Service Level Agreements By Andrew Hiles, Hon FBCI, EloSCM


Book Description

In an ideal business climate, all your service level agreements would align perfectly with business goals. Your company’s vision, definitions, requirements, and performance measurement would be clear. But in today’s fast-paced, complex world of outsourcing, you could use some help to make that a reality. Look no further! In A Rothstein Publishing Collection: Service Level Agreements, four key books by Andrew Hiles combine to help you achieve effective agreements. Andrew Hiles draws on decades of experience to guide you in achieving service level agreements (SLAs) that are not simply legal documents, but are strategic business-centric tools that can lead to enduring, satisfying, and profitable relationships between customer and supplier. In this four-book package, you will receive a step-by-step guide to designing, negotiating, and implementing SLAs in your organization: Service Level Agreements: Winning a Competitive Edge for Support & Supply Services The Complete Guide to IT Service Level Agreements: Aligning IT Service to Business Needs E-Business Service Level Agreements: Strategies for Service Providers, E-Commerce and Outsourcing Creating a Customer-Focused Help Desk: How to Win and Keep Your Customers These books include checklists, samples, statistics, and real-world case studies that will help you to: • Create clearly written SLAs that are unambiguous, comprehensive, and enforceable. • Balance service costs against quality for business advantage. • Provide the level of service that meets the expectations of customers and keeps them loyal. • Apply quality assurance techniques to the SLA to identify the right quality of service. • Prevent disputes between customers and suppliers. • Avoid catastrophic losses and day-to-day headaches.




Introduction to Emergency Evacuation


Book Description

When it’s not just a drill, you need to get it right the first time. If an emergency alert sounds, are you ready to take charge and get everyone out of the office, theatre, classroom, or store safely? In Introduction to Emergency Evacuation: Getting Everybody Out When it Counts, Jim Burtles explains the practical basics of understanding your site, planning escape routes, and providing for people with special needs. When minutes count, you will be ready to take action! From 30+ years of working with organizations like yours, Burtles knows the challenges you face. He tells you what you need to know as you plan to evacuate people of all ages and health conditions – whether it’s from small offices, skyscrapers, stores, industrial plants, hospitals, college campuses, or other venues. In this short book, Burtles tells you how to: Analyze the site, identifying escape routes and assembly areas. Select and train emergency response teams who will be ready to assist when needed. Calculate the amount of time to allow to evacuate people from different locations – using the author’s own proven formula. Anticipate the personal needs of people who have been suddenly evacuated – from coats to transportation to medical assistance. Learn the needs and limitations of people with disabilities, creating personal evacuation plans for them. Create signage that will be effective for anyone who will be in the area – from workers to customers to visitors. Communicate during the emergency. Check and double-check to make sure nobody is left behind. Finally, to save you time in your emergency planning, Burtles ends the book ends with a bonus comprehensive “Emergency Evacuation Checklist” containing the essentials you need to make sure your plan covers everything you need.




The Manager's Guide to Bullies in the Workplace


Book Description

As a manager, you can usually handle disruptive employees. But sometimes, their emotional states foster workplace tension, even making them a danger to others. Your own confidence is at risk. In The Manager’s Guide to Bullies in the Workplace: Coping with Emotional Terrorists, noted counselor Dr. Vali Hawkins Mitchell gives you sensible advice for keeping the bully from dominating the workgroup and destroying productivity – and maintaining your own healthy emotional balance at the same time. Sometimes the difficult person is an overt physical bully, which makes it easy to simply fire the person. Much of the time, however, the problems are more subtle and build up over periods of time. They undermine your ability to manage your team – and they can spread to the rest of the team, destroying teamwork and productivity. In this short book, Dr. Vali helps you to: Recognize the types of upsetting work situations that bullies exploit to their own advantage, such as change, grief, and violence. Understand why emotional terrorists make it so difficult for you, as a manager, to deal with their behavior. . See the symptomatic tools and techniques of the emotional terrorist, such as harassment, lying to supervisors, tampering with documents, etc. . Conduct training to help other managers and team members recognize and handle the signs of impending emotional conflict – you will love the “Snakes in the Schoolyard” exercise. . Know exactly what to say and not say when you must have a one-on-one interview with someone you consider to be a bully. . Be an effective manager in a world of challenges – protecting and preserving the mental health of your employees and yourself. . Dr. Vali uses realistic examples and humor to help you handle the challenges you face – and to show the degree to which she really understands your situation. With her guidance, you will be more comfortable with knowing when you can handle the situation through simply being the good manager, when you need to call in an outside mental health professional, and when you need to call 911.




