securivy INFORMATION SYSTEMS MANAGEMENT ILLINOIS INSTITUTE OF TECHNOLOGY A New Model for Business Contingency Operations Ray Trygstad
|
|
- Todd Manning
- 6 years ago
- Views:
Transcription
1 information technology & management INFORMATION SYSTEMS securivy t MANAGEMENT ILLINOIS INSTITUTE OF TECHNOLOGY A New Model for Business Contingency Operations Ray Trygstad 2008 Ray Trygstad Director of Information Technology, Associate Director, Information Technology and Management Degree Programs ILLINOIS INSTITUTE OF TECHNOLOGY
2 Introduction New model for business contingency response team structure Background Terms Team Structures in common use The Contingency Response Team structure Contingency Response Officer Team structure Ray Trygstad
3 What is a contingency? An event that has a potential or proven ability to disrupt normal operations of the organization Organization could be a business, a government agency, a university, a non-profit that carries out what can broadly be termed as business activities of some kind Response to business contingencies often falls on IT Particularly the IT Security function Incident often are specifically IT-security related 3
4 Contingencies are a Business Issue! BUT and this is a really big but: Business contingency response is first and foremost a MANAGEMENT responsibility Addressing ability of the organization to continue to operate in situations which put the ability of the organization's operations in serious jeopardy Although the largest area of complexity in continuity of operations is in the IT area, management cannot dump responsibility for continued operations solely on IT 4
5 When do We Need Contingency Response? Natural events Hurricane, tornado, flood, earthquake, fire Human initiated events Operator error, sabotage, malicious code and other computer-based attacks, accidents, military actions, terrorist attacks Operating Environment events Equipment failure, software errors, telecommunications/network outage, electric power failure 5
6 Event Sequence to Contingency Contingency Planning RISK RISK MANAGEMENT Security Control Implementation NIST Special Publication Emergency Event CONTINGENCY PLAN EXECUTION 6
7 Terminology Many terms in use Inconsistant and imprecise BS and HB (Australia) use Business Continuity Management (BCM) NIST SP uses both Business Continuity and Continuity of Operations NFPA 1600 uses Disaster/Emergency Management and Business Continuity but refers to an instance as an incident 7
8 Terminology HB (Australia) provides a good definition: Business Continuity Management provides the availability of processes and resources in order to ensure the continued achievement of critical objectives I am going to use the term Business Contingency Operations because Although BCM is a de facto standard, there is really no standard It s the most descriptive term for the area I am addressing 8
9 Contingency Response Teams Although it is prescribed only in a rudimentary fashion in most standards documents, contingency response in most organizations is done through the use of teams BS :2006 discusses the Incident Management Team or Crisis Management Team HB & NFPA 1600 not at all 9
10 Contingency Response Teams NIST goes a little team happy : Management Team Damage Assessment Team Operating System Administration Team Systems Software Team Server Recovery Team (e.g., client server, Web server) LAN/WAN Recovery Team Database Recovery Team Network Operations Recovery Team Application Recovery Team(s) Telecommunications Team Hardware Salvage Team Alternate Site Recovery Coordination Team Original Site Restoration/Salvage Coordination Team Test Team Administrative Support Team Transportation and Relocation Team Media Relations Team Legal Affairs Team Physical/Personnel Security Team Procurement Team (equipment and supplies) 10
11 Contingency Response Teams WHEW! A bit much, eh? 11
12 BS 25999/BCI Approach GOLD SILVER BRONZE Escalation Strategic Tactical Operational Control Senior (Incident) Management Business Continuity Team Incident Response & Business Unit Resumption Teams The Business Continuity Institute Business Continuity Management GOOD PRACTICE GUIDELINES
13 Contingency Response Teams Regardless of how you approach it, experience has shown team approach is the best method Most literature discusses 3 or 4 primary teams: Incident Response Team Disaster Recovery Team Business Continuity Team and sometimes Crisis Management Team 13
14 Response Team Employment Common wisdom prescribes employment of the teams in sequential order on a handover basis First the Incident Response Team...responds If the incident cannot be brought under control or escalates, it becomes a disaster Disaster Recovery Team takes over 14
15 Response Team Employment If operations cannot be continued at the organization s primary site Business Continuity Team facilitates operations at an alternative site Crisis Management Team invoked as necessary Normally deals with issues surrounding loss of life or serious injuries as well as media relations They just sort of drift in and out of the picture 15
16 My Experience Aviation Safety Officer curriculum at the Naval Postgraduate School, created by USC s Institute for Safety and Systems Management M.S. in Systems Management; curriculum also created by USC Institute for Safety and Systems Management I learned that contingency response is contingency response is contingency response 16
17 My Experience From a process perspective, responding to an aircraft crash is no different than responding to a mainframe crash The military has developed a finely-tuned response to incidents; & provides lessons we can all learn from Drawn heavily upon this background & experience in creating this concept 17
