Planning for the unexpected
Prior planning and preparation are essential to ensure your organisation can quickly respond and successfully manage an unexpected incident or disruptive event. Every organisation needs a practical foundation to protect what’s most important to them, including your people, assets, reputation, market share, financial stability, regulatory compliance and even long term viability. Robust preparedness plans are critical to strengthen the resilience of your organisation.
Policy and Framework
A Policy and Framework will assist an organisation to clearly define the implementation and management approach for their Resilience Program, aligned with best practice standards or guidelines. This includes considerations for Emergency and Incident Management, Crisis Management and Business Continuity.
A threat assessment identifies threats that may result in major business disruptions to an organisation. Threats are identified, rated against likelihood and consequence scales, and then assessed against control measures. Findings are applied to the Business Impact Analysis process and used in the identification of disruption scenarios and development of recovery strategies.
Business Impact Analysis
A Business Impact Analysis (BIA) is the foundation for any effective business continuity program. It is conducted to accurately map the vulnerabilities of the organisation, identify critical functions, align recovery time frame, plan key resources, quantify potential costs of a disruption and manage organisational dependencies.
Response & Recovery Plans
Response & Recovery Plans are action documents that set out the processes and procedures to be followed during an incident or business disruption. Plans should be simple and easy to use with consideration for immediate response requirements, operational recovery and resumption, through to top level strategic management of the event.
Emergency Response Plans
Focused on the immediate response to an incident or emergency event to ensure the safety of people and property, whilst remaining compliant.
Incident Management Plans
Focused on the immediate and short-term response to an incident for complex environments and places of mass gatherings.
Business Continuity Plans
Focused on the operational recovery from a disruption to ensure continuity of services and products to an acceptable predefined level.
Cyber Resilience Plans
Focused on the strategic and operational level cyber resilience response actions to be used when faced with a major IT security incident, including IT preparedness, identification, containment, eradication, recovery and follow-up.
Crisis Management Plans
Focused on the management and leadership required during a significant event to protect the organisation’s reputation and strategic viability during a crisis. Includes communication strategies, crisis response and recovery strategies.
Crisis Communications Plans
Focused on the management and leadership required during a significant event to protect the organisation’s reputation and strategic viability during a crisis. Includes communication strategies, media training and post-incident reviews.
Train Your People
This area focuses on building program engagement and team capability to prepare your people to confidently lead your organisation during a crisis.