What is Business Continuity Management?

By


image : EC council

Business Continuity Management (BCM) can be simply explained as planning to survive from disruptive incidents.

Disasters struck when you least expect it. The cause of the disaster could be a natural or a human factor. Whatever the disaster your organisation need to be prepared.

What are the types of disasters impact your information systems ?

  • Data Breaches
  • Hacking of Systems 
  • Critical application failure 
  • Employee sabotage
  • Service provider outage 
  • Power outages
  • Communication outages
  • Internet outage
  • Fire, Floods etc.
  • Natural Disasters 

Ask your self :

  • What areas of business will each of above disaster impact?
  • What will be the liklyhood of it happening?
  • What will be your loss? 
  • How would you recover?
  • How long the recovery will take?
  • What would it cost?

Although you may not have perfect answers, you need them. 

BCM is a process that will help you identify potential threats, and their impact on your business operations.

In the event of a disaster, an effective BCM ensures recovery and continuity of your business. 

It enables you to provide an  acceptable service to your customers, sustain your employees, maintain supplier relationships  and preserve your reputation to keep revenue coming in.

BCM is is like a self assured insurance, which gives comfort that you can absorb the damage and recover fast if a disaster strikes.

In a Covid-19 like pandemic demanded social distancing and  influenced employees to work from home, organisations to adopt to cloud technologies and e commerce. Did you had it planned? If so it would have become and opportunity.

Ransomware attacks as it appeared in 2021, crippled many businesses across the world. Ransomware  encrypted business data and demand payment for their release. The attacks were mainly carried though phishing emails, which explored hunan weakness of employees. Such threats can be mitigated but never eradicated.

Your organisation's best defence is an effective business continuity planning to build continues disaster resilience. 

An effective BCM enables  organisations to assess potential risks, implement effective controls, establish recovery contingencies and procedures, train employees, and continuesly monitor and  review your plans.

BCM provides many benefits other than ensuring business functionality in the event of a disruption. 

  • 1) Protects organisation’s reputation
  • 2) Boost employees’ morale
  • 3) Build stakeholder  confidence
  • 4) Help meet regulatory requirements

Learn more about BCM

https://www.iso.org/standard/75106.html


Comments

Post a Comment

Popular posts from this blog

The 7 Layers of Cyber Security : Attacks on OSI model

By
Image
Source : wallarm The OSI network  communications model is made of  7 layers. Each layer  handles a specific process to enable reliable communication between two or more devices. When the Internet was designed, its focus was on ensuring of reliable communications. The challenges of communication security emerged later.  These 7 layers act like a chain of links. If one lnk breaks, the whole chain of communication breaks. Hence security threat can happen at any of the 7 layers.  These layers are named as Application, Presentation, Session, Transport, Network, Data link and Physical layer. The application layer is your email application, physical layer is your communication cable, and everything else is in between help you communicate. In abstract the application layer provides user interface, while presentation layer handle formating, encoding and encryption. The session layer manages connections. The transport layer handles segmentation, sequencing, and establishi...
Read more

Best Practices for secure Software Development

By
Image
image : OpenSense Labs Are you aware of the  Solarwinds attack in 2020? The hackers exploited software vulnerabilities of Orion IT monitoring and management software used by thousands of enterprises and government agencies. This hack triggered a larger scale supply chain incident which affected thousands of organizations, including the U.S. government. The attackers infliltrated the Solarwinds network, and infected the software used for Network monitoring before it shipped to customers.This insident and many more warn us on the importance of building secure software.  Secure software development is a methodology used for creating robust software by incorporating security practices into every stage of the software development life cycle (SDLC). It begins at planning stage before a single line of code is written, and continue through the life cycle. A bug fixing at implementation stage cost six times than fixing it during design stage. Every new feature added, may carry series o...
Read more

ISO 27001 ISMS in a Nutshell

By
Image
Image : ISO The ISO 27001 certification is the most comprehensive  information security standard recognized globally. It ensures standardizing of your organisation's information security strategies to ensure confidentiality, integrity and availability of your systems and data to conduct your business effectively.  Gaining the certification is a journey with several milestones. It is a carefully planned systematic activity that transforms an organisation to a secure entity,  where everyone becomes a stakeholder in information security. Follow this processes to get to your goal successfully. Step 1. Obtain Management Support . This is the most critical requirement to achieve ISO 27001 status. Your ISMS project will definitely fail if it does not receive to management support. The management should provide, people, money and strategic direction for your ISMS to be a success story. In the sections below you’ll find some tips on how to convince your management, and how much th...
Read more