Business Continuity Trends and Risk Considerations Financial Executives International Portland Chapter June
|
|
- Chad Johnson
- 7 years ago
- Views:
Transcription
1 Business Continuity Trends and Risk Considerations Financial Executives International Portland Chapter June Chitra Gopalakrishnan Director KPMG LLP
2 Agenda Introduction Business Continuity / Disaster Recovery - A Brief Background Continuity / Recovery Risk Considerations KPMG / Continuity Insights 2011/2012 Global Benchmark Survey Highlights Closing Remarks and Q&A Throughout this document, KPMG [ we, our, and us ] refers to KPMG International Cooperative ( KPMG International ), a Swiss entity, and/or to any one or more of the member firms of the KPMG network of independent firms affiliated with KPMG International. KPMG International provides no client services.
3 Opening Remarks and Introductions Chitra Gopalakrishnan, Advisory Director Over 15 years of IT, Security, Business Resiliency, PMO Advisory, Governance, Risk and Compliance consulting experience. Business Continuity / Disaster Recovery experience includes leading and establishing BCM program, business impact analysis, application recovery interdependency analysis and recovery strategy development, and audits and assessments of resiliency strategies. 2
4 Business Continuity Management A Brief Background
5 If we are not planning for Disasters, We d be in Trouble 4
6 Disasters Aren t Always Natural 5
7 Major Business Continuity Program Components Business Continuity Management Emergency Response Crisis Management IT/Disaster Recovery Business Continuity Business Continuity Management Holistic management process that identifies potential impacts that threaten an organization and provides a framework for building resilience with the capability for an effective response that safeguards the interests of its key stakeholders, reputation, brand and value creating activities. The management of recovery or continuity in the event of a disaster. Also the management of the overall program through training, rehearsals, and reviews, to ensure the program stays current and up to date. 6
8 BC/DR at Many Organizations 7
9 A Brief History of BC/DR 8
10 Why Business Resiliency is More Important Than Ever The past twelve months have been awash with natural disasters. Earthquakes, tsunamis, flooding, volcanic eruptions, and uncharacteristic weather patterns have created large scale business impacts. Changes in technology, workforce expectations and unforeseen challenges are causing many companies to rethink their traditional approaches to Business Continuity and Disaster Recovery. The largest trends are less reliance on document-intensive plans and more attention to crisis management and effective communication. Leading organizations are evaluating legacy approaches to Business Continuity and Disaster Recovery to find the right balance between effective risk management and efficient response. 9
11 Continuity / Recovery Risk Considerations
12 Risk Considerations 11
13 Risk Type and Treatment Overview At the highest level, there are four things that can be done with Risk: Mitigate Transfer Plan Accept Types of risk to be considered: Compliance Financial Operational Strategic Technical Contractual Lost/Deferred Revenue People Market Share Cybercrime Regulatory Opportunity Production Partnerships E-Business Service Level Agreements Shareholder Equity Supply Chain Reputational Infrastructure Failure 12
14 Emerging IT Risks The pace of technology change and innovation continues to gain momentum, with profound implications for how organizations operate whether it s increased adoption of mobile devices, cloud computing, or the increasing amounts and varieties of data to which organizations have access. Capabilities Business Imperatives Growth/strategy Efficiency Compliance Risk and Governance Game-changing Technology Mobile computing Big data /analytics Cloud computing Knowledge & Data 13
15 Enterprise Risk Coordination Business Continuity and Disaster Recovery Planning, Testing and Execution don t function in a vacuum. Information Technology Information Security Compliance Privacy Legal Risk Mgmt. Records Mgmt. BCM Physical Security / Facilities 14
16 Regulations, Standards, and Guidelines (Global and North America) Regulations: Federal Financial Institutions Examination Council (FFIEC) Financial Industry Regulatory Authority - FINRA Federal Energy Regulatory Commission (FERC)/ North American Electric Reliability Corporation (NERC) Common Standards/Guidelines: NFPA 1600 BS / ISO ASIS BCM.1/ASIS SPC.1 NIST SP 800 DRII/BCI COBIT ITIL ISO Australia HB 221:2004 Business Continuity Management India RBI BC Circulars Singapore MAS Business Continuity Management Guidelines UK Financial Services Authority Handbook. Commonalities Oversight Board/Reporting Program Structure Assessments Recovery Plans Training Exercising Maintenance 15
17 Developing a Plan: Top 5 Reasons BCP and DRP Are Not Successful Failure to Adequately / Realistically Capture Availability Needs (BIA) (and Reconcile to Associated Costs!) Lack of Understanding of Application / System Interdependencies Failure to Define and Track Metrics and Critical Success Factors Lack of Integration with Other ERM Focus Areas Failure to Obtain Top Level Support (Funding and Resources) for Business Resiliency as an Ongoing Strategic Priority / Enabler 16