18 Contingency Response Team One of the issues that I view as a serious weakness in contemporary models for contingency response teams is who manages the overall response 3-team model presupposes handovers between teams but presents serious continuity problems My model adds an additional team : the Contingency Response Team Could also call it the Contingency Management Team 18
19 Contingency Response Team Contingency Response Team folds in all responsibilities normally exercised by the Crisis Management Team but extend this to provide 1. Initial response including activation of the appropriate Plan: Incident Response, Disaster Recovery, Business Continuity 2. Ongoing administrative and facilities support of other teams as they execute their function 3. Wrap up functions as contingency operations draw to close and normal operations resume Exactly what the name implies: the core on which all contingency response rests 19
20 Contingency Response Team 2008 Ray Trygstad 20
21 Contingency Response Officer Key position on this team Not the Contingency Response Team Leader but is the person on call Contingency Response Officer (CRO) or Contingency Response Manager On duty for a 24 hour period Key point of contact for ANY contingency in the organization Organization members need to have drilled into them if something out of the ordinary happens CALL OR PAGE THE CRO 21
22 Contingency Response Officer CRO must be sufficiently senior to make snap decisions affecting the health and future of the organization Must have the trust of C-level management Does not have to be an IT person but must have sufficient knowledge of IT to initiate response to an IT or IT security incident Small organization at least 3 Large organization as many as 10 During on-call period CRO must be immediately available by cell phone or page Should be near enough to the primary physical facility to be there quickly 22
23 Contingency Response Staffing Supporting the CRO: 2 on-call administrative personnel Execute a calling tree Keep a running record of events Perform any duties as directed by the CRO Not decision makers but need to be on a 24 hour duty cycle Must be immediately available by cell phone or page Near enough to the primary physical facility to be there very quickly 23
24 Contingency Response Staffing The armed services responds very quickly to incidents because they have had a duty section structure in place since...well...forever This implements the same concept at a civilian level 24
25 Contingency Response Notification Immediate response personnel (CRO and admin support) have cell phones/ pagers supplied by the organization Handed off at relief each day ONLY one number to call/page CRO Detached from who is actually on duty 25
26 Contingency Response Team Composition of remainder of the team is much like you would find on a Crisis Management Team PR to handle media relations Legal to handle legal & compliance Management-level facilities member to expedite facilities issues Team core ought to consist of executive assistants and senior administrators Not necessarily managers but the people who actually get things done You all know who these people are 26
27 Contingency Response Team Contingency Response Team Leader should be as senior a person in the organization as you can convince management the position ought to be! NOT a micromanager! Should relieve the CRO as soon as the situation is relatively under control and the Team Leader has been fully briefed 27
28 Expansion of Concept/Model I am working to expand this concept in two directions An academic paper documenting the literature and clearly delineating the concept and design (I am an academic and I do have to get published) A whitepaper with a practical guide for implementation 28
29 Contact Ray Trygstad
30 The End Questions? 30
Introduction to Business continuity Planning
Week - 06 Introduction to Business continuity Planning 1 Introduction The purpose of this lecture is to give an overview of what is Business Continuity Planning and provide some guidance and resources
More informationUL and Business Continuity
UL and Business Continuity David Stowe, CBCP Business Continuity Manager APEC EPWG Workshop: Private Sector Emergency Preparedness Hotel Monterey Sendai 3 rd August 2011 2011 Underwriters Laboratories
More informationBusiness Continuity - An Inside Perspective
Business Continuity - An Inside Perspective Tom McIlvaine Business Continuity Manager May 24, 2011 Agenda Where It All Begins Private Sector & Government Applicability Business Continuity Planning A Corporate
More informationBusiness Continuity Policy
Business Continuity Policy Version Number: 3.6 Page 1 of 14 Business Continuity Policy First published: 07-01-2014 Amendment record Version Date Reviewer Comment 1.0 07/01/2014 Debbie Campbell 2.0 11/07/2014
More informationDeciphering Overlapping Standards and Requirements, Using the BCP Genome
Deciphering Overlapping Standards and Requirements, Using the BCP Genome Disaster Recovery Journal Webinar Series February 13, 2013 2013 Strategic BCP, Inc. All rights reserved. strategicbcp.com 1 Today
More informationEmergency Management & Disaster Planning
Emergency Management & Disaster Planning What we re going to talk about What is Emergency Management and Disaster Planning? What are the key elements of an EM Plan? Where does the University Architect
More informationTable of Contents. Sample
TABLE OF CONTENTS... 1 CHAPTER 1 INTRODUCTION... 4 1.1 GOALS AND OBJECTIVES... 5 1.2 REQUIRED REVIEW... 5 1.3 APPLICABILITY... 5 1.4 ROLES AND RESPONSIBILITIES SENIOR MANAGEMENT AND BOARD OF DIRECTORS...
