Veitman, was arrested on suspicion of spying for Russia. Authorities state that he confessed to the crime and receiving illicit money from it, but that he did not compromise EU or NATO secrets. According to news reports, Veitman used to work for the KGB, Russia's Cold-War-era intelligence service, in Estonia before it gained independence. Because of lack of qualified personnel back in the 1990s he was recruited into the Estonian intelligence service along with other former KGB staff.

 

Arnold Sinisalu, the director general of Estonia's internal security service, the Kaitsepolitseiamet, told the EUobserver that Veitman "had no clearance for NATO or EU classified information.... According to our present knowledge, no EU or NATO information was compromised." He added that he "was only focused on Estonian classified information." Even so any intelligence gained is still useful as a tool, and "High-ranked Russian officials have publicly said that they don't like Estonia being a member of NATO and the EU," the intelligence chief informed the EUobserver.

 

In recent years two others have also been arrested on charges of spying for Estonia's former Soviet master. Aleksei Dressen, also an intelligence officer, was jailed for 16 years in 2012, and Herman Simm, Defence Ministry official, was jailed for more than 12 years in 2009. The latter is said to have handed over roughly 400 EU and NATO-related classified documents to Russia on various topics. 

 

Source: EUobserver

 

Please click here for more. 

   

a13Report: Faulty Software More Damaging Than Cyber Attacks

On 20 August, the European Union Agency for Network and Information Security (ENISA) published their annual incident report for 2012. This is a yearly report about significant incidents in the electronic communications sector, which are reported to ENISA under Article 13a of the Framework Directive (2009/140/EC). The report itself provides an "aggregated analysis of the incident reports about severe outages, looking at the impact of incidents, root cause categories and detailed causes. It does not include details about individual countries, individual providers, or individual incidents." 

 

All 28 of the EU Member States participated in the incident reporting. Eighteen countries reported a total of 79 significant incidents, nine countries reported there were no significant incidents, and one country hadn't implemented incident reporting yet. The report acknowledges that "smaller incidents are not reported at an EU level and this means that the view is biased towards the larger incidents." According to the report, "system failures" were the most common root cause of these incidents, totalling 75 percent of the incidents. This was reported as being mainly due to hardware failures, software bugs, and overloaded electricity cables. 

 

Other information of particular interest is that incidents under "third party failures" affected around 2.8 million user connections on average, and were mostly a result of power supply failures. On average, incidents caused by natural phenomena--mainly storms and heavy snowfall--lasted around 36 hours, and in 37percent of the incidents, "there was impact on emergency calls using the emergency number 112," which could have had potentially fatal consequences. 

 

Of the 79 major incidents that were reported, only eight of them involved intentional cyberattacks caused by malicious actions. According to one of the authors of the report, Christoffer Karsberg, while the figure for cyberattacks may appear low, "remember that this only relates to significant incidents, so there may be many more cyberattacks below that threshold." He added that "with many cyber attacks, the purpose is to enter a communication system without detection and sit on the system. That means that for many, causing a systems failure would not be the aim of the exercise." 

 

Source: EurActiv

 

Please click here for more.
 
a15Germany "Underestimated" Neo-Nazi Risk

A parliament inquiry's findings were released on 21 August, which came about after one far-right gang murdered 10 people in seven years without being discovered. The three-person cell, called the National Socialist Underground (NSU), was only discovered to have been behind the murders after Beate Zschaepe turned herself in to the authorities in November 2011. According to the EUobserver, "her two accomplices had killed themselves shortly earlier after a botched bank robbery."

 

The 1,300 pages long study by a special parliamentary committee revealed that as nine of the NSU's victims were of Turkish and Greek origin the police wrongly assumed they were part of organised crime rings and that the killings were some form of score settling. "Right wing extremism was underestimated at all levels, police investigations were based on the assumption that Turks murder Turks," Committee Chair Sebastian Edathy said at a press conference. He also stated "If policemen with immigrant backgrounds had worked on the NSU cases the group might have been stopped earlier."

 

The report came to the conclusion that there was no evidence to show "that the police or secret services were aware of the real identity of the killers, and looked away or encouraged them." Edathy however, stated that "we don't have structural racism, but we have some racists in the police and secret services and they should be fired." Among 47 recommendations, it was suggested that the police recruit more ethnically diverse policemen and are given better overall intercultural training.

 

Meanwhile on 22 August, neo-Nazi protesters gathered at a newly opened refugee centre in Hellersdorf, Berlin, Germany, calling for the foreigners to be sent back home, which resulted in the deployment of a massive police presence to keep the peace. Wolfgang Wieland, a Green MP, said, "It is important not to make a campaign issue out of immigrants and refugees," ahead of the 22 September elections.

 

Source: EUobserver

 

Please click here for more. 

  

a16Croatia Defies EU on Arrest Warrant

Only a few months after its accession to the European Union, Croatia is under threat of sanctions to revert national amendments made to the European Arrest Warrant (EAW) prior to joining. The EAW is used to extradite people suspected of an offence from one EU country to another. On 28 June, three days before becoming the 28th member state of the EU, Croatia passed a law dubbed "Lex Perković" which prevents them from extraditing anyone for crimes committed before 7 August 2002.

