Professional Documents
Culture Documents
BCT CBCI - Intro To BCM - Handout
BCT CBCI - Intro To BCM - Handout
Email 1
Email 2 james.royds@gmail.com
Document control
Version Name Title Date
Acknowledgemen
Materials draw on good practice and international standards
include:
ts ISO 22316:2017 – Security & Resilience – Principles and
Attributes
BS 31100:2011 – Risk Management – Code of practice
and guidance for the implementation of BS ISO 31000
BS 11200: 2014 – the British Standard’s Guidance for
Crisis Management
ISO 22301:2012 – the International Standard for
Business Continuity Management BSI Standards Publication
GPG 2018 – the Business Continuity Institute’s Good
Practice Guidelines 2018
23/07/2019 CBCI - Intro to BCM 2
Ladies and Gentlemen please take your seats…
the show is about to begin!
Safety Curtain
https://www.youtube.com/watch?v=3IXEYVxTy4E
23/07/2019 11
Housekeeping, Health and Safety
- Fire alarms: None planned today
- Emergency exits: Follow signs
- Comfort breaks: Ladies / Gents Floors
- Mobile phones: Silent please!
Housekeeping, - Start: 09:00. Finish: 17:00 approx
Health & Safety - Timings breaks: 10:45, 12:45, 15:00
- Lunch: 12:45
- Handouts / templates: Electronic copies
- Air-conditioning: You have control!
- Attendance and Feedback forms: Local process
23/07/2019 CBCI - Intro to BCM 12
Getting though the day
• Questions
• PowerPoint
• Notes
• Exam
• Case study
• Slides
• International Standards
• Confidentiality
• Chatham House
• Fun?
• Home work
Course key points
CBCI - Intro to BCM
23/07/2019 13
• Day 1: Monday
• Intro to BCM
• Module 1 – Policy &
Program Management
• Module 2 – Embedding
• Day 2: Tuesday
• Module 3 – Analysis
• BIA Case Study
• Day 3: Wednesday
• Module 4 – Design
• Module 5 –
Implementation
• Day 4: Thursday
• Module 6 – Validation
CBCI training agenda • Feedback for BCI
• Day 5: Friday
<22-26 July 2019> • Exam
10:30-10:45 0.25 Coffee / tea break Coffee / tea break Coffee / tea break Coffee / tea break
PP2 - Embedding BCM (Slides PP3 - Analysis: Business PP5 - Implementation All modules revision. CBCI exam You are free to leave the course
1-19); Impacts, Threat assessment (Slides 1-38); question technique. after you have taken the exam and
Practical examples, case (Slides 1-38); Practical examples, case Please complete course feedback. completed your feedback. Your
10:45-12:45 2 studies, group discussion (as Practical examples, case studies, group discussion exam proctor will advise.
time allows) studies, group discussion (as (as time allows) Please sign exam results consent
time allows) form.
12:45-13:00 Lunch / personal time Lunch / personal time Lunch / personal time Lunch / personal time
PP1 / PP2 cont. CBCI exam PP3 cont. CBCI exam question PP4 / PP5 cont. CBCI exam 15:30 onwards personal revision.
question technique technique question technique Please read the Candidate
13:00-15:00 2 Information Pack.
15:00 - 15:15 Coffee / tea break Coffee / tea break Coffee / tea break Coffee / tea break
Modules and exam
15:15 - 17:00 1.75 Modules and exam technique Modules and exam technique Modules and exam technique
23/07/2019 CBCI - Introtechnique
to BCM 15
17:00 0 Depart: End of Day 1 Depart: End of Day 2 Depart: End of Day 3 Depart: End of Day 4
Do you all know
each other?!
Take 15 minutes getting to know the person you
are sitting next to:
• Q1. Who do you work for (name of
organization)?
Delegate • Q2. What do you do (job title) and for how
long?
introductions • Q3. What do you want out of this course?
• Q4. One interesting non-work-related fact about
the person you are introducing.
Question: If we accept this simple idea, then what are we going to do about managing time?
18
….what do ALL disruptive events have in common?
19
Emergency Response, Crisis, Continuity and Recovery
Incident
Or go in
Overall Objective:
Back-to-Normal as soon as search of a
possible New
normal?
The capability of an
organization to
continue delivering its
products or services at
acceptable pre-defined
levels following
disruption.
Source: ISO 22301:2012 23/07/2019
CBCI - Intro to BCM 23
BUSINESS
CONTINUITY
MANAGEMENT
“...an holistic management
process that identifies potential
threats to an organization and the
impacts to business operations
that those threats, if realised,
might cause; and which provides
a framework for building
organizational resilience with the
capability for an effective
response that safeguards the
interests of its key stakeholders,
reputation, brand and value
creating activities”.
ISO 22301:2102
23/07/2019 24
CBCI - Intro to BCM
Why is Business Continuity necessary?
Why do we need Business Continuity
The world is
becoming turbulent
Management (BCM)?
faster than
organizations are
becoming resilient
“ability of a business to
anticipate, prepare for, and
respond and adapt to
incremental change and
sudden disruptions in order
to survive and prosper.”
ISO 22316:2017
CMT
CMT
BIA: BIA:
BIA:
RPORPO
RPO BCTs
BCTs CM
CM Plans
Plans
Commitment
Commitment
Commitment MBCO MBCO
MBCO
Statements
Statements
Statements RTO RTO
RTO Self assessment
Self assessment
assessment
MAOMAO
MAO
Internal
Internal///
Internal
BC
BC Plan
Plan External
External Audit
ExternalAudit
Audit
Individual &
Individual &
Stage
Stage 1 11
Stage Stage
Stage 3 3
Stage Recovery
Recovery
Recovery
Strategies
Strategies
Strategies Collective
Collective
Training
Training
Functional
Functional
BCMS
BCMSBCMS BAUBAU
BAU Stage
Stage 44 Stage55
Stage ororDept.
Dept. Stage 6
Stage
BC BC
BC Status
Status
Status BCBC Plans
Plans
Risk
Risk
Risk
Manual
Manual
Manual Mitigations
Mitigations
Mitigations Management
Management
Management
&
& Resources
Resources
& Resources Review
Review
Review
Crisis
Crisis
Communications
Communications
Manual
Manual
Community
Community
Community of
of Practice
Practice
of Practice RiskRisk
& &
Risk &
Th
Threat
Th reat reat
Plan exercises,
Plan exercises,
Technical
Technical
Technical Guidance
Guidance
Guidance Rehearsals,
Rehearsals,
Assessment
Assessment
Assessment
Group
Group
Group Defined
Defined
Defined Practice
Practice
Practice ITDR Tests
ITDR Tests KPI –––Performance
KPI Performance
Performance
ITIT
DRDRPlan
Plan && Evaluation
&Evaluation
Evaluation
Stage
Stage 2 22
Stage
23/07/2019 CBCI - Intro to BCM 29
Risk Crisis Business Continuity Continual
Consequences and
1
Management
Enterprise
Threats and
Likelihoods
Risk
Opportunities
Critical Risk
Respond to Disruptions
Impacted Processes
Ensure Readiness to
OR
Management
2 Prepare Business
Processes Continuity Plans for high
Prepare Crisis risk and mission critical
Management processes
Plans for credible disruption
Credible scenarios
Disruption
Scenarios
Management
3
Program
Risk Register CMP Development Testing BCP Development Quality Audits and
BCM
Risk Materializes
Emergency Lessons
Business
Recover, Restore
Evidence is demonstrated by
“Plans are nothing; planning is
everything” – Dwight D. Eisenhower
trained and exercised people
and documented plans