Your SlideShare is downloading. ×
0
www.businessbeam.comA business case for establishingBusiness Continuity Plan (BCP)Business Beam (Pvt.) Limited
Contents2What is Business Continuity?1Business Benefits2Implementation Roadmap3Copyrights (C) 2004-2013 Business Beam (Pvt...
What is Business Continuity?A business case for establishing a Business Continuity Plan
9/11 for Pakistan4 Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
Happened in Karachi (June 26, 09)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.5
Suicide Attack in Lahore (May 27, 09)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.6
Thanks to KESCCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.7
Berger PaintsCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.8
Fire at Shahra-e-Faisal BuildingCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.9
The Reality of Business ContinuityCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.10 43% of US...
11IsThis An Effective Management Strategy In the Face of theKNOWN Risks!YES!NO!Copyrights (C) 2004-2013 Business Beam (Pvt...
Effects of Effective BusinessContinuityCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.12The im...
What is Business ContinuityManagement?13 Business Continuity Management (BCM) is a holisticmanagement process that: Iden...
Success or Failure?Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.14C No BCM –usual outcomeBNo...
Business BenefitsA business case for establishing a Business Continuity Plan
Key Benefits (1)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.16 To Business Gain reputatio...
Key Benefits (2)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.17 Better policies, procedures...
Key Benefits (3)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.18 Identification of Business ...
Key Benefits (4)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.19 Information Asset Managemen...
Key Benefits (5) Better Description of Roles & Responsibilities Job description related to information security Pre-hir...
Key Benefits (6)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.21 Communications & Operations...
Key Benefits (7)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.22 Regulatory compliance All ...
Implementation RoadmapA business case for establishing a Business Continuity Plan23
Implementation Roadmap24Phase 1:Scoping & PlanningPhase 2:Understanding the OrganizationPhase 3:Risk Assessment and Contro...
Phase 1: Scoping & Planning25AwarenessAwarenessSessionsImplementerTrainingsTeamFormationEstablishingManagementSteering Gro...
Phase 2: Understanding theOrganization26ProcessIdentificationIdentification offunctions underscopeIdentification ofprocess...
Phase 3: Risk Assessment andControl27RiskAssessmentIdentification ofapplicationthreats, and risksAnalyzingprobability andi...
Phase 4: Implementation of MitigationStrategiesCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved....
Phase 5: Training for Internal Auditand Internal AuditCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights re...
www.businessbeam.comThank You!contact@businessbeam.com
Upcoming SlideShare
Loading in...5
×

A Business Case for Establishing BCP

304

Published on

Published in: Business, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
304
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
26
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "A Business Case for Establishing BCP"