More informationUniversity Information Systems. Administrative Computing Services. Contingency Plan. Overview
University Information Systems Administrative Computing Services Contingency Plan Overview Last updated 01/11/2005 University Information Systems Administrative Computing Services Contingency Plan Overview
More informationCOPYRIGHTED MATERIAL. Contents. xv xxi. Preface About the Web Site
Preface About the Web Site CHAPTER 1 Business Continuity Management Plan 1 Crisis Management 4 The Value 5 Common Failings 7 Business Continuity Goals 9 Defining a Crisis 10 Mapping Risks 11 Critical Dependencies
More informationData Recovery Policy
Data Recovery Policy The Marketware, Inc. Contingency Plan establishes procedures to recover Marketware, Inc. following a disruption resulting from a disaster. This Disaster Recovery Policy is maintained
More informationFlorida State University
Florida State University Disaster Recovery & Business Continuity Planning Overview October 24, 2017 1 Key Readiness Questions Has your department identified the business functions and infrastructure that
More informationOur key considerations include:
October 2017 We recognize that our ability to continue to function as an organization is critical to our clients, who rely heavily on our firm and our people to keep their own real estate functioning properly.
More informationMaking YOUR Organization More Efficient and Effective Through Business Continuity / Continuity of Operations Planning
2017 California Higher Education Collaborative Conference Making YOUR Organization More Efficient and Effective Through Business Continuity / Continuity of Operations Planning Introductions Rick Blackburn,
More informationSecurity Guideline for the Electricity Sector: Business Processes and Operations Continuity
Security Guideline for the Electricity Sector: Business Processes and Operations Continuity Preamble: It is in the public interest for NERC to develop guidelines that are useful for improving the reliability
More informationGlobal Security Advisor
Global Security Advisor Location: [North America] [United States] Category: Security *Preferred location: USA. Other locations will be considered globally where WVI is registered to operate. PURPOSE OF
More informationPolicy Title; Business Continuity Management Policy. Date Published/Reviewed; February 2018
Policy Title; Business Continuity Management Policy Date Published/Reviewed; February 2018 Business Lead; Head of Strategic Governance CCMT sponsor; Deputy Chief Constable Thames Valley Police ensures
More informationContinuity of Operations During Disasters: Electronic Systems and Medical Records
Idaho Health Care Association Continuity of Operations During Disasters: Electronic Systems and Medical Records Philip Niemer, MBA, MS, HEM Director Operational Continuity & Emergency Management Children
More informationAppendix 3 Disaster Recovery Plan
Appendix 3 Disaster Recovery Plan DRAFT March 5, 2007 Revision XX Qwest Government Services, Inc. 4250 North Fairfax Drive Arlington, VA 22203 A3-i RFP: TQC-JTB-05-0002 March 5, 2007 REVISION HISTORY Revision
More informationAddressing Vulnerabilities By Integrating Your Incident Response Plans. Brian Coates Enaxis Consulting
Addressing Vulnerabilities By Integrating Your Incident Response Plans Brian Coates Enaxis Consulting Contents Enaxis Introduction Presenter Bio: Brian Coates Incident Response / Incident Management in
More informationSecurity Director - VisionFund International
Security Director - VisionFund International Location: [Europe & the Middle East] [United Kingdom] Category: Security Job Type: Open-ended, Full-time *Preferred location: United Kingdom/Eastern Time Zone
More information2 ESF 2 Communications
2 ESF 2 Communications THIS PAGE LEFT BLANK INTENTIONALLY Table of Contents 1 Introduction... 1 1.1 Purpose and Scope... 1 1.2 Relationship to Other ESF Annexes... 1 1.3 Policies and Agreements... 1 2
More informationBusiness Continuity Management Standards A Side-by-Side Comparison
Business Continuity Standards A Side-by-Side Comparison By Brian Zawada (CBCP) & Jared Schwartz (CBCP) Whether your organization has begun a grassroots initiative to develop a business continuity plan
More informationPrepare your Emergency respons, continuity plan, recovery plan
