Book description
75% of companies without a business continuity plan fail within three years.
Disruptive incidents can affect any organization and occur at any moment. ICT outages, cyber attacks, natural disasters, terrorist attacks, pandemics, supply chain failures and other unexpected events can all affect productivity and in many cases place a company’s survival in serious jeopardy.
Business continuity planning is essential to overcoming business disruptions, but too many companies prepare business continuity plans and then shelve them, only for those plans to fail when they’re actually needed.
80% of companies that have not recovered from a disaster within one month go out of business.
A business continuity plan that isn’t validated isn’t a plan at all – it’s merely a strategy. Indeed, in some cases an untested plan is worse than no plan at all. In spite of this, only 30% of businesses actually validate their business continuity plans.
Product overview
Business continuity planning is a process of continual improvement, not a matter of writing a plan and then putting your feet up. Attempting to validate every aspect of your plan, however – particularly in a live rehearsal situation – could create a disaster of your own making.Validating Your Business Continuity Plan examines the three essential components of validating a business continuity plan – exercising, maintenance and review – and outlines a controlled and systematic approach to BCP validation while considering each component, covering methods and techniques such as table-top reviews, workshops, and live rehearsals.
The book also takes account of industry standards and guidelines to help steer the reader through the validation process, including the international standard ISO 22301 and the Business Continuity Institute’s Good Practice Guidelines.
In addition, it provides a number of case studies based on the author’s considerable experience – some of them successful, others less so – to highlight common pitfalls and problems associated with the validation process.
Contents
Introduction
Standards and guidelines
Business continuity begins at home
Defining your exercise programme
Selected scenarios
Live rehearsal case studies
It could happen to anyone, couldn't it?
Maintaining your BCMS
Reviewing your BCMS
Performance appraisal
Using consultants to help you exercise
Training and education
Additional reference material
About the author
Robert A Clark is a fellow of the Institute of Business Continuity Management, a fellow of the British Computer Society, a member of the Business Continuity Institute and an Approved BCI Instructor. He was employed by IBM for 15 years and Fujitsu for 11, working with clients on BCM-related assignments. He is now a freelance business continuity consultant at www.bcm-consultancy.com. Since 2014, he has been a part-time associate lecturer at Manchester Metropolitan University, where he has delivered BCM courses to both undergraduate and postgraduate students.
Table of contents
- Cover
- Title
- Copyright
- Dedication
- Acknowledgements
- About the Author
- Foreword
- Preface
- Content
- List of Figures
- Chapter 1: Introduction
- Chapter 2: Standards and guidelines
- Chapter 3: Business continuity begins at home
- Chapter 4: Defining your exercise programme
- Chapter 5: Selected Scenarios
-
Chapter 6: Live rehearsal case studies
- 6.1 From a full dress rehearsal to the real thing inside four months
- 6.2 Guildhall filled with smoke for training exercise
- 6.3 Airport simulates runway aircraft collision
- 6.4 Rehearsing a 9/11 type scenario 16 years before it happened
- 6.5 Sorry, you cannot evacuate the building before lunch is finished!
- 6.6 Three active shooter situation exercises
- 6.7 Waking Shark II – Desktop cyber exercise
- 6.8 Wave I pandemic exercise
- 6.9 Twitter used in mock bomb threat exercise
- 6.10 Responding to a WMD incident
- 6.11 Power failure – testing your generators
- 6.12 Bomb scare at General Hospital
- 6.13 No, Rakesh is an Indian
-
Chapter 7: It could happen to anyone, couldn’t it?
- 7.1 Did you hear the one about the Irish business continuity exercise?
- 7.2 Don’t forget to tell the emergency services
- 7.3 Your shortest RTO is two hours and it will take three hours to retrieve your BCP
- 7.4 La piece de resistance – and I couldn’t even claim the credit
- 7.5 Who has got the disaster recovery site key?
- 7.6 I’m sorry, he doesn’t live here anymore
- 7.7 Don’t forget your desktop environment
- 7.8 We can’t come, it’s our Christmas cruise
- 7.9 Who forgot to tell the catering manager?
- 7.10 Check the small print in the contract
- 7.11 Oh, we did a full live exercise of our BCP last Monday
- Chapter 8: Maintaining your BCMS
- Chapter 9: Reviewing your BCMS
- Chapter 10: Performance appraisal
- Chapter 11: Using consultants to help you exercise
-
Chapter 12: Training and education
- 12.1 Certificate of the Business Continuity Institute
- 12.2 Diploma of the Business Continuity Institute
- 12.3 Bachelor’s Degree in Business Continuity
- 12.4 Master’s Degree in Business Continuity
- 12.5 Doctorate in Business Continuity
- 12.6 ISO22301 Certified Business Continuity Lead Auditor/Implementer
- Chapter 13: Additional reference material
- Chapter 14: Works Cited
- Chapter 15: Glossary
- Chapter 16: Free template downloads
- ITG Resources
Product information
- Title: Validating Your Business Continuity Plan: Ensuring your BCP actually works
- Author(s):
- Release date: November 2015
- Publisher(s): IT Governance Publishing
- ISBN: 9781849287753
You might also like
book
Building an Enterprise-Wide Business Continuity Program
Drawing on over two decades of experience creating continuity plans and using them in actual recoveries, …
book
Everything you want to know about Business Continuity
Business continuity is crucial to the survival of your business. Learn how to manage it effectively …
book
Business Continuity Management: Choosing to Survive
Business disruption: how will you survive? Fail to plan and your business may fail! Would your …
book
Advanced Persistent Training : Take Your Security Awareness Program to the Next Level
Gain greater compliance with corporate training by addressing the heart of the very awareness vs. compliance …