Report CopyRight/DMCA Form For : Business Continuity Management And Bs 25999 Hksq
Business Continuity Management and BS 25999 by Steve Chan Head of Training HK BSI Management Systems 9 April 2008
Presentation content,Drivers for Business Continuity. Standards and definitions,BCMS model and implementation. Assessment and certification process,Benefits of BCMS. Drivers for BS 25999 and BCM,More business continuity awareness. Civil contingencies Homeland security,Corporate governance compliance. Protection of corporate value and reputation,Supply chain outsourcing confidence. Commitments to customers,Duty of care to stakeholders. Protect the interests of shareholders,Give confidence to insurers. Source Business Continuity Management 2007,Increased awareness in BCM. BCM seen as part of overall Risk Management,Recognition that it can help reduce business. interruptions,Can add value to the business by identifying. opportunities for improvement, Should be integrated across all business functions. should not be seen as an IT specialty,Better understanding of business benefits among. increasing numbers of organizations,BS 25999 1 committee profile. Committee Profile,Businesses Cable Wireless Sainsbury s Siemens. RBS Thames Water Scottish Power AON Marsh,KPMG Deloitte. Institutes Associations CBI IOD FSB Software IT,Academic Coventry University. Government DTI FSA Civil Contingencies ALARM,ABCB is represented on the committee. Robert Whitcher BSI Management Systems,Early interest in BS 25999 1. Draft for public comment DPC,Published August 2006. Over 5 000 copies were downloaded a record,other similar standards had less than 250. Over 70 set of comments,About 300 pages of comments. mostly positive,BS 25999 1 2006,Code of practice for business continuity. management,Establishes the BCM processes principles and. terminology,Provides a basis for understanding developing and. implementing business continuity within organizations of. any size or from any sector,Provides a comprehensive methodology based on BCM. best practice and the whole BCM lifecycle,Business driven. BS 25999 Code of practice contents,1 Scope and applicability. 2 Terms and definitions,3 Overview of business continuity management BCM. 4 The Business Continuity Management policy,5 BCM Programme Management. 6 Understanding the organization,7 Determining business continuity strategy. 8 Developing and implementing a BCM response, 9 Exercising maintaining and reviewing BCM arrangements. 10 Embedding BCM in the organization s culture,BS 25999 Code of practice contents. 1 Scope and applicability,2 Terms and definitions,3 Overview of business continuity management BCM. 4 The Business Continuity Management policy,5 BCM Programme Management. 6 Understanding the organization,7 Determining business continuity strategy. 8 Developing and implementing a BCM response, 9 Exercising maintaining and reviewing BCM arrangements. 10 Embedding BCM in the organization s culture,BS 25999 2 2007. Requirements for business continuity management, Establishes requirements for there to be a BCM system of. policy and processes,Understanding the organization. Determining strategy,Implementing a response,Exercising and reviewing. Making sure there is a cultural awareness of BCM in the. organization,BS 25999 2 Development Timeline,What is Business Continuity Management. 2 4 business continuity management BCM, holistic management process that identifies potential threats to an organization. and the impacts to business operations that those threats if realized might. cause and which provides a framework for building organizational resilience. with the capability for an effective response that safeguards the interests of its. key stakeholders reputation brand and value creating activities. NOTE Business continuity management involves managing the recovery or continuation of. business activities in the event of a business disruption and management of the overall. programme through training exercises and reviews to ensure the business continuity. plans stays current and up to date,Source BS 25999 2. Incident timeline,Overall recovery objective,Back to normal as quickly as possible. Incident response,Within weeks to months,Damage repair replacement. Within minutes to hours Relocation to permanent place of. Staff and visitors accounted work, for casualties dealt with Business Continuity Recovery of costs from insurers. damage containment,limitation damage,assessment, Invocation of BCP Within minutes to days Recovery resumption back to normal. Contact staff customers,suppliers etc,Recovery of critical business. Rebuild lost work in progress,Look at the BIG picture.