SlideShare a Scribd company logo

Business Continuity Management System: How, Why and for What?

Alvin Integrated Services [AIS]
Alvin Integrated Services [AIS]

Speaker Details: Mr Daniel De Giorgio Founding Partner Sinergia Learning Center BCM Forum of Argentina Presented at: “Global ISO Knowledge Sharing Summit – 2021 | Enabling learning beyond limits” on: 27th February 2021 (Saturday) | Time: 9:00 AM to 17:30 PM GMT+5:30 IST.

Education
1 of 14
Download to read offline
Contact us: info@alvinintegrated.com | +91 8802 505619, +91 8287509289 | www.alvinintegrated.com Platinum Sponsor OUR SPONSORS & PARTNERS Event Partner www.alvinintegrated.com Knowledge Partners 27th FEB 2021 (SATURDAY) 09:00 AM - 17:30 PM IST
Business Continuity Management System: How, Why and for What? 27th February 2021 (Saturday) 16:10 pm - 16:35 pm ISO 22316:2017 By Daniel De Giorgio, Founding Partner, Sinergia Learning Center, BCM Forum of Argentina
Speaker Introduction: Daniel De Giorgio Buenos Aires, Argentina 38+ years of experience in the financial sector, he has worked in management positions in different international corporations. His experience includes the areas of Information Technology, Information Security, Risk Management, Business Continuity, and Incident and Crisis Management. He is a university professor at the National University of Buenos Aires, Master in Information Security. Eng. Daniel De Giorgio. With more than 38 years of experience in the financial sector, he has worked in management positions in different international corporations, such as Banco Santander (Spain), ING Group (The Netherlands), IBM International (USA) and ICBC Bank (China). His experience includes the areas of Information Technology, Information Security, Risk Management, Business Continuity and Incident and Crisis Management. He is a professor at the National University of Buenos Aires, Master in Information Security. He advises companies in the implementation and optimization of Business Continuity Management Systems, Crisis Management, Disaster Recovery Planning, Information Security and Cybersecurity. Daniel is a founding partner of Sinergia Learning Center and the BCM Forum of Argentina. He has also been an instructor at the BCI (Business Continuity Institute - UK) and a regular speaker at specialized conferences. Currently, Daniel is a professional and certified PECB International instructor and TRECCERT international instructor, with more than 10 years of experience in training professionals of different levels, areas of expertise and industries. He holds international certifications ISO 27001_02_32_35 (cybersecurity and information security) and ISO 22301_16_17, ISO 27031 (business continuity, resilience and disaster recovery). Daniel holds a degree in Electronic Engineering from the University of Buenos Aires and a postgraduate degree in New Technologies and Future Leadership (IAE).
1. Best practices for the implementation of a Business Continuity Management System 2. Benefits of implementing a BCMS 3. Main components of a BCMS 4. How to implement a BCMS in the financial industry and not die trying: what difficulties will we encounter? KEY POINTS
Note for the participants: Speaker will take your questions automatically. If you have any questions, please comment in chat box.
BCM Corporate Model Emergency Management Team(s) and Activated Plan(s) Return to Normal Operation completed Normal Operation New?? Time Business Recovery Team(s) and Plan(s) can be activated Disrupted Business Functions are in "Recovery Mode" Normal Operation Restoration Plan(s) may be required Hour “0” Recovery Starts Recovery In progress Minimum Business Continuity Objective Restauration starts Return to Normal Operation Crisis Management Team(s) and Activated Plan(s) Technological Recovery Plans can be activated Disruptive Incident Physical Security and Cyber Security contribute to the protection of the Organization at all times Mitigation actions can enable the organization to avoid disruption or minimize impacts
Stablish Implement & Operate Monitoring & Revision Maintenance & Improvement Stakeholders BCM requirements and expectations Stakeholders Business Continuity Managed BCMS Continual Improvement P D C A Context & Scope Leadership Planification Support Improve Operation Performance Evaluation P-D-C-A Life Cycle with ISO 22301
Cybersecurity Risks Business Continuity Management Resilience & Crisis Management Cybersecurity Management IT Ops & IT Risks Operative Risks Enterprise Risk Management ISO 27001 ISO 22301 ISO 31000 ISO TR 27103 COBIT 2019 Information Security NIST CSF v1.1 ISO 22317 - BIA ISO 22316 BS 11200 ITIL v4 CIS-20 Governance (IT) Compliance (IT) GRC (IT-GRC) ISO 27035 ISO 27002/17/18 BCM Integration with other Standards
Availability and Recovery Capacity Improvement Image with shareholders and customers Loss Prevention Business Resilience Regulatory & Legal Compliance People and goods Environment Loss of profit Critical services Operating / management cost Regulations (local/international) Interruption insurance Contracts Image and reputation Competitive advantage ROI Credit rating Staff confidence Efficiency and understanding of processes Loss of income Recovery capability Supply chain Geographic location Market Market conditions Competitiveness P&S characteristics Why BCM?
Policy Methodology Awareness Training Impact Analysis • Impacts • Urgencies • Priorities • Resources • Dependencies Threat Analysis • Probability and impact • Single points of failure • Risk concentration Strategies of: • Continuity (acceptable) • Recovery (sustainable) • Resumption (normal) Protection and Mitigation Measures Incident Response Structure Emergency Management Incident Management Crisis Management Crisis Communication Business Continuity • Operational • IT (DRP) Exercises and Tests • Validation of assumptions • RTO compliance • Training • Awareness • Teamwork KPIs Revision Audit Maturity level Change Management Main Components of a BCMS
Main Obstacles  Budget limitations.  Lack of support.  Lack of awareness.  Short history of local disasters.  Lack of compromise.  Idiosyncrasy.
Success Factors  Know the business.  Unconditional support from Senior Management.  Search for (find) allies.  Custom plans for each business area.  Co-responsibility of the business areas.  Develop and disseminate the BCM culture, raising staff awareness.  Continuous process (tests, updates, maintenance).  Plans coordinated with suppliers and contracts adapted to business needs.
Questions are Welcome!
Please give your feedbacks in the chat box about the webinar.

