What is involved in Business Continuity Management
Find out what the related areas are that Business Continuity Management connects with, associates with, correlates with or affects, and which require thought, deliberation, analysis, review and discussion. This unique checklist stands out in a sense that it is not per-se designed to give answers, but to engage the reader and lay out a Business Continuity Management thinking-frame.
How far is your company on its Business Continuity Management Team journey?
Take this short survey to gauge your organization’s progress toward Business Continuity Management Team leadership. Learn your strongest and weakest areas, and what you can do now to create a strategy that delivers results.
To address the criteria in this checklist for your organization, extensive selected resources are provided for sources of further research and information.
Start the Checklist
Below you will find a quick checklist designed to help you think about which Business Continuity Management related domains to cover and 187 essential critical questions to check off in that domain.
The following domains are covered:
Business Continuity Management, Business continuity planning, BSI Group, BS 25999, BS 7799, Backup site, British Standards Institution, Call tree, Catastrophe modeling, Computer virus, Crisis management, Data replication, Disaster recovery, Disaster recovery and business continuity auditing, Emergency management, Federal Emergency Management Agency, Government Accountability Office, Incubation period, Maximum Tolerable Period of Disruption, National Fire Protection Association, Natural disasters, Power outage, Recovery Point Objective, Recovery Time Objective, Risk management, Seven tiers of disaster recovery, Supply chain, System lifecycle, Systems engineering, Systems thinking, U.S. Department of Homeland Security:
Business Continuity Management Critical Criteria:
Incorporate Business Continuity Management failures and differentiate in coordinating Business Continuity Management.
– What tools and technologies are needed for a custom Business Continuity Management project?
– Who needs to know about Business Continuity Management ?
– Why are Business Continuity Management skills important?
Business continuity planning Critical Criteria:
Boost Business continuity planning visions and diversify by understanding risks and leveraging Business continuity planning.
– Does Business Continuity Management systematically track and analyze outcomes for accountability and quality improvement?
– What is the role of digital document management in business continuity planning management?
– What are the barriers to increased Business Continuity Management production?
– What is business continuity planning and why is it important?
BSI Group Critical Criteria:
Scan BSI Group projects and look in other fields.
– What tools do you use once you have decided on a Business Continuity Management strategy and more importantly how do you choose?
– What are the Key enablers to make this Business Continuity Management move?
– What is Effective Business Continuity Management?
BS 25999 Critical Criteria:
Check BS 25999 outcomes and mentor BS 25999 customer orientation.
– What are your most important goals for the strategic Business Continuity Management objectives?
– How to deal with Business Continuity Management Changes?
– How do we keep improving Business Continuity Management?
BS 7799 Critical Criteria:
Infer BS 7799 outcomes and separate what are the business goals BS 7799 is aiming to achieve.
– Who is the main stakeholder, with ultimate responsibility for driving Business Continuity Management forward?
– What are current Business Continuity Management Paradigms?
Backup site Critical Criteria:
Closely inspect Backup site visions and remodel and develop an effective Backup site strategy.
– Think about the functions involved in your Business Continuity Management project. what processes flow from these functions?
– Does the Business Continuity Management task fit the clients priorities?
– How is the value delivered by Business Continuity Management being measured?
British Standards Institution Critical Criteria:
Mix British Standards Institution results and raise human resource and employment practices for British Standards Institution.
– Is there a Business Continuity Management Communication plan covering who needs to get what information when?
– What are all of our Business Continuity Management domains and what do they do?
– Will Business Continuity Management deliverables need to be tested and, if so, by whom?
Call tree Critical Criteria:
Disseminate Call tree risks and summarize a clear Call tree focus.
– At what point will vulnerability assessments be performed once Business Continuity Management is put into production (e.g., ongoing Risk Management after implementation)?
– What other jobs or tasks affect the performance of the steps in the Business Continuity Management process?
– How do we Improve Business Continuity Management service perception, and satisfaction?
Catastrophe modeling Critical Criteria:
Chat re Catastrophe modeling management and look at it backwards.
– In what ways are Business Continuity Management vendors and us interacting to ensure safe and effective use?
– Are we making progress? and are we making progress as Business Continuity Management leaders?
Computer virus Critical Criteria:
Test Computer virus planning and catalog Computer virus activities.
– Do several people in different organizational units assist with the Business Continuity Management process?
– Risk factors: what are the characteristics of Business Continuity Management that make it risky?
– Does Business Continuity Management analysis isolate the fundamental causes of problems?
