SlideShare a Scribd company logo

Building Organizational Resilience Presentation - ISSA Special Interest Group in Security Education and Awareness - March 18, 2015 - Bryan Strawser

Download as PPTX, PDF
Bryghtpath LLC
Bryghtpath LLC

"Building Organizational Resilience Amidst Global Uncertainty: An overview of business continuity and crisis management for today's global leaders." In this presentation, given before the ISSA Special Interest Group for Security Education and Awareness on March 18, 2015, Bryghtpath Principal Consultant and CEO Bryan Strawser provides a high-level overview of business continuity and crisis management. Specific areas of focus include professional standards, certification and accreditation, the ISO 22301 and ISO 27001 standards, the business continuity lifecycle, and a case study on applying these principles in a disaster situation experienced by a Minnesota corporation in 2013.

Business
1 of 25
Building organizational resilience amidst global uncertainty: An overview of business continuity and crisis management for today’s global leaders Bryan Strawser, MBCP, MBCI, CISSP, CEM Principal Consultant & CEO
Data Breaches Company Impacted People Sony Pictures 6,000 Sally Beauty 25,000 Neiman Marcus 1,100,000 Michaels Stores 3,000,000 Community Health Systems 4,500,000 PF Chang’s 7,000,000 Home Depot 56,000,000 Target 70,000,000 JP Morgan 76,000,000 Anthem 80,000,000 (still being evaluated) eBay 145,000,000 7 The Last 24 Months Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Global Standards Business Continuity • ISO 22301 (formerly BS25999) • NFPA 1600 • ASIS Business Continuity Management Standard • ASIS SPC.1: Organizational Resilience US Government • Federal Continuity Directives (FCD 1 / FCD 2) • Continuity Guidance Circulators (CGC 1 / CGC 2) 8 Business Continuity and Emergency Management Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
• Formerly BS25999 • Adopted globally in 2012 • Intersects with other ISO Standards – Ex: ISO 27001 • Establish and maintain a Business Continuity Management System • Accreditation • Certification – Implementer / Lead – Auditor / Lead 9 ISO 22301:2012 Societal Security – Business Continuity Management Systems Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Professional Certifications Business Continuity • Disaster Recovery Institute International – Associate Business Continuity Professional (ABCP) – Certified Business Continuity Professional (CBCP) – Master Business Continuity Professional (MBCP) • Business Continuity Institute – Member, Business Continuity Institute (MBCI) – Fellow, Business Continuity Institute (FBCI) Emergency Management • International Association of Emergency Managers – Associate Emergency Manager (AEM) – Certified Emergency Manager (CEM) 10 Business Continuity and Emergency Management Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Business Continuity Regulations United States • Federal Financial Institutions Examination Council (FFIEC) • Securities and Exchange Commission (SEC) • Financial Industry Regulatory Authority (FINRA) • Payment Card Industry Standard (PCI) 11 We’re from the government, we’re here to help… Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
12 Business Continuity Lifecycle ISO 22301 Business Continuity Management Lifecycle Business Impact Analysis & Risk Assessment Develop BC Strategies Establish & Implement BC Procedures Exercise, Testing, Maturing Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
13 Business Impact Analysis & Risk Assessment Identifying critical business functions & their risks Business Impact Analysis • What are the critical business functions at my company? • How long can they be disrupted? • How quickly can they be recovered today? • What is the impact from that disruption to my business? • BIA Methods Risk Assessment • What are the risks to these functions? • What are our top enterprise risks? • Risk Assessment Methods Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Specific actions to manage your risks and address your opportunities • Prepare your business for disruption • Develop Business Continuity Plans • Implement Business Continuity Solutions 14 Develop BC Strategies How can I recover my critical functions in the time period needed? Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Core Components of a BC Plan • Roles & Responsibilities • Activation process • Managing the immediate consequences • Communication plan • Recover prioritized activities • Media response • Process for standing down 15 Develop BC Strategies Business Continuity Plans Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
16 Establish & Implement BC Procedures What processes will I follow in a disruption? Specific defined processes for Business Continuity Examples: • Emergency preparedness • Governance • Activation Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
• All plans should be exercisesd at least annually: – Notification – Table Top – Recovery – Fully integrated • Disaster Recovery – Testing DR plans and strategies • Defined process for capturing lessons learned and applying to plans and strategies 17 Exercise, Testing, & Maturing How will I exercise and test my plans? Based on those results, how will I improve? Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Awareness Executive Leaders & Board Members • An understanding of risk across the organization • Broad, strategic overview of the program • Clear understanding of decision making rights and their roles • Metrics & program maturity Typical Employee • Emergency procedures • High-level understanding of business continuity Critical Function Leaders • Understanding of how function connects to the broader business strategically • Can describe dependencies on technologies and other functions • Takes ownership of planning process for critical function • Fully understands business continuity & disaster recovery plans for function 18 Connecting to Security Education and Awareness Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Crisis Management The active management of a disruption or escalating situation Items to consider: • Clear roles and responsibilities • Decision making rights pre-defined • Single source of truth for executive & board communication • Communication products / messages • Cross-functional coordination 19 A Component of Business Continuity Management Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Crisis Management Green Team Yellow Team Red Team 20 A Simple Framework Example Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
• “Disaster Recovery” generally pertains to the recoverability of IT systems – Applications – Infrastructure • Must be closely linked to business continuity capability • Should heavily utilize the BIA findings to influence a tiered recovery strategy 21 Disaster Recovery Business Continuity for IT Systems Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
• 2013 Target Corporation HQ Flood • Primarily impacted non- critical teams • Flexibility in planning and crisis management framework enabled response despite lack of function specific plans • Lessons Learned 22 Case Study When a drip becomes a flood… Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Advice on Building a BC Program • Keep things simple • Establish clear governance up-front • Pick a standard to guide your implementation • Select the leader of the program carefully – Professional certifications / subject matter expertise – Presence / Communication skills • Understand local, regional, country level risk • Bring in experts where needed to augment • This is not rocket science! 23 Practical tips for success Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
Contact Information Contact Bryan: Bryan Strawser Principal Consultant & CEO Phone: +1-612-235-6435 E-Mail: bryan@bryghtpath.com Twitter: @bryanstrawser Learn more about our services and how we can help you: Website: www.bryghtpath.com Twitter: @bryghtpath Facebook: facebook.com/bryghtpathllc 24 Bryghtpath LLC Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com Our Consulting Services Include: Business Continuity Crisis / Emergency Management Enterprise Risk Management Exercise Design & Facilitation Global Intelligence & Security ISO Training & Certification Travel Risk & Security
Building organizational resilience amidst global uncertainty: An overview of business continuity and crisis management for today’s global leaders Bryan Strawser, MBCP, MBCI, CISSP, CEM Principal Consultant & CEO