Prepare your Emergency respons, continuity plan, recovery plan Panel Discussion with PortAventura,Europa Park, Disneyland Paris,Liseberg,the Safety Committee members with Q & A from attendees Septembre
More informationLifeguard Station. Emergency Management
Lifeguard Station Emergency Management Developing Campus Emergency Response Plans and Business Continuity Plans Lennette Dease and Barbara Andersen James Lee Witt Associates Part of Global Options Group,
More informationMember of the County or municipal emergency management organization
EMERGENCY OPERATIONS PLAN SUUPPORT ANNEX B PRIVATE-SECTOR COORDINATION Coordinating Agency: Cooperating Agencies: Chatham Emergency Management Agency All Introduction Purpose This annex describes the policies,
More informationUsing International Standards to Implement a Business Continuity Management System (BCMS)
Using International Standards to Implement a Business Continuity Management System (BCMS) Dr. Abdulrahman AlEnezi Dr. Fawaz AlEnezi Eng. Maryam AlRadhwan Dr. Sultan AlEnezi Agenda Introduction Business
More informationThe Metropolitan Police Service Approach to Corporate Resiliency
The Metropolitan Police Service Approach to Corporate Resiliency Chief Inspector Tim Marjason Metropolitan Police Service Emergency Preparedness OCU CO3 - Central Operations New Scotland Yard, London Central
More informationSTRATEGIC PLAN. USF Emergency Management
2016-2020 STRATEGIC PLAN USF Emergency Management This page intentionally left blank. Organization Overview The Department of Emergency Management (EM) is a USF System-wide function based out of the Tampa
More informationBCP At Bangkok Bank, Thailand
BCP At Bangkok Bank, Thailand Bhakorn Vanuptikul, BCCE Executive Vice President Bangkok Bank Public Company Limited 10 May 2012 1 Agenda Business Continuity Management at Bangkok Bank Success Factors in
More informationREGIONAL UTILITY COORDINATION PLAN. Portland, Oregon / Vancouver, Washington Metropolitan Area
REGIONAL UTILITY COORDINATION PLAN Portland, Oregon / Vancouver, Washington Metropolitan Area I. PURPOSE The purpose of this plan is to outline procedures for coordination between local governments and
More informationHENRY EE, FBCI, CBCP
10 Things You Should Know When Reimagine Your ERM With BCM Program 27 July 2016 Presented by : Henry Ee, FBCI, CBCP, ISO22301 LA, Fellow of Business Continuity Institute (FBCI) Certified Business Continuity
More informationBundling Arrows: Making a Business Case for Adopting an Incident Command System (ICS) 2012 The Flynt Group, Inc.; All Rights Reserved. FlyntGroup.
Bundling Arrows: Making a Business Case for Adopting an Incident Command System (ICS) 2012 The Flynt Group, Inc.; All Rights Reserved FlyntGroup.com Flynt Group White Paper Bundling Arrows: Making a Business
More informationCivil Air Patrol. National Incident Management System (NIMS) 2016 Refresh Lt Col Bob Ditch HQ CAP/DOSI CITIZENS SERVING COMMUNITIES
Civil Air Patrol National Incident Management System (NIMS) 2016 Refresh Lt Col Bob Ditch HQ CAP/DOSI 15 JUNE 2016 2 Webinar Presenters John Desmarais Director of Operations National Headquarters Lt Col
More informationBUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW
BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW EXECUTIVE SUMMARY CenturyLink is committed to ensuring business resiliency and survivability during an incident or business disruption. Our Corporate Business
More informationRejuvenating BCM - Infrastructure. Business Continuity Awareness Week March 2009
Rejuvenating BCM - Infrastructure Business Continuity Awareness Week 23 27 March 2009 Brigitte Theuma MBCI, CBCMMA, CBCMP, CBCITP, MIAEM 23 March 2009 Total of 5 pages Table of Contents I. ICT Service
More informationEmergencies: Protecting Staff & Assets. Presented By: Tom Heebner, CSP, ARM, ABCP AVP / Risk Consultant HUB International Limited
Emergencies: Protecting Staff & Assets Presented By: Tom Heebner, CSP, ARM, ABCP AVP / Risk Consultant HUB International Limited Agenda Why is Planning Important? Lessons Learned From Recent Events The
More informationBusiness Continuity Management Program Overview
Business Continuity Management Program Overview Improving the lives of our customers by connecting them to the power of the digital world CenturyLink Key Objective CenturyLink may modify or terminate this