 

This pre-emptive change in the legislation appears to be an attempt to ensure that the EAW is not "used against top military and government officials who participated in the Yugoslav wars," theorises EurActiv. Back in July, EU Justice Commissioner Viviane Reding sent a letter to Croatian Minister of Justice Orsat Miljenic, in which she explained that Croatia cannot insert derogations into the EAW. According to Mina Andreeva, a spokesperson for the justice commissioner, Croatia had until midnight on 23 August to submit a deadline on when to scrap the changes, but this was subsequently ignored.  

On 24 August, the Croatian news website Dalje.com quoted Prime Minister Zoran Milanović as saying that "Croatia's government will not make a decision on Lex Perković in the next weeks, but the country's justice minister will reply to Reding's letter." He is also quoted as saying that Croatia fully supports the EAW, but will request that the European Council holds a discussion on this issue in the near future.

However, as of 26 August, the Justice Commissioner's office had not received a reply from the Croatian authorities to her letter. Her spokesperson subsequently announced that "Reding would bring the matter to the attention of the entire College of Commissioners at their meeting on 4 September, and to the justice and home affairs ministers at their next meeting on 7-8 October."

 

Source: EurActiv

 

Please click here for more.

a17EU Data Watchdog to Investigate Prism Scandal

Following the publication of reports on the secret United States surveillance programme PRISM at the beginning of June by The Guardian and The Washington Post, EU experts will carry out their own investigation into whether privacy rules have been breached. Jacob Kohnstamm, chair of the Article 29 Data Protection Working Party which brings together national data protection supervisors from across the 28-member bloc, sent a letter to EU Justice Commissioner Viviane Reding, Home Affairs Commissioner Cecilia Malmstrom, European Parliament (EP) President Martin Schultz, and Chair of the EP's Civil Liberties, Justice, and Home Affairs Committee Juan Lopez Aguilar on the issue.

 

In this letter, dated 19 August, he stated that the working group would "assess the controversial PRISM programme as well as other platforms used by the US National Security Agency." The WP29, he stated, "considers it is its duty to also assess independently to what extent the protection provided by EU data protection legislation is at risk and possibly breached, and what the consequences of PRISM and related programmes may be for the privacy of our citizens' personal data."

 

Kohnstamm also added that the collection of data on non-United State's citizens by American intelligence agencies is "of great concern to the international data protection community."

 

The Article 29 group is said to have requested accurate information on what data was actually collected by the NSA programme from the EU Commission  as well as what safeguards were currently in place to prevent this from happening. They also requested further guidance on "whether the US intelligence programmes were in line with European and international law." The group said that it would also investigate whether the EU ran similar secret surveillance programmes.

 

Source: EUobserver

 

Please click here for more. 

a18Saharan Islamists Target France

According to a statement published by the Mauritanian news agency ANI on 22 August, Al-Mulathameen and the Mali-based Movement for Oneness and Jihad in West Africa (Mujao) have united to form a new group, Al-Murabitoun, with the aim of routing France and its allies from the region. "Your brothers in Mujao and Al-Mulathameen announce their union and fusion in one movement called Al-Murabitoun to unify the ranks of Muslims around the same goal, from the Nile to the Atlantic."

 

The leader of Al-Mulathameen, Algerian militant Mokhtar Belmokhtar, is accused of masterminding the deadly siege at an Algerian plant that took place in January, and has had a $5m bounty for his capture placed on him by the US. According to the statement, overall command of the newly created Al-Murabitoun has been yielded to an unknown person, but who is suspected to be a non-Algerian jihadi who fought in Afghanistan, ANI reported.

 

After a French-led offensive in January to recapture northern Mali, the militants have retreated to their desert hideouts. Currently, a 12,600-strong United Nations force is deployed to Mali, as France begins to pull out its 3,000 troops.

 

Source: BBC News

 

Please click here for more.

   

a11GCHQ Antihacker Cybersecurity Response Services Open For Business

Following on from the Government Communications Headquarters' (GCHQ) Cyber Incident Response initiative, two new cyber incident response initiatives were launched at the start of last month. The Cyber Incident Response initiative began running on a trial basis in November 2012 when the United Kingdom government pledged to invest £650m to improve the nation's cyber defences. The aim of these initiatives is to help businesses prepare for, and mitigate, the damage of cyber attacks. To ensure the success of these initiatives GCHQ will be working closely with both the Centre for the Protection of National Infrastructure, and the Council of Registered Ethical Security Testers (CREST).

 

The first of the new initiatives will continue the original's work by "offering businesses a list of government-assured, cyber response, and clean-up service providers to help them deal with the aftermath of a successful cyber attack on their networks," reports V3. The second initiative will see GCHQ work with CREST "create a clear set of standards detailing what cyber security providers should have in place to protect their clients' information. Companies that meet the standard will be granted special certification by CREST and will earn a place on the GCHQ's recommendations list," said the site.

 

"We know that UK organisations are confronted with cyber threats that are growing in number and sophistication. The best defence for organisations is to have processes and measures in place to prevent attacks getting through, but we also have to recognise that there will be times when attacks do penetrate our systems and organisations want to know who they can reliably turn to for help," UK Minister for Cyber Security Chloe Smith is quoted as saying.