18 KPMG / Continuity Insights 2011/2012 Global Benchmark Survey Highlights
19 Benchmark Highlights Key Industries Represented: Financial Services 53% Technology/Telecom 18% Professional Services 18% Insurance 11% Geographic Breakdown: US 67% Canada 8% Europe 8% South America 6% Rest of World 13% Some Other Key Statistics: 40% are Public Companies 45% are Global, Multi-Site Companies 25% have more than 20,000 Employees 17% are greater than $10B in Revenue 18
20 Benchmark Highlights (continued) Comparison 2006 vs. 2011/12 - Types of Events Resulting in Plan Activation 2006: 2012: Power Outage 59% 46.9% Hardware Failure 51% 30.5% Natural Disaster 46.8% 50.4% Telecom / Network Failure 41% 31% Software Failure 39.97% 30.5% KEY TAKEAWAY Companies are getting better at managing known risks, at least the risks *THEY* control! 19
21 Benchmark Highlights (continued) Comparison 2006 vs Estimate Business Disruptions have Cost Company in Past 12 Months: 2006: 2012: < $100, % 31.7% $100,000 to $499, % 11.7% $500,000 to $999, % 4.9% $1 million to $5 million 7.22% 2.1% > $5 million 4.82% 2.6% Approximately 47% of the respondents that answered the question responded they Do Not Know. NOTE: Do Not Know was not an option on the 2006 Benchmark Survey. KEY TAKEAWAY Ability to measure impact of a disruption and the cost basis is improving but still a large percentage aren t comfortable in tracking/estimated these impacts. 20
22 Benchmark Highlights (continued) Comparison 2006 versus Primary Reason Why Company is Using BC Program: 2006: 2012: Continuity of business operation and timely recovery when business is interrupted 72.23% 84.2% Unique competitive advantage 1.77% 14.7% Customer request or requirement 5.62% 22.0% Industry standard 8.51% 33.5% Reputation * 39.7% Address Audit Findings * 31.6% * Not part of the Benchmark Survey for a particular year KEY TAKEAWAY BCM impacts are evolving from back office to front office concerns with an increased understanding of BCM value to customers and business partners. 21
23 Benchmark Highlights (continued) Comparison 2006 versus 2011 Allocation of Funds for BC Initiatives 2006: 2012: Case-by Case Basis 46.87% 28.4% % of IT Budget 14.77% 10.6% % of Risk Management Budget 9.15% 7.8% % of Individual Functional 2.41% 6.0% Importance of Data & Systems at Risk 18.30% * Other 8.51% 6.8% Hybrid Chargeback Basis with Base Fee and Usage Charge * 4.2% Do Not Know * 23.0% * Not part of the Benchmark Survey for a particular year KEY TAKEAWAY BCM/DR funding is still inconsistent across organizations with a trend toward more strategic focus and less project oriented focus. 22
24 Benchmark Highlights (continued) Newer technologies currently implemented within your organization: 90% All Respondents 80% 60% 54% 30% 34% 0% Cloud Applications Mobile Applications Social Media KEY TAKEAWAY For these new approaches, BCM is less mature. 42% have BCM plans for Mobile Apps, 28% have BCM plans for Cloud, and 18% have plans for Social Media. 23
25 Impact of Cloud on Business Operations Adopting cloud has a big impact on IT, but it doesn t stop there. Critical business operations are also affected. Organizations need an enterprise-wide approach that takes in the crossfunctional effects of cloud The approach may vary, depending on the chosen cloud service model, deployment model, and the maturity of existing business and IT processes Lessons learned from outsourcing apply in the cloud As Cloud Service Providers (CSPs) practices evolve and mature, enterprise processes need to keep pace with the changing landscape. Business Operations Financial Management and Tax Security and Privacy Operational Data & Technology Regulatory and Compliance Vendor Management 24
26 Trends in Leveraging Cloud for Business Resiliency Cloud for Disaster Recovery (DR) continues to be a discussion for many of our clients. Cloudbased recovery services offer a way to achieve the recovery capabilities of advanced DR services at a more affordable, subscription-based price. There are concerns over security of the cloud but over time it will be a key component of disaster recovery program. The use of data replication technology continues to increase and Recovery Point Objectives (RPO) continue to lessen as end users tolerance for data loss diminishes Companies are reevaluating their DR plans for the virtual and cloud environments to address recovery complexity of applications and data spanning multiple architectures Organizations are starting to use cloud computing services to manage disaster recovery Cloud services promise to save organizations money and accelerate the recovery time 25
27 Leveraging Mobile for Crisis Management
28 Leveraging Social Media for Crisis Management 27
29 Closing Remarks
30 Closing Remarks We see BCM remaining an organizational top priority for the next several years. The unexpected impact of natural disasters, geo-political instability, and continued interconnectivity of value chains will drive needs for BCM to evolve and improve. Embedding Business Continuity culture in the form of Operational Resiliency Customer facing processes are being prioritized Vendor resiliency continues to be an area of focus Business Continuity integration with other disciplines Cloud transformation of Disaster Recovery 29
