The Manager’s Guide to Business Continuity Exercises


Book Description

You designed your Business Continuity Plan to keep your business in business regardless of the forces of man and nature. But how do you know that the plan really works? Few companies can afford the recommended full-scale exercises several times a year. In The Manager’s Guide to Business Continuity Exercises, Jim Burtles, an internationally known expert, details the options for conducting a range of tests and exercises to keep your plan effective and up to date. Your challenge is to maintain a good and effective plan in the face of changing circumstances and limited budgets. If your situation is like that in most companies, you really cannot depend on the results of last year’s test or exercise of the plan. People tend to forget, lose confidence, lose interest, or even be replaced by other people who were not involved in your original planning. Jim Burtles explains: “You cannot have any real confidence in your plans and procedures until they have been fully tested...Exercises are the only way we can be sure that the people will be able to interpret the plans and procedures correctly within the requisite timeframe under difficult circumstances.” As you do your job in this constantly shifting context, Jim Burtles helps you to: • Differentiate between an “exercise” and a “test” – and see the value of each in your BC program. • Understand the different types of plans and identify the people who need to be involved in exercises and tests for each. • Use the “Five-Stage Growth Path” – from desktop to walkthrough to full-scale exercise -- to conduct gradual testing, educate personnel, foster capability, and build confidence. • Create a variety of unusual scenario plot-lines that will keep up everyone’s interest. • Identify the eight main elements in developing and delivering a successful BC exercise. • Select and prepare a “delivery team” and a “response team” for your exercise. • Make sure everyone understands the “rules of engagement.” • Use the lessons learned from exercises and tests to audit, update, and maintain the plan. You are well aware that a host of problems may crop up in any kind of company-wide project. These problems can range from basic logistics like time and place, to non-support from executives and managers, to absenteeism, to the weather, to participants forgetting their lines. Throughout the book, Burtles uses his decades of experience working with companies like yours to give you useful examples, case studies, and down-to-earth advice to help you handle the unexpected and work toward the results you are looking for.




Business Continuity Exercises


Book Description

An Unexercised Continuity Plan Could Be More Dangerous Than No Plan At All! Is exercising your continuity program too time-consuming, costly, or difficult to justify in the face of conflicting organizational priorities or senior management buy-in? What if you could use quick, cost-effective, easy exercises to get valuable results with only a relatively modest commitment? Whether you’re a seasoned practitioner or just getting started, Charlie Maclean-Bristol provides you with expert guidance, a practical framework, and lots of proven examples, tools, tips, techniques and scenarios to get your business continuity exercise program moving! You can carry out any of the 18 simple yet effective exercises detailed in this book in less than an hour, regardless of your level of experience. Plus, you will find all the support you will need to produce successful exercises. Build your teams’ knowledge, experience, confidence and abilities while validating your business continuity program, plans and procedures with these proven resources! Business Continuity Exercises: Quick Exercises to Validate Your Plan Will Help You To: Understand the process of planning and conducting business exercises efficiently while achieving maximum results. Develop the most appropriate strategy framework for conducting and assessing your exercise. Overcome obstacles to your business continuity exercise program, whether due to budget restrictions, time constraints, or conflicting priorities. Choose the most appropriate and effective exercise scenario, purpose and objectives. Plan and conduct your exercise using a straightforward, proven methodology with extensive tools and resources. Conduct exercises suitable for responding to all types of business interruptions and emergencies, including cyber incidents and civil disasters. Conduct exercises for newcomers to business continuity as well as for experienced practitioners. Create a comprehensive post-exercise report to achieve valuable insights, keep management and participants in the loop, and to further your objectives.




The Manager’s Guide to Simple, Strategic, Service-Oriented Business Continuity


Book Description

You have the knowledge and skill to create a workable Business Continuity Management (BCM) program – but too often, your projects are stalled while you attempt to get the right information from the right person. Rachelle Loyear experienced these struggles for years before she successfully revamped and reinvented her company’s BCM program. In The Manager’s Guide to Simple, Strategic, Service-Oriented Business Continuity, she takes you through the practical steps to get your program back on track. Rachelle Loyear understands your situation well. Her challenge was to manage BCM in a large enterprise that required hundreds of BC plans to be created and updated. The frustrating reality she faced was that subject matter experts in various departments held the critical information she needed, but few were willing to write their parts of the plan. She tried and failed using all the usual methods to educate and motivate – and even threaten – departments to meet her deadlines. Finally, she decided there had to be a better way. The result was an incredibly successful BCM program that was adopted by BCM managers in other companies. She calls it “The Three S’s of BCM Success,” which can be summarized as: Simple – Strategic – Service-Oriented. Loyear’s approach is easy and intuitive, considering the BCM discipline from the point of view of the people in your organization who are tasked to work with you on building the plans and program. She found that most people prefer: Simple solutions when they are faced with something new and different. Strategic use of their time, making their efforts pay off. Service to be provided, lightening their part of the load while still meeting all the basic requirements. These tactics explain why the 3S program works. It helps you, it helps your program, and it helps your program partners. Loyear says, “If you follow the ‘Three S’ philosophy, the number of plans you need to document will be fewer, and the plans will be simpler and easier to produce. I’ve seen this method succeed repeatedly when the traditional method of handing a business leader a form to fill out or a piece of software to use has failed to produce quality plans in a timely manner.” In The Manager’s Guide to Simple, Strategic, Sevice-Oriented Business Continuity, Loyear shows you how to: Completely change your approach to the problems of “BCM buy-in.” Find new ways to engage and support your BCM program partners and subject matter experts. Develop easier-to-use policies, procedures, and plans. Improve your overall relationships with everyone involved in your BCM program. Craft a program that works around the roadblocks rather than running headlong into them.




