This document provides an overview of business continuity planning. It discusses the importance of having a BCP, the key roles involved, and the annual BCP cycle. The annual cycle consists of four steps: 1) reviewing the existing plan, 2) exercising the plan, 3) updating the plan based on lessons learned, and 4) verifying the updated plan is accurate and compliant. Maintaining an effective BCP is critical because the majority of businesses that experience a major disruption and lack a BCP end up failing within a few years.
Presenter:
Ali Bin Mohammed AlMuwaijei
Chief Risk Manager, Municipality & Planning Dept-Ajman
Risk and Business Continuity Management
Enterprise Risk Management
A Proactive Approach to Business ContinuityDiana DePaola
Get to know why a well-planned and strategized business continuity management plan can help organizations from risks and threats such as natural disasters, currency disruptions, cyber-attacks and other potentially disastrous circumstances.
Business Continuity Management (BCM, BCP) Smaple (Animations don't work in Sl...Alexander Larsen
A presentation I delivered at the Institute of Risk Management (IRM) Conference in Dubai.... An introduction to Business Continuity (BCM), what it is, drivers for implementing it, the risks it helps mitigate, how to implement, ISO and BS standards,
Business continuity and disaster recovery are not the same but complement each other. Planning on BCP and DRP is necessary for all business. This slide contains information on how to achieve and maintain them.
IT-Centric Disaster Recovery & Business ContinuitySteve Susina
This presentation was delivered to the Business Resumption Planners Association of Chicago meeting on 3/11/2010.
IT leaders who assume responsibility for their firm's DR/BC efforts need to understand how to build a cross-organization strategy that transcends IT organizational boundaries. In the presentation, we discuss the need for IT leaders to reach across the aisles to work with Line-of-Business leaders, and present a six-step framework on how to accomplish a cross-business IT-centric strategy.
Best-in-Class Crisis Preparation: Maximize Readiness with the Four T’sMissionMode
As presented at DRJ Spring World 2015.
Presenter: Robert Edson, Vice President, MissionMode
While business continuity management as a discipline continues to develop rapidly, it’s clear that many companies worldwide are failing in terms of disaster readiness. There’s no doubt that business continuity management is complex, but there are things every company can do to speed up their BCM maturity curve.
In this presentation, Edson takes an in-depth look at common pitfalls as well as solutions to improve program effectiveness that any company can implement. He shares results from MissionMode’s Readiness Survey and experience gained working with MissionMode clients including Gap, Inc., Xcel Energy and others to illustrate how the right combination of teamwork, templates, testing and tools helps organizations enhance their business continuity programs.
Business Continuity Plan PowerPoint Presentation Slides SlideTeam
Presenting this set of slides with name - Business Continuity Plan Powerpoint Presentation Slides. This PPT deck displays twenty five slides with in depth research. Our topic oriented Business Continuity Plan Powerpoint Presentation Slides presentation deck is a helpful tool to plan, prepare, document and analyse the topic with a clear approach. We provide a ready to use deck with all sorts of relevant topics subtopics templates, charts and graphs, overviews, analysis templates. Outline all the important aspects without any hassle. It showcases of all kind of editable templates infographs for an inclusive and comprehensive Business Continuity Plan Powerpoint Presentation Slides presentation. Professionals, managers, individual and team involved in any company organization from any field can use them as per requirement.
Successful leaders and managers are always keen to expect the unexpected and plan for it. the More you plan is the less you react, and the less you react, the less you make mistakes.
Disruptions to your business can result in data risk, revenue loss, and Failure to deliver services
That’s why organizations need strong business continuity planning.
How to integrate BCMS with Organization's culture?Abdul Naseer
Business Continuity Management and Crisis Management needs to be an integral part of corporate governance. The process should start with defining Business Continuity objectives, scope of BCMS and then building a proper governance.
Presenter:
Ali Bin Mohammed AlMuwaijei
Chief Risk Manager, Municipality & Planning Dept-Ajman
Risk and Business Continuity Management
Enterprise Risk Management
A Proactive Approach to Business ContinuityDiana DePaola
Get to know why a well-planned and strategized business continuity management plan can help organizations from risks and threats such as natural disasters, currency disruptions, cyber-attacks and other potentially disastrous circumstances.
Business Continuity Management (BCM, BCP) Smaple (Animations don't work in Sl...Alexander Larsen
A presentation I delivered at the Institute of Risk Management (IRM) Conference in Dubai.... An introduction to Business Continuity (BCM), what it is, drivers for implementing it, the risks it helps mitigate, how to implement, ISO and BS standards,
Business continuity and disaster recovery are not the same but complement each other. Planning on BCP and DRP is necessary for all business. This slide contains information on how to achieve and maintain them.
