SlideShare a Scribd company logo

BCM Continuous improvement - Audit & Assessment

Parag Deodhar
Parag Deodhar

The document discusses business continuity management (BCM) and the importance of metrics, audits, and testing. It states that metrics are needed to measure maturity, audits internally and externally help increase awareness and oversight, and testing plans according to success criteria finds areas for improvement. All BCM should follow the Plan-Do-Check-Act model for continuous growth and be assessed based on objectives, context, and best practices/standards.

1 of 7
Parag Deodhar Chief Risk Officer Bharti AXA General Insurance
 People, their contact details, their roles,  Partners, service providers , p  Regulations B i Business processes  IT systems y  Passwords  Levels of risk and appetite acceptance appetite, levels 27-09-2012 PARAG DEODHAR 2
 We cannot improve what we cannot measure  Metrics are important to assess the level of maturity  Performance evaluation is important – thr testing and thru audit 27-09-2012 PARAG DEODHAR 3
 All ISO Standards follow P D C A for P.D.C.A. continuous improvement 27-09-2012 PARAG DEODHAR 4
 Audit should be taken positively  Self  Internal  External – ISO Regulatory ISO,  Helps instill rigor in the BCM program  Increases employee awareness and management oversight  Provides unbiased and a birds eye view of the program maturity  Sh ld b assessed against Should be d i t  Objectives of the BCM program  In the business context  B t practices and standards Best ti d t d d ○ ISO 22301, 27000, ○ ISACA – COBIT 27-09-2012 PARAG DEODHAR 5
 Business objectives B i bj ti  Business Impact Analysis  RPO/RTO  Regulatory Requirements  Integration with Security Risk Management Security,  BCM Organization, roles and responsibilities  Plan coverage  Plan Testing  Test coverage  Success Criteria  Plan improvement based on test results!!! 27-09-2012 PARAG DEODHAR 6
BCM Continuous improvement - Audit & Assessment

Recommended

Internal Audit in Banks-A Need for Continuous Improvement
Internal Audit in Banks-A Need for Continuous ImprovementInternal Audit in Banks-A Need for Continuous Improvement
Internal Audit in Banks-A Need for Continuous Improvement
sanjaypradhan32
 
Positioning Internal Audit for the Future
Positioning Internal Audit for the FuturePositioning Internal Audit for the Future
Positioning Internal Audit for the Future
CaseWare IDEA
 
Nature
NatureNature
NatureLida Petrovici
 
FY 2012 Consolidated Results (March 15, 2013)
FY 2012 Consolidated Results (March 15, 2013)FY 2012 Consolidated Results (March 15, 2013)
FY 2012 Consolidated Results (March 15, 2013)Terna SpA
 
Open teacher education
Open teacher educationOpen teacher education
Open teacher educationDavid Geelan
 
1Q 2012 Consolidated Results (May 15, 2012)
1Q 2012 Consolidated Results (May 15, 2012) 1Q 2012 Consolidated Results (May 15, 2012)
1Q 2012 Consolidated Results (May 15, 2012) Terna SpA
 
Right time right place restructure presentation
Right time right place restructure presentationRight time right place restructure presentation
Right time right place restructure presentationmevan1sc
 
P R O V E R B I O C I N E S E129
P R O V E R B I O C I N E S E129P R O V E R B I O C I N E S E129
P R O V E R B I O C I N E S E129Roberto Traetta
 

Recommended

Internal Audit in Banks-A Need for Continuous Improvement
Internal Audit in Banks-A Need for Continuous ImprovementInternal Audit in Banks-A Need for Continuous Improvement
Internal Audit in Banks-A Need for Continuous Improvement
sanjaypradhan32
 
Positioning Internal Audit for the Future
Positioning Internal Audit for the FuturePositioning Internal Audit for the Future
Positioning Internal Audit for the Future
CaseWare IDEA
 
Nature
NatureNature
NatureLida Petrovici
 
FY 2012 Consolidated Results (March 15, 2013)
FY 2012 Consolidated Results (March 15, 2013)FY 2012 Consolidated Results (March 15, 2013)
FY 2012 Consolidated Results (March 15, 2013)Terna SpA
 