More informationINFORMATION SECURITY- DISASTER RECOVERY
Information Technology Services Administrative Regulation ITS-AR-1505 INFORMATION SECURITY- DISASTER RECOVERY 1.0 Purpose and Scope The objective of this Administrative Regulation is to outline the strategy
More informationWalmart Resiliency NCEM ECU Hurricane Conference May 2016
NCEM ECU Hurricane Conference May 2016 Emergency Management Guiding Principles Taking Care of Our Associates Taking Care of Our Operations Taking Care of Our Communities 2 Why Preparedness Matters to Walmart
More information3.4 DISASTER RECOVERY (L , M.3.9, comp_req_id 806)
3.4 DISASTER RECOVERY (L.34.2.3.4, M.3.9, comp_req_id 806) Three key objectives that GSA has as part of the award of the Networx contract are to ensure service continuity, high-quality service, and operations
More informationReal-world Practices for Incident Response Feb 2017 Keyaan Williams Sr. Consultant
Real-world Practices for Incident Response Feb 2017 Keyaan Williams Sr. Consultant Agenda The Presentation Beginning with the end. Terminology Putting it into Action Additional resources and information
More informationBusiness Continuity Planning. PDI January 14 th, 2018
Business Continuity Planning PDI January 14 th, 2018 Presenters Sally Alexander, Director & CRO Office of Risk Management & Insurance Tel: 970 491 7726 Email sally.alexander@colostate.edu Angela Gray,
More informationRailroad Infrastructure Security
TRB Annual Meeting January 14, 2002 Session 107 - Railroad Security William C. Thompson william.thompson@jacobs.com 402-697-5011 Thanks to: Bob Ulrich Dr. William Harris Byron Ratcliff Frank Thigpen John
More informationJanuary 31, Department of Homeland Security
The USCG Auxiliary has chosen Everbridge as it s rapid notification service for both emergency and non-emergency communications. 2 Everbridge is the leading provider of Emergency Notification Systems (ENS).
More informationSecurity and Privacy Governance Program Guidelines
Security and Privacy Governance Program Guidelines Effective Security and Privacy Programs start with attention to Governance. Governance refers to the roles and responsibilities that are established by
More informationHUMANITARIAN COORDINATION TRAINING. Safety & Security in Humanitarian Coordination
HUMANITARIAN COORDINATION TRAINING Safety & Security in Humanitarian Coordination Pre-Departure Security Considerations Make appointment for pre-departure security briefing with your organization Research
More informationAre Traditional Disaster Recovery Plans Still Relevant? Bobby Williams, MBCP, MBCI Director, IT Resiliency Planning Fidelity Investments
Are Traditional Disaster Recovery Plans Still Relevant? Bobby Williams, MBCP, MBCI Director, IT Resiliency Planning Fidelity Investments Who am I? Bobby Williams is the Director of IT Resiliency Planning
More informationBuilding resilience. Delivering assurance.
Building resilience. Delivering assurance. Strengthening and improving the way organisations operate, creating robust and resilient cultures. 01 02 RiskLogic Building resilience. Delivering assurance.
More informationEmergency Operations Center Management Exercise Evaluation Guide
Emergency Operations Center Management Exercise Evaluation Guide I respectfully submit the completed Exercise Evaluation Guide for the Canopy Oaks Tabletop Exercise conducted March 25 2010 for the Leon
More informationBCM s Role in Effective Risk Management: A Risk Manager s Point of View
BCM s Role in Effective Risk Management: A Risk Manager s Point of View Date: March 24, 2015 Presenter: Randall Davis, MBA, IBD, CPCU, ERM, ARM, ARM E, ABCP Agenda for this session Explore the case for
More informationCRITICAL INCIDENT STRESS MANAGEMENT
The purpose of a Critical Incident Stress Management (CISM) is to provide support and professional intervention after emergency personnel have been subjected to a significant traumatic event. CISM is designed
More informationCyber Risk in the Marine Transportation System
Cyber Risk in the Marine Transportation System Cubic Global Defense MAR'01 1 Cubic.com/Global-Defense/National-Security 1 Cubic Global Defense Global Security Team Capabilities Program Management Integration
More informationWhat Does the Future Look Like for Business Continuity Professionals?