Recommended

Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...
Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...
Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...PECB
 
BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...
BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...
BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...Continuity and Resilience
 
Building organisational resilience
Building organisational resilienceBuilding organisational resilience
Building organisational resilienceAaron Gracey MA MSc PGCE FinstLM
 
Five Disciplines of Organizational Resilience
Five Disciplines of Organizational ResilienceFive Disciplines of Organizational Resilience
Five Disciplines of Organizational ResilienceMissionMode
 
Crisis Management Webinar - Core Consulting
Crisis Management Webinar - Core ConsultingCrisis Management Webinar - Core Consulting
Crisis Management Webinar - Core ConsultingCORE Consulting
 
Improving organizational resilience
Improving organizational resilienceImproving organizational resilience
Improving organizational resiliencesalmah natoon
 
What Is Corporate Resilience
What Is Corporate ResilienceWhat Is Corporate Resilience
What Is Corporate ResilienceBBRAES
 
BCI World 2014 presentation
BCI World 2014 presentationBCI World 2014 presentation
BCI World 2014 presentationAaron Gracey MA MSc PGCE FinstLM
 

Recommended

Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...
Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...
Organizational Resilience – How ISO 22316 Provides Guidance for Your Organiza...PECB
 
BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...
BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...
BS 11200 Crisis Management and BS 65000 Organizational Resilience and what is...Continuity and Resilience
 
Building organisational resilience
Building organisational resilienceBuilding organisational resilience
Building organisational resilienceAaron Gracey MA MSc PGCE FinstLM
 
Five Disciplines of Organizational Resilience
Five Disciplines of Organizational ResilienceFive Disciplines of Organizational Resilience
Five Disciplines of Organizational ResilienceMissionMode
 
Crisis Management Webinar - Core Consulting
Crisis Management Webinar - Core ConsultingCrisis Management Webinar - Core Consulting
Crisis Management Webinar - Core ConsultingCORE Consulting
 