Open teacher education
Open teacher educationOpen teacher education
Open teacher educationDavid Geelan
 
1Q 2012 Consolidated Results (May 15, 2012)
1Q 2012 Consolidated Results (May 15, 2012) 1Q 2012 Consolidated Results (May 15, 2012)
1Q 2012 Consolidated Results (May 15, 2012) Terna SpA
 
Right time right place restructure presentation
Right time right place restructure presentationRight time right place restructure presentation
Right time right place restructure presentationmevan1sc
 
P R O V E R B I O C I N E S E129
P R O V E R B I O C I N E S E129P R O V E R B I O C I N E S E129
P R O V E R B I O C I N E S E129Roberto Traetta
 
รถทัวร์ในประเทศไทย
รถทัวร์ในประเทศไทยรถทัวร์ในประเทศไทย
รถทัวร์ในประเทศไทย
สมชาย ทุมอาริยะ
 
Open source พื้นฐานที่ควรมี
Open source พื้นฐานที่ควรมีOpen source พื้นฐานที่ควรมี
Open source พื้นฐานที่ควรมี
สมชาย ทุมอาริยะ
 
Library
LibraryLibrary
LibraryNEERAJ SRIVASTAVA
 
Testing 4
Testing 4Testing 4
Testing 4
rohitnair8
 
What we do in CASA UCL
What we do in CASA UCLWhat we do in CASA UCL
What we do in CASA UCL
Albert Chen
 
Mobilediagnosis project where…..
Mobilediagnosis project where….. Mobilediagnosis project where…..
Mobilediagnosis project where….. MobileDiagnosis Non Profit Association
 
Hoe sociaal is sociale media
Hoe sociaal is sociale mediaHoe sociaal is sociale media
Hoe sociaal is sociale media
i-discover
 
What is science
What is scienceWhat is science
What is science
David Geelan
 
Happier teams by cesario ramos and pascal dufour
Happier teams by cesario ramos and pascal dufourHappier teams by cesario ramos and pascal dufour
Happier teams by cesario ramos and pascal dufour
Pascal Dufour
 
May 2012 - SEO Tips
May 2012 - SEO TipsMay 2012 - SEO Tips
May 2012 - SEO Tips
Leif Clarke
 
Think different visualization tools for testers StarEast 2013 pascaldufour
Think different visualization tools for testers StarEast 2013 pascaldufourThink different visualization tools for testers StarEast 2013 pascaldufour
Think different visualization tools for testers StarEast 2013 pascaldufour
Pascal Dufour
 
Parle-G campaign- The future genius
Parle-G campaign- The future geniusParle-G campaign- The future genius
Parle-G campaign- The future genius
rajeev227
 
Intro to MUI and variations in SharePoint 2010
Intro to MUI and variations in SharePoint 2010Intro to MUI and variations in SharePoint 2010
Intro to MUI and variations in SharePoint 2010Joris Poelmans
 
Ddf presents4.ppt
Ddf presents4.pptDdf presents4.ppt
Ddf presents4.ppttichnak
 
Garbage white
Garbage whiteGarbage white
Garbage whiteAlessio Cuccu
 
Science, technology and understanding
Science, technology and understandingScience, technology and understanding
Science, technology and understandingDavid Geelan
 
Business Continuity and Information Security- An Excellent Fit!
Business Continuity and Information Security- An Excellent Fit!Business Continuity and Information Security- An Excellent Fit!
Business Continuity and Information Security- An Excellent Fit!
Continuity and Resilience
 
Free CAPM® Exam Sample Question
Free CAPM® Exam Sample QuestionFree CAPM® Exam Sample Question
Free CAPM® Exam Sample Question
OSP International LLC
 
Streelbridge Presentation (Lf 072810)
Streelbridge Presentation (Lf 072810)Streelbridge Presentation (Lf 072810)
Streelbridge Presentation (Lf 072810)
dniknejad
 
Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour... Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour...
Mart Rovers
 
