News

Compliance Management | ISO 19600 review and survey

ISO - International Standards Organization
The ISO Technical Committee for ISO 19600 relating to Compliance Management is preparing to discuss whether a revision of this standard should take place and, if so, how it can be improved.
 
To support this review a survey has been developed to gain feedback from both users and non-users of the standard looking at compliance management. You can help contribute to the decision making process by providing feedback and opinion by following the link below:
 
 
The scope of ISO 19600
 
The International Standard ISO 19600:2014 Compliance management systems – Guidelines were published in 2014 as a Management System Standard. The standard does not specify requirements, but provides guidance on compliance management systems and recommended practices.
 
ISO 19600 can be used by numerous standards covering Risk, Information Technology, Business Continuity and Resilience Management to identify just a few.  The guidance it provides is intended to be adaptable, and the use of this guidance can differ depending on the size and level of maturity of an organization’s compliance management system and on the context, nature and complexity of the organizations activities, including its compliancy policy and objectives.
 
You do not need to be a user of ISO standards either as the flexibility provided through the guidance can help with other processes or management systems. ISO 19600:2014 is based on the principles of good governance, proportionality, transparency and sustainability.
 
The deadline for completing the survey is Monday 16th April 2018.
 

Business Reliance Officers for the House of Commons - Urgent

in
 
 
 
 
 
 
 
Job Title: Business Resilience Officer

Salary: £36,500 per annum
Salary Band: B1
Contract Type: Permanent

Number of Posts:2
Type of Post: Concurrent
Hours: full time 36 hours per week

Closing date: Midnight 3rd April 2018

 
The Role

This post is in the Business Resilience (Emergency Planning) team for Parliament. The team supports both the House of Lords and the House of Commons in ensuring Parliament is prepared for and effectively manages disruptive incidents. We work with staff across all the supporting teams of Parliament.
 
You will formulate emergency plans and supporting documents and use your outstanding communication and presentation skills to prepare and deliver training and exercises, draft plans and guidance and write papers and briefings for staff and groups at all levels of Parliament.
 
You will have a working knowledge of business resilience and related legislation such as the Civil Contingencies Act 2004. As a confident self-starter you will be able to work under pressure, remaining organized and focused on the delivery of high quality work across a range of activities alongside the rest of the team.

The Person

The successful candidate will have the following skills/experience:
 
• Able to accommodate suddenly arising / unexpected workloads whilst ensuring continued delivery of routine work.

• Takes the initiative, bringing forward new ideas to create or improve systems, guidance or ways of working / to spot a gap in existing systems or guidance and propose how to address it.
 
• Able to work with difficult or challenging partners, stakeholders or customers whilst upholding the principles of equality, diversity and inclusion.; effectively influencing to gain buy-in for required action
 
• Degree level qualification (need not be emergency planning specifically).
 
• Experience in an emergency planning role in public or private sector.
 
Benefits

Annual leave starting at 30 days pro rata
Civil Service Pension scheme
Interest-free season ticket loan
Child care voucher scheme
Discounted membership of the in-house gym
 
All applications must be submitted on a House of Commons application form
 
 


 

Revision of ISO 31000 Risk Management Guidelines - Draft available

 
International Standard Risk Management ISO 31000 Draft ReviewISO 31000, the international standard for Risk Management - ‘Risk Management – Principles and Guidelines’ - is now available for public consultation. 
 
The decision to review ISO 31000 was taken at in Chicago in 2013 and now, 4 years later, a draft version of the proposed updates to the ISO 31000 document is available for users to see.
 
The next steps will be a review of the comments submitted that will modify the text further and then a ballot by ISO members to move to the final publication.  The next ISO meeting is being held in San Francisco in July 2017 and this suggests publication of the revised risk management standard perhaps early in 2018. 
 
The draft of the standard for review and comment is now available on the BSI Draft Review system at https://standardsdevelopment.bsigroup.com/projects/76477a8f8de94a1e1d5c675e02973077. [registration required - Closing date for comments 11th April 2017] 
 
Click to Visit and View BSI DRAFT REVIEW SYSTEM
 

Major new British Standard for Cyber Risk and Resilience [Consultation]

BSI Cyber Risk and Resilience Standards BS 31111A major new British Standard [BS 31111] is in development to help senior executives and risk managers improve their cyber risk management and build the cyber resilience of their organizations.

Over the past year, the BSI Risk Management Committee has been working on developing new guidance that aims to help top executives better understand and manage the technology risks to their organizations.  

New Survey Report on Emergency Mass Notification Systems from MIR3

MIR3 recently funded a survey on EMNS (emergency mass notification systems) with DR GUIDE and made some interesting discoveries.
 
 
Many of the survey’s 700-plus respondents agreed that mass notification has become a critical business tool, and although advanced features are great, usability and reliability are even more important. 
 
To dig deeper, you can download the full report with commentary on the findings and lots of colorful charts and graphs. 
 
