Monthly Archives: February 2017

Check AML crypto online: USDT AML check BTC, ETH and 65+ coins. Receiving funds of illegal origin could lead the risk of having your funds frozen. The USDT is being tested for scams, mixers, darknet market, ransom, gambling and other crimes.

Weighing In on Stand-Up Workstations and Exercise Balls

Posted on by

Stand-up workstations and exercise balls used for sitting in place of an office chair are gaining popularity.

buy cenforce online achievephysiorehab.ca/wp-content/uploads/2023/10/jpg/cenforce.html no prescription pharmacy

This has been fueled by reports of workers at Google, Facebook and other companies trading in their chairs to stand, or bounce, while working. They cite studies of the harm that hours of sitting can do.

Even here at the RIMS office several employees prefer sitting (or bouncing) on exercise balls to the familiar rolling desk chair, or working at a stand-up desk. Risk professionals have long been discussing the merits and downsides of these two popular choices.

But are these alternative ergonomic preferences really that beneficial?

Recently in an online discussion, some members of the RIMS Opis community said they were not in favor of exercise balls as ergonomic solutions. A risk manager in Oregon stated it bluntly: “Exercise balls should be limited to fitness programs.

buy pepcid online achievephysiorehab.ca/wp-content/uploads/2023/10/jpg/pepcid.html no prescription pharmacy

Your [workers comp] will own the injury if an employee slips off the ball and hits [his or her] head or has a soft tissue injury from the fall.” Several other commenters agreed that the balls are unstable and their use is discouraged or officially prohibited.

A CEO said: “While great for encouraging engagement of your core muscles during exercise, [balls] are not good for sitting at a workstation and in fact, research shows, increase your risk of ergonomic injury.”

In fact, some research has found their benefits negligible. A study of 28 subjects found that exercise or chair balls offer no advantages over a traditional workplace chair. According to a study by BioMed Central:

Results:

The results showed no significant difference with regard to spinal curvature between seating types. Initial sitting curvature was found to increase significantly over 30 minutes in both the desk chair and stability ball. In addition the results of the usability questionnaire showed a significant difference in three of the eight questions, in favor of the desk chair.

Conclusion:

No benefits were found through sitting on a stability ball over that of a desk chair in prolonged sitting as both seating types were found to replicate a poor sitting position through a kyphosed [outwardly curved spine] and slumped posture. The clinical implications of this study serve to benefit any healthcare professional considering use of the stability ball as a replacement desk chair.

In another online comment, a Missouri risk manager suggested a compromise, elaborating that while his organization allows their use, “They cannot be free-standing balls… they must be part of a chair ball with wheels and a seat backing.”

Stand-up desks received more positive feedback. Several risk professionals cited research equating excessive sitting and sedentary lifestyles with serious chronic health problems. A number of commenters shared anecdotes about how stand-up workstations have helped employee health issues. Several users noted that in their newly renovated, or soon-to-be-renovated, offices, stand-up workstations are de rigueur.

Who pays for these workstations? Most who commented said, or implied, that their companies foot the bill for stand-up desks if an employee requests them. Most seem willing to make the investment based on reports that providing ergonomic options can reduce workers comp claims.

Not all are sold on the benefits, however. A commenter from Chicago said, “As odd as it sounds, stand-up desks may not be wholly safe…. People get tired and fall down using them. And there is no confirmation standing is less stressful than sitting. Folks very quickly started to complain of sore hips, knees, feet and spines.”

A Virginia risk manager shared the wisdom of moderation and the middle ground, saying, “While sitting is bad—and the motive for getting a standing desk—standing all day can cause myriad lower back, leg and feet issues. It would be similar to what risk managers at grocery stores have to deal with their cashiers on their feet all day. Interspersing standing with sitting is key.”

Some researchers agree with this conclusion. A New York Times article reported that 15 minutes per hour at a standing workstation is recommended over standing all day.