Crisis management Critical Criteria:
Dissect Crisis management results and maintain Crisis management for success.
– How do mission and objectives affect the Business Continuity Management processes of our organization?
– What are the record-keeping requirements of Business Continuity Management activities?
– Is the crisis management team comprised of members from Human Resources?
Data replication Critical Criteria:
Scan Data replication tasks and catalog what business benefits will Data replication goals deliver if achieved.
– What role does communication play in the success or failure of a Business Continuity Management project?
Disaster recovery Critical Criteria:
Distinguish Disaster recovery adoptions and integrate design thinking in Disaster recovery innovation.
– Has your organization ever had to invoke its disaster recovery plan which included the CRM solution and if so was the recovery time objective met and how long did it take to return to your primary solution?
– Have policies and procedures been established to ensure the continuity of data services in an event of a data breach, loss, or other disaster (this includes a disaster recovery plan)?
– Will Business Continuity Management have an impact on current business continuity, disaster recovery processes and/or infrastructure?
– Can the customer work with you to conduct separate disaster recovery tests in order to test/validate readiness?
– Make decisions about post-disaster recovery strategies. As a guide ask yourself Who are the key players?
– Will we rebuild to how things were before the disaster, or do we reset and do some things differently?
– Can we self insure for disaster recovery or do we use a recommend vendor certified hot site?
– Which of the following information should be documented to facilitate disaster recovery?
– Which business activities are location dependent and which can be relocated?
– If we move in a different direction, what are the private-property concerns?
– Are there policies in place to address post-disaster redevelopment?
– Who should be called in case of Disaster Recovery?
– What are the potential recovery strategies?
– What are ideal use cases for the cloud?
– Postpone purchasing supplies inventory?
– Is disaster recovery server in scope?
– Wait time for equipment replacement?
– Should you reopen your business?
– Can team members work off site?
– Should relocation be an option?
Disaster recovery and business continuity auditing Critical Criteria:
Substantiate Disaster recovery and business continuity auditing planning and figure out ways to motivate other Disaster recovery and business continuity auditing users.
– Who will be responsible for deciding whether Business Continuity Management goes ahead or not after the initial investigations?
– Does Business Continuity Management appropriately measure and monitor risk?
– Why is Business Continuity Management important for you now?
Emergency management Critical Criteria:
Sort Emergency management visions and suggest using storytelling to create more compelling Emergency management projects.
– Can we do Business Continuity Management without complex (expensive) analysis?
– Where does recovery fit within the other phases of emergency management?
– What are the short and long-term Business Continuity Management goals?
Federal Emergency Management Agency Critical Criteria:
Categorize Federal Emergency Management Agency quality and tour deciding if Federal Emergency Management Agency progress is made.
– How do senior leaders actions reflect a commitment to the organizations Business Continuity Management values?
Government Accountability Office Critical Criteria:
Read up on Government Accountability Office tactics and assess what counts with Government Accountability Office that we are not counting.
– How do we go about Securing Business Continuity Management?
– What is our Business Continuity Management Strategy?
Incubation period Critical Criteria:
Learn from Incubation period risks and probe Incubation period strategic alliances.
– How do we measure improved Business Continuity Management service perception, and satisfaction?
Maximum Tolerable Period of Disruption Critical Criteria:
Have a session on Maximum Tolerable Period of Disruption issues and look at the big picture.
– What management system can we use to leverage the Business Continuity Management experience, ideas, and concerns of the people closest to the work to be done?
– Among the Business Continuity Management product and service cost to be estimated, which is considered hardest to estimate?
– Do the Business Continuity Management decisions we make today help people and the planet tomorrow?
National Fire Protection Association Critical Criteria:
Generalize National Fire Protection Association management and gather practices for scaling National Fire Protection Association.
– How do we ensure that implementations of Business Continuity Management products are done in a way that ensures safety?
– Are there any disadvantages to implementing Business Continuity Management? There might be some that are less obvious?
– Have you identified your Business Continuity Management key performance indicators?
Natural disasters Critical Criteria:
Powwow over Natural disasters adoptions and inform on and uncover unspoken needs and breakthrough Natural disasters results.
– What prevents me from making the changes I know will make me a more effective Business Continuity Management leader?
– Who sets the Business Continuity Management standards?
Power outage Critical Criteria:
Incorporate Power outage failures and secure Power outage creativity.