IT-Centric Disaster Recovery & Business ContinuitySteve Susina
This presentation was delivered to the Business Resumption Planners Association of Chicago meeting on 3/11/2010.
IT leaders who assume responsibility for their firm's DR/BC efforts need to understand how to build a cross-organization strategy that transcends IT organizational boundaries. In the presentation, we discuss the need for IT leaders to reach across the aisles to work with Line-of-Business leaders, and present a six-step framework on how to accomplish a cross-business IT-centric strategy.
Best-in-Class Crisis Preparation: Maximize Readiness with the Four T’sMissionMode
As presented at DRJ Spring World 2015.
Presenter: Robert Edson, Vice President, MissionMode
While business continuity management as a discipline continues to develop rapidly, it’s clear that many companies worldwide are failing in terms of disaster readiness. There’s no doubt that business continuity management is complex, but there are things every company can do to speed up their BCM maturity curve.
In this presentation, Edson takes an in-depth look at common pitfalls as well as solutions to improve program effectiveness that any company can implement. He shares results from MissionMode’s Readiness Survey and experience gained working with MissionMode clients including Gap, Inc., Xcel Energy and others to illustrate how the right combination of teamwork, templates, testing and tools helps organizations enhance their business continuity programs.
Business Continuity Plan PowerPoint Presentation Slides SlideTeam
Presenting this set of slides with name - Business Continuity Plan Powerpoint Presentation Slides. This PPT deck displays twenty five slides with in depth research. Our topic oriented Business Continuity Plan Powerpoint Presentation Slides presentation deck is a helpful tool to plan, prepare, document and analyse the topic with a clear approach. We provide a ready to use deck with all sorts of relevant topics subtopics templates, charts and graphs, overviews, analysis templates. Outline all the important aspects without any hassle. It showcases of all kind of editable templates infographs for an inclusive and comprehensive Business Continuity Plan Powerpoint Presentation Slides presentation. Professionals, managers, individual and team involved in any company organization from any field can use them as per requirement.
Successful leaders and managers are always keen to expect the unexpected and plan for it. the More you plan is the less you react, and the less you react, the less you make mistakes.
Disruptions to your business can result in data risk, revenue loss, and Failure to deliver services
That’s why organizations need strong business continuity planning.
How to integrate BCMS with Organization's culture?Abdul Naseer
Business Continuity Management and Crisis Management needs to be an integral part of corporate governance. The process should start with defining Business Continuity objectives, scope of BCMS and then building a proper governance.
Strategy Implementation for Institutional Services Department of PANELCO IIIJo Balucanag - Bitonio
Institutional Services Department: functions and responsibilities, organizational structure, KRAs, strategy implentation process, long term plan, medium term and short term, programs and projects
Japan & North Asia Focused Accounting, Finance, BPO and HR SolutionsHoward Ichiro Lim
We offer strategic tailored solutions for small-to-medium sized businesses to larger companies handling their total Back Office needs in Finance, Accounting, Tax & Payroll, and HR. Additionally, we provide higher-level strategic consulting in the areas of Finance, M&A, Structured Deals and other areas.
Our niche and core competency is "Asia". Our connections run deep in Japan, Korea, China, Singapore and Hong Kong and we`re able to help our clients in multiple language formats with a keen understanding of the regional requirements of each country.
Strategy Implementation of Financial and General Services Development (FGSD) jo bitonio
Electric Cooperative; Strategic Implementation; Framework for Strategic Implementation; Structure and Governance; Role and Importance of Financial Management;Cash Budget and Its Importance to the Role of Management
Resource Management Maturity - Does Your Resource Management Practice Work Fo...Unanet
How mature is YOUR resource management practice?
Only 25% of respondents in our most recent GAUGE survey said they have reached a “Very Mature” level of resource management practice.
This means that the vast majority of firms just like yours have a lot of improvements that can be made.
Download the slides to take a look at how Nalas transformed their resource management practice.This is a great presentation, no matter if you think you are managing your resources really well, or if you could make some improvements.