31 Thank You! Chitra Gopalakrishnan Director KPMG Advisory Services
The Role of Internal Audit In Business Continuity Planning
The Role of Internal Audit In Business Continuity Planning Dan Bailey, MBCP Page 0 Introduction Dan Bailey, MBCP Senior Manager Protiviti Inc. dan.bailey@protiviti.com Actively involved in the Information
More informationwww.pwc.com Governance, Risk and Compliance Update & Hot Topics Pittsburgh Chapter IIA December 3, 2012
www.pwc.com Governance, Risk and Compliance Update & Hot Topics Pittsburgh Chapter IIA December 3, 2012 Agenda Introduction Mark Gibbons 12:00 12:05 Governance, Risk and Compliance Overview Mark Gibbons
More informationeet Business continuity and disaster recovery Enhancing enterprise resiliency for the power and utilities industry Power and Utilities Fact Sheet
Power and Utilities Fact Sh Business continuity and disaster recovery Enhancing enterprise resiliency for the power and utilities industry A holistic approach to business resiliency and disaster recovery
More informationThe PNC Financial Services Group, Inc. Business Continuity Program
The PNC Financial Services Group, Inc. Business Continuity Program 1 Content Overview A. Introduction Page 3 B. Governance Model Page 4 C. Program Components Page 4 Business Impact Analysis (BIA) Page
More informationwww.pwc.com Business Resiliency Business Continuity Management - January 14, 2014
www.pwc.com Business Resiliency Business Continuity Management - January 14, 2014 Agenda Key Definitions Risks Business Continuity Management Program BCM Capability Assessment Process BCM Value Proposition
More informationAuditing Enterprise Business Continuity Management (BCM) Jeffrey M. Dato, MBCP Senior Manager Risk Advisory Services KPMG, LLP
Auditing Enterprise Business Continuity Management (BCM) Jeffrey M. Dato, MBCP Senior Manager Risk Advisory Services KPMG, LLP Agenda Rules of Engagement Definitions and Presentation Premises Business
More informationThe PNC Financial Services Group, Inc. Business Continuity Program
The PNC Financial Services Group, Inc. Business Continuity Program subsidiaries) 1 Content Overview A. Introduction Page 3 B. Governance Model Page 4 C. Program Components Page 4 Business Impact Analysis
More informationBusiness Continuity and Disaster Recovery Planning
Business Continuity and Disaster Recovery Planning Jennifer Brandt, CISA A p r i l 16, 2015 HISTORY OF STINNETT & ASSOCIATES Stinnett & Associates (Stinnett) is a professional advisory firm offering services
More informationShankar Gawade VP IT INFRASTRUCTURE ENAM SECURITIES PVT. LTD.
Business Continuity Management & Disaster Recovery Planning Presented by: Shankar Gawade VP IT INFRASTRUCTURE ENAM SECURITIES PVT. LTD. 1 What is Business Continuity Management? Is a holistic management
More informationBCP and DR. P K Patel AGM, MoF
BCP and DR P K Patel AGM, MoF Key difference between BS 25999 and ISO 22301 ISO 22301 puts a much greater emphasis on setting the objectives, monitoring performance and metrics aligning BC to top management
More informationBusiness Continuity Management Systems. Protecting for tomorrow by building resilience today
Business Continuity Management Systems Protecting for tomorrow by building resilience today Vital statistics 31% 40% of UK businesses have been affected by bad weather related transport problems, power
More informationCloud Computing and Disaster Recovery
Understanding the Cloud Environment Cloud Environment = Internet-based data access & exchange + Internet-based access to low cost computing & applications Cloud Computing and Disaster Recovery April 2013
More informationBusiness Continuity Management
GENERALLY ACCESSIBLE Business Continuity Management Field Report from an Audit Point of View ISACA Swiss Chapter - After Hour Seminar 28 August 2006 - Urs Voigt - Group Internal Audit Disasters Happen
More informationRSA ARCHER BUSINESS CONTINUITY MANAGEMENT AND OPERATIONS Solution Brief
RSA ARCHER BUSINESS CONTINUITY MANAGEMENT AND OPERATIONS Solution Brief INTRODUCTION Now more than ever, organizations depend on services, business processes and technologies to generate revenue and meet
More informationKPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity
INFORMATION RISK MANAGEMENT KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity ADVISORY Contents Agenda: Global trends and BCM
More informationSolihull Clinical Commissioning Group
Solihull Clinical Commissioning Group Business Continuity Policy Version v1 Ratified by SMT Date ratified 24 February 2014 Name of originator / author CSU Corporate Services Review date Annual Target audience
More informationIl nuovo standard ISO 22301 sulla Business Continuity Scenari ed opportunità
Il nuovo standard ISO 22301 sulla Business Continuity Scenari ed opportunità Massimo Cacciotti Business Services Manager BSI Group Italia Agenda BSI: Introduction 1. Why we need BCM? 2. Benefits of BCM
More informationProposal for Business Continuity Plan and Management Review 6 August 2008
Proposal for Business Continuity Plan and Management Review 6 August 2008 2008/8/6 Contents About Newton IT / Quality of our services. BCM & BS25999 Overview 2. BCM Development in line with BS25999 3.