Mitigating Environmental Risks at Argos

Posted on by

Ana Maria Duque is the environmental assessment manager at Argos in Colombia. Here’s what she had to say about the environmental challenges her company faces.

buy azithromycin online www.arborvita.com/wp-content/uploads/2023/10/jpg/azithromycin.html no prescription pharmacy

RMM: Please describe what you do for Argos.

AMD: In my current role as environmental assessment manager, I oversee planning and implementation of the processes related to environmental assessment of projects, water and biodiversity management, and administration of environmental liabilities across the three regions where the company is present: Colombia, Caribbean and Central America and the United States. The purpose is to ensure compliance with environmental regulations and the organization’s environmental policy.

RMM: What is Argos’ philosophy on environmental challenges?

AMD: We are committed to develop our production activities responsibly, seeking a balance among profit generation, social development and environmental impact mitigation. This is why we have defined an environmental policy with goals up to 2025. Our goals are to promote prevention, mitigation, correction or compensation of the environmental impacts caused by our operations. Efforts are organized into five pillars that represent our main risks and opportunities: climate change, eco-efficiency (including water and atmospheric emissions), biodiversity, sustainable construction and environmental awareness.

RMM: Why should corporate risk managers be paying attention to environmental issues?

AMD: Corporate risk managers must pay attention to environmental issues since businesses, as well as other human activities, depend on goods and services provided by ecosystems, such as fresh water, timber, climate regulation, natural hazard protection and recreation. At the same time, business activities can negatively impact ecosystems, jeopardizing their ability to supply these goods and services. These dependencies and impacts pose several types of risks and opportunities to companies which need to be properly managed to ensure the sustainability of the business.

RMM: Are risk managers receptive to environmental issues, or is there more convincing to be done?

AMD: Environmental issues are an integral part of the business strategy of large corporations, that have understood the importance of managing environmental issues in order to ensure successful corporate performance and contribute to a sustainable world. There are some small companies, however, that are not completely aware of their dependence and impact on ecosystems, and therefore they have not integrated the management of these risks and opportunities into their business strategy.

buy celexa online www.arborvita.com/wp-content/uploads/2023/10/jpg/celexa.html no prescription pharmacy

Environmental awareness is growing among these companies as well, and they are starting to realize the importance of managing these issues.

RMM: How does Argos handle water risks in Colombia and the region?

AMD: We are committed to using water in an efficient and responsible manner, focusing our management strategy in two action lines: efficient water use, by measuring the consumption in our operations and implementing reduction plans; and water risk management, through the identification, evaluation and management of water-related risks at our facilities. Our targets are to reduce by 30% the specific water consumption in the cement business by 2025; and 20% in the concrete production, across all the three regions where we are present.

buy mobic online www.arborvita.com/wp-content/uploads/2023/10/jpg/mobic.html no prescription pharmacy

In order to measure our exposure to water scarcity risks, we monitor the water stress degree of the basins where our facilities are located, using the WBCSD [World Business Council for Sustainable Development] Global Water Tool. Furthermore, we assess the exposure to several categories of water risks at a local level using the tools WRI [World Resources Institute] Aqueduct and WWF [World Wildlife Fund] Water Risk Filter. This allows us to prioritize the sites where we need to develop action plans. We have also endorsed the CEO Water Mandate aiming to adopt and implement a comprehensive water management approach in its six action lines: direct operations, supply chain and watershed management, collective action, public policy, community engagement and transparency.

RMM: What other environmental risks should be on the minds of risk managers?

AMD: All risks and opportunities derived from the companies’ dependencies and impacts on ecosystems must be on the minds of corporate risk managers, including those related to biodiversity, air quality and climate change. But more importantly, environmental issues need to be the top priority of the board of directors to ensure that the company invests what is needed to address those issues.

RMM: What do you envision as an ideal interaction between risk managers and environmental assessors/engineers?

AMD: Within the companies, risk and environmental managers should work together in order to raise awareness to the strategic level of the risks and opportunities related to environmental issues, as well as to develop and adopt robust action plans that allow the companies to mitigate their environmental risks and foster their environmental opportunities. This adds value to both the companies and society.