Enterprise Security Risk Management


Book Description

As a security professional, have you found that you and others in your company do not always define “security” the same way? Perhaps security interests and business interests have become misaligned. Brian Allen and Rachelle Loyear offer a new approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful. In their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security. How is ESRM familiar? As a security professional, you may already practice some of the components of ESRM. Many of the concepts – such as risk identification, risk transfer and acceptance, crisis management, and incident response – will be well known to you. How is ESRM new? While many of the principles are familiar, the authors have identified few organizations that apply them in the comprehensive, holistic way that ESRM represents – and even fewer that communicate these principles effectively to key decision-makers. How is ESRM practical? ESRM offers you a straightforward, realistic, actionable approach to deal effectively with all the distinct types of security risks facing you as a security practitioner. ESRM is performed in a life cycle of risk management including: Asset assessment and prioritization. Risk assessment and prioritization. Risk treatment (mitigation). Continuous improvement. Throughout Enterprise Security Risk Management: Concepts and Applications, the authors give you the tools and materials that will help you advance you in the security field, no matter if you are a student, a newcomer, or a seasoned professional. Included are realistic case studies, questions to help you assess your own security program, thought-provoking discussion questions, useful figures and tables, and references for your further reading. By redefining how everyone thinks about the role of security in the enterprise, your security organization can focus on working in partnership with business leaders and other key stakeholders to identify and mitigate security risks. As you begin to use ESRM, following the instructions in this book, you will experience greater personal and professional satisfaction as a security professional – and you’ll become a recognized and trusted partner in the business-critical effort of protecting your enterprise and all its assets.




Building Effective Cybersecurity Programs


Book Description

You know by now that your company could not survive without the Internet. Not in today’s market. You are either part of the digital economy or reliant upon it. With critical information assets at risk, your company requires a state-of-the-art cybersecurity program. But how do you achieve the best possible program? Tari Schreider, in Building Effective Cybersecurity Programs: A Security Manager’s Handbook, lays out the step-by-step roadmap to follow as you build or enhance your cybersecurity program. Over 30+ years, Tari Schreider has designed and implemented cybersecurity programs throughout the world, helping hundreds of companies like yours. Building on that experience, he has created a clear roadmap that will allow the process to go more smoothly for you. Building Effective Cybersecurity Programs: A Security Manager’s Handbook is organized around the six main steps on the roadmap that will put your cybersecurity program in place: Design a Cybersecurity Program Establish a Foundation of Governance Build a Threat, Vulnerability Detection, and Intelligence Capability Build a Cyber Risk Management Capability Implement a Defense-in-Depth Strategy Apply Service Management to Cybersecurity Programs Because Schreider has researched and analyzed over 150 cybersecurity architectures, frameworks, and models, he has saved you hundreds of hours of research. He sets you up for success by talking to you directly as a friend and colleague, using practical examples. His book helps you to: Identify the proper cybersecurity program roles and responsibilities. Classify assets and identify vulnerabilities. Define an effective cybersecurity governance foundation. Evaluate the top governance frameworks and models. Automate your governance program to make it more effective. Integrate security into your application development process. Apply defense-in-depth as a multi-dimensional strategy. Implement a service management approach to implementing countermeasures. With this handbook, you can move forward confidently, trusting that Schreider is recommending the best components of a cybersecurity program for you. In addition, the book provides hundreds of citations and references allow you to dig deeper as you explore specific topics relevant to your organization or your studies.




Simplifying Cause Analysis


Book Description

When the challenge is to get to the heart of a problem, you need a simple and efficient cause investigation methodology. And what would make a real difference would be an interactive map to lead you to the answer every time. Chester Rowe’s Simplifying Cause Analysis: A Structured Approach is your instruction book combined with the included downloadable Interactive Cause Analysis Tool you have been looking for. The author intends this book for professionals like you, who have some familiarity with cause analysis projects and are looking for a simple and efficient cause investigation methodology –is a more effective and insightful way of asking “why?” Introducing his multi-function event investigation tool, Chester Rowe says, “There are already many scientific tools to help us understand the physical causes for machine failures; the challenge now is to find a way of investigating human performance failure modes...humans are often a major source of slips, lapses, and mistakes.” Supporting his instructions with diagrams, charts, and real-world examples from companies like yours, the author takes you step-by-step through planning, completing, and documenting your investigation: Chapter 1 gives you a process to determine the level of effort that your investigation should encompass, assess the level of effort needed, and determine the rigor needed. Your investigation needs to be as risk-informed as possible. Chapters 2 through 5 presents a new and innovative structure –rigorous yet intuitively easy to remember – to identify the underlying causes for the event (Cause Road Maps) and conduct the investigation. Chapter 6 introduces conceptual human performance models and tells you how to begin focusing on the human behaviors involved. Chapters 7 and 8 present you with methods, tools, and techniques for carefully interviewing personnel. Chapters 9 through 13 “put the pieces together,” showing you how to analyze and model the event, determine corrective action, and document the investigations and findings. Chester Rowe developed the Cause Road Map over many years to provide a comprehensive taxonomy for every cause investigation. However, fully implementing the Cause Road Map requires the use of other tools to organize, analyze, and present the final results of your investigation. To get you started, Rowe includes his downloadable Interactive Cause Analysis Tool – an easy-to-use tool in familiar spreadsheet format – free with your verified purchase of the book.




