View
93
Download
5
Category
Tags:
Preview:
Citation preview
BUSINESS CONTINUITY BUSINESS CONTINUITY MANAGEMENTMANAGEMENT
KEEPING THE BUSINESSKEEPING THE BUSINESSWHEELS IN MOTIONWHEELS IN MOTION
bybyNOGENE VAN R. OMANDAMNOGENE VAN R. OMANDAM
www.pecb.org/ iso22301
International Standard for Organization
ISO 22301:2012
"Societal security -- Business continuity
management systems --- Requirements"
ISO 22313:2012, "Societal security -- Business continuity
management systems – Guidance"
ISO/IEC 27031:2011, "Information security - Security techniques —
Guidelines for information and communication
technology [ICT] readiness for business continuity"
PART 1
DEFINITION and
IMPORTANCE
www.pecb.org/ iso22301
Business Continuity ManagementA holistic management
process that identifies potential impacts that threaten an
organisation and provides a framework for building resilience with the capability for an effective
response that safeguards the interests of its key stakeholders,
reputation, brand and value creating activities.
www.pecb.org/ iso22301
To ensure the timely resumption and delivery of essential business activities in the event of a major disruption by maintaining the key business resources required to support delivery of those activities.
Business Continuity Management
OBJECTIVE
OUTPUTBusiness Continuity Plan (BCP)
riskmanagement@icwa.wa.gov.au
Business Continuity Management
Are business interruptions that are of concern from a continuity viewpoint.
OUTAGES
RESPONDING OUTAGES 1.Emergency Response2.Continuity Response3.Recovery Response
businesscontinuityhelp@avolution.com
KEY COMPONENTS OF
Business Continuity Management
IT Disaster Recovery
BusinessRecovery
Crisis Management
Risk Mitigation
riskmanagement@icwa.wa.gov.au
SOME COMPANIES WHO HAD ADOPTED THE
Business Continuity Management PROGRAM
businesscontinuityhelp@avolution.com
THE NEED FOR
Business Continuity Management
FearProtection of
people
Maintenance of vital
activities of the
organization
Better under-standing
of the organizaion
Cost reduction
Respect to the
interestedparties
Protection of the reputation
andbrand
Confidence ofclients
Competitiveadvantage
Legalcompliance
Regulatorycompliance
Contractcompliance
PART 2
IMPLEMENTINGand
MAINTAINING
businesscontinuityhelp@avolution.com
THE INTEGRATED IMPLEMENTATION METHODOLOGY FOR
Business Continuity Management
BRITISH STANDARDS
25999
ISO22301
NFPA1600
businesscontinuityhelp@avolution.com
THE INTEGRATED IMPLEMENTATION METHODOLOGY FOR
Business Continuity Management1. PLAN
establishes objectives, targets and procedure for the program.
StandardsPolicy StatementsProgram SponsorSteering Committee
businesscontinuityhelp@avolution.com
THE INTEGRATED IMPLEMENTATION METHODOLOGY FOR
Business Continuity Management2. DO
implements and operates the BCM program.Understand
i.Business Impact Analysis- identifies and documents your key products and services.ii.Risk Asssessment- separates the risks identified in the previous step into minor (acceptable) risks and major (unacceptable) risks.
businesscontinuityhelp@avolution.com
THE INTEGRATED IMPLEMENTATION METHODOLOGY FOR
Business Continuity Management2. DO
a.Treatb.Toleratec.Transferd.Terminate
Strategize- Risk MitigationPlan DocumentationTest
businesscontinuityhelp@avolution.comriskmanagement@icwa.wa.gov.au
THE INTEGRATED IMPLEMENTATION METHODOLOGY FOR
Business Continuity Management3. CHECK
monitors and reviews performance against establish management system.
Discussion based ExerciseLive ExerciseTesting
businesscontinuityhelp@avolution.comriskmanagement@icwa.wa.gov.au
THE INTEGRATED IMPLEMENTATION METHODOLOGY FOR
Business Continuity Management4. ACT
maintains and improve the BCM program.
CAPA(corrective action and preventive action)Continuous Improvement
riskmanagement@icwa.wa.gov.au
SOME SOLUTIONS INTRODUCED by
Business Continuity Management
SO,WHO
ARE TO BE INVOLVE?
EVERYONE!!
FIN
Recommended