1. Security & Business Continuity Working together IFSEC16 May 2012

2. Agenda What is business continuity Security and business continuitydifferences and similarities What business continuity canbring t the table Working together? 3. PlanB Consulting Business continuity specialists Based Glasgow Wide range of consulting & training experience BS25999 certified 4. WHAT IS BUSINESSCONTINUITY 5. What is business continuityBusiness Continuity Management isan holistic management processthat identifies potential impacts thatthreaten an organisation andprovides a framework for buildingresilience and the capability for aneffective response that safeguardsthe interests of its key stakeholders,reputation, brand and value creatingactivities. BCI GPG 2010 6. Business continuity Loss of IT Staff FloodsTelecomsInternal threatsFire WeatherUtility failureOrganisationExternal threats OrganisationOrganisationOrganisation 7. Over recovery100%PlannedRecovery Recovery Business Business Continuity PlanningUnplanned RecoveryWorst Case ! 0%Time 8. Incidents will happen 9. We have had lots of disastersbefore and survivedSelby driver jailed for 5 yearsThe driver who caused the Selby rail crash istold he is responsible for the "worst driving-related incident in the UK in recent years". 10. SECURITY &BC 11. Security & BC ManagesSecurity Manages BC Manages Security systems CCTV, BC ManagersAccess control etc Work Area Security guardingRecovery Shrinkage / anti-theft Fraud Security managers 12. Security & BC AdviceSecurity SupportsBC Supports Trusted advisor / specialist Trusted advisoradvice Incident Exec protection High risk environmentsmanagement Kidnapping Recovery Loss protection Embedding Embedding Facilitator Response Response Audit Audit 13. 13 14. ResilienceIs the tough organisations:-1. Less likely to have an incident2. Recover more quickly than others if once occurs 15. Prepared Know your weaknesses Can take the punches Come up a winner 16. BUSINESS CONTINUITYOFFERING 17. Business Continuity Lifecycle 18. Business Impact Analysis Concepts Module 2 version 3.1 BCI PROFESSIONAL PRACTICES 18 19. Possible impacts Regulatory Contractual Legal Financial Customer service Live & limb Environmental 20. Mitigating risk Physical security Information security Monitoring systems Sprinkler and fire suppressionsystems Triangulation of telecoms 21. In end BuildingResources PeopleActivity ARTO 24Hrs Interdependences ITSuppliers 22. Incident Management StrategicTacticalOperational 23. Business Continuity Impacts if a resource or part of thethe organisation is lost What is important throughout theorganisation in terms of Activities Resources Crisis Management 24. WORKING TOGETHER 25. Areas to explore Understanding of risk includingchanging risks Targeting spending on areas ofthe greatest impact if lost Building in / increasing resilience Risk mitigation measures Combining / integrating incidentresponse 26. Any questions or comments Kim Maclean-Bristol PlanB Consulting 0871 663 7799 kim@planbconsulting.co.uk