More informationTemple university. Auditing a business continuity management BCM. November, 2015
Temple university Auditing a business continuity management BCM November, 2015 Auditing BCM Agenda 1. Introduction 2. Definitions 3. Standards 4. BCM key elements IT Governance class - IT audit program
More informationEnterprises are transforming, market place priorities are changing, Is your business ready?
Enterprises are transforming, market place priorities are changing, Is your business ready? Presented by: Mike Errity, Vice President IBM Resiliency Services merrity@us.ibm.com Twitter: @MikeErrity 1 14th
More informationGlobal Statement of Business Continuity
Business Continuity Management Version 1.0-2014 Date October 18, 2014 Status Author Business Continuity Management (BCM) Page 1 of 8 Table of Contents 1. Credit Suisse Business Continuity Statement 3 2.
More informationDriving Operational Risk Management Into the Customer/Product Value Chain
Driving Operational Risk Management Into the Customer/Product Value Chain Eric Staffin, MBCI, CISSP Vice President, Global Head of Product & Infrastructure Risk Management Thomson Reuters, Investment &
More informationUsing the Cloud for Business Resilience
Allen Downs IBM Business Continuity and Resiliency Services Using the Cloud for Business Resilience June 20, 2011 1 Agenda Why resiliency matters A successful cloud-based approach to resiliency Moving
More informationBusiness Continuity and Risk Management. Ken Kaberia Principal BCM Officer, Enterprise Risk Safaricom Limited
Business Continuity and Risk Management Ken Kaberia Principal BCM Officer, Enterprise Risk Safaricom Limited What does Business Continuity mean? Business Continuity Management- Definition Business Continuity
More informationHOW CAN YOU ENSURE BUSINESS CONTINUITY? ISO 22301 AUDITS, CERTIFICATION AND TRAINING
HOW CAN YOU ENSURE BUSINESS CONTINUITY? ISO 22301 AUDITS, CERTIFICATION AND TRAINING ISO 22301 BUSINESS CONTINUITY MANAGEMENT SYSTEMS Most organisations will, at some point, be faced with having to respond
More informationINFOSEC.MY KNOWLEDGE SHARING SESSION
INFOSEC.MY KNOWLEDGE SHARING SESSION Integration BCM into your Organization: Challenges & Opportunities 31 st October 2007 1 Prabha Ramanathan ( CBCP, MBCI, MBCS, MSCS) Certified Business Continuity Professional.have
More informationSupporting information technology risk management
IBM Global Technology Services Thought Leadership White Paper October 2011 Supporting information technology risk management It takes an entire organization 2 Supporting information technology risk management
More informationHow to stay competitive in a converging healthcare system kpmg.com
Managing risk in a transforming healthcare organization How to stay competitive in a converging healthcare system kpmg.com 2 Healthcare Risk Management Managing the risk of healthcare transformation Healthcare
More informationRisk Considerations for Internal Audit
Risk Considerations for Internal Audit Cecile Galvez, Deloitte & Touche LLP Enterprise Risk Services Director Traci Mizoguchi, Deloitte & Touche LLP Enterprise Risk Services Senior Manager February 2013
More informationMeasuring Continuity Planning Program. Performance
Measuring Continuity Planning Program Performance Carl B Jackson Director Crisis Management & Continuity Planning Resource Center (CMCPRC) Measuring Continuity Planning Program Performance Session Agenda
More informationCompany Management System. Business Continuity in SIA
Company Management System Business Continuity in SIA Document code: Classification: Company Project/Service Year Document No. Version Public INDEX 1. INTRODUCTION... 3 2. SIA S BUSINESS CONTINUITY MANAGEMENT
More informationBusiness Continuity Management
Business Continuity Management Policy Statement & Strategy July 2009 Basildon District Council Business Continuity Management Policy Statement The Council is committed to ensuring robust and effective
More informationBCM Data Research within a Business Intelligence Dashboard
BCM Data Research within a Business Intelligence Dashboard A powerful, innovative assessment tool designed exclusively for the Business Continuity Profession Collecting BCM data metrics since 2000. The
More informationThe Business Continuity Maturity Continuum
The Business Continuity Maturity Continuum Nick Benvenuto & Brian Zawada Protiviti Inc. 2004 Protiviti Inc. EOE Agenda Terminology Risk Management Infrastructure Discussion A Proposed Continuity Maturity
More informationVENDOR RISK MANAGEMENT UPDATE- ARE YOU AT RISK? Larry L. Llirán, CISA, CISM December 10, 2015 ISACA Puerto Rico Symposium
1 VENDOR RISK MANAGEMENT UPDATE- ARE YOU AT RISK? Larry L. Llirán, CISA, CISM December 10, 2015 ISACA Puerto Rico Symposium 2 Agenda Introduction Vendor Management what is? Available Guidance Vendor Management
More informationBusiness Continuity Standards A Primer
INTELLIGENT NOTIFICATION Alphabet Soup: Making Sense of BC/DR Standards Part 1: Business Continuity Standards A Primer Why all the attention now? One of the hottest topics in BC/DR these days is standards.