You will learn:
*Where you fall on the resource management maturity scale (level 1-5)
*What a practical deployment of an enterprise resource management practice looks like from Nalas
*How you can move up the maturity scale
To learn more, visit www.unanet.com
Horngren’s Cost Accounting A Managerial Emphasis, Canadian 9th edition soluti...ssuserf63bd7
https://qidiantiku.com/solution-manual-for-horngrens-cost-accounting-a-managerial-emphasis-canadian-9th-edition-by-srikant-m-datar.shtml
Full download please contact u84757@protonmail.com or qidiantiku.com
1. Business Continuity Planning –
Preparing Your Organization
Nicholas De Laurentis, CRM, IGP
nick.delaurentis.gmkj@statefarm.com
1
2. Objectives
• Understand the importance of Business Continuity
Planning
• Know basic terms used and roles involved in
Business Continuity Planning
• Understand the steps and relationship of initial
Business Continuity Planning and continuous
review and maintenance
2
5. • An information governance program shall be
constructed to ensure a reasonable level of
protection to records and information that are
private, confidential, privileged, secret,
classified, essential to business continuity, or
that otherwise require protection.
Protection
• An organization shall maintain records and
information in a manner that ensures timely,
efficient, and accurate retrieval of needed
information.
Availability
5
6. DR is to BC as RIM is to IG
• Business Continuity is the entire process of planning
how to recover from a disaster or significant
interruption to normal business operations.
• We regard this process as developing plans and
procedures in advance of an event that would allow our
critical business functions to continue to operate at
acceptable levels.
Business
Continuity
• The process, policies and procedures that are related
to preparing for recovery or continuation of technology
infrastructure which are vital to an organization after a
natural or human-induced disaster.
• Focus is on recovering IT capabilities, processes, and
services.
Disaster
Recovery
6
7. Importance of Business
Continuity Planning
7
70% of businesses involved in a
major fire fail within 3 years (Chubb)
One out of two businesses never return to the
marketplace following a major disaster (AXA)
Within 2 years after Hurricane Andrew in Florida
(1992), 80% of affected companies that lacked a
BCP went out of business (FEMA)
9. Why is BCP Important?
Board of Director Expectations
• We have expectations placed on us by the Board of Directors.
Customer Expectations
• In order for us to meet our mission statement of helping our
customers manage the risks of everyday life, recover from the un-
expected and realize their dreams, we need to have Business
Continuity Plans (BCP) in place so that we can be available in their
time of need.
Regulatory Requirements
• As an Insurance Company and Financial Institution, we have
regulatory requirements with the Office of the Comptroller of the
Currency (OCC), Department of Insurance (DOI) as well as other
regulatory bodies.
9
10. FFEIC BCP Objectives
The business continuity planning process should include the recovery,
resumption, and maintenance of all aspects of the business, not
just recovery of the technology components;
Business continuity planning involves the development of an
enterprise-wide BCP and the prioritization of business objectives
and critical operations that are essential for recovery;
Business continuity planning includes the integration of the
institution's role in financial markets;
Business continuity planning should include regular updates to the
BCP based on changes in business processes, audit
recommendations, and lessons learned from testing; and
Business continuity planning represents a cyclical, process-oriented
approach that includes a business impact analysis (BIA), a risk
assessment, risk management, and risk monitoring and testing.
10
11. FFEIC BCP Process
•BIA
•Threat Scenarios
•Analyze Threat Impact
•Prioritizing Disruptions
•GAP Analysis vs.
Policies & Procedures
•BIA and RA
•Specific Steps
•Flexible to Respond
•Various Threats
•Minimize Disruptions
•Prioritization and
Depend. of Busn.
Process
•Potential Impact of
Disruptions
•Leg/Reg Requirements
•Est. Downtime &
Acceptable Loss
•RTOs, RPOs, Crit. Path
•BIA, RA, RM Testing
•Enterprise-wide Testing
Program
•Assign Roles &
Responsibilities
• Annual Test/Exercise
•Evaluate by Leadership
& Independent Party
Risk
Monitoring
and Testing
Business
Impact
Assessment
Risk
Assessment
Risk
Management
11
14. Key Roles in BCP
Enterprise
Business
Continuity
Communicates
strategic decisions to
Department BRCs
Provide process and
tool training for BUTLs
and BRCs
Provide Exercise
Assistance
Business
Recovery
Coordinator
(BRC)
BRCs are located in
the Field and in each
Corporate Dept to
coordinate/communica
te activities associated
with BCP
Corporate BRCs are
responsible for a
specific Dept, while
BRCs in the Field are
responsible for a
particular location
Business Unit
Team Leader
(BUTL)
BUTLs are responsible
for maintenance/
update of Business
Unit BCP, periodic
plan exercises, and
execution of plan at
time of disaster
BUTLs are also known
as plan owners
14
16. 0. Plan Development
The goal of business continuity planning is to reduce the impact of any
disruptive event to a manageable level. Plans are developed to:
• Organize recovery of business units and/or processes.
