in partnership with   

The 8th Continuity Insights New York Conference… Another Successful Event!




The recent Continuity Insights New York Conference, October 21, 2019, attracted more than 225 business continuity professionals for a full day of educational programming, networking, lively discussion, and an exhibit hall featuring the latest in resilience solutions and technologies.  A special thank you to our conference partners, the Contingency Planning Exchange and to Credit Suisse for sharing their impressive meeting facilities with us.

Contributing Educational Partners


Agenda | Meet the Speakers | Register | Additional Education | Special Events | Travel Information | Exhibiting | Sponsors


go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

8:30 a.m. to 9:15 a.m.

P1: The Ransomware Industrial Complex
Bill Siegel, CEO and Co-Founder, Coveware
This presentation will focus on explaining how enterprises are a cog in the global cyber crime marketplace. Rather than focusing on tactical security advice, this presentation will educate the audience on how the ransomware supply chain/marketplace works and how they can make their organizations a harder target to hit.

How much does a ransomware attack cost? The total cost can be divided into two main costs. First, the recovery cost. These expenses cover forensic reviews and assistance in rebuilding servers and work stations. If a ransom is paid, then that is also a recovery expense. The second, and often more expensive cost of a ransomware attack is the total cost of downtime. Downtime costs are typically five-to-10-times the actual ransom amount and are measured in lost productivity (slack labor and lost revenue opportunities).

9:30 a.m. to 10:30 a.m.

B1: Breaking the Mold: Innovative Perspectives on Leadership


Tracey Rice, Fusion Risk Management
Cheyene Marling, BC Management

This inspirational team shares stories of how some of the industry’s most successful members have shaped their careers and pushed our profession in new directions. A mix of humor, struggle, success, and lessons learned, this session offers advice on how to stay energized and smash the glass ceiling, through hard work, positivity, and never accepting “good enough” as an answer.

B2: Active Shooter Preparedness            
Barry Morgeson, Southern Glazer’s Wine & Spirits            
Active shooter situations seem to be in the forefront of every organization’s mind. Keeping your people safe is your number one priority in this type of crisis. You may have a plan in place, but have you tested and trained on it? Tabletop exercises are the best way to walk through a real-time incident while openly discussing which response plans come into play during certain circumstances. They also expose gaps and vulnerabilities within these response plans. This interactive session will mix training and exercising together to provide valuable insight on:

  • The importance of Public/Private sector partnerships and how to leverage these relationships to better prepare your organization  for an active shooter
  • Live run-through of an active shooter tabletop exercise and suggested layout/outline of the exercise
  • Interactive discussion and resource share

B3: Building a Culture of Resiliency
Lisa Orloff, World Cares Center 
Research shows that training can reduce the impact that disasters, disaster and continuity work and high stress environments have on those that seek to help. Fortunately, Resiliency is not a trait that is inherited, we have the ability to build our own resiliency. This workshop is the first step on you and your teams road to resilience and building resilient teams. In this session you will understand the emotional risks related to disaster and continuity work and its impact on your team including absenteeism. You’ll learn to recognize the signs and symptoms of disaster and continuity work related stress in your team.  Learn techniques to address emotional stress within your team and outline your next steps to develop a team resiliency plan.

10:45 a.m. to 11:45 a.m.

B4: Ensuring a Smarter, More Resilient Building
Robert Fucito, Fannie Mae
How confident are you that your building has been built with resiliency in mind? This presentation, from truly a practitioner’s perspective, will highlight a discussion about our most common disruption – Power – and focus on those critical elements such as emergency generators, Uninterruptible Power Supply (UPS) configurations to Computer Room HVAC, and network connections to the desktop. Eliminating single points of failure for critical business users and strengthening the resilience of your facility will minimize the time you spend responding to internal and external threats. Let’s eliminate poor design and not overlook opportunities to improve.

