Sat Anand of Anco Chemical made a presentation on “Ammonia Exercise”
Sat Anand of Anco Chemical began his presentation mentioning Anco’s upcoming exercise on Oct. 26. Members are welcome to attend. Anhydrous Ammonia is a gas at atmospheric pressure and temperature. It is a liquid under pressure. It is used as a fertilizer, refrigerant and aqua manufacture.
The 2024 exercise at Anco is a hose rupture and spill of aqua ammonia within the diked area. An employee was exposed to the aqua ammonia and was unconscious. A dummy and water hose leak will be used to simulate the exercise scenario. Anco and Vaughan Fire will test their response to the exercise scenario. CANUTEC and 911 will be informed that they are conducting an exercise.
Anco deals with potential leaks by leaving the area if an ammonia odour is noticed and a supervisor is notified to alert staff. A trained person is required to act putting on a suitable respiratory device and evaluate the emergency and determine if evacuation upwind is necessary. Valves are shut off if safe to do so and water is applied using a spray or fog nozzle. Ammonia is transferred to a safe container. Notification is made if over 30 litres or 30 Kgs. Emergency responders are contacted if necessary.
Illya Marchak of York Regional Police made presentation on “Cybersecurity”
Illya Marchak from York Regional Police Cybercrime Section talked about cyber security trends, ransomware and best practices. The Cybercrime Unit investigates ransomware, data/intellectual property theft, denial of service and insider threats.
The stages of a ransomware attack are reconnaissance, weaponization, exploit database, initial threat vectors, malicious documents, delivery, exploitation, installation, command & control and actions on objectives.
Illya then outlined what we can do to be more resilient to cybercrime. You should start with an Incident Response Plan and a Recovery Plan. The key parts of planning are: to identify assets & risks; protect using multifactor authentication, no default passwords, regular offsite & offline backups, regular software updates & using security tools & software including end point software & firewalls; detect by training employees to detect attacks & monitoring logs & alerts; respond by identifying who has the authority & responsibility for a response plan & who are the internal & external stakeholders; and recover noting steps taken & lessons learned.