Improving organizational resilience
Improving organizational resilienceImproving organizational resilience
Improving organizational resiliencesalmah natoon
 
What Is Corporate Resilience
What Is Corporate ResilienceWhat Is Corporate Resilience
What Is Corporate ResilienceBBRAES
 
BCI World 2014 presentation
BCI World 2014 presentationBCI World 2014 presentation
BCI World 2014 presentationAaron Gracey MA MSc PGCE FinstLM
 
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...BCM Institute
 
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...BCM Institute
 
Globals - Too Big to Govern?
Globals - Too Big to Govern?Globals - Too Big to Govern?
Globals - Too Big to Govern?Resolver Inc.
 
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...BCM Institute
 
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...TheBCI
 
Flaws in M&A Workshop
Flaws in M&A WorkshopFlaws in M&A Workshop
Flaws in M&A WorkshopSheena Tooke
 
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...BCM Institute
 
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB
 
Social Collaboration - A path to business value
Social Collaboration - A path to business valueSocial Collaboration - A path to business value
Social Collaboration - A path to business valueSIKM
 
ACHIEVING RESPONSIBLE SUPPLY CHAINS
ACHIEVING RESPONSIBLE SUPPLY CHAINSACHIEVING RESPONSIBLE SUPPLY CHAINS
ACHIEVING RESPONSIBLE SUPPLY CHAINSRCS Global
 
Michigan Bankers Association Best 2014 enterprise risk management ppt
Michigan Bankers Association Best 2014 enterprise risk management pptMichigan Bankers Association Best 2014 enterprise risk management ppt
Michigan Bankers Association Best 2014 enterprise risk management pptBrian T. O'Hara CISA, CISM, CRISC, CCSP, CISSP
 
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...BCM Institute
 
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sdBci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sdTheBCI
 
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...TheBCI
 
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...BCM Institute
 
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...TheBCI
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceResolver Inc.
 
Risk Managing Change
Risk Managing ChangeRisk Managing Change
Risk Managing ChangeSimonWills15
 
Pursuing Global Alignment of Risk Management Guidelines
Pursuing Global Alignment of Risk Management GuidelinesPursuing Global Alignment of Risk Management Guidelines
Pursuing Global Alignment of Risk Management GuidelinesInternational Federation of Accountants
 
Risk management models - Core Consulting
Risk management models - Core ConsultingRisk management models - Core Consulting
Risk management models - Core ConsultingCORE Consulting
 
Organizational change for sustainability
Organizational change for sustainabilityOrganizational change for sustainability
Organizational change for sustainabilityJustin Yuen
 
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...Antea Group
 

More Related Content

What's hot

The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...BCM Institute
 
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...BCM Institute
 
Globals - Too Big to Govern?
Globals - Too Big to Govern?Globals - Too Big to Govern?
Globals - Too Big to Govern?Resolver Inc.
 
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...BCM Institute
 
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...TheBCI
 
Flaws in M&A Workshop
Flaws in M&A WorkshopFlaws in M&A Workshop
Flaws in M&A WorkshopSheena Tooke
 
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...BCM Institute
 
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB
 
Social Collaboration - A path to business value
Social Collaboration - A path to business valueSocial Collaboration - A path to business value
Social Collaboration - A path to business valueSIKM
 
ACHIEVING RESPONSIBLE SUPPLY CHAINS
ACHIEVING RESPONSIBLE SUPPLY CHAINSACHIEVING RESPONSIBLE SUPPLY CHAINS
ACHIEVING RESPONSIBLE SUPPLY CHAINSRCS Global
 
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...BCM Institute
 
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sdBci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sdTheBCI
 
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...TheBCI
 
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...BCM Institute
 
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...TheBCI
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceResolver Inc.
 
Risk Managing Change
Risk Managing ChangeRisk Managing Change
Risk Managing ChangeSimonWills15
 
Risk management models - Core Consulting
Risk management models - Core ConsultingRisk management models - Core Consulting
Risk management models - Core ConsultingCORE Consulting
 

What's hot (20)

The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
The Evolving Role of BCM and its Importance in Any Industries by Dr Goh Moh H...
 
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
 
Globals - Too Big to Govern?
Globals - Too Big to Govern?Globals - Too Big to Govern?
Globals - Too Big to Govern?
 
