Business Continuity Compliance
Cycle
Regulatory
Internal
Third party
Industry Compliance
SecOps
Review and maintain
Regulatory Compliance
Meet the Specific Compliance requirements by SAMA, NCA, CITC etc..
Industry Specific Compliance
For BFSI – SAMA, NCA
For Telco – CITC, NCA
For hospitality - STA, NCA
Third Party
ISO , 27001, 27021 ,
COSO , NIST, NESA
HIPAA , 27005 RISK
internal
Compliance to internal Polices , procedures Standards
InfoSec, Financial , HR, IT
SecOps
Adherence to specific Cyber Security –First line of defense polices
Vulnerability Assessment.
Identification of BCM related risks and comply to the remediation
BCM Maintenance Plan
This phase maintain the BCP in a constant ready-state. The maintenance process of a BCMS is constant and dynamic.
3. What is Business Continuity
SILOS
Maturity
Assessment
Risk
Assessment
Strategy
Testing –Crisis
Management
Continuous
improvement Operational
Resiliency
GRC
SecOps
BCM
4. DEVELOP STRATEGIES
Determine the selection of
alternative strategies available for
mitigate loss (testing scenarios).
02
03 05
01
04
IDENTIFY & ANALYZE
Identifies all significant
roles of risks, resources &
all critical processes.
CONTINGENCY PLANS
Here you can develop plans
which includes role allocation &
responsibilities in case of crisis.
DEFINE BUSINESS
Write about BCM objectives,
define its value & protection
instructions for each assets.
USE TESTS
Testing helps to create
awareness for execution in the
event of any disaster or risk.
06
ESTABLISH BCM
It helps to create awareness
among managers, employees
and partners in company.
Challenges to Business Continuity
5. COMPLIANCE
1. Regulatory
Business Continuity Compliance
Cycle
1. Regulatory
2. Internal
3. Third party
4. Industry Compliance
5. SecOps
6. Review and maintain
2. Internal
3. Third Party
4. Industry
Specific
5. SecOps
6. REVIEW &
MAINTAIN
6. Six Phases of Business Continuity Cycle
Compliance
Ecosystem
1
2
3
4
5
Processes, recovery
times, resource
requirements
Threat analysis,
risk exposure,
threat scenarios
Continuity, strategy, key
resources, alternatives,
service methods, and
recovery methods
BC procedures
BC plan validation
Regulatory Compliance
Meet the Specific Compliance
requirements by SAMA, NCA, CITC etc..
01
Industry Specific Compliance
For BFSI – SAMA, NCA
For Telco – CITC, NCA
For hospitality - STA, NCA
02
Third Party
ISO , 27001, 27021 ,
COSO , NIST, NESA
HIPAA , 27005 RISK
03
internal
Compliance to internal Polices ,
procedures Standards
InfoSec, Financial , HR, IT
04
SecOps
Adherence to specific Cyber
Security –First line of defense
polices
Vulnerability Assessment.
Identification of BCM related risks
and comply to the remediation
05
BCM Maintenance Plan
This phase maintain the BCP in a
constant ready-state. The
maintenance process of a BCMS
is constant and dynamic.
06
8. Strategic BCM Framework
BM STRESS
TESTING
Define
Identify
Assess
impact
Design
changes
Execute
changes
BUSINESS
CONTINUITY
MGMT.
Test &
maintain
Project
initiation
Identify
& impact
Design
measure
Implement
MODIFIES & CREATE VALUE SUSTAINS & PRESERVES VALUE
9. Business Continuity Plan Checklist
YES NO
01
02
03
04
05
06
Plans and resources for alternative locations
Emergency operations centers
Copies of critical business data
Employee contact list and recovery priorities
Business impact and risk analysis
Recovery task list and office recovery plans
IT report and resources, Supplier list, Employee contact list
07
CRITERIA
FOR
BCP
IMPLEMENTATIONS
10. BCP Builder’s Resilience Framework
Organizational flexibility, responsiveness
& vigilance in daily operations
UPDATE
Discuss & improve plan after an event
Predetermined response, know who is
involved, process optimization
UTILIZE
Follow the plan in a crisis or exercise
Confused & frustrated, lacking
appropriate system
STRUCTURE
Decide on how to structure the plan
Unable to access critical information,
miscommunication & mistakes
PLAN
Find a template & get started
SYMPTOMS KEY TO SUCCESS
Resilient
11. ABOUT US
We deliver solutions across
Business Continuity Management
Digital Banking
Sustainability
Digitization
Cyber Security
Governance Risk & Compliance
Cryptocurrency Consulting
Data Protection
Center Systems Group
➢ CSG provides an impeccable spectrum of
Enterprise Resiliency Solutions
➢ Encouraging the uptrend of Risk Mitigation
& Digitization in the MEA market since 2017
➢ Present across: UAE, Saudi Arabia,
Bahrain, India & Australia
50+
No. of Clients
Private & Confidential | 011
12. 12
CONTINUITY & RESILIENCE (CORE)
Abu Dhabi, United Arab Emirates
Mobile:+971 2 6594006,
966 54 858 5985, +971 50 5767804
www.coreconsulting.ae
Info@continuityandresilience.com