• Establish team leadership responsibilities and design team structures.
• Document key information for the plan, including call trees, recovery
procedures, work area requirements and prioritization, vital records, key
contacts, etc.
Each BRC is responsible for ensuring that all BCPs are in place and current.
Continued plan development is critical for plans to be effective. The required
annual review of the BCP must be completed within a window and consists of:
1. Plan Review
2. Plan Exercise
3. Plan Update
4. Plan Verification 16
17. 1. Plan Review
1. Review the roles and responsibilities of a BRC or BUTL
and the Business Continuity Annual Plan Review process.
2. Read through a printed copy of your plan, or navigate
through each section in BCP tool used. Make note of any
information currently contained in the plan that needs to
be verified, updated, or removed, as well as any
information that must be added.
3. If your plan encompasses multiple functional areas,
consider contacting subject matter experts in each of
those areas to ensure the plan adequately addresses their
recovery needs. If necessary, gather additional material
for those areas and incorporate the information into your
plan.
17
18. 2. Plan Exercise
Some of the objectives of the Plan Exercise are:
• Evaluate the recovery procedures to ensure accuracy.
• Verify the ability of recovery teams to activate their plans and recover their
critical functions.
• Identify cross-functional interdependencies with other business units.
• Identify plan deficiencies and document information changes that require
plan modification.
• Evaluate whether recovery plans have been properly maintained and
updated to reflect actual recovery needs.
Annual exercises are performed to include all associates who have recovery
responsibilities under the BCP. Each BRC should establish an exercise cycle
that increases in scope and complexity over time.
18
Table Top
Walk
Through
Mock
Exercise
IT DR
Exercise
Actual
Event
19. 3. Plan Updates
• Based on changes identified during the annual plan review
and/or exercise process, the BUTL updates the BCP and
any related documentation in the plan.
• Updates to vital records, contact information, documented
procedures, equipment needs, skillset requirements,
vendor information, hardware and software requirements,
19
20. 4. Plan Verification
• Plan Verification is the final phase of the business
continuity planning process. This ensures business
continuity plans are accurate and compliant with company
standards.
• Each business unit is required to submit review verification
documentation within 3 months from the date each
business unit plan expires. Each plan must be reviewed in
terms of accurate content, some level of exercise is
performed, and updates are made to the plan based upon
the plan review and exercise discoveries.
20
21. Additional Resources
• Federal Financial Institutions Examination Council
(FFIEC) IT Examination Handbook -
http://ithandbook.ffiec.gov/
• Federal Emergency Management Agency (FEMA) -
http://www.fema.gov/media-library/assets/documents/89510
21
Get an idea of the makeup of the audience today in terms of regulations and needs.
Would not be doing my profession justice if I did not draw the parallel between BCP and the Principles.
Used interchangeably, but are different in scope and authority.
Really good BCP/DR presos feature awesome photos to demonstrate the damage.
Federal Financial Institutions Examination Council
Business Continuity Planning
IT Examination Handbook
This booklet provides guidance to assist examiners in evaluating financial institution and service provider risk management processes to ensure the availability of critical financial services. This booklet was also designed to provide helpful guidance to financial institutions regarding the implementation of their business continuity planning processes.
Other Policies, Standards and Processes
Security Standards;
Project Management;
Change Control Policies;
Data Synchronization Procedures;
Crises Management;
Incident Response;
Remote Access;
Employee Training;
Notification Standards;
Insurance; and
Government and Community.
Tabletop Exercise
Process: Line by line read of the plan with no scenario
Walkthrough (Action Taken) Exercise
Process: Plans owner and team member discussion of business impact and line-by-line read through of plan
Scenario (What-If) Exercise
Process: Multi -Team Member discussion of scenario of business impact and line-by-Line read of plan with scenario applied.
IT Disaster Recovery Exercise
Process: Simulation of scenario in a controlled environment to test technical recovery/verification procedures for production technology.
Unannounced - Actual Event
Process: Activate a BCP due to an actual event.
Key Information
Contact info for entire team and Key Contacts (business partners, critical vendors, dependencies)
Identification of employees that support essential processes
Critical documentation to assist with recovery
Identification and location of vital records
Unique Equipment/software requirements
Manual workaround procedures
Technology recovery/verification/check-out procedures
Work area prioritization of employees
Dependencies (Internet, intranet, vendors, business partners, etc.)