BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS. LSA Consultants Pte Ltd

Similar documents

Business Continuity Management Governance. Frank Higgins Abu Dhabi March 2015

BSO Board Director of Human Resources & Corporate Services Business Continuity Policy. 28 February 2012

BUSINESS CONTINUITY POLICY

PROCEDURES BUSINESS CONTINUITY MANAGEMENT FRAMEWORK PURPOSE INTRODUCTION. 1 What is Business Continuity Management? 2 Link to Risk Management

Coping with a major business disruption. Some practical advice

South West Lincolnshire NHS Clinical Commissioning Group Business Continuity Policy

Appendix 2 - Leicester City Council s Business Continuity Management Policy Statement and Strategy Business Continuity Policy Statement 2015

Business Continuity Management

Business Continuity Policy

BUSINESS CONTINUITY MANAGEMENT POLICY

Business Continuity Management

Business Continuity and Risk Management. Ken Kaberia Principal BCM Officer, Enterprise Risk Safaricom Limited

Business Continuity Policy

Business Continuity Management Planning Methodology

CHAPTER 1: BUSINESS CONTINUITY MANAGEMENT STRATEGY AND POLICY

NHS Hardwick Clinical Commissioning Group. Business Continuity Policy

Finding the areas for improvement in plans, processes and procedures to protect shareholder value Performance driven. Quality assured.

Business Continuity Management Policy

Appendix 1 - Leicester City Council s Business Continuity Management Strategy and Policy Statement

Introduction to Business Continuity Planning

PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA

BS BUSINESS CONTINUITY MANAGEMENT

Business Continuity Management

HOW CAN YOU ENSURE BUSINESS CONTINUITY? ISO AUDITS, CERTIFICATION AND TRAINING

NHS Central Manchester Clinical Commissioning Group (CCG) Business Continuity Management (BCM) Policy. Version 1.0

Il nuovo standard ISO sulla Business Continuity Scenari ed opportunità

BUSINESS CONTINUITY MANAGEMENT FRAMEWORK

By. Mr. Chomnaphas Tangsook Business Director BSI Group ( Thailand) Co., Ltd

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT

BT Conferencing Business Continuity Management. Planning to stay in business

Business Continuity Standards A Primer

Principles for BCM requirements for the Dutch financial sector and its providers.

BCP and DR. P K Patel AGM, MoF

WEST YORKSHIRE FIRE & RESCUE SERVICE. Business Continuity Management Strategy

Risk Management How to manage your brand & build business resilience to improve your bottom line

Business Resiliency Business Continuity Management - January 14, 2014

Business continuity management policy

Business Continuity Planning and Disaster Recovery Planning

Business Continuity and Disaster Recovery Planning

1.0 Policy Statement / Intentions (FOIA - Open)

Solihull Clinical Commissioning Group

KPMG Information Risk Management Business Continuity Management Peter McNally, KPMG Asia Pacific Leader for Business Continuity

Business Continuity Management Systems. Protecting for tomorrow by building resilience today

Overview TECHIS Manage information security business resilience activities

JOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc.

The Resilient IT Infrastructure

Staying In Business. A Business Continuity White Paper by. Paul O Brien and Gerard Joyce. LinkResQ Limited

Business Continuity Management Framework

Business Continuity Management Policy

Business Continuity Management. Policy Statement and Strategy

NORTH HAMPSHIRE CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY MANAGEMENT POLICY AND PLAN (COR/017/V1.00)

Version: 3.0. Effective From: 19/06/2014

ENTERPRISE RISK M A NAGEMENT POLICY

RETAIL AUDIT FORUM - AUDITING BUSINESS CONTINUITY

DRAFT BUSINESS CONTINUITY MANAGEMENT POLICY

Business continuity management policy

Business Continuity Policy

Business Continuity Management Group Policy

Business Continuity Planning

The PNC Financial Services Group, Inc. Business Continuity Program

Business Continuity - IT Disaster Recovery Discussion Paper - - Commercial in Confidence Version V2.0R Wednesday, 5 September 2012

IRM CERTIFICATE AND DIPLOMA OUTLINE SYLLABUS

Business Continuity Management Policy

Shankar Gawade VP IT INFRASTRUCTURE ENAM SECURITIES PVT. LTD.

