Download as PDF, PPTX
Uploaded byContinuity and Resilience
CREATING AND MAINTAINING A BCM PROGRAM
The document presents a detailed overview of Dhiraj Lal, Executive Director of Continuity & Resilience (CORE), highlighting his extensive experience in business continuity and risk management. It outlines the services offered by CORE, including training, consulting, and advisory in business continuity management, crisis management, and cybersecurity, among others. Additionally, the document emphasizes the importance of maintaining a robust BCM program through regular testing, performance evaluation, and awareness initiatives to foster a culture of business continuity within organizations.
More Related Content
Similar to CREATING AND MAINTAINING A BCM PROGRAM
More from Continuity and Resilience
CREATING AND MAINTAINING A BCM PROGRAM
- 1. LOGO 1 Speaker Mr. DhirajLal Executive Director
- 2. LOGO CREATING AND MAINTAININGA BCM PROGRAM DHIRAJ LAL, EXECUTIVE DIRECTOR Continuity & Resilience (CORE) Email: info@continuityandresilience.com Website: www.coreconsulting.ae
- 3. LOGO Author, Practitioner, Trainer,and Consultant. Over 32 years in the industry. Over 15 years in Risk Management and related domains. Has been a BCI Approved Trainer for almost 10 years in the past. Co-Author of the: Step by Step guide series 1. Implement Business Continuity the Saudi Way! 2. Implement Business Continuity the UAE Way! Contributing Author to : The Definitive Handbook of Business Continuity Management, 3rd Edition (Edited by Andrew Hiles) Dhiraj Lal, EXECUTIVE DIRECTOR, CONTINUITY & RESILIENCE (CORE) ISO 31000, MBCI, CBCP, CBCI, ISO 27001/ISO 22301 Technical Expert and Lead Auditor, CISA, ITIL A Chemical Engineer and an MBA in IT and Finance, Dhiraj Lal has over 20 years Risk Management experience and 32 years overall. His last Banking job was as Head of Audit Risk and review for Citibank, and he has worked also with Standard Chartered, Agilent and American Express, where he headed Risk, Controllership and Internal Control. He teaches and consults in Risk Management (ISO 31000) and related domains. He has been invited on Risk and Resilience at the BCI Annual conference in the UK, DRI US, BCM Institute Singapore, itSMF UK, DRI Asia in Malaysia, ISACA UAE, KSA and India. He has presented at various Middle East Business and IT Resilience Summits in Abu Dhabi, Dubai, KSA and India, and also CORE’s global online summit. Background 3
- 4. LOGO Dhiraj Lal, MBCI,Executive Director, receiving the BCI Award for Middle East Service Provider of the Year 2019 from David Thorp, Executive Director of the UK-based Business Continuity Institute (BCI) Daman Dev Sood, FBCI, Chief Operating Officer, receiving the BCI Award for India Service Provider of the year 2019 from David Thorp, Executive Director of the UK-based Business Continuity Institute (BCI) 4 time winner of the “Service Provider of the Year” Award About Continuity & Resilience (CORE) 4
- 5. LOGO About Continuity& Resilience (CORE) • ISO 22301 Certified Management Consulting Firm • Business Continuity Management • Crisis Management • IT Disaster Recovery • Risk Management • Information Security • Cyber Security • We Consult / Train / Assess and Certify in these domains • We provide advisory services • Automation tools – BCM/ ITDR/ Mass Communication • Workplace recovery • E-Learning 5
- 6.
- 7. LOGO CREATING should eventuallylead to putting in place a comprehensive Program covering all phases of the full BCM Lifecycle – Plan, Do, Check and Act Standards and guidelines can be used to ensure comprehensiveness. The SAMA BCM Framework is also an excellent document that can provide guidance for KSA-based entities in not just Banking and Financial Services, but in other industries also.