Eliminating Language Barriers Between Information Security and the C-Suite

Posted on by

Whether or not security operations pose a core focus to a company or are an afterthought, the largest obstacle now affecting business and security outcomes is the language barrier that exists between security teams and the C-Suite.

In general, security groups’ budgets have increased over the years, with organizations adding more vendors to the mix, “layering” security with the latest new tool to address the latest threat. One of the newest such tools is “threat intelligence” which organizations are using to form an “intelligence-led security” program, a security operations center, or incident response capabilities. While threat intelligence and other solutions hold the answers to many of the important questions executives ask about cyberattacks, this terminology means nothing to C-level executives, nor does the output from these systems and programs. What does it mean that you have stopped one billion attacks this past month? What impact have the 30 incident responses you’ve run over that same period of time had on the business? What’s the significance to reducing response time from one month to one day?

Executives running and overseeing a company have two primary concerns: increasing revenue and shareholder value. There is a big disconnect between security and the C-suite because they speak two different languages. One is a very technical language that needs a translation layer to explain it to the executives. The other is a very strategic language that needs to be conveyed in a way that makes security part of the team and company, and ensures alignment and participation with the business units and executive suite.

What’s the fix? Communication. Each group has to understand the other at least enough to relay the core concepts as they apply to the other and in a language the other understands. As a first step, some companies are adding a technical expert—a “designated geek,” if you will—to their board of directors so they can work on improving communication and understanding. While that can help, it takes a lot more to make sure priorities, efforts and results don’t get lost in translation.

buy cytotec online thecifhw.com/wp-content/uploads/2023/10/jpg/cytotec.html no prescription pharmacy

A Two-Way Street

Executives need to include the chief information security officer or chief technical officer as part of their strategic discussions and make sure that security leadership has the ability to push that communication down to their teams in a way everyone understands. To that end, CISOs and executives need to train their security operations personnel to ensure they understand the business. This starts by asking some critical questions:

  • Does every member of the security team understand what is it that you sell/produce/provide?
  • What are the things your security teams need to watch out for to protect revenue?
  • Many organizations operate large industrial control systems. If your organization has such a system, is your security team aware of this?
  • If your company is moving into the cloud or is about to launch a mobile app, does your security team know about this and have you enabled them to get the right monitoring in place to protect it?
  • Have you involved the security team as you were designing that new revenue stream, or evolving your business model in some other way, to be sure that security isn’t an afterthought?
    buy amoxil online thecifhw.com/wp-content/uploads/2023/10/jpg/amoxil.html no prescription pharmacy

These are just a few examples of how executives need to think about the enterprise to ensure that security is strategically aligned. It is incumbent on the business to train the security personnel on its priorities so that security teams can look for attacks that are important to the business and take action.

Likewise, security teams need to change how they communicate to the C-suite. Every security team should conduct a stakeholder analysis to identify who needs to be informed of what and when. It all comes down to content, format and frequency. Make sure you have regular communications with not only your peers in security and network operations, but with the business units, risk management, C-level executives, the board of directors, and anyone else in the company that is involved in the day-to-day objectives and operations of the company. The CISO should be the link to make this connection happen, working with executives to establish regular communication.

There is no “right way” to communicate.

buy doxycycline online thecifhw.com/wp-content/uploads/2023/10/jpg/doxycycline.html no prescription pharmacy

Some executives and boards are more technical than others. Security teams need to take the time to learn what type of communication will be most effective or forever struggle to align security with the business. Sticking with the generated metrics of number of events, alerts and incidents per month has far less impact than an update that contains the “who, what, when, where and why” of a thwarted attack. For example: “We identified and stopped one attack this month from a cyber espionage group targeting our Western European manufacturing facility, which is responsible for $20 million per year in revenue to the company.”

For those in security who feel they can’t deliver such a statement because their security infrastructure doesn’t provide that kind of information about threat actors and campaigns, there is a path forward. Look into creating a program that uses adversary-focused, contextual cyber threat intelligence and make sure you understand enough about your business to know the impact of threats against the various business units. With the communication gap closed, and security and business goals aligned, organizations can become more secure, and profitable.