News

Compliance Management | ISO 19600 review and survey

ISO - International Standards Organization
The ISO Technical Committee for ISO 19600 relating to Compliance Management is preparing to discuss whether a revision of this standard should take place and, if so, how it can be improved.
 
To support this review a survey has been developed to gain feedback from both users and non-users of the standard looking at compliance management. You can help contribute to the decision making process by providing feedback and opinion by following the link below:
 
 
The scope of ISO 19600
 
The International Standard ISO 19600:2014 Compliance management systems – Guidelines were published in 2014 as a Management System Standard. The standard does not specify requirements, but provides guidance on compliance management systems and recommended practices.
 
ISO 19600 can be used by numerous standards covering Risk, Information Technology, Business Continuity and Resilience Management to identify just a few.  The guidance it provides is intended to be adaptable, and the use of this guidance can differ depending on the size and level of maturity of an organization’s compliance management system and on the context, nature and complexity of the organizations activities, including its compliancy policy and objectives.
 
You do not need to be a user of ISO standards either as the flexibility provided through the guidance can help with other processes or management systems. ISO 19600:2014 is based on the principles of good governance, proportionality, transparency and sustainability.
 
The deadline for completing the survey is Monday 16th April 2018.
 

Major new British Standard for Cyber Risk and Resilience [Consultation]

BSI Cyber Risk and Resilience Standards BS 31111A major new British Standard [BS 31111] is in development to help senior executives and risk managers improve their cyber risk management and build the cyber resilience of their organizations.

Over the past year, the BSI Risk Management Committee has been working on developing new guidance that aims to help top executives better understand and manage the technology risks to their organizations.  

New Survey Report on Emergency Mass Notification Systems from MIR3

MIR3 recently funded a survey on EMNS (emergency mass notification systems) with DR GUIDE and made some interesting discoveries.
 
 
Many of the survey’s 700-plus respondents agreed that mass notification has become a critical business tool, and although advanced features are great, usability and reliability are even more important. 
 
To dig deeper, you can download the full report with commentary on the findings and lots of colorful charts and graphs. 
 
MIR3 Survey report on Mass Notification systems use 2016
 

Organizational Resilience Standard now available | ISO 22316

BSI ISO 22316 The International Standards Organisation has issued the Draft for Public Comment (DPC) for its new standard covering Organizational Resilience - Principles and Guidelines | ISO 22316.

Submissions are CLOSED. ISO 22316 is now available from the BSI Shop (click here)

This International Standard provides guidance to enhance organizational resilience for any size or type of public or private organization and is not specific to any industry or sector. It can be applied throughout the life of an organization.

Recognising threat - the importance of pre-incident surveillance

The attacks in Paris on 13th November and London on 7/7 show the planning and preparation spent by terrorists and other groups in gathering information to assist with the target selection and operational planning. Any thought that these events occur by chance or on a whim should be banished.

Internet of Things | What does it mean?

 
Internet of Things – What does it mean and how to embrace it?   
 
Sentronex Article | Internet of Things | Continuity Forum Partner
At this year’s Consumer Electronics Show in Las Vegas, IoT, or the ‘Internet of Things’, was the trending buzzword. Samsung CEO BK Yoon even went so far as to boldly state that in five years all Samsung hardware devices will be IoT ready, with televisions connected by 2017.
 
On top of this, Gartner predicts that by 2020 a staggering 26 billion objects will be IoT connected; in other words, IP-enabled, interactive, and ‘smart’. In fact, this growing global market could hit a worth of $7.1 trillion by that date.  
 

What about Resilience?

Risk, Business Continuity and Resilience - are we getting the landscape right?
 
Business Continuity, Resilience and the Rhinos ear
 
Imagine trying to describe or just outline what a Rhinoceros looks like to someone when you have only have seen a small part of the whole animal yourself, perhaps just a foot or an ear.
 
Three toed camel or a resilient  Rhino? When you haven't seen the whole thing it makes it awkward at best, perhaps even impossible. Its certainly rather tricky eh?  You could end up with a Donkey, a three toed Camel or indeed a host of bizarre critters. To describe a Rhino properly you have got to step back and get the whole picture. (We know this is usually done with elephants, but we prefer a rhino for this analogy...  its an ear thing!)  
 