- 8. LOGO TYPICAL BCM LIFECYCLE Program Management BCMPolicy Awareness and Training Business Impact Analysis (BIA) Performance Evaluation Internal Audit of the BCMS Management Review Continual Improvement of the BCMS Testing & Exercising BCM Plans BCM Recovery Strategies Risk Assessment (RA) 1 2 3 4 5 6 8 10 9 11 12 7 The following steps are typically followed to implement a BCMS: P D C A 8
- 9. LOGO Standards andguidelines can provide assurance ISO 22301 Released in 2019 NCEMA 7000 Released in 2021 BCI GPG Released in 2017 9
- 10. LOGO Our typicaltrainers for this course 10
- 11.
- 12. LOGO MAINTAINING involves performingthe activities to keep the BCM Program appropriate and relevant for the upcoming future – including Improvement. This covers: 1. Testing and Exercising 2. Reviews and Awareness 3. Performance Evaluation
- 13. LOGO Some types ofexercises and tests 0 1 2 3 4 5 6 7 Review/ Walkthrough Table Top Call Tree Simulation IT/ Work Area Recovery Integrated Cost Complexity Risk (of distrurabnce due Test) Assurance Frequency Note - Graph is not to scale Testing and Exercising 13
- 14. LOGO 1. Internal Audit 2.Management Review 3. Self-Assessment 4. Supplier Reviews 5. Quality Assurance 6. Performance Appraisals Some examples of reviews Reviews and Awareness 14
- 15. LOGO 1. Refreshers (ideallyat least annually) – Face to face (1-2 hours) or via eLearning 2. Newsletters 3. Posters 4. Booklets Some examples of Awareness initiatives Reviews and Awareness 15
- 16. LOGO Caps – System Anexample of a slide from the BCM Awareness eLearning prepared by Continuity and Resilience (CORE) – also available in Arabic
- 17. LOGO Awareness Newsletters inArabic (example) An example of a series of 4-page BCM newsletters prepared by Continuity and Resilience (CORE) in Arabic. For reasons of confidentiality, the text has been hidden
- 18. LOGO Awareness newsletters inEnglish (examples) An example of a series of 4-page BCM newsletters prepared by Continuity and Resilience (CORE) in English. For reasons of confidentiality, the text has been hidden
- 19. LOGO Awareness newsletters inEnglish (examples) Another example of a series of 4-page BCM newsletters prepared by Continuity and Resilience (CORE) in English. For reasons of confidentiality, the text has been hidden Deputy
- 20. LOGO Awareness posters inEnglish (examples) An example of a series of 1-page BCM posters prepared by Continuity and Resilience (CORE) in English. For reasons of confidentiality, the text has been hidden. We have prepared BCM posters in Arabic also.
- 21. LOGO Booklet for BusinessContinuity Champions (example)
- 22. LOGO Business Continuity AwarenessBooklet for all employees (example) An example of a front-back BCM awareness flyer prepared by Continuity and Resilience (CORE) in English. This can be easily prepared in Arabic also. For reasons of confidentiality, the text has been hidden.
- 23. LOGO Almost all BCMstandards and guidelines make it mandatory to build a BCM culture. This is best done by ensuring ongoing and regular emphasis on the concept of Business Continuity, and its importance to the organization. I hope this presentation will give you some good ideas about what other BCM mature organizations have done to create BCM awareness and embed a BCM culture. Summary
- 24. LOGO 182 LOGO eLearning Demo THANKYOU! AWARDS 379 Dhiraj Lal receiving the BCI Award for Middle East Servic e Provid er of the Year 2019, in the pres enc e of Mr. J as em Al Sayegh, C E O of A D N O C Refining and Dr. Saif Al Dhaheri, Director Safety and Prevention, N CE MA Email: info@continuityandresilience.com Web: www.coreonline-certifications.com CONTINUITY & RESILIENCE (CORE) 24
- 25. LOGO We would appreciateyour feedback, queries and comments. info@continuityandresilience.com +971 2 6594006 +966 54 858 5985 +971 50 5767804 +91 80100 63950 https://twitter.com/Resilience_CORE https://www.linkedin.com/ company/continuity-and resilience/mycompany/?vie wAsMember=true https://www.instagram.com /continuityandresilience/ https://www.facebook.com/ continuityandresilience/ +966 54 858 5985 +971 2 6594006, +91 8010063950, +97150 5767804 Subscribe to our YouTube channel: https://tinyurl.com/7efazs2b 25