From its adoption as a discipline in the 1980s,
|
|
- Giles Elliott
- 6 years ago
- Views:
Transcription
1 DISASTER RECOVERY From its adoption as a discipline in the 1980s, Disaster Recovery has come a long way. Since the publication of PAS 77 in 2006 (the precursor to BS25777 published in 2008), even its name has changed to reflect growing recognition and importance. Disaster Recovery (DR), or as it s more commonly referred to now, IT Continuity Management (ITCM), was, when it started, firmly rooted in large mainframe computer environments and had little strategic effect on the organisations it supported even when events conspired against the status quo! How times have changed! The nature of distributed computing, global always-on operations and the internet where the desk-top and blackberry user currently holds sway has ensured that. And as computing has matured so has DR planning: its many business benefits having become much better understood. This article takes a timely look at the importance of ITCM and its relationship with Business Continuity Management (BCM), its corporate benefits, key business drivers and milestones in the process, the current threats to operations, and the impact it is having on the resilience agenda. WHY IT CONTINUITY MANAGEMENT? To explain why IT Continuity Management has become such an important part of, and integral to, sound business as well as IT planning, we need to understand and acknowledge corporate vulnerability, technical dependency, the consequences (rather than merely the causes of disruption), and how senior management make decisions while operating under pressure. Organisations have become leaner, highly available and more responsive to their customers. This has also CHARTECH ISSUE 165 APRIL
2 meant an explosion in the amount of available data for decision-makers some or much of which is vital in managing major incidents. The downside of this efficiency is that it tends to make businesses more brittle and prone to disruption. Being resilient increases flexibility in a way that compensates for the brittleness caused by efficiency. So, while bombs, fires and floods may grab the headlines it is a fact that most incidents and 90% of serious disruption to IT service provision are caused by mundane events. By understanding that the output from a suite of IT continuity plans assists corporate decision-making after all it is people operating under immense pressure supported by their plans which will recover operations rather than the plans themselves businesses become more resilient and able to cope when disruption occurs. ITCM provides us, therefore, with the flexibility of mind as well as a process framework to manage and mitigate the gathering storm. The remainder of this article explains how but first a definition of ITCM. WHAT IS IT CONTINUITY MANAGEMENT? The British Standards Institute define it thus: the capability of an organisation to plan for, and respond to, incidents and disruptions in order to continue ICT service at an acceptable predefined level 1. The BSI defines ICT service as a combination of human, physical and logical assets together with data which supports an organisation in its daily activities and consists of tools and/or facilities provided to access and 14 icaew.com/itfac
3 FEATURES use information and to communicate both internally and externally. IT service provision then is so much more than just managing boxes of tin! A PROCESS APPROACH IT provides us with the information architecture on which the modern business functions. Without it business ceases to work in any credible sense. If you need proof of that try switching off your network at on a Monday morning! We need a process therefore for coping with this sudden loss of functionality and IT as a potential single point of failure. This process should identify what your business-critical functions and outputs are and the threats to them; supported by measures to eliminate these threats. If this is not possible, then contingency plans must be developed to mitigate and manage these threats: small-scale as well as headline threats. Cast in these terms ITCM is much more than recovering from a disaster and is not, therefore, just a one-off planning exercise. It is a genuine risk management process which must be woven into the fabric of normal business operations and business decision-making. Legal counsel in the wake of the Canary Wharf bomb puts it thus: records; At a fundamental level, therefore, ITCM addresses these issues and is a planning process: rather than the causes; dispersion; capabilities, information management, teamwork and mutual support; and rehearsals; formal crisis management structure owned by a senior management team; corporate governance. If you have a plan, and you operate that plan to the best of your ability even if you may get something wrong on the day, at least you are defendable at a tribunal, a public enquiry or in court. But: if you have no plans made, then you are not defendable, and you are on your own. So, while bombs, fires and floods may grab the headlines it is a fact that most incidents and 90% of serious disruption to IT service provision are caused by mundane events. Businesses are more likely to be disrupted by unspectacular events roadworks, damaged power cables, loss of staff and data etc. Since so many business services are delivered online and supported by remote call centres and innovative ICT, the ability to respond and continue delivering as normal is compromised if plans are ineffective or non-existent. The drivers for the process therefore include: order of business priority; CHARTECH ISSUE 165 APRIL
