COVID-19 Outbreak: Preparedness and Response Checklist for CIOs

Blog

Governments, industry leaders, and investors across the globe are already realizing the economic and business impact of the coronavirus since Chinese officials first identified the virus on 7 January. The outbreak was initially largely confined to Asia, with few confirmed cases in Europe, which were reportedly safely contained. However, by Sunday, 23 February, Italian authorities confirmed 200 cases in northern regions, an exponential increase from five cases reported three days earlier. Northern Italy, which includes the densely populated Piedmont, Lombardy, and Veneto regions, borders France, Switzerland, Austria, and Slovenia. 

Coronavirus will likely spread throughout Europe

Austria tested some train passengers travelling from Italy to Germany for symptoms, however given the open borders between European countries with limited border screenings, it is possible the virus will quickly spread to other countries, if it has not already. Additionally, Italian authorities have not yet confirmed what caused this spike in cases due to a yet-unknown patient zero, and a high rate of infections that likely happened from asymptomatic carriers. Therefore, the possibility that similar situations might happen in other European regions in the following days cannot be ruled out and should be taken in consideration by decision makers. Other European cities have already taken precautionary measures, such as the cancellation of the Mobile World Congress (MWC) 2020 in Barcelona. On Monday, 24 February, the London, Frankfurt, and Milan stock exchanges fell by around 2-3.5 percent, highlighting the market anxiety over a potential wider outbreak.

Italy enforces lockdowns

Italian authorities have locked down several cities, closed public institutions such as museums, churches, and schools, cancelled events including Venice’s Carnival, and advised people to not go into work or to work remotely to prevent a further spread. Italian banks, such as Intesa SanPaolo, Unicredit, and Banco BPM, closed bank branches and several multi-national Italian companies have halted business travel, changed in-person meetings to conference calls, and are implementing remote working.

Considerations for CIO and CISOs

Considering a likely spread of the virus across Europe, global organizations and companies operating in or with impacted regions may be required to stop travel or enforce work from home restrictions.

In order to help address the potential impact your organization faces, Chief Information and Security Officers (CIOs and CISOs) should consider the following points:

  1. An outbreak of the virus in other EU countries is a likely scenario.
  2. Companies and organizations located in the EU should evaluate their business continuity and disaster recovery plans, including:
    • Restricting personnel from visiting organizations’ offices might be a temporal policy enforced by extraordinary local government restrictions
    • Restrictions might last between two to four weeks, hence organizations should evaluate their business continuity plans around this time interval.
    • Organizations that cannot offer remote working capabilities might enforce paid or unpaid leave to their employees
    • Organizations that can offer remote working should be prepared to quickly implement remote working solutions, including (but not limited to):
      • VPN access (user registration, token rollout, etc.)
      • Personnel training (VPN access, security awareness, phone/email solutions for communication, etc.)
      • Data security segregation (restricting VPN access to only the data required to fulfill employees’ daily job)
      • Increased network traffic through VPN servers
      • Increase network security monitoring
      • Consider solutions for ensuring technology support in the event IT help desks are overloaded with requests from inexperienced remote workers
  3. Unplanned remote work and other extraordinary measures will inevitably increase organizations’ exposed surface and attackers’ opportunities for attacks, due to (but not limited to):
    • Reduced and limited security monitoring
    • Loose security policies to facilitate remote working for new users
    • Personnel trying home-made solutions to keep working from home, such as installation of unauthorized software (e.g. remote-desktop, tunneling, etc.), copying sensitive data to unauthorized external devices, or cloud solutions
    • Increase of malspam attacks exploiting the Coronavirus theme to encourage personnel to open malicious documents. Ransomware attacks could highly capitalize from an increased interest and concerns by citizens about the latest news on Coronavirus and exploit them to compromise companies with targeted attacks.
  4. Unexpected cancelation or delay of business travel
    • Awareness of government-issued Travel Advisories
    • Understand the risk of potential restrictions to business travel, including, but not limited to, traveling with sensitive business documents and assets in a foreign country
    • Preparing for extended outages for business travelers, factoring in screenings and other safety measures implemented by airports
    • Understanding the risk of illness or quarantine affecting the supply chain, to include outsourcing, product delivery, offsite facilities, and more.

 


 References

The New York Times, C3, 21 February, Coronavirus Outbreak Deepens Its Toll on Global Business

WHO, B2, 12 January, Novel Coronavirus – China

La Repubblica, C2, 24 February, Coronavirus, five victims. Vo ‘, the possible patient zero (translated)

MWC Barcelona, A1, 12 February, GSMA STATEMENT ON MWC 2020

ANSA, C2, 24 February, Coronavirus: Milan Stock Exchange opens 3.5% lower (translated)

La Repubblica, C2, 24 February, Coronavirus, stationary schools and universities, (…) (translated)

  ANSA, C2, 23 February, Coronavirus and companies, economy is dealing with emergency (translated)

Tags :
Coronavirus,Pandemic,Threat Intelligence
Share This :

Subscribe To Our
Weekly Newsletter

Subscribe to our newsletter to receive Weekly Intelligence Summaries, cyber news, and exciting updates.