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
Enterprise Risk Management and Business Continuity: How Can They Work Togethe...
 
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
Bci NeBe conf 2017 thought provoking - you cant manage crisis on your own v...
 
Flaws in M&A Workshop
Flaws in M&A WorkshopFlaws in M&A Workshop
Flaws in M&A Workshop
 
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
Experience Sharing - Risk Management, Crisis Management & BCM In An Education...
 
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
 
Social Collaboration - A path to business value
Social Collaboration - A path to business valueSocial Collaboration - A path to business value
Social Collaboration - A path to business value
 
ACHIEVING RESPONSIBLE SUPPLY CHAINS
ACHIEVING RESPONSIBLE SUPPLY CHAINSACHIEVING RESPONSIBLE SUPPLY CHAINS
ACHIEVING RESPONSIBLE SUPPLY CHAINS
 
Michigan Bankers Association Best 2014 enterprise risk management ppt
Michigan Bankers Association Best 2014 enterprise risk management pptMichigan Bankers Association Best 2014 enterprise risk management ppt
Michigan Bankers Association Best 2014 enterprise risk management ppt
 
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
Business Continuity Management in Healthcare by Dexter Chia, Director, GCOO's...
 
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sdBci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
Bci NeBe conf 2017 keynote - making sense of resilience - james crask - sd
 
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
Bci NeBe conf 2017 thought provoking - challenging the maturity of bcm v2 -...
 
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
Challenges, Opportunities and Trends for BCM Profession by Dr Goh Moh Heng, P...
 
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
Bci NeBe conf 2017 thought provoking - results of bci siemens survey on meg...
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and PerformanceEnterprise Risk Management - Aligning Risk with Strategy and Performance
Enterprise Risk Management - Aligning Risk with Strategy and Performance
 
Risk Managing Change
Risk Managing ChangeRisk Managing Change
Risk Managing Change
 
Pursuing Global Alignment of Risk Management Guidelines
Pursuing Global Alignment of Risk Management GuidelinesPursuing Global Alignment of Risk Management Guidelines
Pursuing Global Alignment of Risk Management Guidelines
 
Risk management models - Core Consulting
Risk management models - Core ConsultingRisk management models - Core Consulting
Risk management models - Core Consulting
 

Viewers also liked

Organizational change for sustainability
Organizational change for sustainabilityOrganizational change for sustainability
Organizational change for sustainabilityJustin Yuen
 
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...Antea Group
 
Resilience presentation
Resilience presentationResilience presentation
Resilience presentationJoe Krause
 
CCTV Camera Presentation
CCTV Camera PresentationCCTV Camera Presentation
CCTV Camera PresentationBasith JM
 

Viewers also liked (7)

Organizational change for sustainability
Organizational change for sustainabilityOrganizational change for sustainability
Organizational change for sustainability
 
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
Value of Integrating Air Regulatory Compliance and Air Pollution Control with...
 
Nurses day may 2016
Nurses day may 2016Nurses day may 2016
Nurses day may 2016
 
Resilience presentation
Resilience presentationResilience presentation
Resilience presentation
 
CCTV Camera Presentation
CCTV Camera PresentationCCTV Camera Presentation
CCTV Camera Presentation
 
Cctv presentation
Cctv presentationCctv presentation
Cctv presentation
 
PPT FOR SECURITY
PPT FOR SECURITYPPT FOR SECURITY
PPT FOR SECURITY
 

Similar to Building Organizational Resilience Presentation - ISSA Special Interest Group in Security Education and Awareness - March 18, 2015 - Bryan Strawser

A Program Management Approach to Business Continuity
A Program Management Approach to Business ContinuityA Program Management Approach to Business Continuity
A Program Management Approach to Business ContinuityBryghtpath LLC
 
WorldAtWorkConfernce_USBank_OS FINAL (no notes)
WorldAtWorkConfernce_USBank_OS FINAL (no notes)WorldAtWorkConfernce_USBank_OS FINAL (no notes)
WorldAtWorkConfernce_USBank_OS FINAL (no notes)Laura Roach
 
Business Continuity as a Career
Business Continuity as a CareerBusiness Continuity as a Career
Business Continuity as a CareerBonnie Canal
 
Assessing the Impact of a Disruption: Building an Effective Business Impact A...
Assessing the Impact of a Disruption: Building an Effective Business Impact A...Assessing the Impact of a Disruption: Building an Effective Business Impact A...
Assessing the Impact of a Disruption: Building an Effective Business Impact A...PECB
 