4 Figure 1. Relationship between ICTM and BCM. Source: BS25777:2008. KEY MILESTONES The process of implementing and maintaining ITCM involves: manner; recovery strategy; normal is possible; ITCM AND ITS RELATIONSHIP WITH BCM ITCM is related to a number of other risk management disciplines and should be undertaken with a thorough understanding of business objectives, policies, standards, processes and supporting services for: ITCM, IT STRATEGY AND BUSINESS BENEFITS ITCM has a significant influence on IT strategy and helps to identify information systems and services which require high levels of resilience, availability and capacity. An IT strategy must be developed with an eye to the key question what happens if? and the benefits which flow sit at the heart of business decision-making. They include: within ICT services; ICT services; The outcomes of ITCM mean business-critical activities are identified and protected, and so their continuity is ensured; a business can invoke their incident management capability thus avoiding incidents becoming crises; a business better understands itself and its relationships with other organisations (e.g. supply chain, regulators etc); staff are trained to respond to and cope with incidents; stakeholder requirements are understood and met; business reputation is protected and you remain compliant and legal. 16 icaew.com/itfac
5 Figure 2. Key ITCM timescales. Source: BS25777: Source: BS :2008. THREATS TO OPERATIONS In summary: and espionage; networks, communications, technology enablers, less central control, new entry points for intruders; managers, business partners, auditors and regulators all demanding more protective measures. Specifically ITCM addresses those risks, or threats to operations, which cause a sudden and serious impact, such that business continuity is threatened. These typically include: services; distributors or other third parties; systems both from within as well as outside the perimeter fence. SUMMARY When ITCM planning is twinned with BCM and the two disciplines must support each other the process and outputs have a positive impact on business resilience. The key to planning is to consider the consequences rather than the causes as these are more easily predicted and steps can be taken to reduce their effects before an incident ever occurs. While it is possible to have an IT continuity plan without an incident ever occurring, it is impossible to manage a major IT incident without a plan. Planning however is often managed as an operational activity assigned to individuals without strategic responsibility. As the effects of major disruption are almost always strategic in their reach, senior business decisionmakers must learn to confront their dependencies and vulnerabilities in order to improve their understanding and awareness of IT risk management specifically threats to operations. A flexible framework stressing the importance of plans which assist decision-making is the key to success, enabling senior decision-makers to take a firm and responsive lead, while confirming business priorities when invocation is approved. About the Author James Royds FBCI is vice-chair of the Business Continuity Institute and a Director of Security Risk Management Ltd. CHARTECH ISSUE 165 APRIL
Business Continuity Management PHILIPPINES :: MALAYSIA :: VIETNAM :: INDONESIA :: INDIA :: CHINA
Business Continuity Management PHILIPPINES :: MALAYSIA :: VIETNAM :: INDONESIA :: INDIA :: CHINA Learning Bites Understand the context and relevance of BCM A Philippine & Telco Perspective Comprehend how
More informationBusiness Continuity Management and Resilience Framework
Business Continuity Management and Resilience Framework Approving authority University Council Approval date 3 December 2018 Advisor Next scheduled review 2021 Peter Bryant Vice President (Corporate Services)
More informationBusiness Continuity Planning for Major Disruptions Checklist 255
Business Continuity Planning for Major Disruptions Checklist 255 Introduction Major disruptions to organisations come in many forms. Extreme weather conditions, technical failure, people related factors
More informationBUSINESS CONTINUITY MANAGEMENT A MANAGER S TOOLKIT A
Anytown Council BUSINESS CONTINUITY MANAGEMENT A MANAGER S TOOLKIT A guide to Business Continuity Management in Anytown Council CONTENTS Introduction - The need for Business Continuity Management (BCM)
More information18 Business Continuity Management
18 Business Continuity Management Business Continuity is the strategic and tactical capability of the organisation to plan for and respond to incidents and business disruptions in order to continue business