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Lviv Startup Club
 
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger
 

More Related Content

Viewers also liked

รถทัวร์ในประเทศไทย
รถทัวร์ในประเทศไทยรถทัวร์ในประเทศไทย
รถทัวร์ในประเทศไทย
สมชาย ทุมอาริยะ
 
Open source พื้นฐานที่ควรมี
Open source พื้นฐานที่ควรมีOpen source พื้นฐานที่ควรมี
Open source พื้นฐานที่ควรมี
สมชาย ทุมอาริยะ
 
Testing 4
Testing 4Testing 4
Testing 4
rohitnair8
 
What we do in CASA UCL
What we do in CASA UCLWhat we do in CASA UCL
What we do in CASA UCL
Albert Chen
 
Hoe sociaal is sociale media
Hoe sociaal is sociale mediaHoe sociaal is sociale media
Hoe sociaal is sociale media
i-discover
 
What is science
What is scienceWhat is science
What is science
David Geelan
 
Happier teams by cesario ramos and pascal dufour
Happier teams by cesario ramos and pascal dufourHappier teams by cesario ramos and pascal dufour
Happier teams by cesario ramos and pascal dufour
Pascal Dufour
 
May 2012 - SEO Tips
May 2012 - SEO TipsMay 2012 - SEO Tips
May 2012 - SEO Tips
Leif Clarke
 
Think different visualization tools for testers StarEast 2013 pascaldufour
Think different visualization tools for testers StarEast 2013 pascaldufourThink different visualization tools for testers StarEast 2013 pascaldufour
Think different visualization tools for testers StarEast 2013 pascaldufour
Pascal Dufour
 
Parle-G campaign- The future genius
Parle-G campaign- The future geniusParle-G campaign- The future genius
Parle-G campaign- The future genius
rajeev227
 
Intro to MUI and variations in SharePoint 2010
Intro to MUI and variations in SharePoint 2010Intro to MUI and variations in SharePoint 2010
Intro to MUI and variations in SharePoint 2010Joris Poelmans
 
Ddf presents4.ppt
Ddf presents4.pptDdf presents4.ppt
Ddf presents4.ppttichnak
 
Science, technology and understanding
Science, technology and understandingScience, technology and understanding
Science, technology and understandingDavid Geelan
 

Viewers also liked (16)

รถทัวร์ในประเทศไทย
รถทัวร์ในประเทศไทยรถทัวร์ในประเทศไทย
รถทัวร์ในประเทศไทย
 
Open source พื้นฐานที่ควรมี
Open source พื้นฐานที่ควรมีOpen source พื้นฐานที่ควรมี
Open source พื้นฐานที่ควรมี
 
Library
LibraryLibrary
Library
 
Testing 4
Testing 4Testing 4
Testing 4
 
What we do in CASA UCL
What we do in CASA UCLWhat we do in CASA UCL
What we do in CASA UCL
 
Mobilediagnosis project where…..
Mobilediagnosis project where….. Mobilediagnosis project where…..
Mobilediagnosis project where…..
 
Hoe sociaal is sociale media
Hoe sociaal is sociale mediaHoe sociaal is sociale media
Hoe sociaal is sociale media
 
What is science
What is scienceWhat is science
What is science
 
Happier teams by cesario ramos and pascal dufour
Happier teams by cesario ramos and pascal dufourHappier teams by cesario ramos and pascal dufour
Happier teams by cesario ramos and pascal dufour
 
May 2012 - SEO Tips
May 2012 - SEO TipsMay 2012 - SEO Tips
May 2012 - SEO Tips
 
Think different visualization tools for testers StarEast 2013 pascaldufour
Think different visualization tools for testers StarEast 2013 pascaldufourThink different visualization tools for testers StarEast 2013 pascaldufour
Think different visualization tools for testers StarEast 2013 pascaldufour
 
Parle-G campaign- The future genius
Parle-G campaign- The future geniusParle-G campaign- The future genius
Parle-G campaign- The future genius
 
Intro to MUI and variations in SharePoint 2010
Intro to MUI and variations in SharePoint 2010Intro to MUI and variations in SharePoint 2010
Intro to MUI and variations in SharePoint 2010
 
