InfoGuard AG (Headquarter)
Lindenstrasse 10
6340 Baar
Switzerland
InfoGuard AG
Stauffacherstrasse 141
3014 Bern
Switzerland
InfoGuard Deutschland GmbH
Landsberger Straße 302
80687 Munich
Germany
Exceptional events like cyber-attacks, data breaches, natural disasters and terrorist attacks are increasingly increasing companies’ awareness of Business Continuity Management (BCM). It is in management’s vital interest to ensure operational continuity and resilience when faced with all kinds of disruption Unfortunately, many companies do not have the preparation, skills, people, processes and technology required and in place to provide internal and external stakeholders with the reassurance that in the wake of a crisis or disaster, the company is able to restore operations. In this blog article, we will show just how important BCM is and what kind of effective planning should be in place.
Business Continuity Management is a comprehensive process, one that identifies potential threats to a company and creates a framework for providing an effective response. The aim is to safeguard the interests of key stakeholders, the company’s reputation and activities that add value.
Every company should take an “all-hazards” approach to preparations, as both basic and specific response and recovery capabilities are required for any kind of incident, with additional specialised capabilities for specific types of incidents. Preparedness helps to ensure that customers get support in the event of an incident, while staff and assets are protected.
Business Continuity Management aims to improve resilience so that companies can survive in the event of partial or total inability to be operational. The benefits of an effective BCM programme include:
Business Continuity Management is simpler than is often imagined. To implement BCM, the following questions need to be taken into consideration:
Today, it is essential to have a BCM programme that is up to date, that reflects the current business environment and that is also available in the event of adverse events such as cyber threats, for example ransomware.
The Business Continuity Plan (BCP) is a documented, step-by-step plan for immediate response, backup operations and disaster recovery. It ensures that critical resources are available and ensures operational continuity in a crisis. Or to put it another way, a Business Continuity Plan is what companies need to mobilise to stay in business. A BCP is the response to the question: how will we continue to work if we suffer a significant business disruption such as the loss of our set-up or our IT/OT? By developing a BCP that also takes into account the worst-case scenario, it helps companies to be on the safe side, even if events occur that are less catastrophic.
So what does a Business Continuity Plan look like? The following points (as a minimum) need to be included and defined:
This may sound time-consuming, but being prepared for BCM starts with the mind. A useful introduction to the topic can be found in initial discussions with top management (who will be an advocate for the topic?) and in additions to guidelines, frameworks and standards (if BCM is not included, it will not happen).
To sum up once again – heightening awareness and involving both senior management and staff will increase resilience and improve the staff's ability to adapt and overcome disruption. An important point in resilience is the awareness that there will be disruption. However, provided BCM precautions are put into practice, a company will be prepared. Ultimately, after BCM exercises and resilience building, the staff becomes more mentally resilient to face future disruption. Preparedness for Business Continuity Management starts in the mind – and at the nerve centre of the organisation, i.e. at C-level.
Important basic prerequisites are to create awareness and to involve staff and management, but that is just the beginning. Effective BCM including BCP is a challenge that it is not always possible to face up to alone. My colleagues and I can provide you with support due to our comprehensive knowledge and many years of practical experience in wide-ranging aspects of BCM. Contact us without any obligation – we will be pleased to advise you.