More informationPublic Governing Body Meeting 19 August 2014
This paper is being submitted to the Governing Body for amendment and/or approval as appropriate. It should not be regarded, or published, as CCG Policy until formally agreed at the Governing Body meeting,
More informationUSER REQUIREMENTS CHAPTER 20 IT SERVICE MANAGEMENT AND BUSINESS CONTINUITY
USER REQUIREMENTS CHAPTER 20 IT SERVICE MANAGEMENT AND BUSINESS CONTINUITY T2S project Team Reference: T2S-07-0370 Date: 15 novembre 2007 Version: 1 Status: Final TABLE OF CONTENTS 20 IT service management...3
More informationBusiness Resilience. Laura Poderys
Business Resilience Laura Poderys Agenda Adaptation; Situation Awareness; Planning Strategies; Physical and IT Resilience; HR Resilience; Organisational Planning 2 Business Resilience Business Resilience
More informationNHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY
NHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY 1 AUTHOR/ APPROVAL DETAILS Document Author Written By: Phil Hartwell Authorised Signature Authorised By: Helen Shields Date: 06
More informationGovernance Institute of Australia Ltd
Governance Institute of Australia Ltd Management Policy 1. Overview management is a key element of effective corporate governance. In view of this, Governance Institute of Australia Ltd (Governance Institute)
More informationWHITE PAPER KEY PRINCIPLES OF INTEGRATED BUSINESS RESILIENCY
WHITE PAPER KEY PRINCIPLES OF INTEGRATED BUSINESS RESILIENCY It s hard to find an organization not impacted by at least one natural, man-made or cyber disruption in 2017. From earthquakes in Mexico, to
More informationBCM Lite a quick and easy guide to BCM for beginners and/or small businesses
BCM Lite a quick and easy guide to BCM for beginners and/or small businesses Some important definitions Business Continuity Planning The process leading to a clearly defined and documented plan for use
More informationBusiness Continuity Policy. Interim Governance Consultant. October Greenwich Executive Group
Business Continuity Policy Author(s) Interim Governance Consultant Version 1.1 Version Date October 2016 Implementation/Approval Date October 2016 Review Date October 2017 Review Body Greenwich Executive
More informationA Guide to Business Continuity
A Guide to Business Continuity Getting Started Business Continuity Management is a process driven from the top of the organisation. The first stage has to be an acceptance by the Board or the Executive
More informationEmerging Threats: The importance of Interagency Coordination WEATHERING THE STORM 6 TH ANNUAL REGIONAL DISASTER CONFERENCE
Emerging Threats: The importance of Interagency Coordination WEATHERING THE STORM 6 TH ANNUAL REGIONAL DISASTER CONFERENCE WORLDWIDE THREAT ASSESSMENT of the US INTELLIGENCE COMMUNITY February 9, 2016
More informationBUSINESS CONTINUITY & STRATEGY POLICY
BUSINESS CONTINUITY & STRATEGY POLICY Authorship: Chris Wallace, Information Governance Manager Committee Approved: Integrated Audit and Governance Committee Approved date: 11th March 2014 Review Date:
More informationThe Sector Skills Council for the Financial Services Industry. National Occupational Standards. Risk Management for the Financial Sector
The Sector Skills Council for the Financial Services Industry National Occupational Standards Risk Management for the Financial Sector Final version approved April 2009 IMPORTANT NOTES These National Occupational
More informationBusiness Continuity Management 2005
Business Continuity Management 2005 Introduction The Chartered Management Institute, in conjunction with the Continuity Forum and VERITAS Software, has carried out new research into Business Continuity
More informationLeading Change: Building Organisational Resilience. Jean D. Rowe, MBCI, CDCP May 1, 2017
Leading Change: Building Organisational Resilience Jean D. Rowe, MBCI, CDCP May 1, 2017 Jean.Rowe@ae.ey.com Agenda What is Organizational Resilience? Why Should You Care? Are You Prepared? What Do You
More informationThe City of Edmonton. Enterprise Risk Management and Business Continuity Management
The City of Edmonton Enterprise Risk Management and Business Continuity Management Presenters: Ken Baker, CPA, CMA, ARM-E, Corporate Manager, Enterprise Risk Management Butch Brennan, MBA, CBCP, Business
More informationBusiness Continuity 101. Fairchild Resiliency Systems
Business Continuity 101 Fairchild Resiliency Systems Business Continuity Business Continuity (BC) is defined as the capability of the organization to continue delivery of products or services at acceptable
More informationpwc.co.uk Crisis management
pwc.co.uk Crisis management Contents What s on your mind? 01 Our point of view 02 How can PwC support you? 04 What you gain 06 When to act 08 Intelligent Digital 09 What s on your mind? The ability to
More informationpwc.co.uk Business continuity management
pwc.co.uk Business continuity management Contents What s on your mind? 01 Our point of view 02 What can PwC do to support you? 04 What you gain 06 When to act 07 Intelligent Digital 08 What s on your mind?