More informationIntroduction to Business Continuity Planning
Introduction to Business Continuity Planning Business Continuity and Disaster Resilience Forum May 10, 2012 Rizal Ballroom A, Makati Shangri-la Manila, Philippines Dr Goh Moh Heng President BCM Institute
More informationSustainability through Business Continuity Management
Sustainability through Business Continuity Management R Vaidhyanathan (RV) MBCI,CBCP, TE BS25999, BS25999LA, BCCE, 27001LA, ITIL Practice Head for Crisis Management & BCM Continuity and Resilience (CORE)
More informationThe Changing IT Risk Landscape Understanding and managing existing and emerging risks
The Changing IT Risk Landscape Understanding and managing existing and emerging risks IIA @ Noon Kareem Sadek Senior Manager, Deloitte Canada Chris Close Senior Manager, Deloitte Canada December 2, 2015
More informationBusiness Continuity Management
Business Continuity Management Factsheet To prepare for change, change the way you prepare In an intensely competitive environment, a permanent market presence is essential in order to satisfy customers
More informationBT Conferencing Business Continuity Management. Planning to stay in business
BT Conferencing Business Continuity Management Planning to stay in business Planning for the unexpected In today s connected world, businesses are increasingly dependent on their communications and networked
More informationWestern Intergovernmental Audit Forum
Western Intergovernmental Audit Forum Business Continuity & Disaster Recovery Planning September 12, 2013 Presented by: City of Phoenix City Auditor Department Aaron Cook, Sr Internal Auditor IT Audit
More informationContinuity Insights & KPMG LLP Present The 2011-2012. Global Business Continuity Management (BCM) Program Benchmarking Study.
Continuity Insights & KPMG LLP Present The 2011-2012 Global Business Continuity Management (BCM) Program Benchmarking Study Sponsored by: Table Of Contents 1 Executive Summary...3 1.1 Introduction...3
More informationThe Pitfalls of DIY Approaches to Disaster Recovery
Business Continuity & Resiliency Services The Pitfalls of DIY Approaches to Disaster Recovery Interactivity Tips 1. Ask A Question 2. Download a PDF copy of today s presentation 3. Social Networking Tools
More informationBusiness Continuity Planning
Business Continuity Planning Presenter Carolyn Bell-Wisdom, CIA, FCCA, FCA, CISA, CFE, Director, Internal Audit Outsourcing, Risk & Business Continuity Services at Jamaica AGENDA Welcome and introduction
More informationWhy Should Companies Take a Closer Look at Business Continuity Planning?
