Menu Expand
Business Continuity Management Systems

Business Continuity Management Systems

Hilary Estall

(2012)

Additional Information

Abstract

This practical guide is written for organisations that are implementing a business continuity management system and certification in line with ISO 22301. The development of a BCMS requires commitment, time, resourcefulness and management support. This book will fully equip those new to business continuity management or to management systems with survival skills for the ups and downs of the journey. Enriched with checklists, worksheets and invaluable top tips.
If you want to know more about ISO22301 this is the first (and perhaps only) book you need to read.
Lyndon Bird
Hilary Estall has lengthy practical experience in auditing and implementing management systems. She is currently the only IRCA-registered BCMS Lead Auditor in the UK and has 'Specialist' membership status with the Business Continuity Institute (BCI). Hilary runs her own business continuity consultancy company Perpetual Solutions Limited.
An essential read for anyone considering implementation or certification to ISO 22301:2012; practical and insightful.
Russell Price, Chairman
This practical guide is written for people and organisations that are implementing a business continuity management system and certification in line with ISO 22301. The development of a BCMS requires commitment, time, resourcefulness and management support. This book will fully equip those new to business continuity management or to management systems with survival skills for the ups and downs of the journey. It is divided into four parts; the first two focus on the management system aspects and the remaining two look at the requirements of the standard and translate them into user-friendly guidance notes. Included are checklists to self assess progress and worksheets to assist with the development of a BCMS as the reader progresses through the handbook.

Table of Contents

Section Title Page Action Price
Cover Cover
Copyright iv
CONTENTS v
LIST OF FIGURES AND TABLES vii
AUTHOR viii
FOREWORD ix
ACKNOWLEDGEMENTS xi
ABBREVIATIONS xii
1 INTRODUCTION 1
WHO SHOULD READ THIS BOOK? 1
THE OBJECTIVE OF THIS BOOK 2
READER BEWARE! 2
HOW TO USE THIS BOOK 2
2 MANAGEMENT SYSTEMS UNCOVERED 3
PURPOSE AND OBJECTIVE 3
TERMS AND DEFINITIONS 3
MANAGEMENT SYSTEMS EXPLAINED 4
PLAN DO CHECK ACT (PDCA) MODEL 8
MANDATORY REQUIREMENTS FOR MANAGEMENT SYSTEMS 10
DETERMINING THE SCOPE OF THE MANAGEMENT SYSTEM 10
TOP MANAGEMENT RESPONSIBILITIES WITH RESPECT TO THE MANAGEMENT SYSTEM 15
MANAGEMENT SYSTEM DOCUMENTATION 17
IMPROVEMENT 18
WRITING POLICIES AND SETTING OBJECTIVES 20
ALLOCATION OF SUITABLE RESOURCES 23
DETERMINING COMPETENCIES 23
EVALUATION OF THE PERFORMANCE AND EFFECTIVENESS OF THE MANAGEMENT SYSTEM 31
ALIGNMENT WITH OR CERTIFICATION TO ISO 22301? WHICH PATH SHOULD I CHOOSE? 33
CONCLUSION: SHOULD MY ORGANISATION CONSIDER CERTIFICATION? 35
SUMMARY 36
3 BUSINESS CONTINUITY FROM A MANAGEMENT SYSTEM PERSPECTIVE 37
PURPOSE AND OBJECTIVE 37
THE BCM LIFECYCLE 37
POSITIONING THE BCM LIFECYCLE WITH YOUR BCMS 38
SUMMARY 60
4 COMPARING ISO 22301 WITH BS 25999 AND UNDERSTANDING THE DIFFERENCES 61
PURPOSE AND OBJECTIVE 61
HOW BCMS STANDARDS ARE PRODUCED 61
THE SIMILARITIES BETWEEN ISO 22301 AND BS 25999 62
THE DIFFERENCES BETWEEN ISO 22301 AND BS 25999 63
CERTIFICATE TRANSITION 71
SUMMARY 74
5 THE CERTIFICATION PROCESS 75
PURPOSE AND OBJECTIVE 75
TERMS AND DEFINITIONS 75
CHOOSING A CERTIFICATION BODY 76
AUDIT STAGES 77
WHAT TO EXPECT FROM THE AUDIT PROCESS 83
HOW TO PREPARE FOR THE AUDIT 83
THE AUDIT EXPERIENCE 88
MAINTAINING MOMENTUM AFTER THE INITIAL AUDIT AND BETWEEN AUDITS 92
SUMMARY 96
APPENDIX A 97
EVALUATING THE PERFORMANCE OF YOUR BUSINESS CONTINUITY MANAGEMENT SYSTEM 97
APPENDIX B 102
ISO 22301 SELF ASSESSMENT CHECKLIST 102
REFERENCES 112
SOURCES OF FURTHER INFORMATION 113
INDEX 114
ADDITIONAL ACTION SHEETS 116
Back Cover 136