More informationBuilding Organisational Resilience
Building Organisational Resilience Through training, exercising, consultancy and support services Presented by: Ronnie Coutts MBE MA Director Training and Resilience History CCA 2004 CCA 2004 Service Company
More informationISO whitepaper, January Inspiring Business Confidence.
Inspiring Business Confidence. ISO 22301 whitepaper, January 2015 Author: Graeme Parker enquiries@parkersolutionsgroup.co.uk www.parkersolutionsgroup.co.uk ISO 22301 is the new International Standard for
More informationBusiness Continuity Planning and Disaster Recovery Planning
4 Business Continuity Planning and Disaster Recovery Planning Learning Objectives To understand the concept of Business Continuity Management; To understand the key phases and components of a Business
More informationAuditing the Corporate Business Continuity and Disaster Recover Plan
Auditing the Corporate Business Continuity and Disaster Recover Plan IIA 16 th Annual Conference Transforming Internal Audit to Drive Value Sarova Whitesands, Mombasa June 2018 International ), a Swiss
More informationCiti Institutional Clients Group - Business Continuity Management
Citi Institutional Clients Group - Business Continuity Management Enterprise Risk Management Establishing a Risk Control-based Continuity Program, CBCP, CBCP Senior Vice President, Citi Institutional Clients
More informationBusiness Continuity Management Policy. Date Version Number Planned Review Date Oct 2014 Issue 1 Oct 2017
Business Continuity Management Policy Document Code PtHB / CGP 001 Date Version Number Planned Review Date Oct 2014 Issue 1 Oct 2017 Document Owner Approved by Date Civil Contingencies Executive Team 08/10/2014
More informationFail to Prepare, Prepare to Fail. Business Continuity Management in the Food Industry
Fail to Prepare, Prepare to Fail Business Continuity Management in the Food Industry Fail to Prepare, Prepare to Fail Business Continuity Management in the Food Industry Business continuity (BC) systems
More informationIntroduction to Business
ANALYSIS DESIGN IMPLEMENTATION Introduction to Business Continuity course This course is an introduction to the world of business continuity (BC). It is designed as a first step for newcomers to the subject
More informationBusiness Continuity Management Plan. Policy
Business Continuity Management Policy Document Number 007/002/028 Version: V 1.00 Approved by: Risk Management & Clinical Governance Committee Date approved: Name of originator/ author: Contingency Planning
More informationISO Business Continuity Management. Your implementation guide
ISO 22301 Business Continuity Management Your implementation guide Build a robust and resilient organization with ISO 22301 It s never been more important to protect your business from the unexpected.
More informationEmergency Planning College Position Paper. Preparing People: a Critical Element of UK Resilience
Emergency Planning College Position Paper Number April 2017 6 Preparing People: a Critical Element of UK Resilience Dr Robert MacFarlane Cabinet Office, Civil Contingencies Secretariat Emergency Planning
More informationCitizens Property Insurance Corporation Business Continuity Framework
Citizens Property Insurance Corporation Framework Dated September 2015 Approvals: Risk Committee: September 17, 2015 (via email) Adopted by the Audit Committee: Page 1 of 12 Table of Contents 1 INTRODUCTION...