 

Source: V3

 

Please click here for more. 

a20Interpol Open to Abuse by "Criminal States"

The EUobserver published an article on 27 August about how some members of Interpol (specifically Russia and Belarus) were taking advantage of the international police body by the filing of politically motivated requests for the capture of persons using Interpol systems. As a result, a number of people have been wrongfully detained and almost extradited to countries where they would be placed in jail for their opposing political views, even though they had previously been granted political asylum in an European Union country.

 

The article notes that at Interpol, "each notice request sent by a member country is examined by the general secretariat prior to publication. If found noncompliant the notice will not be published. If information about a possible or potential noncompliant request is brought to the attention of the general secretariat at a later stage, the notice...will be re-examined." But it appears that in some cases it is possible to bypass these safeguards by filing alerts known as "diffusions." These are when "Member States' police use Interpol's IT network, the so-called i-link, to post [alerts] directly to each other's national systems or put them up on Interpol's servers so that national police can see the files."

 

In response to this, Interpol said that "where the information was circulated directly, if the information is found to be noncompliant, all recipient countries are informed of that conclusion and the information is removed from Interpol's databases." However, this does not guarantee that those mentioned in the alerts will not be detained as it takes time to identify a noncompliant alert, and even when Interpol deletes a diffusion, some national police forces keep alerts in their local systems even after they have been told that the alert is bogus.

 

This brings about the question of how Interpol should conduct its relations with member states that are known violators of human rights. Many political activists believe that "the Belarusian authorities are, de facto, a criminal syndicate, who make money by smuggling, corruption, and corporate raiding...[and that] Russia is clearly a criminal state. When someone points it out, the Russian authorities either kill them, as in the Magnitsky case, or try to arrest them using Interpol." They also believe that these states are heavily misusing Interpol notices and should be punished for doing so.

 

Interpol instead disagrees and states that "to this day, there has been no case where a member country was found to 'systematically' use Interpol's channels inappropriately." Though if a member state is found to be problematic then there are "corrective measures which it can apply under certain conditions, but that it prefers to offer training and discussions instead."

 

Source: EUobserver 

 

Please click here for more. 

 

c6Education and Events

  

a7Resilience Lead Auditor Certification Course to be Held 18-22 November, 2013, in Madrid, Spain

Managing the risks of disruptive events is critical to the survival and competitiveness of any organisation. The ASIS International Resilience Lead Auditor certification will help you assess organisational and supply chain risks, maintain and improve resilience management systems, and successfully conduct resilience management system audits. The RABQSA-certified training programme supports standards that address the management of risk related to events that may disrupt an organisation's operations. The RABQSA-RES Competency Unit covers the requirements of resilience standards (e.g., ANSI/ASIS.SPC.1: 2009; ISO 28002:2011; DS 3001:2009; or NEN 7131:2010), as well as discipline-specific standards in business continuity management (e.g. ANSI/ASIS/BSI BCM.1:2010; BSI 25999:2007; or ISO/FDIS 22301), and security management (e.g. ISO 28000:2007, ASIS/WD.PAP.1). The course seamlessly integrates with the ISO 31000 Risk Management standard to allow organisations to develop a cost-effective, holistic approach to managing risk.
 

Date:

Location:

Instructor:

Fees: 

 

 

 

18-22 November, 2013

Hotel Petit Palace Embassy, Serrano 46, Madrid, Spain

Dr. Marc Siegel, global standards commissioner, ASIS International

$2,500 ASIS members

$3,000 nonmembers

650 for 5 nights

(VAT included. Single room + breakfast. Dinner not included)

 

Please click here for more information.

a22Global Agenda

24-27 September, 2013: ASIS 59th Annual Seminar and Exhibits, Chicago, IL, USA

 

18-22 November, 2013: Resilience Lead Auditor Course, Madrid, Spain

 

3-5 December, 2013: ASIS 7th Asia-Pacific Security Forum & Exhibition, Macau, China

Registration is open!

 

16 December, 2013: CSO Roundtable - European Security Summit, Paris, France

16-18 February, 2014: 
ASIS 5th Middle East Security Conference & Exhibition, Dubai, UAE 
Registration is now open!


1-3 April, 2014: ASIS 13th European Security Conference & Exhibition, The Hague, The Netherlands

a23Professional Development

Webinars

16 October: Intimate Partner: Violence in the Workplace

23 October: Workplace Violence in Healthcare

 

30 October: Stop Issuing Secure Credentials to Imposters!

 

Webinar Archive  


This month's highlight: Recognising and Assessing Suspicious Indicators

Full list of titles.


e-Learning 

 
This month's highlight: CCTV/Digital Video and Executive Protection: A Practitioner's Overview.  

 

Full list of programmes.

 

Classroom Programmes

 

2013-2014 at a glance.

a24Chapter and Certification Events
Please click here to access the European agenda.

ASIS EUROPE. ADVANCING SECURITY WORLDWIDE. © 2013
To unsubscribe please contact the editor
.