Business Continuity Management


Book Description

Discover new ideas and inspiration to build world-class Business Continuity Management from this masterwork that distills Hiles' wisdom about what works and why from 30+ years' experience in 60+ countries. First published in 1999, the new 4th Edition of Hiles' classic is the most international, comprehensive, readable exposition on the subject. It now includes: New or revised sections: New, extensive chapter on supply chain risk – including valuable advice on contract aspects. Horizon scanning of new risks. Fresh perspectives. Multilateral continuity planning. Impact of new technologies, including mobile computing, cloud computing, bring your own device, and the Internet of things. Extensive, up-to-the-minute coverage of global/country-specific standards, with detailed appendices on ISO 22301/22313 and NFPA 1600. BCP exercising and testing. Helpful discussion on issues relating to certification professional certification. New revealing case studies and vivid examples of crises and disruptions – and effective response to them. Updated action plans and roadmaps. Proven techniques to win consensus on BC strategy and planning. Hint of the future – what's next for BCM? Demonstrates step-by-step how to build and maintain a world-class BC management system and plan. Shares field-tested tools and hard-won insights about what works and why. Chapter learning objectives, case studies and real-life examples, self-examination and discussion questions, forms, checklists, charts and graphs, glossary, index. 520-page book + hundreds of pages of Downloadable Resources, including project plans, risk analysis forms, BIA spreadsheets, BC plan formats, exercise/test material, checklists, and a variety of editable models, templates, and spreadsheets. Instructional Materials coming soon including valuable educational tools, such as syllabi, test bank, slides – for use by approved adopters in college courses and professional development training.




Creating and Maintaining Resilient Supply Chains


Book Description

Creating and Maintaining Resilient Supply Chains Will your supply chain survive the twists and turns of the global economy? Can it deliver mission-critical supplies and services in the face of disaster or other business interruption? A resilient supply chain can do those things and more. In Creating and Maintaining Resilient Supply Chains, global expert Andrew Hiles applies the principles of risk and business continuity to enable a reliable flow of materials and information that is a “win” for everyone involved. From over 30 years of experience working with companies like yours, the author of Creating and Maintaining Resilient Supply Chains helps you to: Understand the criticality of procurement and supply chain management to the health of your organization. Relate the time-tested principles of good business continuity planning to constructing a reliable supply chain. Apply risk management principles to evaluate vendors and create effective contracts. Create the specifications that will result in a good tender or bid. Anticipate contract issues when you are dealing with other legal systems, including International Commercial Law, Anglo Saxon Law, Civil Code, Sharia Code, and European Law. In one short book, Hiles distills the knowledge of a lifetime to prepare you to handle risks, pitfalls, and potential ambiguities. As a result, you will know how to carefully plan and negotiate supply chain relationships that benefit all the organizations involved.




Business Continuity


Book Description

This book is intended to be a step-by-step guide to implementation of business continuity managementwithin an enterprise. It may be used as a step-by-step guide by those new to Business ContinuityManagement or dipped into by the more seasoned professional for ideas and updates on specifictopics. In many cases, the corporate BC Manager acts as an internal consultant, and we have treatedhim or her as such in this book: the book is therefore equally appropriate for practicing consultants. This book is the second edition of the first book to be based on the ten Core Units of Competence for Business Continuity established jointly by BCI and DRII, and to create a practical, step-by-step framework to guide an enterprise through the implementation of a business continuity program based on these ten units.This book has been endorsed by both The Business Continuity Institute International (BCI) and TheDisaster Recovery Institute International (DRII). Both organizations have included forewords to this book.