Emergency Planning and Crisis Management initiatives rolled up into a viable Business Continuity and Enterprise Risk Management Program.
|
|
- Avice Bryant
- 8 years ago
- Views:
Transcription
1 Emergency Planning and Crisis Management initiatives rolled up into a viable Business Continuity and Enterprise Risk Management Program. Or: How I Learned to Stop Worrying and Love the ERM!
2 Is this You?
3 Why Should We Be Concerned and What Are the Trends? U.S. Schools and University Incidents April 2008 to April 2009*= 12 months = 4 per month Bombs and Bomb Threats 13 Shootings 17 Adjacent Police Activity 11 Chemical Release 2 Found Bodies 2 Stabbings 2 Flooding 1 TOTAL * NC4 48 Incidents
4 Trends? U.S. Schools and University Incidents from April 2009 to January 27, 2011*= 21 months = 18 per month Bombs and Bomb Threats 113 Shootings 72 Guns on Campus 59 Evacuations (Fire,Chem,etc) 63 Hostage Situation 6 Stabbings 14 White Powder 6 Misc (Police/Suicides/Bodies) 55 TOTAL * NC4 382 Incidents
5 Trends? U.S. Schools and University Incidents Feb to January Months = 29 per Month Bombs and Bomb Threats 96 Shootings 48 Guns on Campus 36 Evacuations (Fire,Chem,etc) 45 Hostage Situation 3 Stabbings 13 White Powder 40 Misc (Police/Suicides/Bodies) 15 TOTAL * NC4 320 Incidents
6 Trends? U.S. Schools and University Incidents January 2012 to Feb. 4, 2013 = 13 Months = 23 per Month Bombs and Bomb Threats 128 Shootings 50 Guns on Campus 32 Evacuations (Fire,Chem,etc) 28 Hostage Situation 0 Stabbings 5 White Powder 5 Misc (Police/Suicides/Bodies) 45 TOTAL * NC4 293 Incidents
7 KENNESAW STATE INDIVIDUAL UNIT RESPONSIBILITIES ENTERPRISE RISK COORDINATOR SSS/ERM Advisory Group WORKING GROUP STRATEGIC RISKS OPERATIONAL RISKS FINANCIAL RISKS COMPLIANCE AND REGULATORY REPUTATION AND MEDIA RISKS RISKS ENTERPRISE RISK MANAGEMENT DIRECTIVE EMERGENCY MANAGEMENT BUSINESS CONTINUITY DISASTER RECOVERY CRISIS MANAGEMENT Facility or Institution STRATEGIC PLANS
8 EMERGENCY MANAGEMENT Early Warnings Sirens, Big Voice Early Notifications SMS Texts Voice Cell Desktop Computer Override PC Mac Digital Signage Stagnant Scrolling Main Facility Webpage Override Fire Panel (Voice or recorded) Camera (IP and Analog)
9 CRISIS MANAGEMENT What are you trying to accomplish? Who is your customer? What are your resources? What time frame is your expectation? Most shooter events are over in less than 3 minutes! Can you wait for Police appearance?
10 DISASTER RECOVERY Has two meanings IT Data recovery Hot/Cold sites Offsite storage Internal Procedures Physical Facility Predetermined Co. Contract Response time?
11 BUSINESS CONTINUITY Originally CONOPS Concept of Operations Contingency Operations Continuity Of Operations Control Operations Continuous Operations Conduct of Operations TO Business Continuity TO Business Resilience Individual forms to all depts on what they do and with whom Review forms and provide input Identify highest processes to survive Rank others Determine who else supports ops vendors, outside stakeholders, funds Obtain software if possible to correlate results and interface with other depts. Premise what if 75% of your dept. did not show up for work! Identifies processes/procedures as Business Continuity refers to those activities performed daily to maintain service, consistency, and recoverability.
12 Risk Assessment as part of the Business Continuity, Em. Mgt./Crisis Mgt. Planning and Disaster Recovery Now that your baseline Preparedness, Mitigation, Response and Recovery plans and procedures are in place, many of the questions needed in the process have already been answered. However, the next step is determining the Risk through Analysis, Frequency, Type and Severity.