We’re using this example to illustrate one of the most interesting topics emerging across the Risk and Business Continuity Sectors  - Organizational Resilience! 
A lot of people are talking about it and the discussion underway is really interesting. 
 

Cyber Risk - an animated short introducing cyber risk and the essentials programme

An Introduction to Cyber Risk and the Cyber Essentials Scheme - Video

This is a short 5 minute video that rather light heartedly provides a basic introduction to Cyber Risk.  It isn't technical and aims to help build awareness of Cyber Risk has evolved and introduces the UK Cyber Essentials Scheme.

 



If you would like to know more about our work covering Cyber Risk then get in touch.

You can also find out more about the special Cyber Risk and Insurance Forum by clicking on the link in the menu bar. 

 


Online Cyber Security course from the OU, Cabinet Office and BIS

Online Cyber security training from the Open University
Future Learn has launched 3 new free cyber security online training courses, funded by the National Cyber Security Programme.  
 
The courses are aimed at all levels, from young people through to existing employees, and represent an excellent opportunity to develop skills in the IA arena.
 

Climate adaptation measures and our BCM approach - a user perspective

Business Continuity at Dentons - IntroductionDentons - Global Law firm - creating positive change
 
Dentons is a global law firm driven to provide clients a competitive edge in an increasingly complex and interconnected world. A top 20 firm on the Acritas 2013 Global Elite Brand Index, Dentons' clients benefit from approximately 2,600 lawyers and professionals in more than 75 locations spanning 50-plus countries across Africa, Asia Pacific, Canada, Central Asia, Europe, the Middle East, Russia and the CIS, the UK and the US.
 
The Firm serves the local, regional and global needs of a broad spectrum of clients, including private and public corporations; governments and government agencies; small businesses and start-ups; entrepreneurs; and individuals.
 

The Business Continuity role in adapting to climate change

Environment Agency - Climate Adaptation Last winter heavy rain, storm force winds and large waves combined with high spring tides presented England with unprecedented flooding from the sea, rivers, groundwater and surface water.

Thousands of properties were flooded, infrastructure was damaged and tragically, eight people lost their lives. The full impact of these events has not yet been calculated but we do know that 175,000 businesses in England are at risk of flooding [note1].  

Government sets the bar for Cyber Risk with Cyber Essentials

Cyber essentials scheme Logo Department of Business, Innovation & Skills Minister, Right Hon David Willetts MP, has announced the certification framework for Cyber Essentials, the governments new initiative aimed at creating a minimum expected capability for cyber security.  

Government funding for SME and start up Computer Security

CESG innovation scheme provides £5000 for business cyber risk management The government has extended the Innovation Voucher scheme that supports SMEs, entrepreneurs and early stage start-ups by implementing or improving cyber security.

The scheme provides flexibility and allows firms to choose from a ange of approved suppliers.  Successful applicants will receive up to £5000 from the Innovation Scheme. 

IPCC 2014 stresses importance of Risk Management in meeting Climate challenge

Climate Adaptation and Business Continuity - an essential connection

These videos introduce the 2014 Intergovernmental Panel on Climate Change Report.  The findings of Working Group Two focuses on Vulnerability, Impacts and Adaptation.
 
These are central themes of not only the latest thinking on how best to meet the Climate Change Challenge, but go to the heart of the work of Risk and Business Continuity professionals across business around the world.
 

Video Animation introducing the Smart Guide to Climate Adaptation

Climate Adaptation and Business Continuity - an essential connection

This short video introduces the Smart Guide - Adapting to Climate Change using your Business Continuity Management System.
 
The guide has been published by BSI in partnership with Climate Ready following our research over the past two years where one of the common requests was for more clarity on how to integrate Climate Adaptation factors into the Business Continuity and Risk Management processes.  
 
Syndicate content

Business Continuity Forum creating Resilince and security

Creating Continuity... Building Resilience...