How To Plan A Crisis Management Program

Company Management System. Business Continuity in SIA

Emergency Response and Business Continuity Management Policy

Business Continuity. Is your Business Prepared for the worse? What is Business Continuity? Why use a Business Continuity Plan?

Business Continuity Management Policy

International Diploma in Risk Management Syllabus

BUSINESS CONTINUITY MANAGEMENT POLICY

Reputation. Further excellence. business continuity. risk management. Data security

Global Statement of Business Continuity

ENTERPRISE RISK MANAGEMENT FRAMEWORK

Need to protect your business from potential disruption? Prepare for the unexpected with ISO

DORSET & WILTSHIRE FIRE AND RESCUE AUTHORITY Performance, Risk and Business Continuity Management Policy

BUSINESS CONTINUITY POLICY

Birmingham CrossCity Clinical Commissioning Group. Business Continuity Management Policy

Table of Contents... 1

BUSINESS CONTINUITY POLICY RM03

PAPER-6 PART-3 OF 5 CA A.RAFEQ, FCA

Risk Management & Business Continuity Manual

Business Continuity Policy

Business Continuity (Policy & Procedure)

ASTRAZENECA GLOBAL POLICY SAFEGUARDING COMPANY ASSETS AND RESOURCES

Business Continuity Policy. Version 1.0

Risk Management Policy and Framework

Federal Financial Institutions Examination Council FFIEC. Business Continuity Planning BCP MARCH 2003 MARCH 2008 IT EXAMINATION

NHS ISLE OF WIGHT CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY POLICY

Temple university. Auditing a business continuity management BCM. November, 2015

Transcription:

BUSINESS CONTINUITY MANAGEMENT SINGAPORE SS540 BCM STANDARDS LSA Consultants Pte Ltd

BCM SINGAPORE

LSA Consultants Who are we? Business Continuity Management (BCM) What is it? Singapore Standard SS540 Business Continuity Management Introduction BCM The Benefits to Business BCM Implementation What is the Process? PRESE ENTATION OVERVIEW Integrating Existing Systems National BCM Programme Singapore Business Federation (SBF)

LSA Consultants About Us LSA Melbourne Australia & Singapore Incorporated 2006 2008 Our Core Competencies: Security Risk Management Business Continuity Management Emergency Management Crisis Management Master Security Planning Supply Chain Security Management Major Event Security Management LSA C CONSULTAN NTS ABO OUT US Our Consultants & Locations: Singapore Melbourne Beijing Bali Dubai Shanghai Sydney Our Strategic Partners: AETOS Security Consulting Singapore Future Risk Sydney BCM Training Pacific Region INCON Dubai Global Asset Solutions Singapore Eduline Training & Consultancy Singapore Citadel International Beijing

Industry Projects BCM LSA Consultants & its Partners have extensive experience and a proven track record in providing BCM related advice to clients in a range of sizes and complexity, and in a variety of industries including: Government LSA IN N INDUSTR RY Finance & Banking Manufacturing Transport Logistics Port Terminals & Aviation Petrochemical & Mining Insurance Hospitality & Entertainment Information Technology Critical Infrastructure Power Food & Drug

Our Recent Achievements ISO 28000 Supply Chain Security Management Certification 1 st Chief Security Officer to achieve ISO28000 Certification Globally Leading Consultancy for ISO28000 Implementation Asia Pacific Region 1 st Client to achieve Region Head Office ISO28000 Certification 1 st Client to undergo ISO28000 implementation Jurong Island Facility Business Continuity Management OUR R RECENT AC CHIEVEMEN NTS Approved BCM Consultant to implement Singapore SS540 Standard Strategically aligned with Internationally recognised BCM Training Organisation Providing the NEW SS540 BCM Services to; Singapore Hotel Industry Singapore Transport Industry Solid base of BCM qualified Consultants & Professionals DRII & BCI