More informationInternal Audit report
Financial Conduct Authority Internal Audit report The FCA s incident response and crisis management capability Findings identified Major 2 Moderate 1 Minor 0 24 October 2014 1 1 Executive Summary 1.1 Summary
More informationDeltar Training Solutions Adding Value DTE018
Adding Value The information in this document is part of the Deltar Level 4 Management Award in Introduction to Risk and Crisis Management 1 Introduction As should already be clear from the previous sections
More informationBusiness Continuity. Building a Program Fit for Purpose
Business Continuity. Building a Program Fit for Purpose Tim Janes. Director Fulcrum Risk Services Tuesday 2 September. 11.30-12.45 T Janes. BC SLIDES. RIMS Risk Forum Aust 2014 v1.0 Building a BC Program
More informationPOSITION DESCRIPTION
NZSOC Operations Officer POSITION DESCRIPTION Unit/Branch, Directorate: Location: New Zealand Security Operations Centre, Intelligence Directorate Wellington Salary range: G $68,316 - $102,474 Purpose
More informationExternal Supplier Control Obligations
External Supplier Control Obligations Resilience Control Title Control Description Why this is important 1.Resilience and recovery governance Supplier must establish effective governance to maintain resilience
More informationHead of Security and Business Continuity
Services Security and Business Continuity Ser-Sec-003 07/11/2017 Author Name Author Job Title Alan Cain Head of Security and Business Continuity Version No. 1.1 EIA Approval Date 28/06/2017 Committee Recommend
More informationBUSINESS CONTINUITY: PROTECTING YOUR BUSINESS FUTURE
BUSINESS CONTINUITY: PROTECTING YOUR BUSINESS FUTURE An insight into the current environment and importance that business continuity has on your business reputation. 1 Table of Contents Introduction 3
More informationFederal Policy for Emergency Management BUILDING A SAFE AND RESILIENT CANADA
Federal Policy for Emergency Management BUILDING A SAFE AND RESILIENT CANADA DECEMBER 2009 Her Majesty the Queen in Right of Canada, 2012 Cat. No.: PS4-127/2012 ISBN: 978-1-100-54206-5 Printed in Canada
More informationSession R16: Examining the Inherency of Business Continuity in the Organization. Edward Cahn, PhD, PMP, CBCP BAE Systems
Session R16: Examining the Inherency of Business Continuity in the Organization Edward Cahn, PhD, PMP, CBCP BAE Systems Significance Introduction Problem Statement Purpose Expectations Hypothesis Methodology
More informationUsing a Standards-Based Management-System Approach to Increasing Resilience
Using a Standards-Based Management-System Approach to Increasing Resilience The Need is Real The world is becoming turbulent faster than organizations are becoming resilient. Gary Hamel Harvard Business
More informationBusiness Continuity Framework
Business Continuity Framework Author: Simon Featherstone, Business Continuity Specialist and Chris Orr, Business Planning Manager Date: 11 November 2016 Version: 1a Publication/ Distribution: Executive
More informationDeltar Training Solutions Business Continuity Management DTE004
Business Continuity Management The information in this document is part of the Deltar Level 4 Management Award in Advanced Risk and Crisis Management 1 Introduction Given the fact that crises are usually
More informationConcept. Issue and Crisis Management
Concept Issue and Crisis Management Introduction Organisations have to deal with issues all the time and unfortunately, sometimes have to deal with crises. Crises can have catastrophic outcomes bringing
More informationA Risk Management Process for Information Security and Business Continuity
A Risk Management Process for Information Security and Business Continuity João Carlos Gonçalves Fialho Instituto Superior Técnico - Taguspark joaogfialho@gmail.com ABSTRACT It was from the DNS.PT internship
More informationIntroduction And while responding effectively to supply As an interconnected set of organizations chain threats isn t a new discipline after all, or e
S U P P LY C H A I N R E S I L I E N C E Examining how the financial health of your suppliers can lead to a more resilient global supply chain Introduction And while responding effectively to supply As
More informationBusiness continuity policy
Document Author: Emergency Planning Lead Document type: Policy Document library section: Corporate Document status: Final Approved by: Governance and Assurance Committee - 10 October 2013 Can document
More informationStrategic Business Continuity Management
Strategic Business Continuity Management Steven J. Ross Deloitte & Touche New York Prospering in the Secure Economy Leading organizations must confront the new realities of today s uncertain economy The
More informationRISK ENGINEERING GUIDELINE
RISK ENGINEERING GUIDELINE BUSINESS CONTINUITY MANAGEMENT (BCM) HDI Risk Consulting Business Interruption www.hdi.global Development and Implementation of a Business Continuity Management System (BCMS)
More informationINTEGRATED RISK BUSINESS CONTINUITY CYBER-SECURITY THE RESILIENCE FACTORS THAT DRIVE YOUR REPUTATION
CYBER-SECURITY BUSINESS CONTINUITY INTEGRATED RISK THE RESILIENCE FACTORS THAT DRIVE YOUR REPUTATION INTRODUCTION We all work hard to build and protect our reputation, and in today s world of 24/7 news
More informationActive Essex Risk Management Strategy
Active Essex Risk Management Strategy 2017-2021 November 2017 Contents 1. Policy Statement 2. Statement of Commitment 3. Risk Management Framework 4. Risk Appetite 5. Risk Maturity 6. Risk Management Levels
More informationBusiness Continuity Policy
Putting Barnsley People First Business Continuity Policy Version:.0 Approved By: Governing Body Date Approved: August 015 Reviewed October 016 Name of originator / author: Jamie Wike, Head of Planning,
More informationassist companies in developing their capacity to monitor and improve their performance provide a basis for the related auditing.