MIR3 Survey report on Mass Notification systems use 2016
 

Organizational Resilience Standard now available | ISO 22316

BSI ISO 22316 The International Standards Organisation has issued the Draft for Public Comment (DPC) for its new standard covering Organizational Resilience - Principles and Guidelines | ISO 22316.

Submissions are CLOSED. ISO 22316 is now available from the BSI Shop (click here)

This International Standard provides guidance to enhance organizational resilience for any size or type of public or private organization and is not specific to any industry or sector. It can be applied throughout the life of an organization.

Recognising threat - the importance of pre-incident surveillance

The attacks in Paris on 13th November and London on 7/7 show the planning and preparation spent by terrorists and other groups in gathering information to assist with the target selection and operational planning. Any thought that these events occur by chance or on a whim should be banished.

Internet of Things | What does it mean?

 
Internet of Things – What does it mean and how to embrace it?   
 
Sentronex Article | Internet of Things | Continuity Forum Partner
At this year’s Consumer Electronics Show in Las Vegas, IoT, or the ‘Internet of Things’, was the trending buzzword. Samsung CEO BK Yoon even went so far as to boldly state that in five years all Samsung hardware devices will be IoT ready, with televisions connected by 2017.
 
On top of this, Gartner predicts that by 2020 a staggering 26 billion objects will be IoT connected; in other words, IP-enabled, interactive, and ‘smart’. In fact, this growing global market could hit a worth of $7.1 trillion by that date.  
 

Cyber Security for Purchasing Professionals

Cyber Risk Management for Purchasing and supply
 
A new initiative to help build cyber security has been launched that focuses on the important role played by procurement and purchasing teams.
 
While schemes such as Cyber Essentials provides help with technical issues, the new government backed scheme provides free of charge training for procurement professionals.  The on-line course helps build understanding of the most common risks faced and how they can be addressed.
 

What about Resilience?

Risk, Business Continuity and Resilience - are we getting the landscape right?
 
Business Continuity, Resilience and the Rhinos ear
 
Imagine trying to describe or just outline what a Rhinoceros looks like to someone when you have only have seen a small part of the whole animal yourself, perhaps just a foot or an ear.
 
Three toed camel or a resilient  Rhino? When you haven't seen the whole thing it makes it awkward at best, perhaps even impossible. Its certainly rather tricky eh?  You could end up with a Donkey, a three toed Camel or indeed a host of bizarre critters. To describe a Rhino properly you have got to step back and get the whole picture. (We know this is usually done with elephants, but we prefer a rhino for this analogy...  its an ear thing!)  
 
We’re using this example to illustrate one of the most interesting topics emerging across the Risk and Business Continuity Sectors  - Organizational Resilience! 
A lot of people are talking about it and the discussion underway is really interesting. 
 

Cyber Risk - an animated short introducing cyber risk and the essentials programme

An Introduction to Cyber Risk and the Cyber Essentials Scheme - Video

This is a short 5 minute video that rather light heartedly provides a basic introduction to Cyber Risk.  It isn't technical and aims to help build awareness of Cyber Risk has evolved and introduces the UK Cyber Essentials Scheme.

 



If you would like to know more about our work covering Cyber Risk then get in touch.

You can also find out more about the special Cyber Risk and Insurance Forum by clicking on the link in the menu bar. 

 


Online Cyber Security course from the OU, Cabinet Office and BIS

Online Cyber security training from the Open University
Future Learn has launched 3 new free cyber security online training courses, funded by the National Cyber Security Programme.  
 
The courses are aimed at all levels, from young people through to existing employees, and represent an excellent opportunity to develop skills in the IA arena.
 

Climate adaptation measures and our BCM approach - a user perspective

Business Continuity at Dentons - IntroductionDentons - Global Law firm - creating positive change
 
Dentons is a global law firm driven to provide clients a competitive edge in an increasingly complex and interconnected world. A top 20 firm on the Acritas 2013 Global Elite Brand Index, Dentons' clients benefit from approximately 2,600 lawyers and professionals in more than 75 locations spanning 50-plus countries across Africa, Asia Pacific, Canada, Central Asia, Europe, the Middle East, Russia and the CIS, the UK and the US.
 
The Firm serves the local, regional and global needs of a broad spectrum of clients, including private and public corporations; governments and government agencies; small businesses and start-ups; entrepreneurs; and individuals.
 

The Business Continuity role in adapting to climate change

Environment Agency - Climate Adaptation Last winter heavy rain, storm force winds and large waves combined with high spring tides presented England with unprecedented flooding from the sea, rivers, groundwater and surface water.

Thousands of properties were flooded, infrastructure was damaged and tragically, eight people lost their lives. The full impact of these events has not yet been calculated but we do know that 175,000 businesses in England are at risk of flooding [note1].  

Government sets the bar for Cyber Risk with Cyber Essentials

Cyber essentials scheme Logo Department of Business, Innovation & Skills Minister, Right Hon David Willetts MP, has announced the certification framework for Cyber Essentials, the governments new initiative aimed at creating a minimum expected capability for cyber security.  

Syndicate content

Business Continuity Forum creating Resilince and security

Creating Continuity... Building Resilience...