13 KENNESAW STATE INDIVIDUAL UNIT RESPONSIBILITIES ENTERPRISE RISK COORDINATOR SSS/ERM Advisory Group WORKING GROUP STRATEGIC RISKS OPERATIONAL RISKS FINANCIAL RISKS COMPLIANCE AND REGULATORY REPUTATION AND MEDIA RISKS RISKS ENTERPRISE RISK MANAGEMENT DIRECTIVE EMERGENCY MANAGEMENT BUSINESS CONTINUITY DISASTER RECOVERY CRISIS MANAGEMENT Facility or Institution STRATEGIC PLANS
14 Transactional Risk Management (where most are in Risk Mgt. efforts Purchase Insurance Safety and Emergency Preparations separate Claims Management Separate Risks are all perceived as NEGATIVE (Integrated) Advanced Risk Management (Skip?) Use of Alternative Financing Techniques More Proactive Prevention and Reducing Risks Integrates Safety and Em. Mgt. and Claims Mgt. More Collaboration and Fewer Silos (Strategic) Enterprise Risk Management (Includes all above) Top Down approach aligns ERM with Strategy and Mission Strategic, Operational, Financial, Compliance and Reputational Evaluate Opportunities to Risk Taking Offers Risks OWNED and mitigated at Dept. Level Many tools (software) available to assist
15 How does ERM work? Process Establish ERM Framework Step 1 - Identify Project Champion - Identify Project Owner - Establish Steering Committee Identify Key Objectives Step 2 - List key objectives - Prioritize objectives - Select objectives for assessment Identify Key Risks Step 3 - Brainstorm and assess risks - Assign risks of 4 or higher to risk owner Manage Risks Step 4 - Identify current controls and mitigation requirements - Develop mitigation plan for key risks - Conduct qtrly. mtgs. to review status - Initiate steps 2-4 for add. objectives
16 How does ERM work? Establish ERM Framework Step 1 - Identify Project Champion - Identify Project Owner - Establish Steering Committee -Establish Working Group A. Identify Project Champion Executive-level official (President, Chief X Officer) who will provide support and direction to process. B. Identify Project Owner - Senior-level official who will provide ongoing management and oversight to ERM implementation. C. Establish Steering Committee Executive/senior-level officials representing key organizational areas. Working Groups will be established based on departments and assess key risks. 16
17 How does ERM work Identify Key Objectives Step 2 - List key objectives - Prioritize objectives - Select objectives for assessment A. List key objectives Working Group identifies institutional and strategic objectives. B. Prioritize objectives Steering Committee uses ranking or other system to select top objectives (should not exceed 3-5 objectives per division head). C. Select Main Institute Risks for assessment Steering Committee selects 4-6 top Risks for initial risk assessment by the Working Group that are mainly full Institute wide risks that an individual department is incapable of providing relief itself.
18 How does ERM work? Identify Key Risks Step 3 - Brainstorm and assess risks - Assign Key Risks to risk owner A. Brainstorm and assess risks Working Group conducts initial risk assessment through calculation of impact and likelihood without consideration of current controls or mitigation plans. 1. Working Group must understand the key components/process associated with selected objectives. 2. Working Group performs risk ranking with guidance from Project Owner. 3. Steering Committee validates risk ranking to Project Champion B. Steering Committee, with Project Owner, selects Key Risks and assigns to a specific Risk Owner.
19 How does ERM work? Identify KEY Risks Risk Identification sorted by adjusted risk score Likelihood of occurring 1 - low 2 - medium 3 high 4- critical Potential impact 1 low; unlikely to have a permanent or significant effect on institution s reputation or achievement of its strategic objectives. 2 - medium; will have a significant impact on institution but can be managed without major impact. 3 - high; will have a significant effect on institution and requires a major effort to manage and resolve the occurrence, as well as its ramifications 4 - critical; will threaten the existence of the institution if not resolved.
20 How does ERM work? Manage Risks Step 4 - Identify current controls and mitigation requirements - Develop mitigation plan for key risks - Conduct qtrly. mtgs. to review status - Initiate steps 2-4 for add. objectives A. Identify current controls and mitigation requirements Risk owners identify the current controls, mitigation steps, or other actions already taken by the institution to reduce risk. The risk is assessed again to determine likelihood and impact. B. Develop mitigation plan for key risks Risk owners develop mitigation plans for risks still ranked 3 or higher. C. *Conduct meetings to review status Steering Committee holds initial meeting to approve and to review the status of risk owner mitigation plans. Risk scores may be adjusted by the Steering Committee to reflect the risk after implementation of the mitigation plan. D. Continue process Project Owner incorporates new risks into the ERM process (steps 2-4) as current risks are mitigated by risk owners.
21 Strategic Risks Those Risks that are the long range goals and objectives of any company or institution that if compromised, may affect the entire course and survivability: In essence, the failure to achieve those objectives. The funding formula for allocating budgets has been changed with the possibility of layoffs and furloughs. Technology changes that affect your long range plans on previously procured computer support. The inability to obtain qualified professors or instructors for disciplines offered. The Regents have decided to consolidate college and universities and yours is involved in order to save money. A specific brand of computer has been discontinued due to the company bankrupcy. The previously offered academic discipline has not enough students registered and cannot support the present faculty or staff.
22 Operational Risks Those Risks that usually attributed to human forces that either fail to respond or fail to prevent actions from affecting the health and welfare of the company. Power outages for facilities with no backup options Strikes and other labor issues that affect day to day operations requiring backup plan. A Pandemic Flu outbreak with no plan to staff primary support operational functions. The main server/s are down and no plan for redundant backup exists or no trained personnel are available for support. Gas prices go sky high or fuel is not available for your fleet. The 3 rd party supply chain vendor is going out of business and you have no backup vendor prepared to step in.
23 Financial Risks Those Risks that affect the bottom line financial stability of the college or institution. The inability to maintain payroll due to budget changes from State or Private funds. The investment strategy previously embraced by your Foundation management is no longer embraced by the Board of Directors. You ve been asked to reduce your budget allocation by 10% for the next fiscal year and face consequences of program curtailment. Your project enrollment does not come near the current status for this fiscal year. Potential loss of tax-exempt status due to any number of risks associated with the school. Loss of funding from Federal, State or Local government agencies.
24 Compliance Risks Those Risks that pertain to the company s obligations to laws, regulations, contracts, strategies and policies that if compromised, could affect the health and welfare of the University or Institution. Environmental Health and Safety issues with OSHA. Nuclear Regulatory Regulations relative to handling radioactive materials and transport. Title IX regulations affecting fedral funding in Universities. One of your main researchers has been pouring biospecific samples down the main sink in his lab. A significant quantity of radioactive materials is missing from the inventory list and the inspectors are due this week. A student has reported that she was sexually assaulted and you did nothing about it.
25 Reputational Risks Those Risks that pertain to the Institution s character or quality of service that is projected by its students, faculty and staff and if negative, could adversely affect its long term survivability. The methods your professors and instructors use when teaching courses. The SAT scores needed to enroll at your school. The publications of faculty and staff in journals and magazines reflecting opinionated topics. During a class, a professor removes his clothes to give an example of free speech. Discovery that many applicants to the university submitted SAT test scores taken by another student to get in. A high ranking job opening in the academic side of your Institution did not get applicants properly vetted before making the offer.
26 Key Points to Remember Risk, in one form or another, is present in virtually all worthwhile endeavors. ERM is a management tool this process can and should be changed to work for YOUR organization. ERM ultimately should change the organizational culture however, change is slow, painful, and time-consuming. Frustration and confusion are simply part of the process the long-term result is worth it.
27 Contact Robert F. (Bob) Lang CSO, CPP, CEM
Business Continuity Planning for Schools, Departments & Support Units
Business Continuity Planning for Schools, Departments & Support Units 1 What is Business Continuity Planning? Examples Planning for an adverse, major or catastrophic event that would cause a disruption
More informationPage Administrative Summary...3 Introduction Comprehensive Approach Conclusion
TABLE OF CONTENTS Page Administrative Summary...3 Introduction Comprehensive Approach Conclusion PART 1: PLANNING General Considerations and Planning Guidelines... 4 Policy Group Oversight Committee Extended
More informationBUSINESS IMPACT ANALYSIS.5
Table of Contents I. GENERAL.3 Introduction.3 Scope.3 Components.3 II. BUSINESS IMPACT ANALYSIS.5 Academic Affairs...5 Finance and Administration.6 Planning and Accountability..8 Student Affairs.8 Institutional
More informationwww.pwc.com Business Resiliency Business Continuity Management - January 14, 2014
www.pwc.com Business Resiliency Business Continuity Management - January 14, 2014 Agenda Key Definitions Risks Business Continuity Management Program BCM Capability Assessment Process BCM Value Proposition
More informationThe PNC Financial Services Group, Inc. Business Continuity Program
The PNC Financial Services Group, Inc. Business Continuity Program subsidiaries) 1 Content Overview A. Introduction Page 3 B. Governance Model Page 4 C. Program Components Page 4 Business Impact Analysis
More informationEnterprise Risk Management Panel Discussion
Enterprise Risk Management Panel Discussion Facilitators Bill Cole, VCU and VCUHS CAE Michael Bordoni, former Emory University CAE, now DHG (Dixon Hughes Goodman LLP) Risk Advisory Services Partner Gary
More informationCENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT
CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT JANUARY 2008 GUIDELINE ON BUSINESS CONTINUITY GUIDELINE CBK/PG/14
More informationPAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA
1 Chapter-4: Business Continuity Planning and Disaster Recovery Planning PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA Learning Objectives 2 To understand the concept of Business Continuity Management To understand
More informationThe PNC Financial Services Group, Inc. Business Continuity Program
The PNC Financial Services Group, Inc. Business Continuity Program 1 Content Overview A. Introduction Page 3 B. Governance Model Page 4 C. Program Components Page 4 Business Impact Analysis (BIA) Page
More informationBusiness Continuity Management Review
Office of Internal Audit Business Continuity Management Review November 14, 2014 Internal Audit Team Shannon Henry Chief Audit Officer & Executive Director of Institutional Compliance Stacy Sneed Audit
More informationCornell University EMERGENCY MANAGEMENT PROGRAM
Cornell University EMERGENCY MANAGEMENT PROGRAM Table of Contents Table of Contents Section 1 INTRODUCTION... 2 Section 2 EMERGENCY MANAGEMENT COMPONENTS... 3 Prevention-Mitigation Plan... 3 Preparedness
More informationAll-Hazard Continuity of Operations Plan. [Department/College Name] [Date]
d All-Hazard Continuity of Operations Plan [Department/College Name] [Date] TABLE OF CONTENTS SECTION I: INTRODUCTION... 3 Executive Summary... 3 Introduction... 3 Goal... 4 Purpose... 4 Objectives...
More informationBusiness Continuity Planning Toolkit. (For Deployment of BCP to Campus Departments in Phase 2)
Business Continuity Planning Toolkit (For Deployment of BCP to Campus Departments in Phase 2) August 2010 CONTENTS: Background Assumptions Business Impact Analysis Risk (Vulnerabilities) Assessment Backup
More informationThe Commonwealth of Massachusetts. 1 Ferncroft Road, P.O. Box 3340, Danvers, MA 01923-0840
The Commonwealth of Massachusetts 1 Ferncroft Road, P.O. Box 3340, Danvers, MA 01923-0840 Emergency Response Plan 2013 Executive Approved February 18, 2014 I. Mission Statement An emergency can arise at
More informationSouth West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy
South West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy Reference No: CG 01 Version: Version 1 Approval date 18 December 2013 Date ratified: 18 December 2013 Name of Author
More informationUNIVERSITY OF CALIFORNIA, MERCED EMERGENCY NOTIFICATION SYSTEM (UCMAlert)
UNIVERSITY OF CALIFORNIA, MERCED EMERGENCY NOTIFICATION SYSTEM (UCMAlert) RESPONSIBLE OFFICER : Vice Chancellor - Administration EFFECTIVE DATE : REVISION NUMBER : Original NUMBER OF PAGES : 8 I. REFERENCES
More informationThe Essentials of Enterprise Risk Management. Steven C. Tourek, Senior Vice President, General Counsel & Secretary, The Marvin Companies
The Essentials of Enterprise Risk Management Steven C. Tourek, Senior Vice President, General Counsel & Secretary, The Marvin Companies Introduction How should an organization think about the management
More informationUNION COLLEGE INCIDENT RESPONSE PLAN
UNION COLLEGE INCIDENT RESPONSE PLAN The college is committed to supporting the safety and welfare of all its students, faculty, staff and visitors. It also consists of academic, research and other facilities,
More information2008-2009 2008-2009 TRENDS IN BUSINESS CONTINUITY AND CRISIS COMMUNICATIONS SURVEY
2008-2009 The Second Annual Trends in Business Continuity and Crisis Communications Survey has been completed with over 700 participants from a wide range of industries and organizational sizes. The Disaster
More informationStaying In Business. A Business Continuity White Paper by. Paul O Brien and Gerard Joyce. LinkResQ Limited
Staying In Business A Business Continuity White Paper by Paul O Brien and Gerard Joyce LinkResQ Limited Contents: Introduction. 2 What is Business Continuity? 2 Loss Events = Opportunities for Disaster..
More informationDesktop Scenario Self Assessment Exercise Page 1
Page 1 Neil Jarvis Head of IT Security & IT Risk DHL Page 2 From reputation to data loss - how important is business continuity? Neil Jarvis Head of IT Security (EMEA) DHL Logistics IT Security Taking
More informationOhio Supercomputer Center
Ohio Supercomputer Center IT Business Continuity Planning No: Effective: OSC-13 06/02/2009 Issued By: Kevin Wohlever Director of Supercomputer Operations Published By: Ohio Supercomputer Center Original
More informationBUSINESS CONTINUITY PLANNING
Policy 8.3.2 Business Responsible Party: President s Office BUSINESS CONTINUITY PLANNING Overview The UT Health Science Center at San Antonio (Health Science Center) is committed to its employees, students,
More informationCRISIS MANAGEMENT PLAN
CRISIS MANAGEMENT PLAN Table of Contents Introduction... 3 Purpose... 3 Objectives... 3 Types & Levels of a Crisis... 4 Plan Activation... 6 Crisis Management Team (CMT) Structure... 6 CMT Responsibilities...
More informationThe Weill Cornell Medical College and Graduate School of Medical Sciences. Responsible Department: Information Technologies and Services (ITS)
Information Technology Disaster Recovery Policy Policy Statement This policy defines acceptable methods for disaster recovery planning, preparedness, management and mitigation of IT systems and services
More informationAn Introduction to. Business Continuity Planning
An Introduction to Business Continuity Planning Company Profile Practical Experience European Head Office Extensive Client Base Established 1998 Expert Consultants Global Network Why BCP? I am often asked
More informationWestern Washington University Basic Plan 2013. A part of Western s Comprehensive Emergency Management Plan
2013 A part of Western s Record of Changes Change # Date Entered Description and Location of Change(s) Person making changes 2 1. PURPOSE, SCOPE, SITUATION OVERVIEW, ASSUMPTIONS AND LIMITATIONS A. PURPOSE
More informationChapter 1: An Overview of Emergency Preparedness and Business Continuity
Chapter 1: An Overview of Emergency Preparedness and Business Continuity After completing this chapter, students will be able to: Describe organization and facility stakeholder needs during and after emergencies.
More informationOREGON STATE UNIVERSITY MASTER EMERGENCY MANAGEMENT PLAN
OREGON STATE UNIVERSITY MASTER EMERGENCY MANAGEMENT PLAN Last Edit 2/8/2011 OVERVIEW This document provides a management framework for responding to incidents that may threaten the health and safety of
More informationDISASTER RECOVERY PLANNING FOR CITY COMPUTER FACILITIES
APPENDIX 1 DISASTER RECOVERY PLANNING FOR CITY COMPUTER FACILITIES March 2008 Auditor General s Office Jeffrey Griffiths, C.A., C.F.E. Auditor General City of Toronto TABLE OF CONTENTS EXECUTIVE SUMMARY...1
More informationTemple university. Auditing a business continuity management BCM. November, 2015
Temple university Auditing a business continuity management BCM November, 2015 Auditing BCM Agenda 1. Introduction 2. Definitions 3. Standards 4. BCM key elements IT Governance class - IT audit program
More informationCreating a Business Continuity Plan for your Health Center
Creating a Business Continuity Plan for your Health Center 1 Page Left Intentionally Blank 2 About This Manual This tool is the result of collaboration between the Primary Care Development Corporation
More informationBUSINESS CONTINUITY PLANNING GUIDELINES
BUSINESS CONTINUITY PLANNING GUIDELINES Washington University in St. Louis The purpose of this guide is to serve as a tool to all departments, divisions, and labs across the University in building a Business
More informationManaging business risk
Managing business risk What senior managers need to know about business continuity bell.ca/businesscontinuity Information and Communications Technology (ICT) has become more vital than ever to the success
More informationGood Security. Good Business
Good Security Good Business Good Security Good Business Attorney-General s foreword Small business plays a crucial role, not only in our nation s economy but in Australian society. We often make decisions
More informationBusiness Continuity & Recovery Plan Summary
Introduction An organization s ability to survive a significant business interruption is determined by the company s ability to develop, implement, and maintain viable recovery and business continuity
More informationBusiness Continuity Management & Disaster Recovery GETTING STARTED Checklist for Local Businesses & Organisations
Business Continuity Management & Disaster Recovery GETTING STARTED Checklist for Local Businesses & Organisations Name of Organisation: Date: This Document has been designed to assist local businesses
More informationBusiness Continuity Planning. Presentation and. Direction
Business Continuity Planning Presentation and Direction Thomas Bronack, president Data Center Assistance Group, Inc. 15180 20 th Avenue Whitestone, NY 11357 Phone: (718) 591-5553 Email: bronackt@dcag.com
More informationBuilding and Maintaining a Business Continuity Program
Building and Maintaining a Business Continuity Program Successful strategies for financial institutions for effective preparation and recovery Table of Contents Introduction...3 This white paper was written
More informationNCUA LETTER TO CREDIT UNIONS
NCUA LETTER TO CREDIT UNIONS NATIONAL CREDIT UNION ADMINISTRATION 1775 Duke Street, Alexandria, VA 22314 DATE: December 2001 LETTER NO.: 01-CU-21 TO: SUBJ: ENCL: All Federally Insured Credit Unions Disaster
More informationAdministration & Finance
Issuing Office: Vice Chancellor Policy Number: FY13-A&F-004-01 for Policy Name: UMass Boston Alert System Original Date Issued: April 24, 2013 Revision #: 1 Last Update: August 13, 2014 Purpose of Policy:
More informationBusiness Continuity (Policy & Procedure)
Business Continuity (Policy & Procedure) Publication Scheme Y/N Can be published on Force Website Department of Origin Force Operations Policy Holder Ch Supt Head of Force Ops Author Business Continuity
More informationBusiness Continuity Planning and Disaster Recovery Planning
4 Business Continuity Planning and Disaster Recovery Planning Basic Concepts 1. Business Continuity Management: Business Continuity means maintaining the uninterrupted availability of all key business
More informationNEEDS BASED PLANNING FOR IT DISASTER RECOVERY
The Define/Align/Approve Reference Series NEEDS BASED PLANNING FOR IT DISASTER RECOVERY Disaster recovery planning is essential it s also expensive. That s why every step taken and dollar spent must be
More informationThe Joint Commission Approach to Evaluation of Emergency Management New Standards
The Joint Commission Approach to Evaluation of Emergency Management New Standards (Effective January 1, 2008) EC. 4.11 through EC. 4.18 Revised EC. 4.20 Emergency Management Drill Standard Lewis Soloff
More informationBusiness Continuity and Disaster Recovery Planning
Business Continuity and Disaster Recovery Planning Jennifer Brandt, CISA A p r i l 16, 2015 HISTORY OF STINNETT & ASSOCIATES Stinnett & Associates (Stinnett) is a professional advisory firm offering services
More informationEMERGENCY PREPAREDNESS PLAN Business Continuity Plan
EMERGENCY PREPAREDNESS PLAN Business Continuity Plan GIS Bankers Insurance Group Powered by DISASTER PREPAREDNESS Implementation Small Business Guide to Business Continuity Planning Surviving a Catastrophic
More informationQ uick Guide to Disaster Recovery Planning An ITtoolkit.com White Paper
This quick reference guide provides an introductory overview of the key principles and issues involved in IT related disaster recovery planning, including needs evaluation, goals, objectives and related
More informationDisaster Recovery Plan
Disaster Recovery Plan This guide sets forth items to consider in the review of the firm s disaster recovery plan. You should form a committee to assess the plan and should assign activities under the
More informationHow to Design and Implement a Successful Disaster Recovery Plan
How to Design and Implement a Successful Disaster Recovery Plan Feb. 21 ASA Office-Administrative Section is Sponsored by Today s ASAPro Webinar is Brought to You by the How to Ask a Question Questions
More informationCONTINUITY OF OPERATIONS AUDIT PROGRAM EVALUATION AND AUDIT
CONTINUITY OF OPERATIONS AUDIT PROGRAM EVALUATION AND AUDIT April 16, 2014 INTRODUCTION Purpose The purpose of the audit is to give assurance that the development of the Metropolitan Council s Continuity
More informationBUSINESS CONTINUITY POLICY
BUSINESS CONTINUITY POLICY Last Review Date Approving Body n/a Audit Committee Date of Approval 9 th January 2014 Date of Implementation 1 st February 2014 Next Review Date February 2017 Review Responsibility
More informationChapter I: Fundamentals of Business Continuity Management
Chapter I: Fundamentals of Business Continuity Management Objectives Define Business Continuity Management (BCM) Define the relationship between BCM and risk management Review BCM responsibilities Identify
More informationRisk Based Internal Auditing & Enterprise Risk
Risk Based Internal Auditing & Enterprise Risk Management PRESENTERS: JUDITH NELSON, UNIVERSITY MANAGEMENT AUDITOR DWIGHT WALTERS, MANAGER, PROJECTS & COMMERCIAL OPERATIONS What we will cover today: 1.
More informationRisk Management How to manage your brand & build business resilience to improve your bottom line
2010 RMIA Members Forum Primary focus for RMIA in 2011 Risk Management How to manage your brand & build business resilience to improve your bottom line Grant Whitehorn RMIA Chief Executive Officer CPA
More informationNAIT Guidelines. Implementation Date: February 15, 2011 Replaces: July 1, 2008. Table of Contents. Section Description Page
Recommended by Emergency Preparedness Committee: January 26, 2011 Recommended by President s Council: February 11, 2011 Approved by Executive Committee: February 14, 2011 NAIT Guidelines CS1.1 Emergency
More information85-01-55 Overview of Business Continuity Planning Sally Meglathery Payoff
85-01-55 Overview of Business Continuity Planning Sally Meglathery Payoff Because a business continuity plan affects all functional units within the organization, each functional unit must participate
More informationIntel Business Continuity Practices
Intel Business Continuity Practices As a global corporation with locations and suppliers all over the world, Intel requires every designated Intel organization to embed business continuity as a core business
More informationWhy Should Companies Take a Closer Look at Business Continuity Planning?
whitepaper Why Should Companies Take a Closer Look at Business Continuity Planning? How Datalink s business continuity and disaster recovery solutions can help organizations lessen the impact of disasters
More informationEmergency Preparedness Guidelines
DM-PH&SD-P7-TG6 رقم النموذج : I. Introduction This Guideline on supports the national platform for disaster risk reduction. It specifies requirements to enable both the public and private sector to develop
More informationBusiness Continuity Plan
Business Continuity Plan October 2007 Agenda Business continuity plan definition Evolution of the business continuity plan Business continuity plan life cycle FFIEC & Business continuity plan Questions
More informationVirginia Commonwealth University School of Medicine Information Security Standard
Virginia Commonwealth University School of Medicine Information Security Standard Title: Scope: Business Continuity Management Standard for IT Systems This standard is applicable to all VCU School of Medicine
More informationCONTINUITY OF OPERATIONS PLAN TEMPLATE
CONTINUITY OF OPERATIONS PLAN TEMPLATE For Long-Term Care Facilities CALIFORNIA ASSOCIATION OF HEALTH FACILITIES DISASTER PREPAREDNESS PROGRAM TABLE OF CONTENTS TABLE OF CONTENTS...2 SECTION 1: INTRODUCTION...3
More informationBusiness Continuity Management
Business Continuity Management cliftonlarsonallen.com Introductions Brian Pye CliftonLarsonAllen Senior Manager Business Risk Services group 15 years of experience with Business Continuity Megan Moore
More informationEnterprise-Wide Risk Assessment
Enterprise-Wide Risk Assessment Agenda 1. Definition of risk. 2. Risk drivers in higher education today. 3. Implementing an enterprise-wide risk management (ERM) program to effectively assess, manage,
More informationBuilding a Disaster Recovery Program By: Stieven Weidner, Senior Manager
Building a Disaster Recovery Program By: Stieven Weidner, Senior Manager Part two of a two-part series. If you read my first article in this series, Building a Business Continuity Program, you know that
More informationBUSINESS CONTINUITY PLANNING
BUSINESS CONTINUITY PLANNING INDEX Description Page Index 1 Template 1 - Plan Version Control 2 Background 3 Purpose of Business Continuity Plan 3 Roles and Responsibilities 3 Complimentary Links 4 Service/
More informationBusiness Continuity Planning in IT
Introduction: Business Continuity Planning in IT The more your business relies on its IT systems, the more you need to consider how unexpected disruptions might affect your business. These disruptions
More informationBoost BCM Program Maturity: Arm Your Team with the Right Tools. Jason Zimmerman Vice President Operations
Boost BCM Program Maturity: Arm Your Team with the Right Tools Jason Zimmerman Vice President Operations Gartner Rates Incident Management Systems Benefit High In their 2014 Hype Cycle Report, Gartner
More informationBusiness Continuity Overview
Business Continuity Overview Beverley A. Retjos Senior Manager WW SWG Security & Controls 03/12/07 Business Continuity Management (BCM) Process of ensuring that a business is prepared to survive any disruption
More informationDisaster Recovery and Business Continuity What Every Executive Needs to Know
Disaster Recovery and Business Continuity What Every Executive Needs to Know Bruce Campbell & Sandra Evans Contents Why you need DR and BC What constitutes a Disaster? The difference between disaster recovery
More informationBusiness Continuity Management Policy
Governance 1 Purpose The purpose of this policy is to communicate Business Continuity Management (BCM) framework, responsibilities and guiding principles for Victoria to effectively prepare for and achieve
More informationPolicy 10.105: Enterprise Risk Management Policy
Name: Responsibility: Complements: Enterprise Risk Management Framework Coordinator, Enterprise Risk Management Policy 10.105: Enterprise Risk Management Policy Date: November 2006 Revision Date(s): January
More informationa Disaster Recovery Plan
Construction of a Disaster Recovery Plan David Godwin, Sr. Sales Engineer March 18, 2014 Objectives Understand What Disaster Recovery is? Why is Disaster Recovery Needed? Effectively assist customers or
More informationIn accordance with risk management best practices, below describes the standard process for enterprise risk management (ERM), including:
Enterprise Risk Management Process and Procedures Scope In accordance with risk management best practices, below describes the standard process for enterprise risk management (ERM), including: Risk identification
More informationBusiness Continuity Planning
Business Continuity Planning CSH5 Chapter 58 Business Continuity Planning Michael Miora Justifying Costs of BCP 1 Copyright 2014 M. E. Kabay. All rights reserved. 2 Copyright 2014 M. E. Kabay. All rights
More informationGeorgia College Emergency Notification System Activation Protocols
Georgia College Emergency Notification System Activation Protocols Georgia College & State University Office of Emergency Preparedness and Occupational Safety December 2013 I. Introduction and Purpose
More informationBusiness Continuity and Disaster Planning
WHITE PAPER Business Continuity and Disaster Planning A guide to preparing for the unexpected Robert Drewniak Director, Strategic & Advisory Services Disasters are not always the result of high winds and
More informationDisaster Recovery and Business Continuity Planning Workshop. Jane Drews University IT Security Officer June 30, 2009
Disaster Recovery and Business Continuity Planning Workshop Jane Drews University IT Security Officer June 30, 2009 2 Learning Objectives 1. Identify the components of effective Disaster Recovery & Business
More informationEMERGENCY PREPAREDNESS TEMPLATE
EMERGENCY PREPAREDNESS TEMPLATE *This template is designed to help facilities keep track of emergency preparedness information. The fields can be typed in online or the form can be printed out and done
More informationFlyntGroup.com. Enterprise Risk Management and Business Impact Analysis: Understanding, Treating and Monitoring Risk
Enterprise Risk Management and Business Impact Analysis: Understanding, Treating and Monitoring Risk 2012 The Flynt Group, Inc., All Rights Reserved FlyntGroup.com Enterprise Risk Management and Business
More informationU.S. Nuclear Regulatory Commission
U.S. Nuclear Regulatory Commission 2011 Data Center Consolidation Plan and Progress Report Version 2.0 September 30, 2011 Enclosure Contents 1 Introduction... 2 2 Agency Goals for Data Center Consolidation...
More informationAppendix 3 Disaster Recovery Plan
Appendix 3 Disaster Recovery Plan December 13, 2006 Revision XXQwest Government Services, Inc. 4250 North Fairfax DriveArlington, VA 22203(Delete this page)revision history Revision Number Revision Date
More informationCoping with a major business disruption. Some practical advice
Coping with a major business disruption Some practical advice Coping with a major business disruption What is business continuity? Business continuity planning (BCP) is a management process that helps
More informationBusiness Continuity Policy
Page 1 of 16 Business Continuity Policy Issue Date: Aug 2013 Document Number: 00241 Prepared by: Business Management and Continuity Senior Manager Next Review Date: April 2014 Page 2 of 16 NHS England
More informationDevelop Your Disaster Recovery Manual. More work? Call his wife, he s lost it! Oh my God! This stinks
Develop Your Disaster Recovery Manual This stinks More work? Oh my God! Call his wife, he s lost it! Disaster/Emergency Preparedness General steps to an effective Disaster Recovery (DR) Plan include: 1.
More informationDepartment of Environmental Health & Safety Con6nuity Planning Program Training - Partnership - Compliance. Continuity Planning Training
Continuity Planning Training Continuity Planning We are required by State law and by UT System policy (UTS) 172 to have continuity of operation plans in place to insure continued operations of all of our
More informationPOINT UNIVERSITY CAMPUS SECURITY Emergency Response Plan
POINT UNIVERSITY CAMPUS SECURITY Emergency Response Plan Introduction The Point University Emergency Response Plan establishes guidelines for campus-wide communication, service coordination and safety
More informationUnderstanding Enterprise Risk Management. Presented by Dorothy Gjerdrum Arthur J Gallagher
Understanding Enterprise Risk Management Presented by Dorothy Gjerdrum Arthur J Gallagher Learning Objectives Understand the components of a wellrun ERM program Review scope and process Explore the role
More informationNORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00)
NORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00) Subject and version number of document: Serial Number: Business Continuity Management Policy
More informationICS for LAUSD EOC and DOC Operation
ICS for LAUSD EOC and DOC Operation Below is some background information on the Incident Command System (used at our schools and in other field operations) and how it applies in an EOC environment. From
More informationEnterprise Risk Management taking on new dimensions
Enterprise Risk Management taking on new dimensions October 2006 The practice of Enterprise Risk Management (ERM) is becoming more critical and complex every day. There is a growing need for organizations
More informationBusiness Continuity & Recovery Plan Summary
Introduction An organization s ability to survive a significant business interruption is determined by the company s ability to develop, implement, and maintain viable recovery and business continuity
More informationThe New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework
The New International Standard on the Practice of Risk Management A Comparison of ISO 31000:2009 and the COSO ERM Framework Dorothy Gjerdrum, ARM-P, Chair of the ISO 31000 US TAG and Executive Director,
More informationBusiness Continuity Policy
Business Continuity Policy Page 1 of 15 Business Continuity Policy First published: Amendment record Version Date Reviewer Comment 1.0 07/01/2014 Debbie Campbell 2.0 11/07/14 Vicky Ryan Updated to include
More informationBusiness Continuity Planning Guide
Business Continuity Planning Guide For Small Businesses Prepared by the City of Vaughan Emergency Planning Department 1 Business Continuity Planning Business Continuity Planning (BCP) is a planning process
More informationContinuity Planning and Disaster Recovery
Responsible Officer: AVP - Information Technology Services & UC Chief Information Officer Responsible Office: IT - Information Technology Services Issuance Date: 7/27/2007 Effective Date: 7/27/2007 Scope:
More informationEnterprise Risk Management. Breaking Down the Barriers at Emory
Enterprise Risk Management Breaking Down the Barriers at Emory Willis Healthcare Forum Nashville, TN July 10, 2007 Shulamith Klein Senior Director Office of Risk & Insurance Services The Emory Enterprise
More informationSCADA Business Continuity and Disaster Recovery. Presented By: William Biehl, P.E. 913-601-0104 (mobile) Bill.Biehl@we-inc.com
SCADA Business Continuity and Disaster Recovery Presented By: William Biehl, P.E. 913-601-0104 (mobile) Bill.Biehl@we-inc.com Business Continuity Planning, a Sound Process A Business Continuity Plan: "A
More informationTable of Contents... 1
... 1 Chapter 1 Introduction... 4 1.1 Executive Summary... 4 1.2 Goals and Objectives... 5 1.3 Senior Management and Board of Directors Responsibilities... 5 1.4 Business Continuity Planning Processes...
More information