Recommended

Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...
Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...
Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...Alvin Integrated Services [AIS]
 
COVID – 19 and Resilience: Has ISO 22316 standard been responsive?
COVID – 19 and Resilience: Has ISO 22316 standard been responsive?COVID – 19 and Resilience: Has ISO 22316 standard been responsive?
COVID – 19 and Resilience: Has ISO 22316 standard been responsive?Alvin Integrated Services [AIS]
 
ISO 31000:2018 Risk Management System, Framework and Implementation
ISO 31000:2018 Risk Management System, Framework and ImplementationISO 31000:2018 Risk Management System, Framework and Implementation
ISO 31000:2018 Risk Management System, Framework and ImplementationAlvin Integrated Services [AIS]
 
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB
 
Effective Mitigation Strategies for ISO 31000
Effective Mitigation Strategies for ISO 31000Effective Mitigation Strategies for ISO 31000
Effective Mitigation Strategies for ISO 31000PECB
 
Implementing a Risk Management System based on the ISO 31000
Implementing a Risk Management System based on the ISO 31000Implementing a Risk Management System based on the ISO 31000
Implementing a Risk Management System based on the ISO 31000Continuity and Resilience
 
Business Continuity Managers’ Action Plan to Face a Cyber Attack
Business Continuity Managers’ Action Plan to Face a Cyber AttackBusiness Continuity Managers’ Action Plan to Face a Cyber Attack
Business Continuity Managers’ Action Plan to Face a Cyber AttackContinuity and Resilience
 
National crisis and Emergency Management Authority
National crisis and Emergency Management AuthorityNational crisis and Emergency Management Authority
National crisis and Emergency Management AuthorityContinuity and Resilience
 

Recommended

Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...
Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...
Effective Leadership – The Cornerstone – applied study on ISO 22000:2018 Food...Alvin Integrated Services [AIS]
 
COVID – 19 and Resilience: Has ISO 22316 standard been responsive?
COVID – 19 and Resilience: Has ISO 22316 standard been responsive?COVID – 19 and Resilience: Has ISO 22316 standard been responsive?
COVID – 19 and Resilience: Has ISO 22316 standard been responsive?Alvin Integrated Services [AIS]
 
ISO 31000:2018 Risk Management System, Framework and Implementation
ISO 31000:2018 Risk Management System, Framework and ImplementationISO 31000:2018 Risk Management System, Framework and Implementation
ISO 31000:2018 Risk Management System, Framework and ImplementationAlvin Integrated Services [AIS]
 
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...
PECB Webinar: Rethinking Business Continuity: Applying ISO 22301 to improve r...PECB
 