whitepaper Why Should Companies Take a Closer Look at Business Continuity Planning? How Datalink s business continuity and disaster recovery solutions can help organizations lessen the impact of disasters
More informationBusiness Continuity and the Cloud. Aaron Shaver US Signal, Solution Architect
Business Continuity and the Cloud Aaron Shaver US Signal, Solution Architect Overview What is BC/DR? Why should businesses have a strategy? Why do many business choose not to? How does the cloud change
More information2011-2012. Global Business Continuity Management (BCM) Program Benchmarking Study. Continuity Insights & KPMG LLP Present The
Continuity Insights & KPMG LLP Present The 2011-2012 Global Business Continuity Management (BCM) Program Benchmarking Study Retail Segment Report (Final Results) Sponsored by: 2011-2012 Continuity Insights
More informationBusiness Continuity Management Governance. Frank Higgins Abu Dhabi March 2015
Business Continuity Management Governance Frank Higgins Abu Dhabi March 2015 Different Names Same Concept BCM (Business Continuity Management) BSI 25999 IPOCM (Incident Preparedness & Operational Continuity
More informationOrchestrating the New Paradigm Cloud Assurance
Orchestrating the New Paradigm Cloud Assurance Amsterdam 17 January 2012 John Hermans - Partner Current business challenges versus traditional IT Organizations are challenged with: Traditional IT seems
More informationKey Considerations of Regulatory Compliance in the Public Cloud
Key Considerations of Regulatory Compliance in the Public Cloud W. Noel Haskins-Hafer CRMA, CISA, CISM, CFE, CGEIT, CRISC 10 April, 2013 w_haskins-hafer@intuit.com Disclaimer Unless otherwise specified,
More informationWhite Paper: ISO 22301 Business Continuity Management An Overview. ISO 22301 Business Continuity Management An Overview
White Paper: ISO 22301 Business Continuity Management An Overview ISO 22301 Business Continuity Management An Overview Introduction As incidents such as malicious activism, terrorist attacks and environmental
More informationCyber Resilience Implementing the Right Strategy. Grant Brown Security specialist, CISSP @TheGrantBrown
Cyber Resilience Implementing the Right Strategy Grant Brown specialist, CISSP @TheGrantBrown 1 2 Network + Technology + Customers = $$ 3 Perfect Storm? 1) Increase in Bandwidth (extended reach) 2) Available
More informationThe Role of Internal Audit in Risk Governance
The Role of Internal Audit in Risk Governance How Organizations Are Positioning the Internal Audit Function to Support Their Approach to Risk Management Executive summary Risk is inherent in running any
More informationCSC AND THE BUSINESS CONTINUITY MATURITY ASSESSMENT PROGRAM
A WHITE PAPER CSC AND THE BUSINESS CONTINUITY MATURITY ASSESSMENT PROGRAM AUTHORS: Neil A. Smith, MBCP nsmith24@csc.com Sandra Riddell, MBCI sriddel4@csc.com CSC Papers 2013 ABSTRACT The auditors said
More informationCoping with a major business disruption. Some practical advice
Coping with a major business disruption Some practical advice Coping with a major business disruption What is business continuity? Business continuity planning (BCP) is a management process that helps
More informationDisaster Recovery Journal Spring World 2014
Disaster Recovery Journal Spring World 2014 What works: Services and service supply chain business continuity risk management Don Hall, CBCP, Cisco Services Business Continuity Analyst Cisco Systems, Inc.
More informationBy. Mr. Chomnaphas Tangsook Business Director BSI Group ( Thailand) Co., Ltd
BS 25999 Business Continuity Management By. Mr. Chomnaphas Tangsook Business Director BSI Group ( Thailand) Co., Ltd 1 Contents slide BSI British Standards 2006 BS 25999(Business Continuity) 2002 BS 15000
More informationGlobal Headquarters: 5 Speen Street Framingham, MA 01701 USA P.508.872.8200 F.508.935.4015 www.idc.com
W H I T E P A P E R L a c k o f O p e r a t i o n a l R e s i l i e n c e W i l l U n d e r m i n e E n t e r p r i s e C o m p e t i t i v e n e s s : A S t r a t e g y f o r A v a i l a b i l i t y Sponsored
More informationNHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY
NHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY AUTHOR/ APPROVAL DETAILS Document Author Written By: Human Resources Authorised Signature Authorised By: Helen Shields Date: 20
More informationDRAFT BUSINESS CONTINUITY MANAGEMENT POLICY
DRAFT BUSINESS CONTINUITY MANAGEMENT POLICY This document outlines a set of policies and procedures for formalising a Business Continuity programme, and provides guidelines for developing, maintaining
More informationwww.td.com.au Business Continuity - IT Disaster Recovery Discussion Paper - - Commercial in Confidence Version V2.0R Wednesday, 5 September 2012
Business Continuity - IT Disaster Recovery Discussion Paper - - Version V2.0R Wednesday, 5 September 2012 Commercial in Confidence Melbourne Sydney 79-81 Coppin St Level 2 Richmond VIC 3121 414 Kent St
More informationPrinciples for BCM requirements for the Dutch financial sector and its providers.
Principles for BCM requirements for the Dutch financial sector and its providers. Platform Business Continuity Vitale Infrastructuur Financiële sector (BC VIF) Werkgroep BCM requirements 21 September 2011
More informationHow To Transform It Risk Management
The transformation of IT Risk Management kpmg.com The transformation of IT Risk Management The role of IT Risk Management Scope of IT risk management Examples of IT risk areas of focus How KPMG can help
More informationDrive to the top. The journey, lessons, and standards of global business services. kpmg.com
Drive to the top The journey, lessons, and standards of global business services kpmg.com The new normal for global enterprises is about doing more with less while at the same time driving the top line
More informationBeyond Disaster Recovery: Why Your Backup Plan Won t Work
Beyond Disaster Recovery: Why Your Backup Plan Won t Work Contents Introduction... 3 The Data Backup Model - Upgraded for 2015... 4 Why Disaster Recovery Isn t Enough... 5 Business Consequences with DR-Only
More informationThe ABC s of BCP. Jeremy Sucharski Governance Risk and Compliance G31
The ABC s of BCP Jeremy Sucharski Governance Risk and Compliance G31 Jeremy Sucharski, CISA, CRISC Over 12 years of experience CISA and CRISC Certifications Governance, Risk and Compliance Practice Leader
More informationHow to ensure control and security when moving to SaaS/cloud applications
How to ensure control and security when moving to SaaS/cloud applications Stéphane Hurtaud Partner Information & Technology Risk Deloitte Laurent de la Vaissière Directeur Information & Technology Risk
More informationIt s tough to make the right IT decisions...
