Pandemic test undertaken by financial services paints dire scenario
Financial services firms used 'paper planning' to assess, improve pandemic plans
Computerworld - If a pandemic strikes the U.S., it will kill about 1.7 million people, hospitalize 9 million, exhaust antiviral medications and reduce basic food supplies, according to a planning scenario developed by financial service firms preparing for such a catastrophe.
This particular disaster occurred only on paper. But those grim numbers are some of the pandemic planning assumptions used by nearly 3,000 banks, insurance companies and security firms in a just-concluded, three-week, paper-based exercise that may have been the largest pandemic test of its kind.
In each week of this drill, participants -- some 10,000 people were involved -- received an updated scenario and were asked to assess their capability to deliver services as the pandemic deepened and then abated.
"We wanted to look at the impact a pandemic can have on our sector," said George Hender, chairman of the Financial Services Coordinating Council, in a teleconference Wednesday. "One of the things that we tried to do is put some real stress on the firms."
During the height of the pandemic, which was estimated to occur midway through the scenario, participants were asked to consider operating with an absentee rate of nearly 50% -- above the 35% to 40% rate federal officials believe may actually happen, said Hender. "We deliberately took the rate up much higher to see where their stress points were," he said.
The financial services groups are now sharing the pandemic flu exercise information, and all the scenarios are available for download.
The U.S. Department of Treasury is also a sponsor of the test, and Valerie Abend, deputy assistant secretary for critical infrastructure protection and compliance at the department, said the financial services industry has been "thinking long and hard about a pandemic."
"We are one of the most prepared, I would argue, if not the most prepared of the critical infrastructures that are out there," said Abend.
But the financial services firms won't really know how prepared they are until the end of the year. The thousands of pages of data collected during the test, which began in the last week of September, are still being analyzed and a final report is due at year's end. But based on some preliminary feedback from participants, the financial service firms weren't handing out too many gold stars for readiness.
When asked "based on the lessons learned from the exercise, how effective are your organization's business continuity plans for a pandemic," 56% answered "moderately," the next highest group was "minimally," at 28%. Only 12% said their business continuity planning was very effective.
The three-week scenario compresses the 12-week period a pandemic wave would likely last. Among the other things that may happen in an actual pandemic are school closings, as well as blackouts or brownouts in major metro areas because of degraded service as a result of absenteeism. Internet service throughput could be reduced by 50% due to congestion, and Web browsing timeouts would become common. Airlines would cut schedules, and garbage would pile up on streets.
Many frustrations would arise. Working ATMs might be scarce, and call centers may not have enough staff to help. Health insurance claim volume would rise 20%. Auto claims are expected to fall 10%, since there would be less traffic on the road. But for those who are driving, gas prices would be high and fuel supplies reduced.
Read more about Security in Computerworld's Security Topic Center.
- Silicon Valley's 19 Coolest Places to Work
- Is Windows 8 Development Worth the Trouble?
- 8 Books Every IT Leader Should Read This Year
- 10 Hot Hadoop Startups to Watch
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Neustar 2014 DDoS Attacks and Impact Report For the third consecutive year, Neustar surveyed hundreds of companies on distributed denial of service (DDoS) attacks. The survey reveals evidence that the...
- Acxiom Case Study This case study, which focuses on Acxiom, explores how the company was able to secure employee data, reduce migration costs and boost productivity...
- Windows® XP Migration: Protect and Secure Critical Data With the end of the Microsoft Windows XP operating system's lifecycle on April 8, 2014, businesses are faced with the decision to migrate...
- Enhancing Application Protection and Recovery with a Modern Approach to Snapshot Management This CommVault Business Value and Technology White Paper explains how Simpana IntelliSnap® Recovery Manager can make your application recovery fast and reliable.
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Security White Papers | Webcasts