Effective Mitigation Strategies for ISO 31000
Effective Mitigation Strategies for ISO 31000Effective Mitigation Strategies for ISO 31000
Effective Mitigation Strategies for ISO 31000PECB
 
Implementing a Risk Management System based on the ISO 31000
Implementing a Risk Management System based on the ISO 31000Implementing a Risk Management System based on the ISO 31000
Implementing a Risk Management System based on the ISO 31000Continuity and Resilience
 
Business Continuity Managers’ Action Plan to Face a Cyber Attack
Business Continuity Managers’ Action Plan to Face a Cyber AttackBusiness Continuity Managers’ Action Plan to Face a Cyber Attack
Business Continuity Managers’ Action Plan to Face a Cyber AttackContinuity and Resilience
 
National crisis and Emergency Management Authority
National crisis and Emergency Management AuthorityNational crisis and Emergency Management Authority
National crisis and Emergency Management AuthorityContinuity and Resilience
 
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...Continuity and Resilience
 
Riskpro iso 31000 services 2013
Riskpro iso 31000 services 2013Riskpro iso 31000 services 2013
Riskpro iso 31000 services 2013Rahul Bhan (CA, CIA, MBA)
 
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...International Federation of Accountants
 
PECB Webinar: ISO 31000 – Risk Management and how it can help an organization
PECB Webinar: ISO 31000 – Risk Management and how it can help an organizationPECB Webinar: ISO 31000 – Risk Management and how it can help an organization
PECB Webinar: ISO 31000 – Risk Management and how it can help an organizationPECB
 
The Effects of Risk Culture on Organisation Performance
The Effects of Risk Culture on Organisation PerformanceThe Effects of Risk Culture on Organisation Performance
The Effects of Risk Culture on Organisation PerformanceBenjamin Kpodo
 
Dave Tyson Profile for CISO Insights
Dave Tyson Profile for CISO InsightsDave Tyson Profile for CISO Insights
Dave Tyson Profile for CISO Insightsciso_insights
 
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization PECB
 
BPMN -The Very First Step in Business Continuity
BPMN -The Very First Step in Business ContinuityBPMN -The Very First Step in Business Continuity
BPMN -The Very First Step in Business ContinuityPECB
 
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizensThe importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizensPECB
 
Women in Manufacturing: Keys to Building a Great Career, Culture & Company
Women in Manufacturing: Keys to Building a Great Career, Culture & CompanyWomen in Manufacturing: Keys to Building a Great Career, Culture & Company
Women in Manufacturing: Keys to Building a Great Career, Culture & CompanySafetyChain Software
 
ISO 55000 Overview
ISO 55000 OverviewISO 55000 Overview
ISO 55000 OverviewLife Cycle Engineering
 
Mindtree quality standards.
Mindtree quality standards.Mindtree quality standards.
Mindtree quality standards.Mindtree Ltd.
 
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...BCM Institute
 
Business Continuity requires a Security Architecture to reduce risk and cost
Business Continuity requires a Security Architecture to reduce risk and costBusiness Continuity requires a Security Architecture to reduce risk and cost
Business Continuity requires a Security Architecture to reduce risk and costPECB
 
Info sec concept paper-Ahmed.Ragab
Info sec concept paper-Ahmed.RagabInfo sec concept paper-Ahmed.Ragab
Info sec concept paper-Ahmed.Ragabpromediakw
 
Info sec concept paper-ahmed.ragab
Info sec concept paper-ahmed.ragabInfo sec concept paper-ahmed.ragab
Info sec concept paper-ahmed.ragabpromediakw
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...PECB
 
CORE MANAGEMENT CONSULTING
CORE MANAGEMENT CONSULTINGCORE MANAGEMENT CONSULTING
CORE MANAGEMENT CONSULTINGContinuity and Resilience
 
Business Continuity Management & ISO 22301
Business Continuity Management & ISO 22301Business Continuity Management & ISO 22301
Business Continuity Management & ISO 22301IT Governance Ltd
 
Testing BC Plans
Testing BC PlansTesting BC Plans
Testing BC PlansContinuity and Resilience
 
NQA Your Risk Assurance Partner
NQA Your Risk Assurance PartnerNQA Your Risk Assurance Partner
NQA Your Risk Assurance PartnerNQA
 
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...Continuity and Resilience
 

More Related Content

What's hot

5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...Continuity and Resilience
 
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...International Federation of Accountants
 