It s tough to make the right IT decisions... 2016 KPMG LLP, a UK limited liability partnership and a member firm of the KPMG network of independent member firms affiliated with KPMG International Cooperative
More informationBoost BCM Program Maturity: Arm Your Team with the Right Tools. Jason Zimmerman Vice President Operations
Boost BCM Program Maturity: Arm Your Team with the Right Tools Jason Zimmerman Vice President Operations Gartner Rates Incident Management Systems Benefit High In their 2014 Hype Cycle Report, Gartner
More informationEndorsed by: Sponsored by: www.enterprisedata.com.au
Endorsed by: Sponsored by: www.enterprisedata.com.au Table of Contents Executive Summary...3 Survey Objectives...4 The Survey Process...5 Response Profile...6 Key Findings...7 Disruption Profile...9 Alternate
More informationBusiness Continuity Management Emerging Trends
Business Continuity Management Emerging Trends Presentation Title Goes Here Samir Shah CA, CISA, DISA, CIA, CISSP, CFE, ISO 22301 LI Associate Director Axis Risk Consulting March 2013 Outline 2 1. Business
More informationAssessing Your Information Technology Organization
Assessing Your Information Technology Organization Are you running it like a business? By: James Murray, Partner Trey Robinson, Director Copyright 2009 by ScottMadden, Inc. All rights reserved. Assessing
More informationMoving Forward with IT Governance and COBIT
Moving Forward with IT Governance and COBIT Los Angeles ISACA COBIT User Group Tuesday 27, March 2007 IT GRC Questions from the CIO Today s discussion focuses on the typical challenges facing the CIO around
More informationInstitute for Business Continuity Training 1623 Military Road, # 377 Niagara Falls, NY 14304-1745
ECP - 601: Effective Business Continuity Management: ISO 22301 This 3-day course provides an intensive, hands-on workshop covering all major aspects for the design of an effective Business Continuity Plan
More informationA Framework for Business Continuity to Provide High Availability in Floating LNG Operations
A Framework for Business Continuity to Provide High Availability in Floating LNG Operations Pete Winn and Alex Lal Velrada Value without compromise. Today s agenda How does business continuity support
More informationHow to measure your business resiliency
How to measure your business resiliency Define the KPI s/kri s and scorecards to control your security and business continuity capabilities Krzysztof Pulkiewicz BCMLogic krzysztof.pulkiewicz@bcmlogic.com
More informationCRISC Glossary. Scope Note: Risk: Can also refer to the verification of the correctness of a piece of data
CRISC Glossary Term Access control Access rights Application controls Asset Authentication The processes, rules and deployment mechanisms that control access to information systems, resources and physical
More informationEVEREST GROUP NEXT GENERATION IT CONSULTING SERVICES ENTERPRISE TRANSFORMATION
EVEREST GROUP NEXT GENERATION IT CONSULTING SERVICES ENTERPRISE TRANSFORMATION Everest Group passionately believes that management decisions need to be driven by facts and analytics, not speculation and
More informationNeed to protect your business from potential disruption? Prepare for the unexpected with ISO 22301.
Need to protect your business from potential disruption? Prepare for the unexpected with. Why BSI? Keep your business running with and BSI. Our knowledge can transform your organization. For more than
More informationPAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA
1 Chapter-4: Business Continuity Planning and Disaster Recovery Planning PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA Learning Objectives 2 To understand the concept of Business Continuity Management To understand
More informationJOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc.