Ddf presents4.ppt
Ddf presents4.pptDdf presents4.ppt
Ddf presents4.ppt
 
Garbage white
Garbage whiteGarbage white
Garbage white
 
Science, technology and understanding
Science, technology and understandingScience, technology and understanding
Science, technology and understanding
 

Similar to BCM Continuous improvement - Audit & Assessment

Business Continuity and Information Security- An Excellent Fit!
Business Continuity and Information Security- An Excellent Fit!Business Continuity and Information Security- An Excellent Fit!
Business Continuity and Information Security- An Excellent Fit!
Continuity and Resilience
 
Free CAPM® Exam Sample Question
Free CAPM® Exam Sample QuestionFree CAPM® Exam Sample Question
Free CAPM® Exam Sample Question
OSP International LLC
 
Streelbridge Presentation (Lf 072810)
Streelbridge Presentation (Lf 072810)Streelbridge Presentation (Lf 072810)
Streelbridge Presentation (Lf 072810)
dniknejad
 
Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour... Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour...
Mart Rovers
 
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Lviv Startup Club
 
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger
 
Audit 22 Feb'2023.pdf
Audit 22 Feb'2023.pdfAudit 22 Feb'2023.pdf
Audit 22 Feb'2023.pdf
Faysal4
 
Free CAPM® Exam Sample Question
Free CAPM® Exam Sample QuestionFree CAPM® Exam Sample Question
Free CAPM® Exam Sample Question
OSP International LLC
 
AAC Training Presentation 2009
AAC Training Presentation 2009AAC Training Presentation 2009
AAC Training Presentation 2009
Michelle Hoskin
 
The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...
The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...
The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...
Continuity and Resilience
 
raytheonInvestor Conference Presentation - Morning Session
raytheonInvestor Conference Presentation - Morning SessionraytheonInvestor Conference Presentation - Morning Session
raytheonInvestor Conference Presentation - Morning Sessionfinance12
 
Managing an ITIL SaaS implementation IT program
Managing an ITIL SaaS implementation IT programManaging an ITIL SaaS implementation IT program
Managing an ITIL SaaS implementation IT programGottfried Rudorfer
 
ZED Awareness PPT_27052022.pptx
ZED Awareness PPT_27052022.pptxZED Awareness PPT_27052022.pptx
ZED Awareness PPT_27052022.pptx
GOPALSINHA8
 
20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...
20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...
20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...
Craeg Strong
 
Jahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptx
Jahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptxJahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptx
Jahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptx
SudhanshuTripathi64
 
Balanced Scorecard Strategy Map
Balanced Scorecard Strategy Map Balanced Scorecard Strategy Map
Balanced Scorecard Strategy Map
Demand Metric
 
Pmi rmp handbook
Pmi rmp handbookPmi rmp handbook
Pmi rmp handbook
Joseph George
 
Webinar | Asset Management Health Check
Webinar | Asset Management Health CheckWebinar | Asset Management Health Check
Webinar | Asset Management Health Check
Stork
 

Similar to BCM Continuous improvement - Audit & Assessment (20)

Business Continuity and Information Security- An Excellent Fit!
Business Continuity and Information Security- An Excellent Fit!Business Continuity and Information Security- An Excellent Fit!
Business Continuity and Information Security- An Excellent Fit!
 
Free CAPM® Exam Sample Question
Free CAPM® Exam Sample QuestionFree CAPM® Exam Sample Question
Free CAPM® Exam Sample Question
 
Streelbridge Presentation (Lf 072810)
Streelbridge Presentation (Lf 072810)Streelbridge Presentation (Lf 072810)
Streelbridge Presentation (Lf 072810)
 
Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour... Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour...
 
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
Serhii Podlevskyi: PMO implementation - benefits and constraints (UA)
 
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
Nicolas Schobinger | Business Transformation Academy - Post Merger Integratio...
 
