RiskLogic can analyse and review existing resilience programs to assess an organisation’s level of preparedness and compliance with legislation, best practice standards or benchmarks. This may be specific to business continuity, crisis management or emergency management programs, or combine all of the above, based on the nature, focus and scale of the review.
Reviews generally consist of four key stages:
Stage 1. Establishment
For every project, RiskLogic facilitates a formal engagement meeting with key representatives from the client to verify the review scope and priorities. For each review, tailored objectives are then established to guide the development of review criteria and a framework with a focus on key functions and program priorities.
Stage 2: Document review
RiskLogic generally conducts a thorough documentation review of the client’s arrangements including an assessment of procedures and plans, communication protocols, control structures, assessment tools, diagrams, training, testing and maintenance records.
Stage 3. Site visits and interviews
RiskLogic may also conduct a site visit where required and facilitate face-to-face interviews with representatives from selected business units. Interviews reinforce consultative buy-in for the program and will predominately assess cultural, awareness and communication considerations, including past experiences and previous engagement in the program.
Stage 4. Review report and recommendations
On completion of the review process, RiskLogic will provide a comprehensive report detailing key gaps and deficiencies in the client’s existing program, measured against the pre-established review objectives and performance criteria.
Recommendations to address the identified deficiencies will be included in the report providing expert input into remediation and improvement activities.
Post Incident Reviews
RiskLogic facilitates Post Incident Reviews (PIRs) for organisations who have experienced a recent disruption or incident. A PIR is an evaluation of an organisation’s response to a disruption or incident and can be of the entire organisation, selected divisions or focused on external stakeholders. PIRs provide clients with significant learning opportunities by identifying weaknesses and emphasizing strengths, serving to further improve business continuity programs and continually build organisational resilience.
Supply Chain and Third Party Assessments
Continuity of service by third party suppliers is critical to many organisations. RiskLogic assists clients to ascertain whether critical suppliers maintain appropriate and sound business continuity programs, thereby minimising supplier dependency risks and improving operational confidence. RiskLogic can review supplier preparations to varying scales, from tailored self-assessment checklists through to formal onsite program reviews.
Benchmarking and Scorecard Systems
RiskLogic can provide an effective evaluation tool to measure an organisation’s business continuity program against industry practices and best practice principals. Implementation of this program provides a clear comparison to measurable indicators that are of value to the particular organisation.
This assists to develop a renewed focus on Business Continuity programs, with the aim of increasing commitment and engagement across the organisation. It also provides a foundation for the further improvement and development of programs based on clear, practical recommendations. RiskLogic follows a careful 3 stage process to deliver the evaluation process:
- Customisation and establishment of evaluation tool to meet the client’s specific requirements, context, culture, reporting and objectives.
- Implementation of evaluation tool, including interviews with selected client representatives, information gathering and documentation reviews.
- Delivery of evaluation outcomes through customised reporting and tailored recommendations to provide a clear road map of future priorities.