Business Continuity Management
Business Continuity ManagementBusiness Continuity Management
Business Continuity ManagementECC International
 
Critical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance ImplementationsCritical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance ImplementationsRachid Meziani, PhD, CGEIT, PMP
 
ThinkGRC Introduction to Business Continuity for Middle Management
ThinkGRC Introduction to Business Continuity for Middle ManagementThinkGRC Introduction to Business Continuity for Middle Management
ThinkGRC Introduction to Business Continuity for Middle ManagementThinkGRC
 
The secret of a successful Crisis Management & Continuity Plan
The secret of a successful Crisis Management & Continuity PlanThe secret of a successful Crisis Management & Continuity Plan
The secret of a successful Crisis Management & Continuity PlanPECB
 
Resus Advisory Profile - Resilience services Nov 15
Resus Advisory Profile - Resilience services Nov 15Resus Advisory Profile - Resilience services Nov 15
Resus Advisory Profile - Resilience services Nov 15David John Bollaert
 
How to Plan and Manage a BCM and IT DR Project
How to Plan and Manage a BCM and IT DR ProjectHow to Plan and Manage a BCM and IT DR Project
How to Plan and Manage a BCM and IT DR ProjectContinuity and Resilience
 
Globalization: Becoming a Global Business Continuity Leader
Globalization: Becoming a Global Business Continuity LeaderGlobalization: Becoming a Global Business Continuity Leader
Globalization: Becoming a Global Business Continuity LeaderBryghtpath LLC
 
Change Management Takes Change Management Webinar
Change Management Takes Change Management WebinarChange Management Takes Change Management Webinar
Change Management Takes Change Management WebinarTim Creasey
 
Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Continuity and Resilience
 
How to plan and manage a BCM and IT DR project
How to plan and manage a BCM and IT DR projectHow to plan and manage a BCM and IT DR project
How to plan and manage a BCM and IT DR projectCORE Consulting
 
HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT
HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT
HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT Continuity and Resilience
 
IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008ssusera19f45
 
[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...
[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...
[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...Biswadeep Ghosh Hazra
 
BCM Webinar presentation
BCM Webinar presentationBCM Webinar presentation
BCM Webinar presentationPrime Infoserv
 
360s Gone Wrong: How to Make Them More Effective
360s Gone Wrong: How to Make Them More Effective360s Gone Wrong: How to Make Them More Effective
360s Gone Wrong: How to Make Them More EffectiveQualtrics
 

Similar to Building Organizational Resilience Presentation - ISSA Special Interest Group in Security Education and Awareness - March 18, 2015 - Bryan Strawser (20)

A Program Management Approach to Business Continuity
A Program Management Approach to Business ContinuityA Program Management Approach to Business Continuity
A Program Management Approach to Business Continuity
 
WorldAtWorkConfernce_USBank_OS FINAL (no notes)
WorldAtWorkConfernce_USBank_OS FINAL (no notes)WorldAtWorkConfernce_USBank_OS FINAL (no notes)
WorldAtWorkConfernce_USBank_OS FINAL (no notes)
 
Business Continuity as a Career
Business Continuity as a CareerBusiness Continuity as a Career
Business Continuity as a Career
 
Assessing the Impact of a Disruption: Building an Effective Business Impact A...
Assessing the Impact of a Disruption: Building an Effective Business Impact A...Assessing the Impact of a Disruption: Building an Effective Business Impact A...
Assessing the Impact of a Disruption: Building an Effective Business Impact A...
 
Business Continuity Management
Business Continuity ManagementBusiness Continuity Management
Business Continuity Management
 
Critical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance ImplementationsCritical Success Factors (CSFs) for Effective IT Governance Implementations
Critical Success Factors (CSFs) for Effective IT Governance Implementations
 
ThinkGRC Introduction to Business Continuity for Middle Management
ThinkGRC Introduction to Business Continuity for Middle ManagementThinkGRC Introduction to Business Continuity for Middle Management
ThinkGRC Introduction to Business Continuity for Middle Management
 
The secret of a successful Crisis Management & Continuity Plan
The secret of a successful Crisis Management & Continuity PlanThe secret of a successful Crisis Management & Continuity Plan
The secret of a successful Crisis Management & Continuity Plan
 