– Record-keeping requirements flow from the records needed as inputs, outputs, controls and for transformation of a Business Continuity Management process. ask yourself: are the records needed as inputs to the Business Continuity Management process available?
– How do we make it meaningful in connecting Business Continuity Management with what users do day-to-day?
Recovery Point Objective Critical Criteria:
Be clear about Recovery Point Objective decisions and adopt an insight outlook.
– Which remote replication mode provides a near-zero recovery point objective (rpo)?
– What is our System Recovery Point Objective RPO (how current should the data be)?
– Is Supporting Business Continuity Management documentation required?
– How is the term recovery point objective (rpo) defined?
– What is our definition of recovery point objective?
– What is the recovery point objective?
Recovery Time Objective Critical Criteria:
Merge Recovery Time Objective visions and assess and formulate effective operational and Recovery Time Objective strategies.
– In the event of a physical or logical disaster, what are the Recovery Point and Recovery Time Objectives (RPO/RTO) that you will need and they will provide?
– What are the success criteria that will indicate that Business Continuity Management objectives have been met and the benefits delivered?
– What is your organizations history of meeting recovery time objectives?
– What is the recovery time objective for the application?
– Are we Assessing Business Continuity Management and Risk?
Risk management Critical Criteria:
Weigh in on Risk management governance and mentor Risk management customer orientation.
– There are two philosophical approaches to implementing Cybersecurity on an intelligent, networked grid: create a checklist of actions to take that address known security problems or prioritize actions based on continually refreshing the answer to the question, What makes my system more secure? Which approach do wo take?
– Do we do risk mitigation planning by answering the question what is the program approach for addressing a potential unfavorable consequence?
– Are information security roles and responsibilities coordinated and aligned with internal roles and external partners?
– Is our organization doing any form of outreach or education on Cybersecurity Risk Management?
– Is there disagreement or conflict about a decision/choice or course of action to be taken?
– Does your organization have a company-wide policy regarding best practices for cyber?
– Are response processes and procedures executable and are they being maintained?
– Does the company collect personally identifiable information electronically?
– Do governance and risk management processes address Cybersecurity risks?
– Does we have a Risk Committee at the board level or within management?
– Methodology: How will risk management be performed on projects?
– How are risks currently identified, assigned and mitigated?
– To whom does the ITRM function or oversight role report?
– What rules affect usability? What rules affect security? How?
– Are there beyond-compliance activities?
– Do we develop a Cyber Security Center?
– Who will be responsible internally?
Seven tiers of disaster recovery Critical Criteria:
Nurse Seven tiers of disaster recovery failures and change contexts.
– When a Business Continuity Management manager recognizes a problem, what options are available?
Supply chain Critical Criteria:
Track Supply chain strategies and pay attention to the small things.
– The pharmaceutical industry is also taking advantage of digital progress. It is using IoT for supply chain security in packaging and tracking of drugs. There are new companies using computer chips in pills for tracking adherence to drug regimens and associated biometrics. Using this as an example, how will we use and protect this sensitive data?
– How is the complex digital supply chain -where multiple downstream providers provide services for each other and data residence and transmission points are increasingly obscure -being dealt with from an audit perspective?
– What are our best practices for minimizing Business Continuity Management project risk, while demonstrating incremental value and quick wins throughout the Business Continuity Management project lifecycle?
– Now that organizations have fine-tuned human performance, supply chain, operations, processes, cycle time, and other targeted areas, how can they continue to improve performance?
– There is a need to determine where value is added in the supply chain what are the expectations of each stakeholder in the supply chain?
– Does Supply Chain Integration Mediate the Relationships between Product/Process Strategy and Service Performance?
– How do supply chain management systems coordinate planning, production, and logistics with suppliers?
– How can sluggish supply chains be empowered by IoT to make them more transparent and responsive?
– Meeting the challenge: are missed Business Continuity Management opportunities costing us money?
– What makes cloud computing well suited for supply chain management applications?
– What are the roles of suppliers and supply chain partners in CRM?
– Do any suppliers in the supply chain have a dominating position?
– Do your supply chain relationships tend to be longeror shorter-term?
– What is our current position within our supply chain?
– What is TESCM tax efficient supply chain management?
– What does the supply chain do with product data?
System lifecycle Critical Criteria:
Grasp System lifecycle quality and catalog what business benefits will System lifecycle goals deliver if achieved.
– How likely is the current Business Continuity Management plan to come in on schedule or on budget?
– To what extent does management recognize Business Continuity Management as a tool to increase the results?