Business Continuity Management What is it? "Successful businesses plan for success." A business is only as successful as it's ability to continue to trade and operate in all circumstances. It's CRUCIAL for every organisation and business to plan in advance so they can continue to operate BCMdesignsan organisations abilityand and capabilityto to continue to operate and recover from a disruption to normal business operations. BCM puts plans in place to: Alert the Crisis Management Team to action; Effectively Respond to the Incident/ /Occurrence; Coordinate key organisation resources; Prioritise essential business functions during disruption; Communicate with staff, stakeholders and media; Recover from the disruption in a logical, systematic manner customised to that business; Minimise and manage risk to key assets; Mitigate loss to business, revenue, brand damage and reputation. BCM WHAT IS IT? Mandarin Hotel Beijing Fire February 2009 US$731m Damage

Business Continuity Management What is it? BCM Risk Management Emergency Management Plans Integrates with Organisations ERM System Utilises International Best Practice Risk Management Methodology Ensures effectiveness of Emergency Response & Recovery Plans Integrates EM Plans WHAT IS IT? Disaster Recovery Plans Builds in existing DR Plans IT & Critical Asset/ Infrastructure Recovery Crisis Management Plans Develops key management protocol & procedures during crisis Trains & exercises key management & staff to operate and lead effectively during a major incident Business Continuity Plans Develop a plan to ensure the continuity of operations during a threat to business whilst meeting company objectives Ensures effective Corporate, Media & Stakeholder communications Specifies resources & capabilities required to prepare, respond & recover from threats Testing & Exercising BCP plans are subject to regular tests & exercise Verifies committed resource adequacy, training, availability for effective & efficient recovery

Examples of Incidents that cause Disruption to Business Disruption to Business can occur through many Direct & In Direct means Whilst intentional Security Related incidents (Criminal/ Terrorism) feature in the BCM Landscape, many other serious disruptions are created through unintentional Accidental, Climatic or Environmental incidents and disasters An organisation may become a Proximity Victim from an un related external threat or incident EXAM MPLES OF IN NCIDENTS Direct Disruption Examples Indirect Disruption Examples Crime Fraud Terrorism Bomb Threat IT Failure Negative Media Brand Damage Fire Sabotage Power Outage Loss of Key Management Flooding Regulatory Non Compliance High Security Alert Industrial Action Pandemic Major Health Issue Political l Instability External Financial Crisis Heightened National Security Alert Adverse Evacuation Weather Proximity Conditions Threat Transport Disruptions

Singapore Standard SS540 Business Continuity Management New Standard for Singapore Launched October 2008 Based on similar International Standards BS25999; AS/NZ 221:2004 etc Applicable to all organisation regardless of size SS540 0 STANDA RD Implementation by Established & Tested Framework Provides the framework for entities to analyse and implement strategies, processes and procedures to address concerns for its survival against internal & external threats Emphasis on resilience and protection ofcritical assets: Human Physical Environmental Intangible Focuses on continuity management and the prompt recovery of business functions SINGAPORE STANDARD SS 540 : 2008 SINGAPORESTANDARD STANDARD FOR Business continuity management (BCM) The Standard adopts a process approach to establish, maintain and improve an organisations Preparedness; Response; Continuity Management System

SS540 Standards Objective for Compliance PDCA Methodology Plan Do Check Act Develop Policy for Programmes Prevention Preparedness Response Continuity Recovery SS540 0 OBJECTIV VES Achieve Policy Commitment Objectives Processes Procedures Assure Competency BCM Awareness Training Programmes Conformity & Compliance Demonstrate the Efforts to Conform with the Standard Continual Improvement Establish a Process to ensure Continual Improvement

Hospitality BCM Benefits to Business Mitigate Minimise Exposure to Unforseen Risks Stakeholder Confidence in your business partnership Regulatory Compliance may require it Growing Global Requirement for BCM in Uncertain Times BENEF FITS TO BU USINESS Upstream Downstream BCM Consistency Competitive Advantage More Attractive Business Option Excellent ttiming i Government tencouragement t& Incentives Differentiate from Competitors with Recognised Certification Effective Risk Management = Insurance Premium Reduction Faster Recovery Post Incident Minimise Loss Potential Aligns with Government Industry Standardisation Goals Become Government ttender Ready with BCM Compliance