  1. 1. www.businessbeam.comA business case for establishingBusiness Continuity Plan (BCP)Business Beam (Pvt.) Limited
  2. 2. Contents2What is Business Continuity?1Business Benefits2Implementation Roadmap3Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  3. 3. What is Business Continuity?A business case for establishing a Business Continuity Plan
  4. 4. 9/11 for Pakistan4 Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  5. 5. Happened in Karachi (June 26, 09)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.5
  6. 6. Suicide Attack in Lahore (May 27, 09)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.6
  7. 7. Thanks to KESCCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.7
  8. 8. Berger PaintsCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.8
  9. 9. Fire at Shahra-e-Faisal BuildingCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.9
  10. 10. The Reality of Business ContinuityCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.10 43% of US companies never reopen after a disaster and 29%more close within 3 years. 20% of small to medium size businesses suffer a majordisaster every 5 years. 78% of organizations which lacked contingency plans butsuffered catastrophic loss were gone within 2 years…mosthad insurance, and many had business interruptioncoverage!(Sources: U.S. National Fire Protection Agency, U.S. Bureau of Labor, Richmond House Groupand B2BContinuity.com)
  11. 11. 11IsThis An Effective Management Strategy In the Face of theKNOWN Risks!YES!NO!Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  12. 12. Effects of Effective BusinessContinuityCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.12The impact on shareholder valueSource: “The Impact of Catastrophes on Shareholder Value,” Rory F. Knight & Deborah J. Pretty, Templeton College,University of Oxford, p. 3.Trading days after the event25 50 75 100 125 150 175 200 225Effective crisis responseIneffective crisis responses
  13. 13. What is Business ContinuityManagement?13 Business Continuity Management (BCM) is a holisticmanagement process that: Identifies potential impacts that threaten an organization, Provides a framework for building resilience and the capabilityfor an effective response, Safeguards the interests of key stakeholders, reputation, brandand value creating activities.Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  14. 14. Success or Failure?Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.14C No BCM –usual outcomeBNo BCM – luckyescapeTimeLevelofbusinessCritical recoverypointAFully testedeffective BCM
  15. 15. Business BenefitsA business case for establishing a Business Continuity Plan
  16. 16. Key Benefits (1)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.16 To Business Gain reputation as “Safe and Secure Organization” First mover advantage Cost effectiveness = Higher profitability Better compliance with laws and regulations Better continuity in case of any disaster To Operations Better risk management & risk reduction Better cost control Defined SOPs To IT Identification and control of information assets Better risk management Defined SOPs IT Disaster management
  17. 17. Key Benefits (2)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.17 Better policies, procedures and working templates Business continuity Information security Related roles and responsibilities Organization wide awareness SAP related and general IT infrastructure Use of network services Mobile computing
  18. 18. Key Benefits (3)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.18 Identification of Business Critical processes Process identification Process ranking according to business criticality Continuity strategies for critical processes Business Continuity planning Business Impact Analysis (BIA) BCP for all areas under scope BCP awareness, testing and exercises
  19. 19. Key Benefits (4)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.19 Information Asset Management Information Classification Information Asset Identification & Classification Employee Skill Management Risk Management Identification and Analysis of Risks Treatment of Risks Development of Risk Management Approach & Criteria
  20. 20. Key Benefits (5) Better Description of Roles & Responsibilities Job description related to information security Pre-hiring controls During employment personnel development Post-employment controls Physical Security Identification of Secure Areas Equipment SecurityCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.20
  21. 21. Key Benefits (6)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.21 Communications & Operations Management Documented SOPs Segregation of duties Third party service delivery management System planning & acceptance Data backup and recovery Network security Media handling e-Commerce Access Control Access control policy and procedures User, network and OS access control Application and mobile access control
  22. 22. Key Benefits (7)Copyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.22 Regulatory compliance All applicable laws Intellectual property rights Framework for Continual Improvement Regular Internal Audits Corrective & preventive actions
  23. 23. Implementation RoadmapA business case for establishing a Business Continuity Plan23
  24. 24. Implementation Roadmap24Phase 1:Scoping & PlanningPhase 2:Understanding the OrganizationPhase 3:Risk Assessment and ControlPhase 4:Implementation of Mitigation StrategiesPhase 5Training for Audit and Internal AuditCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  25. 25. Phase 1: Scoping & Planning25AwarenessAwarenessSessionsImplementerTrainingsTeamFormationEstablishingManagementSteering GroupEstablishingworking groupsProjectScopingIdentification ofgeographicalscopeIdentification offunctional scopeDocumentingand agreeing thescope of theassignmentCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  26. 26. Phase 2: Understanding theOrganization26ProcessIdentificationIdentification offunctions underscopeIdentification ofprocesses underscopeBIAIdentification ofbusiness impact ifprocess does notworkPrioritizingprocesses basedon time criticalityPresenting reportto themanagementAssetRegistrationIdentification &classification ofinformation assetsin theorganizationAsset valueassessmentAsset ownershipidentificationCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  27. 27. Phase 3: Risk Assessment andControl27RiskAssessmentIdentification ofapplicationthreats, and risksAnalyzingprobability andimpact of risksRiskThresholdCalculating riskthresholdDefining riskacceptancecriteriaDevelopmentofSOASelection of rightcontrols to handlethe identified risksImplementing riskthreshold andacceptancecriteriaDeveloping andpresenting SOACopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.
  28. 28. Phase 4: Implementation of MitigationStrategiesCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.28SecurityControlsDevelopingprocesses andprocedures forinformationsecuritycontrolsMitigationPlanningIdentifying rightmitigationstrategiesPlanning forimplementationBusinessContinuityPlanDevelopment ofBusinessContinuity PlanDesktopexercise of BCP
  29. 29. Phase 5: Training for Internal Auditand Internal AuditCopyrights (C) 2004-2013 Business Beam (Pvt.) Limited. All rights reserved.29InternalAuditTrainingHands-oninternal audittrainings forselectedindividualsInternal audittrainings onboth standardsInternalAuditConducting firstinternal auditDevelopingInternal AuditreportAuditFindingsDetailedassistance inclosure of auditfindingsIdentification ofcorrective andpreventiveactions
  30. 30. www.businessbeam.comThank You!contact@businessbeam.com
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×