Audit 22 Feb'2023.pdf
Audit 22 Feb'2023.pdfAudit 22 Feb'2023.pdf
Audit 22 Feb'2023.pdf
 
Free CAPM® Exam Sample Question
Free CAPM® Exam Sample QuestionFree CAPM® Exam Sample Question
Free CAPM® Exam Sample Question
 
Asim ismail cv
Asim ismail cvAsim ismail cv
Asim ismail cv
 
AAC Training Presentation 2009
AAC Training Presentation 2009AAC Training Presentation 2009
AAC Training Presentation 2009
 
The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...
The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...
The Business Continuity Conference, 25th October 2023 in Riyadh - David Boll...
 
raytheonInvestor Conference Presentation - Morning Session
raytheonInvestor Conference Presentation - Morning SessionraytheonInvestor Conference Presentation - Morning Session
raytheonInvestor Conference Presentation - Morning Session
 
Managing an ITIL SaaS implementation IT program
Managing an ITIL SaaS implementation IT programManaging an ITIL SaaS implementation IT program
Managing an ITIL SaaS implementation IT program
 
ZED Awareness PPT_27052022.pptx
ZED Awareness PPT_27052022.pptxZED Awareness PPT_27052022.pptx
ZED Awareness PPT_27052022.pptx
 
PPT.pptx
PPT.pptxPPT.pptx
PPT.pptx
 
20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...
20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...
20210113 Lean In Government Harrisburg Conf Agile Governance at Scale Craeg S...
 
Jahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptx
Jahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptxJahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptx
Jahez_Internal Audit Report_Financial Control_Jan'23_01032023.pptx
 
Balanced Scorecard Strategy Map
Balanced Scorecard Strategy Map Balanced Scorecard Strategy Map
Balanced Scorecard Strategy Map
 
Pmi rmp handbook
Pmi rmp handbookPmi rmp handbook
Pmi rmp handbook
 
Webinar | Asset Management Health Check
Webinar | Asset Management Health CheckWebinar | Asset Management Health Check
Webinar | Asset Management Health Check
 

More from Parag Deodhar

Cyber Crime - How New Age Criminals Function
Cyber Crime - How New Age Criminals Function Cyber Crime - How New Age Criminals Function
Cyber Crime - How New Age Criminals Function
Parag Deodhar
 
Cloud computing risk & challenges
Cloud computing risk & challengesCloud computing risk & challenges
Cloud computing risk & challenges
Parag Deodhar
 
Securing the mobile enterprise - Sydney 24 Mar 2014
Securing the mobile enterprise - Sydney 24 Mar 2014Securing the mobile enterprise - Sydney 24 Mar 2014
Securing the mobile enterprise - Sydney 24 Mar 2014
Parag Deodhar
 
Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...
Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...
Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...
Parag Deodhar
 
How to implement and align Technology within your GRC Framework
How to implement and align Technology within your GRC FrameworkHow to implement and align Technology within your GRC Framework
How to implement and align Technology within your GRC Framework
Parag Deodhar
 
IT Risk Management - the right posture
IT Risk Management - the right postureIT Risk Management - the right posture
IT Risk Management - the right posture
Parag Deodhar
 
Scouting For Fraud - Parag Deodhar
Scouting For Fraud - Parag DeodharScouting For Fraud - Parag Deodhar
Scouting For Fraud - Parag Deodhar
Parag Deodhar
 
The Social Media Bait - Fraud & Cybercrime
The Social Media Bait - Fraud & CybercrimeThe Social Media Bait - Fraud & Cybercrime
The Social Media Bait - Fraud & Cybercrime
Parag Deodhar
 
Mobile Workplace Risks
Mobile Workplace RisksMobile Workplace Risks
Mobile Workplace Risks
Parag Deodhar
 
Defining effective governance structures and nurturing collaboration
Defining effective governance structures and nurturing collaborationDefining effective governance structures and nurturing collaboration
Defining effective governance structures and nurturing collaboration
Parag Deodhar
 
Frauds making fs companies uncompetitive parag deodhar
Frauds making fs companies uncompetitive parag deodharFrauds making fs companies uncompetitive parag deodhar
Frauds making fs companies uncompetitive parag deodhar
Parag Deodhar
 