Resus Advisory Profile - Resilience services Nov 15
Resus Advisory Profile - Resilience services Nov 15Resus Advisory Profile - Resilience services Nov 15
Resus Advisory Profile - Resilience services Nov 15
 
How to Plan and Manage a BCM and IT DR Project
How to Plan and Manage a BCM and IT DR ProjectHow to Plan and Manage a BCM and IT DR Project
How to Plan and Manage a BCM and IT DR Project
 
Globalization: Becoming a Global Business Continuity Leader
Globalization: Becoming a Global Business Continuity LeaderGlobalization: Becoming a Global Business Continuity Leader
Globalization: Becoming a Global Business Continuity Leader
 
Change Management Takes Change Management Webinar
Change Management Takes Change Management WebinarChange Management Takes Change Management Webinar
Change Management Takes Change Management Webinar
 
Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)Renewed focus of Business and Practitioners on BCM (in Asia)
Renewed focus of Business and Practitioners on BCM (in Asia)
 
How to plan and manage a BCM and IT DR project
How to plan and manage a BCM and IT DR projectHow to plan and manage a BCM and IT DR project
How to plan and manage a BCM and IT DR project
 
HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT
HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT
HOW TO PLAN AND MANAGE A BCM AND IT DR PROJECT
 
IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008IT Governance Presentation by omaha 2008
IT Governance Presentation by omaha 2008
 
Chris Gould - BCM case
Chris Gould - BCM caseChris Gould - BCM case
Chris Gould - BCM case
 
[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...
[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...
[Project] FRAMEWORK FOR SUPPORTING “BUSINESS PROCESS REENGINEERING “-BASED BU...
 
BCM Webinar presentation
BCM Webinar presentationBCM Webinar presentation
BCM Webinar presentation
 
360s Gone Wrong: How to Make Them More Effective
360s Gone Wrong: How to Make Them More Effective360s Gone Wrong: How to Make Them More Effective
360s Gone Wrong: How to Make Them More Effective
 

More from Bryghtpath LLC

Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017
Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017
Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017Bryghtpath LLC
 
Leading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLC
Leading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLCLeading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLC
Leading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLCBryghtpath LLC
 
Assessing the impact of a disruption: Building an effective business impact a...
Assessing the impact of a disruption: Building an effective business impact a...Assessing the impact of a disruption: Building an effective business impact a...
Assessing the impact of a disruption: Building an effective business impact a...Bryghtpath LLC
 
How to turn an incident into an opportunity for your business through effecti...
How to turn an incident into an opportunity for your business through effecti...How to turn an incident into an opportunity for your business through effecti...
How to turn an incident into an opportunity for your business through effecti...Bryghtpath LLC
 
Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...
Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...
Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...Bryghtpath LLC
 
Business Continuity & Crisis Management in the Cyberbreach Age
Business Continuity & Crisis Management in the Cyberbreach AgeBusiness Continuity & Crisis Management in the Cyberbreach Age
Business Continuity & Crisis Management in the Cyberbreach AgeBryghtpath LLC
 
When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...
When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...
When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...Bryghtpath LLC
 
ISO 21500: Generating Business Value through Strong Project Management
ISO 21500: Generating Business Value through Strong Project ManagementISO 21500: Generating Business Value through Strong Project Management
ISO 21500: Generating Business Value through Strong Project ManagementBryghtpath LLC
 

More from Bryghtpath LLC (8)

Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017
Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017
Bryghtpath LLC - Leading in an Active Shooter Situation - July 2017
 
Leading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLC
Leading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLCLeading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLC
Leading in an Active Shooter Situation by Bryan Strawser of Bryghtpath LLC
 
Assessing the impact of a disruption: Building an effective business impact a...
Assessing the impact of a disruption: Building an effective business impact a...Assessing the impact of a disruption: Building an effective business impact a...
Assessing the impact of a disruption: Building an effective business impact a...
 
How to turn an incident into an opportunity for your business through effecti...
How to turn an incident into an opportunity for your business through effecti...How to turn an incident into an opportunity for your business through effecti...
How to turn an incident into an opportunity for your business through effecti...
 
Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...
Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...
Rethinking Business Continuity: Applying ISO 22301 to improve resiliency, man...
 