B5: How to Develop Your BC/DR Program to Maximize the Use of Mobile Devices
John Allen, BC in the Cloud
The continuing shift in the traditional workforce means fewer people in the office and more people working from home. It also means that instant access to work-related applications and data must be reliably available anytime, anywhere. In the BC/DR field, many software applications offer mobile app options. Are you using them? Many organizations focus on developing well-built plans for their programs, but have we all explored and implemented well developed and cohesive use of mobile devices? This session will explore the use of mobile devices in BC/DR at a program level, some best practices and risks to avoid in doing so.

B6: Buying Resilience As A Service? An Overview of Key Opportunities and Challenges


Glenn A. Siriano, and Franco Cordeiro, KPMG LLP
Organizations are increasingly seeking to leverage ‘resilience dividends’ associated with “As A Service” models. This presentation will provide examples of organizations seeking resilience enhancements, often as a by-product of, improving:


  • Speed to market
  • Process efficiency
  • IT spend reduction (IT and Business aligned spend)
  • Scalability of IT
  • Legacy IT reliance
  • Re-focus on core activities
  • Risk assurance – Regulatory compliance
  • Physical and virtual security

After outlining the potential resilience benefits, the final part of our presentation will focus on some of the preparatory activities / capabilities that we consider key to ensuring “As A Service” resilience benefits are realized.

1:30 p.m. to 2:30 p.m.

B7: Business Continuity and the Human Factor – Why We Behave the Way We Do and How Do We Plan For The Unexpected


Robbie Larocca  and Tracy Gkonos, Protinue
This session will underscore the importance of business resilience professionals understanding human behavior in disasters when designing plans. A traditional business continuity planner looks at four areas for recovery: Data, Facility, 3rd Party Suppliers, and the HUMAN FACTOR… which the presenters assert that none of the other areas matter if you haven’t locked down this piece. The way individuals respond and their thinking in and to a disaster is critical to understand as it differs from normal behavior. Perception before, during and after event can be critical to business survival.

Human Capital is the combination of ability, behavior, skills and tenure that people bring to an organization. Managing and developing human capital includes all people-related issues that impact a business’ strategic and operational objectives. The session will stress the critical nature of communicating and exercising plans, timely Communications, and the involvement of Human Resources.

B8: Vendor/Supplier Contingency Planning:  Pulling it All Together
Sherri Flynn, Recovery Planner
Vendors today are a regular part of your business, intermingled with daily operations of almost every department and process. Because of regulations, industry standards and recommendations from agencies like the FFIEC (Appendix J), ISO 22301, and ISACA, companies are paying more attention to assessing the risk of vendors (and your vendor’s vendors).  But is assessing the risk enough? Who in your organization is responsible for pulling it all together? Conducting a BIA and identifying where the functions and vendors are the most critical, identifying who and what exactly is impacted and actually coming up with a documented plan to continue operations without the service/product they provide? Businesses today typically have Business Continuity Plans, Disaster Recovery Plans and Crisis Management Plans, but do you have specific plans in place for a critical vendor outage?

B9: How Using Your Business Continuity Plans (BCP) for Smaller Incidents Increases Your Organization’s Resilience and Return on Investment (ROI).
Philippe Tasse, Premier Continuum
Although it may seem counterintuitive, small incidents and interruptions are the perfect occasion to deploy your BCP in order to increase your organization’s resilience and ROI. By invoking respective components of the plans, teams work more efficiently and gain in confidence and readiness for a future major response. They develop the right reflexes by rehearsing their respective plans, tasks and responsibilities when the risks and impacts are relatively minor. In this presentation:

  • Learn about the current trends of leveraging full-fledged BCP with increased frequency and nimbleness
  • Understand the differences between a major crisis and a small incident
  • Discover how prioritizing and collaborating during smaller incidents improves the overall BCM program
  • Explore effective ways to increase collaboration during smaller incidents
  • Dive into real-life case studies sharing how other organizations get ahead after successfully managed small incidents
  • Find out exactly how using your BCP during small incidents significantly improves your organization’s return on investment (ROI)

2:45 p.m. to 3:45 p.m.