Systems engineering Critical Criteria:
Chat re Systems engineering decisions and cater for concise Systems engineering education.
– When we try to quantify Systems Engineering in terms of capturing productivity (i.e., size/effort) data to incorporate into a parametric model, what size measure captures the amount of intellectual work performed by the systems engineer?
– What constraints apply, either in the nature and scope of our design effort (time, cost, funding, and other resources) or in the nature (size, cost, weight, etc.) of our solution?
– Regarding the way the system is formed and operates and the scale of interest; e.g., are we interested in complexity at the level of atoms or of cells or of organs?
– The complexity of our design task is significantly affected by the nature of the objectives for the systems to be designed. is the task intricate, or difficult?
– What happens if new needs (or more likely new requirements) are identified after the final needs or requirements have been developed?
– What is the plan to align prime contractors systems engineering management plan (semp) with the Program Management office (pmo) sep?
– How to manage the complexity to permit us to answer questions, such as: when have we done enough?
– Does the deployment schedule call for installations at a typically rainy time of year?
– What is the detailed set of functions and properties of a given interface?
– Typical concerns on the design side: what is the required functionality?
– What is the sequence of activities that will be performed?
– Where would we like to be in the future?
– What parts are connected to each other?
– How well should the system perform?
– How much architecting is enough?
– Is the schedule too aggressive?
– Deliver interim releases?
– What are our objectives?
– How confident are we?
– Where are we today?
Systems thinking Critical Criteria:
Test Systems thinking goals and suggest using storytelling to create more compelling Systems thinking projects.
– What are the incentives for individuals to persist in their actions?
– What are my beliefs about how others should represent the program?
– What self development activities are you currently engaged in?
– Have you ever had to sell an idea to your co-workers or group?
– Where are the delays that affect the dynamics of this system?
– How clear am I about the vision and mission of this program?
– How can we link our efforts to work more efficiently?
– How will you know when this project is accomplished?
– What are some of the advantages of systems thinking?
– How does systems thinking relate back to DevOps?
– How Can We Improve Performance Of The System?
– What are the desired OUTPUTS from the system?
– How well does the system respond to demand?
– Does The Solution Enhance Our Performance?
– How can we improve Business Continuity Management?
– Who are the SUPPLIERS in the system?
– System Problem or People Problem?
– What keeps happening over time?
– How Do Goals Fit Our Vision?
– What is systems thinking?
U.S. Department of Homeland Security Critical Criteria:
Refer to U.S. Department of Homeland Security decisions and triple focus on important concepts of U.S. Department of Homeland Security relationship management.
– Has your company conducted a Cybersecurity evaluation of key assets in concert with the National Cyber Security Division of the U.S. Department of Homeland Security (DHS)?
– What are our needs in relation to Business Continuity Management skills, labor, equipment, and markets?
– Is Business Continuity Management dependent on the successful delivery of a current project?
– How will you measure your Business Continuity Management effectiveness?
This quick readiness checklist is a selected resource to help you move forward. Learn more about how to achieve comprehensive insights with the Business Continuity Management Team Self Assessment:
Author: Gerard Blokdijk
CEO at The Art of Service | http://theartofservice.com
Gerard is the CEO at The Art of Service. He has been providing information technology insights, talks, tools and products to organizations in a wide range of industries for over 25 years. Gerard is a widely recognized and respected information expert. Gerard founded The Art of Service consulting business in 2000. Gerard has authored numerous published books to date.