PECB Webinar: ISO 31000 – Risk Management and how it can help an organization
PECB Webinar: ISO 31000 – Risk Management and how it can help an organizationPECB Webinar: ISO 31000 – Risk Management and how it can help an organization
PECB Webinar: ISO 31000 – Risk Management and how it can help an organizationPECB
 
The Effects of Risk Culture on Organisation Performance
The Effects of Risk Culture on Organisation PerformanceThe Effects of Risk Culture on Organisation Performance
The Effects of Risk Culture on Organisation PerformanceBenjamin Kpodo
 
Dave Tyson Profile for CISO Insights
Dave Tyson Profile for CISO InsightsDave Tyson Profile for CISO Insights
Dave Tyson Profile for CISO Insightsciso_insights
 
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization PECB
 
BPMN -The Very First Step in Business Continuity
BPMN -The Very First Step in Business ContinuityBPMN -The Very First Step in Business Continuity
BPMN -The Very First Step in Business ContinuityPECB
 
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizensThe importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizensPECB
 
Women in Manufacturing: Keys to Building a Great Career, Culture & Company
Women in Manufacturing: Keys to Building a Great Career, Culture & CompanyWomen in Manufacturing: Keys to Building a Great Career, Culture & Company
Women in Manufacturing: Keys to Building a Great Career, Culture & CompanySafetyChain Software
 
Mindtree quality standards.
Mindtree quality standards.Mindtree quality standards.
Mindtree quality standards.Mindtree Ltd.
 

What's hot (12)

5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
5th ME Business & IT Resilience Summit 2016 - Developing the Culture of Busin...
 
Riskpro iso 31000 services 2013
Riskpro iso 31000 services 2013Riskpro iso 31000 services 2013
Riskpro iso 31000 services 2013
 
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
Leveraging ISO 31000 for Effective Integration of Risk Management and Interna...
 
PECB Webinar: ISO 31000 – Risk Management and how it can help an organization
PECB Webinar: ISO 31000 – Risk Management and how it can help an organizationPECB Webinar: ISO 31000 – Risk Management and how it can help an organization
PECB Webinar: ISO 31000 – Risk Management and how it can help an organization
 
The Effects of Risk Culture on Organisation Performance
The Effects of Risk Culture on Organisation PerformanceThe Effects of Risk Culture on Organisation Performance
The Effects of Risk Culture on Organisation Performance
 
Dave Tyson Profile for CISO Insights
Dave Tyson Profile for CISO InsightsDave Tyson Profile for CISO Insights
Dave Tyson Profile for CISO Insights
 
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
Seven Tips to Raise the Awareness of ISO 22301 in Your Organization
 
BPMN -The Very First Step in Business Continuity
BPMN -The Very First Step in Business ContinuityBPMN -The Very First Step in Business Continuity
BPMN -The Very First Step in Business Continuity
 
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizensThe importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
The importance of ISO 22316 on Brexit phenomenon for the UK and non-UK citizens
 
Women in Manufacturing: Keys to Building a Great Career, Culture & Company
Women in Manufacturing: Keys to Building a Great Career, Culture & CompanyWomen in Manufacturing: Keys to Building a Great Career, Culture & Company
Women in Manufacturing: Keys to Building a Great Career, Culture & Company
 
ISO 55000 Overview
ISO 55000 OverviewISO 55000 Overview
ISO 55000 Overview
 
Mindtree quality standards.
Mindtree quality standards.Mindtree quality standards.
Mindtree quality standards.
 

Similar to Business Continuity Management System: How, Why and for What?

Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...BCM Institute
 
Business Continuity requires a Security Architecture to reduce risk and cost
Business Continuity requires a Security Architecture to reduce risk and costBusiness Continuity requires a Security Architecture to reduce risk and cost
Business Continuity requires a Security Architecture to reduce risk and costPECB
 
Info sec concept paper-Ahmed.Ragab
Info sec concept paper-Ahmed.RagabInfo sec concept paper-Ahmed.Ragab
Info sec concept paper-Ahmed.Ragabpromediakw
 
Info sec concept paper-ahmed.ragab
Info sec concept paper-ahmed.ragabInfo sec concept paper-ahmed.ragab
Info sec concept paper-ahmed.ragabpromediakw
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...PECB
 
Business Continuity Management & ISO 22301
Business Continuity Management & ISO 22301Business Continuity Management & ISO 22301
Business Continuity Management & ISO 22301IT Governance Ltd
 