Business Continuity & Crisis Management in the Cyberbreach Age
Business Continuity & Crisis Management in the Cyberbreach AgeBusiness Continuity & Crisis Management in the Cyberbreach Age
Business Continuity & Crisis Management in the Cyberbreach Age
 
When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...
When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...
When the $!@# hits the Fan - Bryan Strawser - Bryghtpath LLC - for PMI Minnes...
 
ISO 21500: Generating Business Value through Strong Project Management
ISO 21500: Generating Business Value through Strong Project ManagementISO 21500: Generating Business Value through Strong Project Management
ISO 21500: Generating Business Value through Strong Project Management
 

Recently uploaded

(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607dollysharma2066
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfRbc Rbcua
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationAnamaria Contreras
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCRashishs7044
 
8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR
8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR
8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCRashishs7044
 
Buy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy Verified Accounts
 
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCRashishs7044
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCRashishs7044
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03DallasHaselhorst
 
Guide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFGuide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFChandresh Chudasama
 
Market Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMarket Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMintel Group
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesKeppelCorporation
 
MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?Olivia Kresic
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchirictsugar
 
Investment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy CheruiyotInvestment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy Cheruiyotictsugar
 

Recently uploaded (20)

(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdf
 
Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement Presentation
 
Corporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information TechnologyCorporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information Technology
 
8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR8447779800, Low rate Call girls in Rohini Delhi NCR
8447779800, Low rate Call girls in Rohini Delhi NCR
 
8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR
8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR
8447779800, Low rate Call girls in Kotla Mubarakpur Delhi NCR
 
Buy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail Accounts
 
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03
 
Guide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDFGuide Complete Set of Residential Architectural Drawings PDF
Guide Complete Set of Residential Architectural Drawings PDF
 
Market Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMarket Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 Edition
 
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation Slides
 
MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
 
Enjoy ➥8448380779▻ Call Girls In Sector 18 Noida Escorts Delhi NCR
Enjoy ➥8448380779▻ Call Girls In Sector 18 Noida Escorts Delhi NCREnjoy ➥8448380779▻ Call Girls In Sector 18 Noida Escorts Delhi NCR
Enjoy ➥8448380779▻ Call Girls In Sector 18 Noida Escorts Delhi NCR
 
Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchir
 
Investment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy CheruiyotInvestment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy Cheruiyot
 

Building Organizational Resilience Presentation - ISSA Special Interest Group in Security Education and Awareness - March 18, 2015 - Bryan Strawser