JOB ANNOUNCEMENT Chief Security Officer, Cheniere Energy, Inc. Position Overview The Vice President and Chief Security Risk Officer (CSRO) reports to the Chairman, Chief Executive Officer and President
More informationKPMG Powered Enterprise
KPMG Powered Enterprise Driving Oracle Cloud-enabled business transformation kpmg.com KPMG Powered Enterprise / 1 Introduction Organizations generally resist changes to their enterprise systems. What
More informationADVISORY SERVICES. Risk management in an evolving world. Making the case for social media governance. kpmg.com
ADVISORY SERVICES Risk management in an evolving world Making the case for social media governance kpmg.com Risk management in an evolving world 3 Why good governance should be the foundation of your social
More informationVoluntary Cybersecurity Initiatives in Critical Infrastructure. Nadya Bartol, CISSP, SGEIT, nadya.bartol@utc.org. 2014 Utilities Telecom Council
Voluntary Cybersecurity Initiatives in Critical Infrastructure Nadya Bartol, CISSP, SGEIT, nadya.bartol@utc.org 2014 Utilities Telecom Council Utility cybersecurity environment is full of collaborations
More informationWith the large number of. How to Avoid Disaster: RIM s Crucial Role in Business Continuity Planning. Virginia A. Jones, CRM, FAI RIM FUNDAMENTALS
How to Avoid Disaster: RIM s Crucial Role in Business Continuity Planning The world has experienced a great deal of natural and man-made upheaval and destruction in the past few years, including tornadoes,
More informationBSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012
To: From: Subject: Status: Date of Meeting: BSO Board Director of Human Resources & Corporate Services Business Continuity Policy For Approval 28 February 2012 The Board is asked to agree the attached
More informationPRACTICAL APPLICATIONS FOR BUSINESS CONTINUITY MANAGEMENT
Karl D Bryant, MBCP, MBCI, CBCLA, PMP Senior Vice President PRACTICAL APPLICATIONS FOR BUSINESS CONTINUITY MANAGEMENT WWW.CHICAGOLANDRISKFORUM.ORG BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW BUSINESS
More informationHow To Improve Your Business
IT Risk Management Life Cycle and enabling it with GRC Technology 21 March 2013 Overview IT Risk management lifecycle What does technology enablement mean? Industry perspective Business drivers Trends
More informationBirmingham CrossCity Clinical Commissioning Group. Business Continuity Management Policy
Birmingham CrossCity Clinical Commissioning Group Business Continuity Management Policy Version V1.0 Ratified by Operational Development Group Date ratified 6 th November 2014 Name of originator / author
More informationPreparing for the Convergence of Risk Management & Business Continuity
Preparing for the Convergence of Risk Management & Business Continuity Disaster Recovery Journal Webinar Series September 5, 2012 2012 Strategic BCP, Inc. All rights reserved. strategicbcp.com 1 Today
More informationERP. Key Initiative Overview
Jeff Woods Research Managing Vice President This overview provides a high-level description of the ERP Key Initiative. IT leaders can use this overview to better understand what they need to do to prepare
More informationWHITE PAPER: STRATEGIC IMPACT PILLARS FOR EFFICIENT MIGRATION TO CLOUD COMPUTING IN GOVERNMENT
WHITE PAPER: STRATEGIC IMPACT PILLARS FOR EFFICIENT MIGRATION TO CLOUD COMPUTING IN GOVERNMENT IntelliDyne, LLC MARCH 2012 STRATEGIC IMPACT PILLARS FOR EFFICIENT MIGRATION TO CLOUD COMPUTING IN GOVERNMENT
More informationRethinking contingency planning for an integrated world
Business Continuity* January 2010 Rethinking contingency planning for an integrated world Highlights: Increased supply chain complexities require broadened scope of contingency planning. Increasing outsourcing
More informationBusiness Continuity Management 101. Patrick Potter, CBCP MHA Consulting ISACA November 19, 2009
Business Continuity Management 101 Patrick Potter, CBCP MHA Consulting ISACA November 19, 2009 1 Who is MHA Consulting Who We Are What We Do Leading boutique consulting firm since 1998 Provider of consulting
More informationservice supply chain business continuity risk management
What works: Services and service supply chain business continuity risk management Don Hall, CBCP Cisco Systems, Inc. March 31, 2014 (Business Continuity Institute, 2012) Cisco Public Information 2 1 Agenda
More informationBuilding A Framework-based Compliance Program. Richard E. Mackey, Jr. Vice President, SystemExperts Corp. dick.mackey@systemexperts.
Building A Framework-based Compliance Program Richard E. Mackey, Jr. Vice President, SystemExperts Corp. dick.mackey@systemexperts.com Agenda The compliance process Assembling requirements Useful frameworks
More informationBusiness Continuity Planning in Indian Perspective
Journal of Advances in Computational Research: An International Journal Vol. 1 No. 1-2 (January-December, 2012) Business Continuity Planning in Indian Perspective Preetish Ranjan Indian Institute of Information
More informationCENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT
CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT JANUARY 2008 GUIDELINE ON BUSINESS CONTINUITY GUIDELINE CBK/PG/14
More informationMHA Consulting. Business Continuity Management 101
0 MHA Consulting Business Continuity Management 101 Presented by: Michael Herrera Brandon Magestro MHA Consulting Agenda MHA Consulting Introduction Business Continuity Management (BCM) Defined 2013 Trends
More information