Speaker Details:
Mr Daniel De Giorgio
Founding Partner
Sinergia Learning Center
BCM Forum of Argentina
Presented at: “Global ISO Knowledge Sharing Summit – 2021 | Enabling learning beyond limits” on: 27th February 2021 (Saturday) | Time: 9:00 AM to 17:30 PM GMT+5:30 IST.
2. Business Continuity
Management System:
How, Why and for
What?
27th February 2021 (Saturday)
16:10 pm - 16:35 pm
ISO 22316:2017
By Daniel De Giorgio, Founding Partner,
Sinergia Learning Center, BCM Forum of Argentina
3. Speaker Introduction:
Daniel De Giorgio
Buenos Aires, Argentina
38+ years of experience in the financial
sector, he has worked in management
positions in different international
corporations. His experience includes the
areas of Information Technology,
Information Security, Risk Management,
Business Continuity, and Incident and
Crisis Management. He is a university
professor at the National University of
Buenos Aires, Master in Information
Security.
Eng. Daniel De Giorgio. With more than 38 years of experience in the financial sector, he has
worked in management positions in different international corporations, such as Banco Santander
(Spain), ING Group (The Netherlands), IBM International (USA) and ICBC Bank (China). His
experience includes the areas of Information Technology, Information Security, Risk Management,
Business Continuity and Incident and Crisis Management. He is a professor at the National
University of Buenos Aires, Master in Information Security. He advises companies in the
implementation and optimization of Business Continuity Management Systems, Crisis
Management, Disaster Recovery Planning, Information Security and Cybersecurity.
Daniel is a founding partner of Sinergia Learning Center and the BCM Forum of Argentina.
He has also been an instructor at the BCI (Business Continuity Institute - UK) and a regular
speaker at specialized conferences.
Currently, Daniel is a professional and certified PECB International instructor and TRECCERT
international instructor, with more than 10 years of experience in training professionals of different
levels, areas of expertise and industries.
He holds international certifications ISO 27001_02_32_35 (cybersecurity and information security)
and ISO 22301_16_17, ISO 27031 (business continuity, resilience and disaster recovery).
Daniel holds a degree in Electronic Engineering from the University of Buenos Aires and a
postgraduate degree in New Technologies and Future Leadership (IAE).
4. 1. Best practices for the implementation of a Business Continuity Management
System
2. Benefits of implementing a BCMS
3. Main components of a BCMS
4. How to implement a BCMS in the financial industry and not die trying: what
difficulties will we encounter?
KEY POINTS
5. Note for the participants:
Speaker will take
your questions
automatically.
If you have any
questions, please
comment in chat box.
6. BCM Corporate Model
Emergency
Management Team(s)
and Activated Plan(s)
Return to Normal
Operation
completed
Normal
Operation
New??
Time
Business Recovery
Team(s) and Plan(s)
can be activated
Disrupted Business
Functions are in "Recovery
Mode"
Normal
Operation
Restoration
Plan(s) may
be required
Hour “0” Recovery
Starts
Recovery
In progress
Minimum
Business
Continuity
Objective
Restauration
starts
Return to
Normal Operation
Crisis Management Team(s) and Activated Plan(s)
Technological Recovery Plans
can be activated
Disruptive
Incident
Physical Security and Cyber Security contribute to the protection of the Organization at all times
Mitigation actions can enable the organization to avoid disruption or minimize impacts
9. Availability and
Recovery
Capacity
Improvement
Image with
shareholders
and customers
Loss Prevention
Business
Resilience
Regulatory &
Legal
Compliance
People and goods
Environment
Loss of profit
Critical services
Operating / management cost
Regulations (local/international)
Interruption insurance
Contracts
Image and reputation
Competitive advantage
ROI
Credit rating
Staff confidence
Efficiency and understanding of
processes
Loss of income
Recovery capability
Supply chain
Geographic location
Market
Market conditions
Competitiveness
P&S characteristics
Why BCM?
10. Policy
Methodology
Awareness
Training
Impact Analysis
• Impacts
• Urgencies
• Priorities
• Resources
• Dependencies
Threat Analysis
• Probability and impact
• Single points of failure
• Risk concentration
Strategies of:
• Continuity (acceptable)
• Recovery (sustainable)
• Resumption (normal)
Protection and Mitigation
Measures
Incident Response Structure
Emergency Management
Incident Management
Crisis Management
Crisis Communication
Business Continuity
• Operational
• IT (DRP)
Exercises and Tests
• Validation of assumptions
• RTO compliance
• Training
• Awareness
• Teamwork
KPIs
Revision
Audit
Maturity level
Change Management
Main Components of a BCMS
11. Main Obstacles
Budget limitations.
Lack of support.
Lack of awareness.
Short history of local disasters.
Lack of compromise.
Idiosyncrasy.
12. Success Factors
Know the business.
Unconditional support from Senior Management.
Search for (find) allies.
Custom plans for each business area.
Co-responsibility of the business areas.
Develop and disseminate the BCM culture, raising
staff awareness.
Continuous process (tests, updates, maintenance).
Plans coordinated with suppliers and contracts
adapted to business needs.