  • 1. Building organizational resilience amidst global uncertainty: An overview of business continuity and crisis management for today’s global leaders Bryan Strawser, MBCP, MBCI, CISSP, CEM Principal Consultant & CEO
  • 2.
  • 3.
  • 4.
  • 5.
  • 6.
  • 7. Data Breaches Company Impacted People Sony Pictures 6,000 Sally Beauty 25,000 Neiman Marcus 1,100,000 Michaels Stores 3,000,000 Community Health Systems 4,500,000 PF Chang’s 7,000,000 Home Depot 56,000,000 Target 70,000,000 JP Morgan 76,000,000 Anthem 80,000,000 (still being evaluated) eBay 145,000,000 7 The Last 24 Months Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 8. Global Standards Business Continuity • ISO 22301 (formerly BS25999) • NFPA 1600 • ASIS Business Continuity Management Standard • ASIS SPC.1: Organizational Resilience US Government • Federal Continuity Directives (FCD 1 / FCD 2) • Continuity Guidance Circulators (CGC 1 / CGC 2) 8 Business Continuity and Emergency Management Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 9. • Formerly BS25999 • Adopted globally in 2012 • Intersects with other ISO Standards – Ex: ISO 27001 • Establish and maintain a Business Continuity Management System • Accreditation • Certification – Implementer / Lead – Auditor / Lead 9 ISO 22301:2012 Societal Security – Business Continuity Management Systems Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 10. Professional Certifications Business Continuity • Disaster Recovery Institute International – Associate Business Continuity Professional (ABCP) – Certified Business Continuity Professional (CBCP) – Master Business Continuity Professional (MBCP) • Business Continuity Institute – Member, Business Continuity Institute (MBCI) – Fellow, Business Continuity Institute (FBCI) Emergency Management • International Association of Emergency Managers – Associate Emergency Manager (AEM) – Certified Emergency Manager (CEM) 10 Business Continuity and Emergency Management Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 11. Business Continuity Regulations United States • Federal Financial Institutions Examination Council (FFIEC) • Securities and Exchange Commission (SEC) • Financial Industry Regulatory Authority (FINRA) • Payment Card Industry Standard (PCI) 11 We’re from the government, we’re here to help… Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 12. 12 Business Continuity Lifecycle ISO 22301 Business Continuity Management Lifecycle Business Impact Analysis & Risk Assessment Develop BC Strategies Establish & Implement BC Procedures Exercise, Testing, Maturing Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 13. 13 Business Impact Analysis & Risk Assessment Identifying critical business functions & their risks Business Impact Analysis • What are the critical business functions at my company? • How long can they be disrupted? • How quickly can they be recovered today? • What is the impact from that disruption to my business? • BIA Methods Risk Assessment • What are the risks to these functions? • What are our top enterprise risks? • Risk Assessment Methods Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 14. Specific actions to manage your risks and address your opportunities • Prepare your business for disruption • Develop Business Continuity Plans • Implement Business Continuity Solutions 14 Develop BC Strategies How can I recover my critical functions in the time period needed? Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 15. Core Components of a BC Plan • Roles & Responsibilities • Activation process • Managing the immediate consequences • Communication plan • Recover prioritized activities • Media response • Process for standing down 15 Develop BC Strategies Business Continuity Plans Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 16. 16 Establish & Implement BC Procedures What processes will I follow in a disruption? Specific defined processes for Business Continuity Examples: • Emergency preparedness • Governance • Activation Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 17. • All plans should be exercisesd at least annually: – Notification – Table Top – Recovery – Fully integrated • Disaster Recovery – Testing DR plans and strategies • Defined process for capturing lessons learned and applying to plans and strategies 17 Exercise, Testing, & Maturing How will I exercise and test my plans? Based on those results, how will I improve? Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 18. Awareness Executive Leaders & Board Members • An understanding of risk across the organization • Broad, strategic overview of the program • Clear understanding of decision making rights and their roles • Metrics & program maturity Typical Employee • Emergency procedures • High-level understanding of business continuity Critical Function Leaders • Understanding of how function connects to the broader business strategically • Can describe dependencies on technologies and other functions • Takes ownership of planning process for critical function • Fully understands business continuity & disaster recovery plans for function 18 Connecting to Security Education and Awareness Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 19. Crisis Management The active management of a disruption or escalating situation Items to consider: • Clear roles and responsibilities • Decision making rights pre-defined • Single source of truth for executive & board communication • Communication products / messages • Cross-functional coordination 19 A Component of Business Continuity Management Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 20. Crisis Management Green Team Yellow Team Red Team 20 A Simple Framework Example Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 21. • “Disaster Recovery” generally pertains to the recoverability of IT systems – Applications – Infrastructure • Must be closely linked to business continuity capability • Should heavily utilize the BIA findings to influence a tiered recovery strategy 21 Disaster Recovery Business Continuity for IT Systems Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 22. • 2013 Target Corporation HQ Flood • Primarily impacted non- critical teams • Flexibility in planning and crisis management framework enabled response despite lack of function specific plans • Lessons Learned 22 Case Study When a drip becomes a flood… Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 23. Advice on Building a BC Program • Keep things simple • Establish clear governance up-front • Pick a standard to guide your implementation • Select the leader of the program carefully – Professional certifications / subject matter expertise – Presence / Communication skills • Understand local, regional, country level risk • Bring in experts where needed to augment • This is not rocket science! 23 Practical tips for success Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com
  • 24. Contact Information Contact Bryan: Bryan Strawser Principal Consultant & CEO Phone: +1-612-235-6435 E-Mail: bryan@bryghtpath.com Twitter: @bryanstrawser Learn more about our services and how we can help you: Website: www.bryghtpath.com Twitter: @bryghtpath Facebook: facebook.com/bryghtpathllc 24 Bryghtpath LLC Copyright © 2015 by Bryghtpath LLC | bryghtpath.com | +1-612-235-6435 | bryan@bryghtpath.com Our Consulting Services Include: Business Continuity Crisis / Emergency Management Enterprise Risk Management Exercise Design & Facilitation Global Intelligence & Security ISO Training & Certification Travel Risk & Security
  • 25. Building organizational resilience amidst global uncertainty: An overview of business continuity and crisis management for today’s global leaders Bryan Strawser, MBCP, MBCI, CISSP, CEM Principal Consultant & CEO