NQA Your Risk Assurance Partner
NQA Your Risk Assurance PartnerNQA Your Risk Assurance Partner
NQA Your Risk Assurance PartnerNQA
 
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...Continuity and Resilience
 
ISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to know
ISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to knowISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to know
ISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to knowPECB
 
Resume_IshitaKundu_CISA
Resume_IshitaKundu_CISAResume_IshitaKundu_CISA
Resume_IshitaKundu_CISAIshita Kundu
 
Saikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updatedSaikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updatedkonchada
 
Saikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updatedSaikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updatedkonchada
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)samsontamwaiho
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)samsontamwaiho
 
ISO 27001 Training | ISMS Awareness Training
ISO 27001 Training | ISMS Awareness TrainingISO 27001 Training | ISMS Awareness Training
ISO 27001 Training | ISMS Awareness Traininghimalya sharma
 

Similar to Business Continuity Management System: How, Why and for What? (20)

Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
Business Continuity and Resilience: What Lies in the Future and What Steps Ca...
 
Business Continuity requires a Security Architecture to reduce risk and cost
Business Continuity requires a Security Architecture to reduce risk and costBusiness Continuity requires a Security Architecture to reduce risk and cost
Business Continuity requires a Security Architecture to reduce risk and cost
 
Info sec concept paper-Ahmed.Ragab
Info sec concept paper-Ahmed.RagabInfo sec concept paper-Ahmed.Ragab
Info sec concept paper-Ahmed.Ragab
 
Info sec concept paper-ahmed.ragab
Info sec concept paper-ahmed.ragabInfo sec concept paper-ahmed.ragab
Info sec concept paper-ahmed.ragab
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
 
CORE MANAGEMENT CONSULTING
CORE MANAGEMENT CONSULTINGCORE MANAGEMENT CONSULTING
CORE MANAGEMENT CONSULTING
 
Business Continuity Management & ISO 22301
Business Continuity Management & ISO 22301Business Continuity Management & ISO 22301
Business Continuity Management & ISO 22301
 
Testing BC Plans
Testing BC PlansTesting BC Plans
Testing BC Plans
 
NQA Your Risk Assurance Partner
NQA Your Risk Assurance PartnerNQA Your Risk Assurance Partner
NQA Your Risk Assurance Partner
 
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
5th ME Business & IT Resilience Summit 2016 - IT Resilience and Service Manag...
 
ISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to know
ISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to knowISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to know
ISO/IEC 27001 vs ISO 22301 vs ISO 31000: What you need to know
 
Qsys Profile
Qsys ProfileQsys Profile
Qsys Profile
 
Resume_IshitaKundu_CISA
Resume_IshitaKundu_CISAResume_IshitaKundu_CISA
Resume_IshitaKundu_CISA
 
Saikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updatedSaikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updated
 
Saikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updatedSaikiran_CV_Operational Risk_updated
Saikiran_CV_Operational Risk_updated
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)
 
CV KMBundhoo, August 2016
CV KMBundhoo, August 2016CV KMBundhoo, August 2016
CV KMBundhoo, August 2016
 
ISO 27001 Training | ISMS Awareness Training
ISO 27001 Training | ISMS Awareness TrainingISO 27001 Training | ISMS Awareness Training
ISO 27001 Training | ISMS Awareness Training
 
Information & Cyber Security Risk
Information & Cyber Security RiskInformation & Cyber Security Risk
Information & Cyber Security Risk
 

More from Alvin Integrated Services [AIS]

Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...
Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...
Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...Alvin Integrated Services [AIS]
 
ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?Alvin Integrated Services [AIS]
 
Digital Maturity – Business as Usual & Integration of multiple ISO Management...
Digital Maturity – Business as Usual & Integration of multiple ISO Management...Digital Maturity – Business as Usual & Integration of multiple ISO Management...
Digital Maturity – Business as Usual & Integration of multiple ISO Management...Alvin Integrated Services [AIS]
 
Thinking beyond “Conventional” Crisis Communication.
Thinking beyond “Conventional” Crisis Communication.Thinking beyond “Conventional” Crisis Communication.
Thinking beyond “Conventional” Crisis Communication.Alvin Integrated Services [AIS]
 

More from Alvin Integrated Services [AIS] (6)

Designing an effective Crisis Management Framework
Designing an effective Crisis Management FrameworkDesigning an effective Crisis Management Framework
Designing an effective Crisis Management Framework
 
Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...
Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...
Pandemic: Crisis or Opportunity? ISO 22301 best practice Implementation tips ...
 
ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?ISO 27017 – What are the Business Advantages of Cloud Security?
ISO 27017 – What are the Business Advantages of Cloud Security?
 
Digital Maturity – Business as Usual & Integration of multiple ISO Management...
Digital Maturity – Business as Usual & Integration of multiple ISO Management...Digital Maturity – Business as Usual & Integration of multiple ISO Management...
Digital Maturity – Business as Usual & Integration of multiple ISO Management...
 
ISO 31000: Culture vs Documentation, the way forward
ISO 31000: Culture vs Documentation, the way forwardISO 31000: Culture vs Documentation, the way forward
ISO 31000: Culture vs Documentation, the way forward
 
Thinking beyond “Conventional” Crisis Communication.
Thinking beyond “Conventional” Crisis Communication.Thinking beyond “Conventional” Crisis Communication.
Thinking beyond “Conventional” Crisis Communication.
 

Recently uploaded

CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxGaneshChakor2
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfsanyamsingh5019
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxiammrhaywood
 
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdfssuser54595a
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 
mini mental status format.docx
mini mental status format.docxmini mental status format.docx
mini mental status format.docxPoojaSen20
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxpboyjonauth
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Educationpboyjonauth
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingTechSoup
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introductionMaksud Ahmed
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxOH TEIK BIN
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeThiyagu K
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Krashi Coaching
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentInMediaRes1
 
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...Marc Dusseiller Dusjagr
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxRoyAbrique
 
The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13Steve Thomason
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Sapana Sha
 
Incoming and Outgoing Shipments in 1 STEP Using Odoo 17
Incoming and Outgoing Shipments in 1 STEP Using Odoo 17Incoming and Outgoing Shipments in 1 STEP Using Odoo 17
Incoming and Outgoing Shipments in 1 STEP Using Odoo 17Celine George
 

Recently uploaded (20)

CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptx
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdf
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
 
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 
mini mental status format.docx
mini mental status format.docxmini mental status format.docx
mini mental status format.docx
 
Introduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptxIntroduction to AI in Higher Education_draft.pptx
Introduction to AI in Higher Education_draft.pptx
 
Introduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher EducationIntroduction to ArtificiaI Intelligence in Higher Education
Introduction to ArtificiaI Intelligence in Higher Education
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptx
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Tilak Nagar Delhi reach out to us at 🔝9953056974🔝
 
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
Kisan Call Centre - To harness potential of ICT in Agriculture by answer farm...
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media Component
 
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
 
The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
 
Incoming and Outgoing Shipments in 1 STEP Using Odoo 17
Incoming and Outgoing Shipments in 1 STEP Using Odoo 17Incoming and Outgoing Shipments in 1 STEP Using Odoo 17
Incoming and Outgoing Shipments in 1 STEP Using Odoo 17
 

Business Continuity Management System: How, Why and for What?