FINNISH STANDARD FOR SUSTAINABLE EXPLORATION ASSESSMENT CRITERIA A Tool for Assessing Crisis Management Planning Performance Introduction This document provides a tool for assisting companies in the assessment
More informationBusiness Continuity Management Policy. Guidance
Management Guidance Document Type: Guidance Parent Policy: Management Policy Policy Owner: Chief Supt Department: Document Writer: Co-ordinator Effective Date: 12 th March 2015 Review Date: 12 th March
More informationHow can you improve your ability to identify, respond and adapt to significant operational interruptions?
How can you improve your ability to identify, respond and adapt to significant operational interruptions? Agenda I Introductions and objectives II Why is resilience important III Typical issues be aware
More informationIntroduction to IT Governance. IT Governance CEN 667
Introduction to IT Governance IT Governance CEN 667 1 Lectures Schedule Week Topic Week 1 Introduction to IT governance Overwiev of Information Security standards - ISO 27000 series of standards Week 2
More informationBusiness Continuity Policy and Plan
Agenda item 17 Attachment 11 Business Continuity Policy and Plan Title NHS Surrey Heath CCG Business Continuity Policy and Plan Version 1 Publication Date 3 August 2013 Review Date April 2014 References
More informationBusiness Continuity Management Policy
Business Continuity Management Policy Version FINAL 1.0 Ratified by Dudley CCG Audit Committee Date ratified 17/03/16 Name of originator(s) / author(s) David Morris, Midlands and Lancashire CSU/ Sue Johnson,
More informationBriefing for the Minister of Civil Defence
Briefing for the Minister of Civil Defence Resilient New Zealand Contents 3 Foreword 5 Sector Overview 6 Strategic and Legislative Framework 7 Minister s Role 9 The ministry s Role 10 Key Issues and Themes
More informationSeven Critical Mistakes to Avoid in Continuity of Operations Planning (COOP) boldplanning.com. White Paper
Seven Critical Mistakes to Avoid in Continuity of Operations Planning (COOP) boldplanning.com White Paper The world isn t getting less risky. Catastrophic weather. Devastating cyber threats. Unthinkable
More informationDirector of Business Assurance. Business Continuity Officer
University of Sunderland Business Continuity Policy and Process Policy Reference Central Register Policy Reference Faculty / Service Policy Owner Director of Business Assurance Date Policy Written Amended
More informationBusiness Continuity & Risk Management
Business Continuity & Risk Management David Muil, Global VP Business Development 1 Intertek 2013, Agenda Understanding Risk Business Continuity Management Risk assessment Summary 2 Intertek 2013, Risk
More informationEffectively Communicating Enterprise-Wide Business Continuity to Senior Management and Stakeholders. October 7, 2014
Effectively Communicating Enterprise-Wide Business Continuity to Senior Management and Stakeholders October 7, 2014 Agenda Background Program Elements What Makes it Enterprise-wide Recommended Strategies
More informationWork Area Recovery Survey May 2010
Work Area Recovery Survey May 2010 Do you have a have a work area recovery facility in the UK? N=49 If you have UK work area recovery facilities, are they: Internal (spare site)? 36.2% 17 Internal (displacement
More informationA Framework for Resilience: PR19 and Beyond
A Framework for Resilience: PR19 and Beyond January 2018 1. Introduction Anglian Water recently published its Strategic Direction Statement 2020-2045. Water is a longterm business. Our ability to provide
More informationNHS NEWCASTLE GATESHEAD ALLIANCE Business Continuity Plan (including Emergency Planning Response and Resilience and Surge Management Arrangements)
Newcastle Gateshead Alliance NHS NEWCASTLE GATESHEAD ALLIANCE Business Continuity Plan (including Emergency Planning Response and Resilience and Surge Management Arrangements) Ratified Status Version Control
More informationGovernance Risk Awareness. Plans Procedures Facilities. Resilience Adaptability Culture
Exercise Checklists Governance Risk Awareness People Capability Skills Drills Tabletops Simulations Live exercises January 2015 Resilience Adaptability Culture Plans Procedures Facilities Response Mitigation