Acfe bangalore pdm 2 fraud risk - parag deodhar
Acfe bangalore pdm 2 fraud risk - parag deodharAcfe bangalore pdm 2 fraud risk - parag deodhar
Acfe bangalore pdm 2 fraud risk - parag deodhar
Parag Deodhar
 

More from Parag Deodhar (12)

Cyber Crime - How New Age Criminals Function
Cyber Crime - How New Age Criminals Function Cyber Crime - How New Age Criminals Function
Cyber Crime - How New Age Criminals Function
 
Cloud computing risk & challenges
Cloud computing risk & challengesCloud computing risk & challenges
Cloud computing risk & challenges
 
Securing the mobile enterprise - Sydney 24 Mar 2014
Securing the mobile enterprise - Sydney 24 Mar 2014Securing the mobile enterprise - Sydney 24 Mar 2014
Securing the mobile enterprise - Sydney 24 Mar 2014
 
Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...
Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...
Risks Beyond the Boundary: Data Protection & Privacy Challenges, OpRiskAsia 2...
 
How to implement and align Technology within your GRC Framework
How to implement and align Technology within your GRC FrameworkHow to implement and align Technology within your GRC Framework
How to implement and align Technology within your GRC Framework
 
IT Risk Management - the right posture
IT Risk Management - the right postureIT Risk Management - the right posture
IT Risk Management - the right posture
 
Scouting For Fraud - Parag Deodhar
Scouting For Fraud - Parag DeodharScouting For Fraud - Parag Deodhar
Scouting For Fraud - Parag Deodhar
 
The Social Media Bait - Fraud & Cybercrime
The Social Media Bait - Fraud & CybercrimeThe Social Media Bait - Fraud & Cybercrime
The Social Media Bait - Fraud & Cybercrime
 
Mobile Workplace Risks
Mobile Workplace RisksMobile Workplace Risks
Mobile Workplace Risks
 
Defining effective governance structures and nurturing collaboration
Defining effective governance structures and nurturing collaborationDefining effective governance structures and nurturing collaboration
Defining effective governance structures and nurturing collaboration
 
Frauds making fs companies uncompetitive parag deodhar
Frauds making fs companies uncompetitive parag deodharFrauds making fs companies uncompetitive parag deodhar
Frauds making fs companies uncompetitive parag deodhar
 
Acfe bangalore pdm 2 fraud risk - parag deodhar
Acfe bangalore pdm 2 fraud risk - parag deodharAcfe bangalore pdm 2 fraud risk - parag deodhar
Acfe bangalore pdm 2 fraud risk - parag deodhar
 

BCM Continuous improvement - Audit & Assessment

  • 1. Parag Deodhar Chief Risk Officer Bharti AXA General Insurance
  • 2.  People, their contact details, their roles,  Partners, service providers , p  Regulations B i Business processes  IT systems y  Passwords  Levels of risk and appetite acceptance appetite, levels 27-09-2012 PARAG DEODHAR 2
  • 3.  We cannot improve what we cannot measure  Metrics are important to assess the level of maturity  Performance evaluation is important – thr testing and thru audit 27-09-2012 PARAG DEODHAR 3
  • 4. All ISO Standards follow P D C A for P.D.C.A. continuous improvement 27-09-2012 PARAG DEODHAR 4
  • 5. Audit should be taken positively  Self  Internal  External – ISO Regulatory ISO,  Helps instill rigor in the BCM program  Increases employee awareness and management oversight  Provides unbiased and a birds eye view of the program maturity  Sh ld b assessed against Should be d i t  Objectives of the BCM program  In the business context  B t practices and standards Best ti d t d d ○ ISO 22301, 27000, ○ ISACA – COBIT 27-09-2012 PARAG DEODHAR 5
  • 6. Business objectives B i bj ti  Business Impact Analysis  RPO/RTO  Regulatory Requirements  Integration with Security Risk Management Security,  BCM Organization, roles and responsibilities  Plan coverage  Plan Testing  Test coverage  Success Criteria  Plan improvement based on test results!!! 27-09-2012 PARAG DEODHAR 6