Business Continuity Management (BCM) White Papers

The BCM Professional's Playbook Series:

Make Active Shooter Preparedness Part of Your BC Program

Tragically, active shooter events are now 18 times more likely than workplace fires. This makes them a recognized hazard per OSHA. As your legal obligation to provide an environment safe against workplace violence continues to evolve, so should your best practices. By incorporating active shooter training into your existing Business Continuity program under the umbrella of life safety; you can guard against this growing threat with minimal disruption, fear, or employee angst. This playbook addresses regulatory concerns and legal obligations; know when to run, hide, or fight; how to build an effective active-shooter program; choosing the right trainer; and how to manage emergency communications effectively.


The Challenges of Managing Vendor Risk Contingency Plans

Organizations increasingly rely on critical, "Tier 1" vendors for essential products and services. This reliance increases their exposure to various types of risk, including regulatory risk, reputational risk, information security risk, and financial risk. Vendor Risk Management intersects with Business Continuity Management (BCM) and Operational Risk Management (ORM) where third-party vendors provide critical products, services, or have access to critical company information. This playbook explores how—using established risk management and BCM/DR principles—we can define a practice to manage vendor risk while addressing contingency and recovery capabilities.


Convergence of Business Continuity & Risk Management

The demands placed upon Business Continuity (BC), Risk Management (RM), and Disaster Recovery (DR) pros increase every day. As a result, organizations need to reassess their approach to BCM. If they don’t, they’ll get left behind, affected by continued adherence to outdated methods. The convergence of these disciplines is ongoing. Emerging regulations, frameworks, and standards place greater emphasis on RM. As decision makers accept this evolution, BC increasingly becomes a subset of RM. How the process is implemented—the value it brings a risk-based model—determines whether or not the process is a sound.


Evaluating and Applying Relevant BCM Standards

Discover a better way to address key business continuity standards and guidelines that are so important for compliance and better continuity plans. Benefit from the original BCP Genome to strengthen your own planning and compliance practices—whether you adopt its framework as is, or adapt its logic to create your own framework. Also, compare eight leading industry standards—ISO22301, FFIEC, NFPA, NIST, HIPAA, and more—to identify their strengths and gaps relative to program organization, management, training, and audit vs. emergency facilities or business and IT recovery.

Assessing, Mitigating, and Managing Risk

For many business continuity professionals, BCM is changing toward a convergence with risk management. Learn how to appreciate the difference, as well as the need for evolving toward new tools and objective methodologies that can help you keep pace with risk assessment and management. Gain ideas for building reliable plans based on thorough, objective BIAs and methodologies. And leverage the opportunity to make business continuity a more strategic part of your organization’s operations.

Five Steps to BCM Customer Satisfaction

Elevate your BCM profile within your organization by taking a page from this playbook on customer satisfaction. Gain insight for leveraging basics of the BCM process into opportunities to raise your profile and value in the eyes of the key organizational "customers." Learn tactics that have already proven their validity at the highest levels in more than 250 organizations, and ideas you can apply in any organization.