More information6. IT Governance 2006
6. IT Governance 2006 Introduction The Emerging Enterprise Model 3 p IT is an integral part of the business p IT governance is an integral part of corporate governance 4 Challenges for the IT IT gets more
More informationBusiness Continuity Management (BCM) Toolkit
Business Continuity Management (BCM) Toolkit Version 1 Process Owner: Chief Executive Business Continuity & Risk Management Officer: Caroline Evans Jun-14 Version 1 Page 1 of 39 Acknowledgements We would
More informationIntroducing ISO 22301
Introducing ISO 22301 1 2 Background How was the ISO22301 formed? Contributors 3 Context 4 Source documents included BS25999-2 NFPA 1600 ASIS OR standard Singapore standards ISO 27031 ISO Guide 73 ISOPAS22399
More informationBusiness Continuity Institute Responding To The Resilience Challenge
Business Continuity Institute Responding To The Resilience Challenge BCI 20/20 UK Group white paper Introduction Responding to the resilience challenge Recent events continue to demonstrate the increasing
More informationRef. Ares(2014) /11/2014. Resilience Marker. General Guidance (November 2014) Humanitarian Aid and Civil Protection
Ref. Ares(2014)3883617-21/11/2014 Resilience Marker General Guidance (November 2014) Humanitarian Aid and Civil Protection 2 / RESILIENCE MARKER / 3 1. What is resilience and why is it important? 2. What
More informationCommunity Engagement Framework
NATIONAL STRATEGY FOR DISASTER RESILIENCE Community Engagement Framework HANDBOOK 6 AUSTRALIAN EMERGENCY MANAGEMENT HANDBOOK SERIES Building a disaster resilient Australia NATIONAL STRATEGY FOR DISASTER
More informationUNIVERSITY OF ABERDEEN ADVISORY GROUP ON BUSINESS CONTINUITY & RESILIENCE BUSINESS CONTINUITY POLICY
UNIVERSITY OF ABERDEEN ADVISORY GROUP ON BUSINESS CONTINUITY & RESILIENCE BUSINESS CONTINUITY POLICY 1 INTRODUCTION 1.1 The University of Aberdeen has a responsibility to ensure the health and welfare
More informationbizsafe Level 2 Ver. 1.0 by MOM/WSH Council. For Authorised Use Only. All Rights Reserved.
bizsafe Level 2 What is? SGSecure is a national movement to sensitise, train and mobilise our community to play a part to prevent and deal with a terrorist attack. It is how the whole of Singapore can
More informationREVIEW OF DISRUPTION TO THE RTGS SYSTEM ON 20 OCTOBER 2014: AN UPDATE TO THE BANK OF ENGLAND S RESPONSE SUMMARY
REVIEW OF DISRUPTION TO THE RTGS SYSTEM ON 20 OCTOBER 2014: AN UPDATE TO THE BANK OF ENGLAND S RESPONSE SUMMARY 1. The Bank of England is responsible for the operation of the United Kingdom s Real-Time
More informationCertificate in Internal Audit 3. Advanced Audit Techniques
Certificate in Internal Audit 3 Advanced Audit Techniques Who should attend? Senior Auditors Audit Managers and those about to be appointed to that role Auditors that need to audit projects, contracts
More informationRisk Management Strategy. Version: V3.0
Risk Management Strategy Version: V3.0 Date: October 2016 Classification: DCC Public Document Control (Document Control Heading) Revision History (Document Control Subtitle) Revision Date Summary of Changes
More informationGeneral Guidance for Developing, Documenting, Implementing, Maintaining, and Auditing an SQF Quality System. Quality Code. SQF Quality Code, Edition 8
General Guidance for Developing, Documenting, Implementing, Maintaining, and Auditing an SQF Quality System Quality Code SQF Quality Code, Edition 8 October 2017 2014 Safe Quality Food Institute 2345 Crystal
More informationBUSINESS CONTINUITY PLANNING WORKPROGRAM
BUSINESS CONTINUITY PLANNING WORKPROGRAM EXAMINATION OBJECTIVE: Determine the quality and effectiveness of the organization s business continuity planning process, and determine whether the continuity
More informationRisk Management Strategy
Risk Management Strategy 2017-2019 Created by: Role Name Title Author / Editor Kevin McMahon Head of Risk Management & Resilience Lead Executive Margo McGurk Director of Finance & Performance Approved
More informationISO Standards in Strengthening Organizational Resilience, Mitigating Risk & Addressing Sustainability Concerns
ISO Standards in Strengthening Organizational Resilience, Mitigating Risk & Addressing Sustainability Concerns 13 December 2016 Joe Muratore Copyright 2012 BSI. All rights reserved. Enterprise Risk Management
