BIS Cyber Hygiene Profile - CALL FOR REVIEW

BIS CYBER HYGIENE PROFILE DRAFT REVIEW - COMMENTS NEEDEDFeedback is needed from industry on the first draft of the Cyber Hygiene Profile developed by BIS and intended to identify the basic cyber controls that should be present in business.
The current draft can be viewed and comments submitted through the BSI’s Draft Review System and the review will close on the 16th March, 2014.

Standards Australia emphasises Risk Management in AS/NZS5050 BCM Standard


The latest Standard to the be released titled “AS/NZ5050 - Business Continuity Managing disruption-related risk” comes from Standards Australia and arrived just a few months before the US BCM Standard jointly developed by the BSI and ASIS . 


In an interesting departure from established convention the Australia/New Zealand Standard takes different slant on key aspects of the process and connects far more with with risk management principles than others. The Standard itself declares that “the approach (taken) to managing disruption-related risk described in the Standard is through application of AS/NZS ISO 31000:2009, Risk management—Principles and guidelines.”



Business Continuity Forum

The Financial Reporting Council has released its updated corporate governance code which builds and clarifies the responsibility on Listed companies.


The new code applies from 29 June 2010 and applies to those with a Premium Listing regardless of whether they are incorporated in the UK or elsewhere.

US Business Continuity Standard work commences

American Standard Body to produce US Standard for Business Continuity

ASIS  based in Virginia has now started the work to develop its American National Standards Institute (ANSI) project to produce a Business Continuity Management (BCM) standard, for approval by ANSI.

Corporate governance: Threats forcing boards to take action

Among the resolutions filed by an increasingly activist shareholding community, none has yet centred on a company’s failure to address business continuity planning.

However, consultants and security experts believe it is only a matter of time before proxy votes are applied to corporate performance on business continuity.

Auditing the Business Continuity Process

A view on SOX and the BC Process

In a recent interesting piece by Dr Eric Schmidt of TDS Inc. he explores some of the background of the Sarbanes Oxley and looks at the implications it has for Organisations affected and specifically the impact on Business Continuity Practitioners. He argues persuasively that regulatory initiatives and world events are driving the convergence of business continuity, security and information management under the umbrella of enterprise risk management, sometimes referred to as global assurance.

Basel Committee issues updated guidance on the compliance function in banks

This update provides basic guidance for banks and sets out banking supervisors’ views on compliance in banking organisations.

Using a framework of principles, the latest update illustrates how compliance with the laws, rules and standards that govern banking activities helps to maintain a bank’s reputation with its shareholders, customers, employees and the markets. At the same time, the paper incorporates sound practice guidance to assist banks in designing, implementing and operating an effective compliance function. To optimise its usefulness to all banks, they stress that a single framework of principles for effective compliance risk management does not restrict individual banks to a single organisational or operational approach. However, each bank must be prepared to demonstrate that the approach adopted is effective in dealing with the bank’s unique compliance risk challenges.

Syndicate content

Business Continuity Forum creating Resilince and security

Creating Continuity... Building Resilience...