7 th BICSI Southeast Asia Conference 2009 Building the Next Generation Broadband Network

Transcription

1 7 th BICSI Southeast Asia Conference 2009 Building the Next Generation Broadband Network Business Impact Analysis A Regional Perspective Presented by Lim Sek Seong Vice President Sek_Seong@BCM-Institute.org

2 Lim Sek Seong Vice President Business Continuity Management (BCM) Institute Managing Consultant GMH Continuity Architects Asia Pacific BCM Consulting Firm Professional BCM Appointments CBCP; BCCE; DRCE; BCMM Licensed Assessor Technical Advisor for TR19:2005 & SS540:2008 BCM Standard (Management Council and Technical Committee) Dy Project Director, Technical Working Group for SS507:2004 ISO/IEC Guidelines for BC-DR Services

3 Agenda Business Impact Analysis (BIA) Purpose Challenges & Key Success Factors Scope, Definition & Framework BIA information Conclusion 3

4 Business Impact Analysis Importance of Business Impact Analysis Determine effect of threats on value-chain Establish Minimum Business Continuity Objectives (MBCO) Impact on key stakeholders Critical operations and services Recovery time objectives 4

5 Challenges Ownership /accountability & responsibilities Multiple threats versus limited resources and budget Understanding of scope, framework and requirements Relevant knowledge and skills Competency & capability Leadership, coaching and project management 5

6 Success Factors Top-down approach Senior Management commitment Ownership /accountability & responsibilities Clearly defined scope and requirements Adopt relevant standards, policies and guidelines Teamwork Well trained project manager with mandate Appoint business unit representatives Training & professional services partner Competency & capability Progressive increase Good awareness BCM embedded into organisational culture 6

7 Business Continuity Management BCM Planning Methodology IT RECOVERY BUSINESS CONTINUITY SUPPLY- CHAIN CRISIS Plan IT DR PLAN BC PLAN SPECIFIC PLANS SUPPLY-CHAIN MANAGEMENT PLAN SPECIFIC CRISIS MANAGEMENT PLAN 7

8 BC Life Cycle Reduce Major Plan Components Respond Recover Resume Restore Return Pre-empt Timeline Within weeks to months Emergency Response Within hours or days Restore & Return Within minutes or hours Recover & Resume Crisis Management 8

9 BCM Objectives Protect organisation against potential threats; protect life and assets Protect interests of shareholders and investors Minimise impact and losses people, information and infrastructure assets Enhance confidence of stakeholders and the public Improve organizational (process) resiliency and operational robustness 9

10 BCM Areas Framework BCM Framework, standard and planning methodology BoK: Body of Knowledge BCM Components Policies Processes People Infrastructure Risk Analysis & Review Business Impact Analysis Strategy BC Plan Tests & Exercises BC Plan Programme Management Source: Goh, Moh Heng (2008): Managing Your Business Continuity Planning Project 2 nd Edition ISBN:

11 Definitions BCMPedia BCM DR Pandemic Flu SS540:2008 Standardization Consistency Common understanding 11

12 Threat Analysis Technical/ Economic I n t e r n a l Major organizational processing failure Organization-wide information security breach Major organizationwide processing failure Financial crisis Political crisis Utilities failure Failure of critical service providers Terrorism Sabotage Civil unrest E x t e r n a l People/ Social 12

13 Threats 13

14 BIA Information Policy Records RTOs People Resources Process CBFs Infrastructure 14

15 Summary One-stop Professional & Training Services Internal project team partnering with Coordinate grant application & certification audit Professional certification Modular & focused approach Focus business unit to complete required tasks Integrated training and coaching Minimum contact hours, administration & logistics Strong BCM Leadership & Passion Experienced Consulting Team Relevant credentials Strong mixed of local and foreign team 15

16 Lim Sek Seong