More informationNHSBT Board July Business Continuity Review
16/64 NHSBT Board July 2016 Business Continuity Review 1. Status Public 2. Executive Summary The Business Continuity Team has a mission to provide leadership, advice and support to deliver a world leading
More informationCustomer-focused review of the IT services formerly provided by Health Solutions Wales (now provided by NWIS) Velindre NHS Trust
Customer-focused review of the IT services formerly provided by Health Solutions Wales (now provided by NWIS) Velindre NHS Trust Audit year: 2010-11 Issued: February 2012 Document reference: 161A2012 Status
More informationBusiness Continuity Planning Policy
Business Continuity Planning Policy Policy Number: 186 Supersedes: Version 1.1 Classification Corporate Version Date of Date of Date made Review Approved by: No EqIA: Approval: Active: Date: 2 21/11/2016
More informationBUSINESS CONTINUITY: PROTECTING YOUR BUSINESS FUTURE
BUSINESS CONTINUITY: PROTECTING YOUR BUSINESS FUTURE An insight into the current environment and importance that business continuity has on your business reputation. Table of Contents Introduction 3 Current
More informationOur values underpin the delivery of our purpose, and our promise to ensure that our customers never stop getting more out of life.
Role Overview Position Title: Senior Network Service Manager (NSM) Reports To: Network Fulfil Manager Location: Christchurch Date: August 2018 About Enable We ve built the fibre broadband network for around
More informationBusiness Continuity Management Policy and Framework
Management Policy and Framework Version: 9 Produced by: University Manager with the assistance of the Operational Group Date Produced: 11 th March 2010 Approved by: Steering Group (14 December 2010) Updated:
More informationHB A Practitioners Guide to Business Continuity Management
HB 292 2006 A Practitioners Guide to Business Continuity Management HB HB 292 2006 Handbook A practitioners guide to business continuity management First published as HB 292 2006. COPYRIGHT Standards Australia
More informationCertified Crisis Management Professional. Contents are subject to change. For the latest updates visit
Certified Crisis Management Professional Page 1 of 6 Why Attend This course provides participants with concrete crisis management solutions and strategies, while giving insight into the delivery of effective
More informationAdvanced Audit Techniques
Advanced Audit Techniques Who should attend? Senior Auditors Audit Managers and those about to be appointed to that role Auditors that need to audit technical or complex business areas Assurance professionals
More informationBusiness Recovery & Continuity Plan
Page 1 of 22 Business Recovery & Continuity Plan Document Control Responsible Person Review Frequency Reviewed by Chief Executive 3-Yearly (Strategic Review) Board Date Approved November 2017 Next Review
More informationTop 10 pitfalls to avoid when re-inventing your disaster recovery program
The Essential DR Cheat Sheet: Top 10 pitfalls to avoid when re-inventing your disaster recovery program Consult Build Transform Support Every new malicious attack or weather catastrophe underscores the
More informationIncident Management Framework. Part One: Overview and Policy. Final Draft. other plans. incident management framework. business as usual (BAU)
Final Draft Incident Management Framework Part One: Overview and Policy business as usual (BAU) incident management framework other plans Crisis Solutions 18 Hanover Square London, W1S 1HX Tel 0845 130
More informationA NEW MOMENTUM FOR BUSINESS CONTINUITY PROFESSIONALS? LAURENT RICCIARDI HEAD OF EFFICIENCY PROCESS & INFORMATION MANAGEMENT
A NEW MOMENTUM FOR BUSINESS CONTINUITY PROFESSIONALS? LAURENT RICCIARDI HEAD OF EFFICIENCY PROCESS & INFORMATION MANAGEMENT There was a time when the strategic skyline was 5 to 10 years far. By the end
More informationIs a BCM Capability Enough for Developing a Resilient Organisation?
Emergency Planning College Occasional Papers New Series Number December 2012 4 Is a BCM Capability Enough for Developing a Resilient Organisation? Martin W Fenlon Associate Course Director Emergency Planning
More information