To address the criteria in this checklist, these selected resources are provided for sources of further research and information:
Business Continuity Management External links:
Business Continuity Management Consulting Services
12-2 Business Continuity Management Program – USPS
What is business continuity management (BCM)? – …
Business continuity planning External links:
Business Continuity Planning Flashcards | Quizlet
Business Continuity Planning Suite | Ready.gov
Business Continuity Planning – BCP
BSI Group External links:
BS – BSI Group
BSI Group America Perks
BSI Group – Home | Facebook
BS 25999 External links:
[PDF]ISO 22301, ISO 27031 (BS 25999-1 and BS 25999-2) …
BS 25999 Self-Assessment Survey – s.zoomerang.com
[PDF]BS 25999 a framework for resilience and success – …
BS 7799 External links:
BS 7799-3:2017 Information security risk management
15. What is ISO 17799? What is BS 7799? – SAS 70
Backup site External links:
Password Help – what-sold.com (backup Site)
Log in – SRT Product Reset/Backup Site
British Standards Institution External links:
British Standards Institution – Project
British Standards Institution Eurocodes – Techstreet
[PDF]British Standards Institution – GDG PLYWOOD
Call tree External links:
What is call tree? – Definition from WhatIs.com
[PDF]New UCCX ACD Call Tree(2) – United States Army
https://www.korea.amedd.army.mil/Resources/UCCX ACD Call Tree.pdf
Call Tree Service – Home | Facebook
Catastrophe modeling External links:
About Catastrophe Modeling – AIR Worldwide
[PDF]Fundamentals of Catastrophe Modeling
Catastrophe Modeling: Why All the Fuss? – Marsh
Computer virus External links:
How to remove a computer virus / malware – YouTube
FixMeStick | The Leading Computer Virus Cleaner
Computer Virus – ABC News
Crisis management External links:
Crisis Management Company | Strategy, Planning, …
AlertSense – Crisis Management and Collaboration …
Natural Disaster Crisis Management | Psych Central
Data replication External links:
Data Replication and Synchronization Guidance
Data Replication for Disaster-resilient Information Platforms
Disaster recovery External links:
DRGR: Disaster Recovery Grant Reporting System – …
SCDRO – South Carolina Disaster Recovery Office
Disaster Recovery Centers | FEMA.gov
Disaster recovery and business continuity auditing External links:
Disaster recovery and business continuity auditing – …
Disaster recovery and business continuity auditing
http://Disaster recovery (DR) and business continuity refers to an organization’s ability to recover from a disaster and/or unexpected event and resume operations. Organizations often have a plan in place (usually referred to as a “Disaster Recovery Plan”, or “Business Continuity Plan”) that outlines how a recovery will be accomplished.
Emergency management External links:
Emergency management is the discipline of dealing with and avoiding risks, particularly those that have catastrophic consequences for communities, regions, or entire countries. It is the dynamic process of preparing for, mitigating, responding to and recovering from an emergency. Planning, though critical, is not the only component.
Welcome | Nebraska Emergency Management Agency
Georgia Emergency Management Agency Homepage
Federal Emergency Management Agency External links:
[PDF]Federal Emergency Management Agency Cost …
[PDF]Federal Emergency Management Agency (FEMA)
Government Accountability Office External links:
Government Accountability Office – saonm.org
[PDF]Government Accountability Office
U.S. Government Accountability Office (GAO) – Home | …
Incubation period External links:
Herpangina: Incubation Period and Causes – MedicineNet
How To Prevent The Flu After Exposure Incubation Period …
How Long is Each STD Incubation Period? – myLAB Box
Maximum Tolerable Period of Disruption External links:
Maximum Tolerable Period of Disruption – BCMpedia
Defining Maximum Tolerable Period of Disruption – e, Janco
National Fire Protection Association External links:
[PDF]NATIONAL FIRE PROTECTION ASSOCIATION …
National Fire Protection Association – YouTube
Natural disasters External links:
Natural disasters and extreme weather | World | The Guardian
Declared Natural Disasters and Emergencies Tax Help
Power outage External links:
Power Outage Map – OPPD
Entergy | Power Outage Map
Power Outage Map – Huntsville Utilities
Recovery Point Objective External links:
Recovery Point Objective (RPO) | Ncontracts
Risk management External links:
Risk Management Jobs – Apply Now | CareerBuilder
Global Supply Chain Risk Management Solutions | Avetta
Risk Management Job Titles | Enlighten Jobs
Seven tiers of disaster recovery External links:
Seven tiers of disaster recovery – update.revolvy.com
https://update.revolvy.com/topic/Seven tiers of disaster recovery
Seven tiers of disaster recovery – YouTube
[PDF]PDF Seven Tiers Of Disaster Recovery A Survival Guide
Supply chain External links:
Supply Chain Online Request Express
The Leader in Supply Chain Management | Wesco Aircraft
Global Supply Chain Risk Management Solutions | Avetta
System lifecycle External links:
http://The system lifecycle in systems engineering is a view of a system or proposed system that addresses all phases of its existence to include system conception, design and development, production and/or construction, distribution, operation, maintenance and support, retirement, phase-out and disposal.
Systems engineering External links:
Mechanical, Industrial and Systems Engineering
Systems Engineering and Operations Research
NCEES PE Control Systems Engineering exam information
Systems thinking External links:
What is systems thinking? – Definition from WhatIs.com
What Is Systems Thinking? – Mutual Responsibility
Promoting Systems Thinking in Accident Investigations …