What Does the Future Look Like for Business Continuity Professionals? October 26, 2016 Brian Zawada, FBCI President, US Chapter of the Business Continuity Institute Agenda and Objectives Change Standards
More informationRFP Questions Guideline For Data Center Buyers
RFP Questions Guideline For Data Center Buyers Rev: 00W0052015 1 P a g e This guideline document is a supporting download for our webinar titled 5 RFP Questions Data Center Buyers Must Ask a Provider and
More informationDisaster Recovery Planning: Is Your Plan in Place? Presented by: Steve Shofner, CISA, CGEIT
Disaster Recovery Planning: Is Your Plan in Place? Presented by: Steve Shofner, CISA, CGEIT 1 The material appearing in this presentation is for informational purposes only and is not legal or accounting
More informationACTIVE SHOOTER RESPONSE CAPABILITY STATEMENT. Dynamiq - Active Shooter Response
ACTIVE SHOOTER RESPONSE CAPABILITY STATEMENT ACTIVE SHOOTER RESPONSE Responding to armed assault acts of terrorism and active shooter incidents Acts of terrorism and shootings in public places have become
More informationNHS Gloucestershire Clinical Commissioning Group. Business Continuity Strategy
NHS Gloucestershire Clinical Commissioning Group 1 Document Control Title of Document Gloucestershire CCG Author A Ewens (Emergency Planning and Business Continuity Officer) Review Date February 2017 Classification
More informationDISASTER RECOVERY PRIMER
DISASTER RECOVERY PRIMER 1 Site Faliure Occurs Power Faliure / Virus Outbreak / ISP / Ransomware / Multiple Servers Sample Disaster Recovery Process Site Faliure Data Centre 1: Primary Data Centre Data
More informationAADMER Work Programme
The ASEAN Secretariat AADMER Work Programme Overview and Update Presentation Outline 1. ASEAN Agreement on Disaster Management and Emergency Response (AADMER) 2. AADMER Work Programme 3. Flagship Projects
More informationIntroduction to Business Continuity Management
Introduction to Business Continuity Management Audio Presented by ABD s Occupational Health and Safety Team Featuring The Cross Connection JULY 24, 2018 Speaker Panel ABD Insurance & Financial Services
More informationBCM Program Development
BCM Program Development Course Description: The BCM Program Development course provides you with knowledge to develop an auditable and actionable business continuity program for your organization. This
More informationTemplate. IT Disaster Recovery Planning: A Template
Template IT Disaster Recovery Planning: A Template When disaster strikes, business suffers. A goal of business planning is to mitigate disruption of product and services delivery to the greatest degree
More informationBusiness Continuity: How to Keep City Departments in Business after a Disaster
Business Continuity: How to Keep City Departments in Business after a Disaster Shannon Spence, PE Red Oak Consulting, an ARCADIS group Agenda Security, Resilience and All Hazards The Hazards Cycle and
More informationEmergency Operations Plan 2018 Annex IV - Business Continuity Plan
Emergency Operations Plan 2018 Annex IV - Business Continuity Plan Version XII Record of Changes Description of Change Entered By Date Entered Include Appendix G. Critical Functions David Cronk January
More informationRisk Management. Continuity Management
Risk Management vs Continuity Management Marie Hélène Primeau, CA, MBCI President Premier Continuum DRJ Fall World September 12, 2011 Marie-Hélène Primeau, CA, MBCI Chartered Accountant and Member of the
More informationEQUINIX BUSINESS CONTINUITY ADVANCED SERVICES KEEP YOUR BUSINESS UP AND RUNNING
EQUINIX BUSINESS CONTINUITY ADVANCED SERVICES KEEP YOUR BUSINESS UP AND RUNNING BUSINESS CONTINUITY EQUINIX BUSINESS CONTINUITY ADVANCED SERVICES The key to every successful Business Continuity Solution
More informationGRAMPIAN SCG PUBLIC COMMUNICATIONS PLAN
Page 1 of 11 Page 1 of 11 Communications Plan GRAMPIAN SCG PUBLIC COMMUNICATIONS PLAN Version: Communications Liaison Group Approval Planned Review Chair SCG Plans Workstream Protective Marking: Planned
More informationBusiness Continuity Planning Keeping Pace with New Technology
Business Continuity Planning Keeping Pace with New Technology Old issues, new threats Force Majeure Increasing severe weather incidents, terrorist attacks Legacy modernization Cutover issues, system crashes,
More informationPromoting the Art and Science of Business Continuity Management Worldwide. Partner of the DRJ