A Risk Management Approach to Business Continuity


Book Description

Julia Graham and David Kaye, two globally recognized risk management experts with experience in 50 countries, were among the first to recognize the interrelationship of Risk Management and Business Continuity and demonstrate how to integrate them with Corporate Governance enterprise-wide. They focus on all the factors that must be considered when developing a comprehensive Business Continuity Plan, especially for multi-location or multinational companies. Endorsed by The Business Continuity Institute, Institute for Risk Management, and Disaster Recovery Institute International, the book includes: • Chapter objectives, summaries and bibliographies; charts, sample forms, checklists throughout. • Plentiful case studies, in boxed text, sourced globally in the UK, US, Europe, Australia, Asia, etc. • Boxed inserts summarizing key concepts. • Glossy of 150 risk management and business continuity terms. • Wide range of challenges, including supply chain disruptions, media and brand attack, product contamination and product recall, bomb threats, chemical and biological threats, etc. • Instructions for designing/executing team exercises with role playing to rehearse scenarios. • Guidance on how to develop a business continuity plan, including a Business Impact Analysis. Downloadable Instructor Materials are available for college and professional developement use, including PowerPoint slides and syllabus for 12-week course with lecture outlines/notes, quizzes, reading assignments, discussion topics, projects "Provides clear guidance, supported with a wide range of memorable and highly relevant case studies, for any risk or business continuity manager to successfully meet the challenges of today and the future." --Steven Mellish, Chairman, The Business Continuity Institute




The Definitive Handbook of Business Continuity Management


Book Description

With a pedigree going back over ten years, The Definitive Handbook of Business Continuity Management can rightly claim to be a classic guide to business risk management and contingency planning, with a style that makes it accessible to all business managers. Some of the original underlying principles remain the same – but much has changed. This is reflected in this radically updated third edition, with exciting and helpful new content from new and innovative contributors and new case studies bringing the book right up to the minute. This book combines over 500 years of experience from leading Business Continuity experts of many countries. It is presented in an easy-to-follow format, explaining in detail the core BC activities incorporated in BS 25999, Business Continuity Guidelines, BS 25777 IT Disaster Recovery and other standards and in the body of knowledge common to the key business continuity institutes. Contributors from America, Asia Pacific, Europe, China, India and the Middle East provide a truly global perspective, bringing their own insights and approaches to the subject, sharing best practice from the four corners of the world. We explore and summarize the latest legislation, guidelines and standards impacting BC planning and management and explain their impact. The structured format, with many revealing case studies, examples and checklists, provides a clear roadmap, simplifying and de-mystifying business continuity processes for those new to its disciplines and providing a benchmark of current best practice for those more experienced practitioners. This book makes a massive contribution to the knowledge base of BC and risk management. It is essential reading for all business continuity, risk managers and auditors: none should be without it.




Disaster Recovery Testing


Book Description

Rather than providing readers with only one perspective on testing contingency plans, Mr. Rothstein has taken the powerful approach of carefully assembling a panel of thirty professionals to contribute their unique expertise in 36 detailed chapters, 350+ pages,covering such subject areas as:- test planning and management, including management's role, budgeting, justification and politics- test participants and resources, including professional development, human factors, the test team, self-assessment, the roles of vendors, consultants, auditors, clients, software- testing methods, including walkthroughs, simulations, joint testing, surprise testing, real disasters as the ultimate test- what is being tested, including business units, locations, data centers, voice / data communications, trading floors, local area networks- any other practical considerations, such as test monitoring, first-time testing, feedback, reporting and follow-up;even a sample test plan is included.




