Cyber security and IT resilience is a journey, not a destination, and we need to consider how business continuity, integrated with them.
This is becoming more and more prevalent at Board level and is having significant impacts, particularly on sectors.
2. Types of Resiliency
• Cyber Security & IT Resilience
• Operational Resilience
• Personal Resilience
• Supply Chain Resilience
• Organizational Resilience
2
Abdulrahman Alonaizan
Chief Business Continuity Officer
3. Cyber Security & IT Resilience
Cyber security and IT resilience is a journey, not a destination, and we
need to consider how business continuity, integrated with them.
Effective training and exercising to ensure staff are not your greatest cyber threat.
Social engineering and building organizational awareness.
Building a cyber resilience strategy and culture in your organization.
3
Abdulrahman Alonaizan
Chief Business Continuity Officer
4. Operational Resilience
This is becoming more and more prevalent at Board level and is having
significant impacts, particularly on sectors.
• Operational vs organizational resilience.
• Operational resilience – who should be leading it.
• Ensuring your organization escapes fine for non-compliance.
4
Abdulrahman Alonaizan
Chief Business Continuity Officer
5. Personal Resilience
How are personal resilience and organizational resilience linked?
• Resilient staff = a resilient organization.
• Managing/ looking after staff mental health during a crisis.
• How to incorporate wellbeing into resiliency plans.
5
Abdulrahman Alonaizan
Chief Business Continuity Officer
6. Supply Chain Resilience
Now, more than ever before we are reminded of the critical role supply
chains play in continuity & resilience across.
• Supply chain resilience, with a focus on suppliers & customers engagement.
• A resilient supply chain starts at the procurement stage.
• Removing supplier dependency and diversifying supply chains.
6
Abdulrahman Alonaizan
Chief Business Continuity Officer
7. Organizational Resilience
Resilience is continuous and requires a multitude of aspects coming
together for a holistic approach to organization.
Resilience is defined as the ability of an organization to design, alter, and implement
various actions, processes, and procedures when facing a crisis.
Organizational resilience is tested at time of crises, but also during post-crisis evaluations,
when organizations seek to find opportunities for improvement.
It is not sufficient that elements within the organization are resilient; the organization
should be resilient as a whole in order to manage a crisis effectively.
7
Abdulrahman Alonaizan
Chief Business Continuity Officer
8. Organizational Structures
1. Hierarchical structure:
This is the most common structure used by organizations. Organizations that use this
structure gather employees in groups and set one supervisory for each group to whom the
employees must report.
2. Matrix structure:
This structure group employees with the same skill set to work on different tasks.
3. Horizontal or flat structure:
This type of structure is commonly used by small organizations and startups.
8
Abdulrahman Alonaizan
Chief Business Continuity Officer
9. Organizational Structures
4. Network structure:
This structure is considered to be flexible and decentralized and is characterized by open
communication with teams and partners both internally and externally.
5. Division structure:
This can be useful for organizations that offer several products or services, or have several
working sites.
6. Line structure:
It is considered to be one of the simplest types of organizational structures.
7. Team-based structure:
This structure provides flexibility and can be beneficial especially to manufacturing
organizations that have several teams working to produce a product.
9
Abdulrahman Alonaizan
Chief Business Continuity Officer
10. Increasing Organizational Resilience
Increasing organizational resilience may be challenging due to the resources
needed for undertaking activities that enhance resilience.
Procedures for increasing organizational resilience include, but are not limited to:
Establishing a clear vision and specific objectives for enhancing resilience.
Involving all personal in the process of the organizational resilience improvement.
Obtaining expert advice.
Conducting drills or simulations to evaluate the level of resilience and identifying
opportunities for improvement.
10
Abdulrahman Alonaizan
Chief Business Continuity Officer
11. What Would be Possible Benchmark or
Measurements?
This can be done through the following:
1. Implementing the resiliency framework by regulators.
2. Certification:
The ISO22316 Organization Resilience.
There are some certification bodies who can offer training for both individual and
organization.
11
Abdulrahman Alonaizan
Chief Business Continuity Officer
12. CONTINUITY & RESILIENCE (CORE)
Abu Dhabi, United Arab Emirates
Mobile:+971 2 6594006,
966 54 858 5985, +971 50 5767804
www.coreconsulting.ae
Info@continuityandresilience.com