Downloaded 32 times
Integrating Resiliency As A Strategic Priority
- 1. Integrating Resiliency asa Strategic Priority: Seven Guiding Principles to Bring Your Program to the Next Level
- 2. Our AimTo shareSeven Guiding Principles that can help you make your business continuity and emergency management programs a strategic priority.
- 3. OutlineThe Need -Background and Observations
- 4. The Audience -Who the Principles apply to
- 5. The Principles -Presenting the 7 Guiding Principles
- 6. Wrap Up, Questions,and DiscussionObservations Many organizations have sound individual plans but lack synergy between them, sometimes resulting in a disjointed and potentially ineffective program
- 7. Gaps between BCM/EMprograms and strategic goals of the organisation
- 8. Often focus ison compliance vs. competitive advantage
- 9. BCM and EMpractitioners struggle to obtain senior management and/or middle management support
- 10. Business Continuity andEmergency Management is not adequately leveraged within organisations
- 11. BCM and EMviewed as a cost centre not a value driver13
- 12. What does itall mean…Continuity is not a strategic priority
- 13. What is Resiliencefrom a Strategic Perspective?Business resilience is about capability to prevent disruption and mitigate risks associated with failure to meet objectives
- 14. Can mitigate significantstrategic and operational risk
- 15. Encompasses people, processes,and technology
- 16. Is required forany organization offering continuous or a high level of customer service
- 17. Is about maintaininga competitive advantage before, during, and after a major eventNote: These are strategic business and community issues
- 18. Who Do ThesePrinciples Apply To?Those responsible for business continuity and IT disaster recovery
- 19. Emergency Management Professionalsand Staff
- 20. Executives and SeniorManagement
- 21. Risk Management ProfessionalsThe Seven Principles#1 Integrate your program and link it with risk, performance improvement, and other business programs#2 Identify, engage and manage key stakeholders#3 Understand the business operations (and cost of not having resiliency) through comprehensive analysis and risk assessments#4 Identify and support the needs of senior management13
- 22. The Seven Principles(continued)#5 Emphasize the strategic aspects and value proposition of your program – how it protects people, reputation, cash flow, customer service#6 Customize and “size to fit” – Apply best practices but tailor your program to fit the structure, culture, and budget of your organization#7 Focus on people, process, technology and brand protection throughout response and recovery13
- 23. # 1 IntegrateYour Program Integrate your program and link it with enterprise risk and/or other business programs
- 24. CRISIS MGMT.ERPIntegrate YourOverviewEmergency Response Plan and ProgramCrisis ManagementBCPDRPIT Disaster Recovery Plan and ProgramBusiness Continuity Plan and Program
- 25. Business Crisis BusinessDisaster Enterprise Risk Continuity ManagementContinuityRecoveryManagementPlanningRecoveryPeopleRisk AssessmentRisk AssessmentRM OptimizationRM OptimizationResponseResourcesInfrastructureRisk MonitoringRisk MonitoringManagementContinuity& CoordinationProceduresApplicationsData RecoveryProcessRisk ResponseRisk ResponseCrisis Disaster Emergency Technical Location & Communication Business Interim Business Integrate Business Resilience with other ProgramsDo not try to “go it alone”
- 26. Integration does notnecessarily mean organizational redesign
- 27. Risk Managementis a logical link but select what works best in your organizationIntegrated ProgramBusiness Business Crisis Crisis Business Business Disaster Disaster Enterprise Risk Enterprise Risk Continuity Continuity Integrated ProgramManagementManagementContinuityContinuityRecoveryRecoveryManagementManagementPlanningPlanningEVENTEVENTPeoplePeopleRisk AssessmentRisk AssessmentRecoveryRecoveryRM OptimizationRM OptimizationResourcesResourcesInfrastructureInfrastructureRisk MonitoringRisk MonitoringResponseResponseContinuityContinuityProceduresProceduresApplicationsData RecoveryApplicationsData Recovery& Coordination& CoordinationManagementManagementRisk ResponseRisk ResponseProcessProcessCrisis Crisis Disaster Disaster Emergency Emergency Technical Technical Location & Location & Communication Communication Business Business Interim Business Interim Business Post-EventPre-Pre-Event
- 28. Integrated Resilience FunctionsExamplefrom our professional services firm
- 29. # 2 EngageKey StakeholdersIdentify, engage and manage key stakeholders
- 30. # 3 Understandthe Business OperationsConduct frequent and comprehensive analysis and risk assessments to fully understand business operations and cost of not building resiliency
- 31. Understand Your BusinessProgramImplementationTrainingThreat, Vulnerability, Risk AssessmentBenchmarkingElements of a Resilient ProgramResponse& RecoveryBusiness Impact AnalysisProgram MaintenancePlan DevelopmentRecoveryPlan Testing StrategyPlanning
- 32. RecoveryPlan Testing StrategyPlanningUnderstand Your BusinessAn effective continuity program begins with understanding the business Program ImplementationTrainingThreat, Vulnerability, Risk AssessmentBenchmarkingElements of a Resilient ProgramResponse& RecoveryBusiness Impact AnalysisProgram MaintenancePlan Development
- 33. Understand Your BusinessAneffective continuity program achieves resiliency through:Dynamic Planning
- 34.
- 35.