B10: The Path to Operational Resiliency – the First Steps


Megan Epperson and Doug Weldon, IHS Markit 
There is limited detail describing how to design a multidisciplinary resiliency program that addresses the lifecycle of incident management, and the recovery demands from data corruption, ransomware, infrastructure and third-party failures. This session will discuss the critical enhancements to the Business Impact Analysis (BIA) and Risk Assessment (RA) across the various risk disciplines; supporting fundamental business intelligence and requirement contributions from Information Security, Physical Security, Incident Management, Risk Management, Operational Risk, and related disciplines. It will showcase practical ideas and provide examples of how to launch your organization into the next generation of resiliency planning by “breaking down the silos.” 

B11: Disaster Planning: Expectations vs. Reality

Tim Mathews D.Sc. Executive Director Enterprise Resiliency, Educational Testing Services

Ron Curtis, Agility Recovery (moderator)
Panelists: Tim Mathews, Educational Testing Service (ETS) and Marc Eesley, Guardian
You may spend your entire career in BC/DR and never face an actual disaster. Or you may find yourself hit with an outage tomorrow caused by something you did not prepare for. We’ll discuss real world lessons discovered from outages of all types – whether nature or inadvertently human-caused – and how you can capitalize on others’ experience to make sure you are not caught off guard. Learn some of the myths, gotchas and more common items which can easily be overlooked until they come up in the heat of the moment. We’ll discuss how you can use testing and tabletop exercises to better prepare your leadership and organization, tips and checklists to better prepare for the worst, and how to use testing to learn your plan’s weaknesses and reinforce strengths.

B12: Five Imperatives to Ensure the Resiliency of Voice Communications

Mark Wier, Teleira
Don’t get caught without the ability to communicate. Far too often, creating a plan for the resiliency or recovery of our voice communications is an after-thought. In this session we will discuss areas of your voice communications network that can be potential failure points. Several case studies will be shared to demonstrate some best practices, valuable lessons learned, and the critical need for voice communication.  The attendees will leave this session with insights on what to look for and how to mitigate outages… from the most common fiber cut to ice storms and hurricanes.

4:00 p.m. to 5:00 p.m.

B13: Future Risk: The Future is Not What It Used to Be! How to Manage the Unpredictable!
Howard Mannella, Alternative Resiliency Services Corp 
Are you ready for the next evolution in Risk? Geopolitical shifts, technological advances, new players both good and bad. Cutting-edge developments such as Blockchain, ‘deep-fakes’ and increasingly sophisticated hacking techniques. FinTech! RegTech! Crypto platforms! Artificial intelligence! Machine learning! Innovative terror tactics! All this means that Risk is getting more complicated, and that threats can come from unpredictable directions. We are constantly surprised. How can we manage and mitigate tomorrow’s Risk if we can’t even see it coming?

Participants will walk away from this innovative and engaging dialog with a better understanding of the current and changing state of Risk. They will learn about some of the more innovative ways that systems can be breached and goods hijacked. They will elevate their perspective of Risk to focus less on specific threats and adapt to threats from any direction. They will gain valuable methods and practices that they can start implementing the next morning to better mitigate and respond to risks of any type.

B14: More Than Just a Trend: Why Cyber Resilience Should Be your Organization’s Top Concern
Harvey Betan, DRI International
It seems like every day, high profile cyber breaches are dominating the headlines. As we watch, the dangers and costs associated with cyber threats continue to grow. In this session, we will explore the new dominant role that cyber resilience plays in the risk landscape and the way it interacts with other industry trends and top concerns. By exploring global data and case studies, we will outline the steps to turn cyber resilience from a trendy talking point into an integral part of your organization’s DNA.

B15: Fighting the Unknown Enemy- Cyber Security Issues and Mitigation Techniques


Asad Khokhar and Cosmo Gazzani, Continuity Centers
Knowing your enemy is an important virtue especially when it comes to cybercrime. Unfortunately, cyber criminals are evolving on a daily basis making it almost impossible to design a viable fortress to protect your most valuable asset “data.”  The endpoint is still the largest attack vector for hackers today. This session will explore how hackers and malicious organizations are using  phishing techniques to exploit sensitive data. Join us as we take a look at how an actual attack can be recorded and mitigated via a Security Monitoring System. We will also discuss how to best protect against the propagation and infiltration of malicious actors. The goal of this session is to explore mitigation techniques such as security information and event management (SIEM) platforms and end point security giving the attendees ideas on how to formulate a cyber defense specifically around the end point.