BCM Implementation Examining BCM Gap Analysis Ongoing Process to Safeguard Reputation; Brand & Value Creating Activities Current Status vs Standards Compliance Policies; Processes; People; Infrastructure Review Existing DR; EM; Crisis Plans for effective Integration BCM IMPLEMEN NTATION Program Initiation & Management Constructing the BCM Framework Achieving Key Management Support Risk Evaluation & Control Identify Internal & External Risks in Context Develop Risk Mitigation Strategies & Controls Business Identify Time Identify Impacts Impact from Business Interruptions Analysis Critical Functions; Recovery Priorities; Recovery Time Objectives Business Leverage Outcomes from Risk Continuity Evaluation & Business Impact Strategies Analysis Establish Business Continuity Strategies

BCM Implementation 2 Emergency Response & Operations Business Continuity Plans Awareness & Training Programmes Identify Readiness to Respond to an Emergency in Coordinated & Effective Manner Design, Develop & Implement Organisation Specific BCP s Prepare Program to Create & Maintain Corporate BCM Awareness Develop Procedures for Initial Response Provide Continuity and/ or Recovery according to Business requirements Enhance Skills to Develop, Implement & Manage Business Continuity BCM IMPLEMEN NTATION 2 BCP Testing & Exercise BCM Programme Management Develop Exercise/ Testing Program to Plan Exercise Requirements Demonstrate Program to maintain Currency through Systematic Review Establish Maintenance & Audit Program to ensure Plans are Current & Relevant Re align and Reevaluate Plans on Continual Basis Compliance & Certification 3 rd Party Audit for Compliance Issue of Certification

Integrating Existing Systems Synergies do exist between BCM SS540 Standards and Existing Management Systems and Regulatory Standards For Example: Organisations can effectively utilise the Risk Assessment tprocess established in IS014000 or ISO28000 and Comply with SS540 Compliance through 3 rd Party Audit can be more easily demonstrated if the organisation already adopts the Plan, Do, Check Act methodology for Continual Improvement. Enterprise Risk Management Business Continuity Management SS540 ISO9000 ISO14000 ISO28000 EH&S INTEG GRATING EX XISTING SYS STEMS Operating Changing Supporting Optimizing

National BCM Programme SBF MISSION: To encourage and enable more Singapore based companies and SME s to augment the robustness of their operation through the adoption of BCM VISION: BCM ready Singapore gp organisations that are resilient and capable of mounting effective Preventative, Response, Recovery and Restoration measures against natural or man made disruptions. NATIO ONAL BCM PROGRAM MME OBJECTIVE: Financially incentivize companies through Government grant program to implement standard and achieve BCM certification. Costs can be defrayed up to 70% for: Salary/ Training of staff involved in BCM certification project Costs for engaging 3 rd party consultant to support certification BCM Certification cost IT Hardware/ software needed to implement BCM

National BCM Programme Objectives PROG RAMME OBJECTIVES Raise Awareness of Importance of BCM Widen BCM Standard Implementation by Business Community Make BCM Resources More Accessible Support Enterprises Efforts to become BCM Certified

The Spring Singapore Funding Roadmap Approximate timeline for SME s Week 1 Week2 Week 3 Week 3 Week 9 Week 9 Submission of SME details to SBF Briefing to SME by LSA & SBF In principal confirmation of SME eligibility for funding by SBF Submission i of SME Funding application to SBF in consultation with LSA Approval of Funding by SBF / SPRING SME BCM SS 540 Project commencement END TO ENDSER RVICES PR ROVIDED BY LSA CO NSULTANTS S

EMAIL OR CALL LSA CONSULTANTS TO ENQUIRE ABOUT THE SBF FUNDING & PROJECT IMPLEMENTATION PROCESS www.lsaconsultants.com