The British Standards Institution (BSI) has published its new guidance standard on organizational resilience.
The new standard BS 65000:2014 | guidance on organizational resilience was first mooted more than four years ago and has passed through a number of major development stages prior to its final publication.
The publication date for the new British Standard for Organizational Resilience BS 65000 was held in the Guildhall in the City of London on 27th November 2014. Around 100 attended the event that included presentations form the BSI, the Corporation of London and members of the project team.
The BS 65000 standard offers guidance on how organizational resilience can be enhanced through connecting the strategic goals of the business with wider thinking on the processes and resources that deliver value enhancing capabilities.
Last winter heavy rain, storm force winds and large waves combined with high spring tides presented England with unprecedented flooding from the sea, rivers, groundwater and surface water.
Thousands of properties were flooded, infrastructure was damaged and tragically, eight people lost their lives. The full impact of these events has not yet been calculated but we do know that 175,000 businesses in England are at risk of flooding [note1].
Department of Business, Innovation & Skills Minister, Right Hon David Willetts MP, has announced the certification framework for Cyber Essentials, the governments new initiative aimed at creating a minimum expected capability for cyber security.
This is a short introduction to the world of Standards outlining how they are developed.
A standard is a document defining best practice, established by consensus and approved by a recognized body (such as BSI, ANSI or ISO). Each standard is kept current through a process of maintenance and review whereby it is updated, revised or withdrawn as necessary.
For the past few years one of the BSI committees has been working to develop a guidance standard that can be used by organisations to better direct, inform and support their Organizations and positively impact on its resilience.
The Standard known as “BS 65000:2014 Guidance on organizational resilience” has challenged the author group and been through extensive revisions before finally getting to the Public comments stage.
In March 2013, the UK Department for Business, Innovation and Skills issued a “Call for Views and Evidence” that built on the commitments made in the 2011 Cyber Security Strategy published by government.
The Call for Evidence focused on the intention of government to encourage the adoption of industry led standards that can be used by organisations to improve the management of cyber risk. The particular focus of this work stream, that is part of a series of connected developments across business and government, was centred on the needs of SME companies.
Can you help create a framework for Cyber Risk management for the UK?
The Department of Business, Innovation and Skills (BIS) is looking at how to help business improve its management of Cyber Risk through a process of industry engagement that is trying to identify how standards can be used in this process.
We would really like your contribution to the future developemnt of ISO 31000 – Risk management - Principles and guidance and ISO Guide 73 - Risk management- Terminology. These important ISO guidance documents are currently being considered for revision and the ISO technical committee, TC/262 – Risk Management –responsible for this work and the BSI has established a group to obtain feedback from risk professionals, users of the standards, and other relevant stakeholders.
Your input into this review is very important and will be fed directly into ISO TC/262.
We are looking for your thoughts and use of Risk Management standards to help us develop a better understanding of how ISO 31000 can evolve and what aspects could be developed further.
The European Commission, pursuing the increase of the global competitiveness of EU security industry while enhancing the security of Europe, has requested the European Standardisation Organisations (ESOs) to draft three European standardisation roadmaps in the security sector under action 1 in their Communication on Security Industrial Policy.
These Risk Management Workshop sessions form part of the process of review and feedback on the developing nature of Risk Management standards and have been developed by the Continuity Forum and the BSI.
They have been designed to flow together, creating engagement and drawing people into meaningful discussions on key issues surrounding Risk Management Standards and how it connects to other professional disciples that use Risk Management techniques such as Business Continuity, Resilience and Security Management.
In addition, we are seeking to develop insight and support on the potential for Standards based Risk Management to positively contribute to the UK's management of Climate Risk through the National Adaption Programme (NAP).