Meet the Speakers

go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

Additional Education

go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

The BCI Incident Response and Crisis Management Course w/ Penn State Case Study
Tuesday, October 22, 2019 (full-day course)
This course is an advanced Business Continuity Institute (BCI) professional practice course. It provides the continuity and resilience professional with the opportunity to gain a deeper knowledge and understanding of an incident response structure and crisis management capability using the Penn State story as a case study. Consequence Management is a critical portion of every crisis event. You see the publicity regarding what went wrong. You rarely get to learn how an organization responded, and the metrics on return on investment for the actions taken. Everyone read about the events as they unfolded at Penn State. This session will take you inside and share what went wrong at Penn State and the positive results of the actions taken.
Where: Local Regus Facility TBD     
Registration Fee: $695 per person                  
Speaker: Dave Hunt

The BCI Good Practice Guidelines Certification Course
Wednesday through Friday, October 23-25, 2019 (three-day course)
The Good Practice Guidelines (GPG) are the independent body of knowledge for good Business Continuity practice worldwide. They represent current global thinking in good Business Continuity (BC) practice and now include terminology from ISO 22301:2012, the International Standard for Business Continuity management systems.
The real value of the GPG to BC professionals lies in the fact that it considers not just the ‘what’ to do but also the ‘why’, ‘how’ and ‘when’ of practices written by real-world experts.
This training course is intended to meet the technical and professional needs of business continuity and resilience professionals working in organizations of any type and size, in any industry or sector worldwide, and is based on the six Professional Practices that make up the BCM Lifecycle. 
Once you have taken the course you are ready to sit the CBCI exam (not included) and become a certified professional and member of the BCI. (CBCI Online Exam to be booked separately via the BCI shop and taken from your home or office at a convenient time to you.) 
Where: Local Regus Facility TBD
Registration Fee: $2,136 per person               
Speaker: Dave Hunt

Registration information will be available in the coming months.

Special Events

go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

Travel Information

go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

Continuity Insights/Contingency Planning Exchange Conference, October 21, 2019, at Credit Suisse, 11 Madison Avenue, New York, NY 10010
The 8th Annual Continuity Insights New York Conference will be held in the conference facilities located within the offices of Credit Suisse. The venue boasts state-of-the-art facility and meeting technologies and a convenient mid-town location, along with a number of hotel and entertainment options.  Located adjacent to Madison Square Park, between East 24th and East 25th Streets, the venue is served by a number of Metro stops, 11 Madison Avenue.

Hotel Accommodations
Continuity Insights has secured a limited number of sleeping rooms at the following two hotels:
The New York Edition
5 Madison Avenue
New York NY 10010
The hotel’s 273 unique guest rooms and suites feature oak floors and dark oak wood-paneled foyers that create a cozy, private residential entrance. Oversize windows frame city views, ranging from a close-up, intimate view of Madison Square Park, to the world-famous Empire State Building, to the breathtaking skyline of New York City.  The conference rate for Sunday night, October 20, 2019 is $245.00/night.  To reserve your room at the Continuity Insights New York Conference rate (aka Continuity Exchange), CLICK HERE.

The Park South Hotel
122 E. 28th Street
New York NY 10016
Nestled in Midtown Manhattan’s trendy NoMad neighborhood at Park Avenue South and 28th Street, this brilliantly renovated boutique hotel delights guests with enticing new social areas and serene accommodations.  The conference rate for Sunday night, October 20, 2019 is $205.00/night.  To reserve your room at the Continuity Insights New York Conference rate (aka Continuity Exchange), CLICK HERE.


go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

There are a limited number of tabletop exhibit spaces available for this event. Please contact Robert Nakao for more information. or 267-980-6151.


go to Top

8th Annual Continuity Insights New York Conference

A Virtual Event October 21, 2019

2019 sponsors include: