Business Continuity, Risk Management & Pandemic Planning



Similar documents
Desktop Scenario Self Assessment Exercise Page 1

Sample Model Security Management Plan

Business Resiliency Business Continuity Management - January 14, 2014

RLI PROFESSIONAL SERVICES GROUP PROFESSIONAL LEARNING EVENT PSGLE 125. When Disaster Strikes Are You Prepared?

Business Continuity Planning for Schools, Departments & Support Units

BUSINESS CONTINUITY PLANNING

Business Continuity Planning. Presentation and. Direction

Intel Business Continuity Practices

Institute for Business Continuity Training 1623 Military Road, # 377 Niagara Falls, NY

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

International Diploma in Risk Management Syllabus

KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity

Business Continuity Planning (800)

Version: 3.0. Effective From: 19/06/2014

Operational Risk Management Policy

Disaster Recovery. Stanley Lopez Premier Field Engineer Premier Field Engineering Southeast Asia Customer Services and Support

FlyntGroup.com. Enterprise Risk Management and Business Impact Analysis: Understanding, Treating and Monitoring Risk

Business Continuity Planning: Bridging the Gap Between IT and Business

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT

BUSINESS CONTINUITY POLICY

Business Continuity Plan

MEDIA RELEASE. IOSCO reports on business continuity plans for trading venues and intermediaries

Business Continuity and Disaster Recovery Planning 3/16/2011. Lee Goldstein CPCP, MBCI President Business Contingency Group

Consultative report. Committee on Payment and Settlement Systems. Board of the International Organization of Securities Commissions

Pandemic Planning. Presented by: Ron Wagner, IT Examiner with FDIC & Dana Lavey, Supervision Analyst with NCUA

APICS INSIGHTS AND INNOVATIONS SUPPLY CHAIN RISK CHALLENGES AND PRACTICES

PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA

LAWRENCE COUNTY, KENTUCKY EMERGENCY OPERATIONS PLAN ESF-13

BCOE-PF1 Pandemic Influenza : Building a Continuity Plan

NIMS ICS 100.HCb. Instructions

Salem Community College Course Syllabus. Section I. Course Title: Principles of Emergency Management. Course Code: EME101.

Interagency Statement on Pandemic Planning

An Introduction to. Business Continuity Planning

Home Care and Hospice Emergency Preparedness

The Business Continuity Maturity Continuum

BUSINESS CONTINUITY PLAN. Specific Issues for Public Health Emergencies. Guidelines for Air Carriers

Business Continuity and Emergency Preparedness Planning. Vandita Zachariah, MA, MBA, CIA HHSC Internal Audit Division May 21, 2010

WEST YORKSHIRE FIRE & RESCUE SERVICE. Business Continuity Management Strategy

This presentation will introduce you to the concepts and terminology related to disaster recovery planning for businesses.

Business Continuity at CME Group

Data Center Assistance Group, Inc. DCAG Contact: Tom Bronack Phone: (718) Fax: (718)

Qualifications FISK CONSULTANTS

How To Assess A Critical Service Provider

PRACTICAL APPLICATIONS FOR BUSINESS CONTINUITY MANAGEMENT

Table of Contents... 1

Why Should Companies Take a Closer Look at Business Continuity Planning?

A structured approach to Enterprise Risk Management (ERM) and the requirements of ISO 31000

Business Continuity Management Governance. Frank Higgins Abu Dhabi March 2015

NHS Hardwick Clinical Commissioning Group. Business Continuity Policy

CRISC Glossary. Scope Note: Risk: Can also refer to the verification of the correctness of a piece of data

Accreditation Application Forms

Principles for BCM requirements for the Dutch financial sector and its providers.

TRUST POLICY FOR EMERGENCY PLANNING

Chapter 2 Enterprise Risk Management Process

Risk Based Internal Auditing & Enterprise Risk

HEALTH INFORMATION MANAGEMENT

London Borough of Bromley. Executive & Resources PDS Committee. Disaster Recovery Plans for London Borough of Bromley

An Overview of Professional Directors and Officers Liability in Disaster Preparedness and Recovery Planning

Ohio Conference for Payroll Professionals Disaster Recovery

CANCELED INTRODUCTION TO THE EMERGENCY MANAGEMENT GUIDE. Emergency. Management. Guide VOLUME I. August 1997 DOE G

Why Crisis Response and Business Continuity Plans Fail

BUSINESS CONTINUITY MANAGEMENT FRAMEWORK

POL ENTERPRISE RISK MANAGEMENT SC51. Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT:

WHS Risk Assessment and Control Form

Office of Professional & Continuing Education 301 OD Smith Hall Auburn, AL Contact: Shavon Williams

Chapter 1: An Overview of Emergency Preparedness and Business Continuity

November 2007 Recommendations for Business Continuity Management (BCM)

Comprehensive Emergency Management Education

BUSINESS CONTINUITY PLANNING GUIDELINES

STATE UNIVERSITY OF NEW YORK COLLEGE OF TECHNOLOGY CANTON, NEW YORK COURSE OUTLINE EADM 220 DISASTER MANAGEMENT AND PREPAREDNESS

OREGON STATE UNIVERSITY MASTER EMERGENCY MANAGEMENT PLAN

Is Your Port Prepared to Recover from a Disaster? Can you keep the cash register ringing when bad things happen?

Temple university. Auditing a business continuity management BCM. November, 2015

An ESRI White Paper May 2007 GIS Supporting the Homeland Security Mission

2015 CEO & Board University Taking Your Business Continuity Plan To The Next Level. Tracy L. Hall, MBCP

Operational Risk Publication Date: May Operational Risk... 3

University Emergency Management Plan

Ohio Supercomputer Center

Risk Management Programme Guidelines

Global framework. Safety, health and security for work-related international travel and assignments

CRR Supplemental Resource Guide. Volume 5. Incident Management. Version 1.1

August 2013 Recommendations for Business Continuity Management (BCM)

Enterprise Risk Management

Transcription:

, Risk Management & Pandemic Planning Risk Management and a little on Pandemic Issues and Planning Advanced Topics why? Business owners and managers should be familiar with Should be building the capability Understand relevance to your business (no burying your head in the sand) Training, education and programmatic considerations 1

Advanced Topics why? Some general thoughts: 9/11= terrorism Katrina = natural disasters Economy = resource allocation issues/supply chain problems Risk = a different world and need to know what can hurt you People = response to stressors Technology = nothing is the same Ability to recover can be compromised by What keeps you up at night? Advanced Topics why? More general thoughts: Continue or re-open business after catastrophe s = challenging without proper planning How quickly you do is a measure of planning Safety and Risk Management are not the same we ll distinguish the two Moral and ethical behavior = more important now than ever before; stresses make folks do bad things sometimes Advanced Topics: Why are these advanced topics? short shrift < planning < program development and deployment < training All complex Require time and attention Prone to avoidance management and behaviors 2

Emergency response one place to start: How do we categorize things that require planning and training Natural Human Technological Contingent Emergency response one place to start: The role of management the big picture: ID vulnerabilities (Threat) mitigation and controls Training and education Procedures, up-to-date and practiced Real or potential magnitude as a driving force: Recovery and/or survival-oxford Studies Analysis of threats (see Matrix, pg. 189) = recognition Recoverer s vs. Non-Recoverer s Operational capabilities vs. share value 3

you can not respond to that which you have not identified At least not very effectively give me three steps, give me three steps Mister, three steps toward the door Threat identification (RBIA or BIA) (natural, technological, human or contingent) Qualitative Quantitative Robust what if, especially with contingent thinking Threat assessment is never-ending OK now the three steps (Mister)! Good threat assessment makes for better emergency planning (see the opening comment above!) Crisis management and communication = the bridge to Business recovery Together, these steps basically comprise the tactical aspects of business continuity Emergency Planning Correlate to threats? Specialized training needed? Communication needs? Responsibilities and duties clear? Goals? S & R (or, search and rescue) Exercises and what type? Case study Table top Functional 4

Crisis Management and Communication (Management) Leadership, decision-making (Communication) Internal and external constituents Incident command Planning Operations Logistics, and Financial Crisis Management EOC s Activation Pre-emptive Threat/event dependant Practice or training Communication Internal Employees Families (Chilean Mine?) BOD Others? External Regulatory Business Partners Supply chain Media 5

Communication Focuses on: Communication needs and requirements Message content and context Form of communication Tools used Business or Operational Recovery Systematic Planned Considers: Criticality of operations Contractual obligations Life safety Revenue streams Supply chain dependency Validating plans Tests Drills Exercises How robust validation is, is a function of?: Plan maintenance (what, you thought they managed themselves??) 6

Pandemic A Reasonable Case Study? Avian Flu (H5N1) Bird flu Holding steady at CDC Phase 3 H1N1 Swine flu (U.S. 2009) Risk Management shifting gears Not the same as safety! Measure of frequency and severity Hazard something that can cause harm Risk Management (RM) = the process of making and implementing decisions that will minimize the adverse effects of accidental and business losses on an organization. Risk Management Formal course of study and designation Create acceptable risk Operationally Financially Legally Basic approach: Exposure avoidance Loss prevention Loss reduction Segregation Contractual transfer (for risk control or risk financing) 7

Risk Management Categories of risk: Property Liability Personnel Financial (business) Alternatives that carry less risk? The Risk Management Cascade The Risk Management Cascade 1. ID exposures (there it is again!) 2. Examine control options 3. Select the best options 4. Implement the best option 5. Monitor, follow-up and make changes (go back to #1) Moral and Ethical Considerations And now a few words from our sponsor? Fair Trade Reputation Social responsibility? Legal and Regulatory Criminal activities Whistleblower programs 8

Introduction to Workplace Safety Best Practices Checklist Threat Assessment and Emergency Planning Crisis Management Crisis Communication Business or Operational Recovery Risk Management Ethics Recordkeeping Specific hazards Introduction to Workplace Safety Tools and resources Disaster Recovery Institute International Institute Association of Contingency Planners Ready.gov CERT Teams (Google the term or go to SDCounty.gov) Insurance Institute of America Page 207 of the class text Security Management Plan Example Element 9: Exercises Review of Workplace Safety Resources www.workplacesafetynow.com Resources: http://www.workplacesafetynow.com/information.htm Pandemic related http://www.cdc.gov/h1n1flu/ http://www.cdph.ca.gov/ http://www.sdcounty.ca.gov/portal/news/swineflu.html 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information