  • 1. Contact us: info@alvinintegrated.com | +91 8802 505619, +91 8287509289 | www.alvinintegrated.com Platinum Sponsor OUR SPONSORS & PARTNERS Event Partner www.alvinintegrated.com Knowledge Partners 27th FEB 2021 (SATURDAY) 09:00 AM - 17:30 PM IST
  • 2. Business Continuity Management System: How, Why and for What? 27th February 2021 (Saturday) 16:10 pm - 16:35 pm ISO 22316:2017 By Daniel De Giorgio, Founding Partner, Sinergia Learning Center, BCM Forum of Argentina
  • 3. Speaker Introduction: Daniel De Giorgio Buenos Aires, Argentina 38+ years of experience in the financial sector, he has worked in management positions in different international corporations. His experience includes the areas of Information Technology, Information Security, Risk Management, Business Continuity, and Incident and Crisis Management. He is a university professor at the National University of Buenos Aires, Master in Information Security. Eng. Daniel De Giorgio. With more than 38 years of experience in the financial sector, he has worked in management positions in different international corporations, such as Banco Santander (Spain), ING Group (The Netherlands), IBM International (USA) and ICBC Bank (China). His experience includes the areas of Information Technology, Information Security, Risk Management, Business Continuity and Incident and Crisis Management. He is a professor at the National University of Buenos Aires, Master in Information Security. He advises companies in the implementation and optimization of Business Continuity Management Systems, Crisis Management, Disaster Recovery Planning, Information Security and Cybersecurity. Daniel is a founding partner of Sinergia Learning Center and the BCM Forum of Argentina. He has also been an instructor at the BCI (Business Continuity Institute - UK) and a regular speaker at specialized conferences. Currently, Daniel is a professional and certified PECB International instructor and TRECCERT international instructor, with more than 10 years of experience in training professionals of different levels, areas of expertise and industries. He holds international certifications ISO 27001_02_32_35 (cybersecurity and information security) and ISO 22301_16_17, ISO 27031 (business continuity, resilience and disaster recovery). Daniel holds a degree in Electronic Engineering from the University of Buenos Aires and a postgraduate degree in New Technologies and Future Leadership (IAE).
  • 4. 1. Best practices for the implementation of a Business Continuity Management System 2. Benefits of implementing a BCMS 3. Main components of a BCMS 4. How to implement a BCMS in the financial industry and not die trying: what difficulties will we encounter? KEY POINTS
  • 5. Note for the participants: Speaker will take your questions automatically. If you have any questions, please comment in chat box.
  • 6. BCM Corporate Model Emergency Management Team(s) and Activated Plan(s) Return to Normal Operation completed Normal Operation New?? Time Business Recovery Team(s) and Plan(s) can be activated Disrupted Business Functions are in "Recovery Mode" Normal Operation Restoration Plan(s) may be required Hour “0” Recovery Starts Recovery In progress Minimum Business Continuity Objective Restauration starts Return to Normal Operation Crisis Management Team(s) and Activated Plan(s) Technological Recovery Plans can be activated Disruptive Incident Physical Security and Cyber Security contribute to the protection of the Organization at all times Mitigation actions can enable the organization to avoid disruption or minimize impacts
  • 7. Stablish Implement & Operate Monitoring & Revision Maintenance & Improvement Stakeholders BCM requirements and expectations Stakeholders Business Continuity Managed BCMS Continual Improvement P D C A Context & Scope Leadership Planification Support Improve Operation Performance Evaluation P-D-C-A Life Cycle with ISO 22301
  • 8. Cybersecurity Risks Business Continuity Management Resilience & Crisis Management Cybersecurity Management IT Ops & IT Risks Operative Risks Enterprise Risk Management ISO 27001 ISO 22301 ISO 31000 ISO TR 27103 COBIT 2019 Information Security NIST CSF v1.1 ISO 22317 - BIA ISO 22316 BS 11200 ITIL v4 CIS-20 Governance (IT) Compliance (IT) GRC (IT-GRC) ISO 27035 ISO 27002/17/18 BCM Integration with other Standards
  • 9. Availability and Recovery Capacity Improvement Image with shareholders and customers Loss Prevention Business Resilience Regulatory & Legal Compliance People and goods Environment Loss of profit Critical services Operating / management cost Regulations (local/international) Interruption insurance Contracts Image and reputation Competitive advantage ROI Credit rating Staff confidence Efficiency and understanding of processes Loss of income Recovery capability Supply chain Geographic location Market Market conditions Competitiveness P&S characteristics Why BCM?
  • 10. Policy Methodology Awareness Training Impact Analysis • Impacts • Urgencies • Priorities • Resources • Dependencies Threat Analysis • Probability and impact • Single points of failure • Risk concentration Strategies of: • Continuity (acceptable) • Recovery (sustainable) • Resumption (normal) Protection and Mitigation Measures Incident Response Structure Emergency Management Incident Management Crisis Management Crisis Communication Business Continuity • Operational • IT (DRP) Exercises and Tests • Validation of assumptions • RTO compliance • Training • Awareness • Teamwork KPIs Revision Audit Maturity level Change Management Main Components of a BCMS
  • 11. Main Obstacles  Budget limitations.  Lack of support.  Lack of awareness.  Short history of local disasters.  Lack of compromise.  Idiosyncrasy.
  • 12. Success Factors  Know the business.  Unconditional support from Senior Management.  Search for (find) allies.  Custom plans for each business area.  Co-responsibility of the business areas.  Develop and disseminate the BCM culture, raising staff awareness.  Continuous process (tests, updates, maintenance).  Plans coordinated with suppliers and contracts adapted to business needs.
  • 14. Please give your feedbacks in the chat box about the webinar.