Promoting the Art and Science of Business Continuity Management Worldwide Official Certification and Education Partner of the DRJ Doug Weldon President, BCI-USA Chapter douglas.weldon@thomsonreuters.com
More informationBusiness Continuity Management: How to get started. Presented by: Tony Drewitt, Managing Director IT Governance Ltd 19 April 2018
Business Continuity Management: How to get started Presented by: Tony Drewitt, Managing Director IT Governance Ltd 19 April 2018 Introduction Tony Drewitt - Managing Director: IT Governance UK and EU One
More informationMaintaining Resiliency Within the Defense Industrial Base Through Preparedness Response and Recovery
Maintaining Resiliency Within the Defense Industrial Base Through Preparedness Response and Recovery Dave Komendat Chief Security Officer The Boeing Company What We Do Today Design, assemble and support
More informationResilience in London
Resilience in London A Resilient City The ability of London to detect, prevent and if necessary to withstand, handle and recover from disruptive challenges Objectives London- complexity and risk London
More informationHessisches Ministerium des Innern und für Sport, Translated into English by E.Polster, Wiesbaden, September 2009
Hessisches Ministerium des Innern und für Sport, 2009 Translated into English by E.Polster, Wiesbaden, September 2009 1 Why do we have a crisis management team within the State Government, and what is
More informationImplementing NFPA 3000 (PS)
Implementing NFPA 3000 (PS) Standard for an Active Shooter / Hostile Event Response (ASHER) Program IT S A BIG WORLD. LET S PROTECT IT TOGETHER. Need for Guidance Leads to New Standard 2 Active Shooter
More informationPublic and Private Interdependencies Filling a Gap in Most Continuity Plans
Public and Private Interdependencies Filling a Gap in Most Continuity Plans John A Jackson Executive Vice President Fusion Risk Management, Inc. The evolution of the continuity industrytechnology advancement
More informationNumber: USF System Emergency Management Responsible Office: Administrative Services
POLICY USF System USF USFSP USFSM Number: 6-010 Title: USF System Emergency Management Responsible Office: Administrative Services Date of Origin: 2-7-12 Date Last Amended: 8-24-16 (technical) Date Last
More informationTEL2813/IS2820 Security Management
TEL2813/IS2820 Security Management Security Management Models And Practices Lecture 6 Jan 27, 2005 Introduction To create or maintain a secure environment 1. Design working security plan 2. Implement management
More informationWelcome to the AEMA Regional Outreach
Welcome to the AEMA Regional Outreach Intent and Purpose Share Information Strengthen Networks Get Feedback / Identify Issues Say Thank you! 2 Major Threats Summer storms Petro-Chemical release Public
More informationSOLUTION BRIEF Virtual CISO
SOLUTION BRIEF Virtual CISO programs that prepare you for tomorrow s threats today Organizations often find themselves in a vise between ever-evolving cyber threats and regulatory requirements that tighten
More informationTEL2813/IS2820 Security Management
TEL2813/IS2820 Security Management Contingency Planning Jan 22, 2008 Introduction Planning for the unexpected event, when the use of technology is disrupted and business operations come close to a standstill
More informationSecurity and Fleet Manager
Security and Fleet Manager Location: [Europe & the Middle East] [Jordan] Town/City: Amman Category: Security Job Type: Open-ended, Full-time Position Title: Security and Fleet Manager PURPOSE OF POSITION:
More informationGlobal Crisis Management at Target
Global Crisis Management at Target Bryan Strawser Group Manager, Global Crisis Management Target & Chairman, Private Sector Committee, National Emergency Management Association (US) Global Crisis Management
More informationPolicy. Business Resilience MB2010.P.119
MB.P.119 Business Resilience Policy This policy been prepared by the Bi-Cameral Business Risk and Resilience Group and endorsed by the Management Boards of both Houses. It is effective from December to
More informationHomeland Security and Geographic Information Systems
Page 1 of 5 Homeland Security and Geographic Information Systems How GIS and mapping technology can save lives and protect property in post-september 11th America Introduction Timely, accurate information,
More informationNERCPI Regional Cyber Disruption Planning.