A Guide to Business Continuity Planning


Book Description

The interest in Business Continuity has gained significant momentum in the last few years, especially with the Y2K non-event, the increasing corporate dependence on computer systems and the growing levels of devastation associated with recent disasters. This book takes an organization interested in continuity planning through the processes needed to develop an effective plan. "Jim Barnes has succeeded in providing us a much-needed tool, with which we can condidently face many of the day-to-day challenges of business contingency planning ... With this book, he has taken an important step in removing much of the guesswork and frustration from the business continuity implementation project." From the Foreword by Philip Jan Rothstein, FBCI, President of Rothstein Associates Inc., Publisher of The Rothstein Catalog on Disaster Recovery, 2001




The Manager’s Guide to Cybersecurity Law


Book Description

In today’s litigious business world, cyber-related matters could land you in court. As a computer security professional, you are protecting your data, but are you protecting your company? While you know industry standards and regulations, you may not be a legal expert. Fortunately, in a few hours of reading, rather than months of classroom study, Tari Schreider’s The Manager’s Guide to Cybersecurity Law: Essentials for Today’s Business, lets you integrate legal issues into your security program. Tari Schreider, a board-certified information security practitioner with a criminal justice administration background, has written a much-needed book that bridges the gap between cybersecurity programs and cybersecurity law. He says, “My nearly 40 years in the fields of cybersecurity, risk management, and disaster recovery have taught me some immutable truths. One of these truths is that failure to consider the law when developing a cybersecurity program results in a protective façade or false sense of security.” In a friendly style, offering real-world business examples from his own experience supported by a wealth of court cases, Schreider covers the range of practical information you will need as you explore – and prepare to apply – cybersecurity law. His practical, easy-to-understand explanations help you to: Understand your legal duty to act reasonably and responsibly to protect assets and information. Identify which cybersecurity laws have the potential to impact your cybersecurity program. Upgrade cybersecurity policies to comply with state, federal, and regulatory statutes. Communicate effectively about cybersecurity law with corporate legal department and counsel. Understand the implications of emerging legislation for your cybersecurity program. Know how to avoid losing a cybersecurity court case on procedure – and develop strategies to handle a dispute out of court. Develop an international view of cybersecurity and data privacy – and international legal frameworks. Schreider takes you beyond security standards and regulatory controls to ensure that your current or future cybersecurity program complies with all laws and legal jurisdictions. Hundreds of citations and references allow you to dig deeper as you explore specific topics relevant to your organization or your studies. This book needs to be required reading before your next discussion with your corporate legal department.




A Supply Chain Management Guide to Business Continuity


Book Description

A well-monitored supply chain is any business's key to productivity and profit. But each link in that chain is its own entity, subject to its own ups, downs, and business realities. If one falters, every other link-and the entire chain-becomes vulnerable. Kildow's book identifies the different phases of business continuity program development and maintenance, including: * Recognizing and mitigating potential threats, risks, and hazards * Evaluating and selecting suppliers, contractors, and service providers * Developing, testing, documenting, and maintaining business continuity plans * Following globally accepted best practices * Analyzing the potential business impact of supply chain disruptions Filled with powerful assessment tools, detailed disaster-preparedness checklists and scenarios, and instructive case studies in supply chain reliability, A Supply Chain Management Guide to Business Continuity is a crucial resource in the long-term stability of any business.




Business Continuity Management


Book Description

PRAISE FOR Business Continuity Management Few businesses can afford to shut down for an extended period of time, regardless of the cause. If the past few years have taught us anything, it's that disaster can strike in any shape, at any time. Be prepared with the time-tested strategies in Business Continuity Management: Building an Effective Incident Management Plan and protect your employees while ensuring your company survives the unimaginable. Written by Michael Blyth one of the world's foremost consultants in the field of business contingency management this book provides cost-conscious executives with a structured, sustainable, and time-tested blueprint toward developing an individualized strategic business continuity program. This timely book urges security managers, HR directors, program managers, and CEOs to manage nonfinancial crises to protect your company and its employees. Discussions include: Incident management versus crisis response Crisis management structures Crisis flows and organizational responses Leveraging internal and external resources Effective crisis communications Clear decision-making authorities Trigger plans and alert states Training and resources Designing and structuring policies and plans Monitoring crisis management programs Stages of disasters Emergency preparedness Emergency situation management Crisis Leadership Over 40 different crisis scenarios Developing and utilizing a business continuity plan protects your company, its personnel, facilities, materials, and activities from the broad spectrum of risks that face businesses and government agencies on a daily basis, whether at home or internationally. Business Continuity Management presents concepts that can be applied in part, or full, to your business, regardless of its size or number of employees. The comprehensive spectrum of useful concepts, approaches and systems, as well as specific management guidelines and report templates for over forty risk types, will enable you to develop and sustain a continuity management plan essential to compete, win, and safely operate within the complex and fluid global marketplace.