NERCPI Regional Cyber Disruption Planning www.newenglandrcpi.org Cyber Disruption Planning Catastrophic cyber planning is an evolving concept True emergencies vs. inconveniences Fully interconnected world
More informationIntroduction. Overview. Every Crisis Management Team Needs a Critical Decision Checklist. Presented by Roseanne Rostron, CBCP President Raido Response
Every Crisis Management Team Needs a Critical Decision Checklist Presented by Roseanne Rostron, CBCP President Raido Response Tuesday, May 9, 2006 Introduction Roseanne Rostron, CBCP - President Raido
More informationL18: Integrate Control Disciplines to Increase Control and Save Money
L18: Integrate Control Disciplines to Increase Control and Save Money Kathleen Lucey, FBCI Montague Risk kalucey@montaguetm.com tel: 1.516.676.9234 Connections Information Security (computer security,
More informationSpecial Action Plan on Countermeasures to Cyber-terrorism of Critical Infrastructure (Provisional Translation)
Special Action Plan on Countermeasures to Cyber-terrorism of Critical Infrastructure (Provisional Translation) December 15, 2000 1. Goals of the Special Action Plan The goal of this action plan is to protect
More informationTIPS FOR FORGING A BETTER WORKING RELATIONSHIP BETWEEN COUNSEL AND IT TO IMPROVE CYBER-RESPONSE
TIPS FOR FORGING A BETTER WORKING RELATIONSHIP BETWEEN COUNSEL AND IT TO IMPROVE CYBER-RESPONSE Association of Corporate Counsel NYC Chapter 11/1 NYC BDO USA, LLP, a Delaware limited liability partnership,
More informationNational Level Exercise 2018 After-Action Findings
National Level Exercise 2018 After-Action Findings National Level Exercise (NLE) 2018 examined the ability of all levels of government, private industry, and nongovernmental organizations to protect against,
More informationDisaster Recovery and Business Continuity Planning (Mile2)
Disaster Recovery and Business Continuity Planning (Mile2) Course Number: DRBCP Length: 4 Day(s) Certification Exam This course will help you prepare for the following exams: ABCP: Associate Business Continuity
More informationSM04: Transforming Your Security Command Post into a Strategic Information Nerve Center
SM04: Transforming Your Security Command Post into a Strategic Information Nerve Center Bob Banerjee, Sr. Director of Training and Development, NICE Systems (Moderator) Brad Brekke, Vice President of Corporate
More informationEXHIBIT A. - HIPAA Security Assessment Template -
Department/Unit: Date: Person(s) Conducting Assessment: Title: 1. Administrative Safeguards: The HIPAA Security Rule defines administrative safeguards as, administrative actions, and policies and procedures,
More informationAltius IT Policy Collection Compliance and Standards Matrix
Governance Context and Alignment Policy 4.1 4.4 800-26 164.308 12.4 EDM01 IT Governance Policy 5.1 800-30 12.5 EDM02 Leadership Mergers and Acquisitions Policy A.6.1.1 800-33 EDM03 Context Terms and Definitions
More informationEmergence of Business Continuity to Ensure Business and IT Operations. Solutions to successfully meet the requirements of business continuity.
Emergence of Business Continuity to Ensure Business and IT Operations Solutions to successfully meet the requirements of business continuity. 2 3 4 5 Introduction Use of Virtualization Technology as a
More informationMHA Consulting BCM Metrics Resiliency Through Measurement
0 MHA Consulting BCM Metrics Resiliency Through Measurement Presented by: Michael Herrera, CBCP March, 2013 2009 2013 MHA MHA Consulting All All Rights Rights Reserved. Reserved. Agenda 1 Overview A Menu
More informationSt. Joseph s General Hospital LOCKDOWN EMERGENCY RESPONSE PLAN
St. Joseph s General Hospital LOCKDOWN EMERGENCY RESPONSE PLAN ERP Lockdown may be initiated in response to incidents originating within the facility, or incidents occuring in the community that have the
More informationA Practical Guide to Avoiding Disasters in Mission-Critical Facilities. What is a Disaster? Associated Business Issues.
A Practical Guide to Avoiding Disasters in Mission-Critical Facilities Todd Bermont What is a Disaster? An event that can unexpectedly impact the continuity of your business Anything that injures or has
More informationGlobal Crisis Management at Target
2011/EPWG/WKSP/008 Session 1 Global Crisis Management at Target Submitted by: Target Workshop on Private Sector Emergency Preparedness Sendai, Japan 1-3 August 2011 Global Crisis Management at Target Bryan
More informationDriving Global Resilience
Driving Global Resilience Steve Mellish FBCI Chairman, The Business Continuity Institute Monday December 2nd, 2013 Business & IT Resilience Summit New Delhi, India Chairman of the Business Continuity Institute
More information