Académique Documents
Professionnel Documents
Culture Documents
MINIMIZING DISRUPTION
MAXIMIZING RECOVERY
Managing business
continuity
The purpose of BS 25999 is to provide a
basis for understanding, developing and
implementing business continuity within
an organization and to provide confidence
in business-to-business and business-tocustomer dealings. This management
approach to business continuity is achieved
through the adoption of the tried and tested
management systems methodology.
A significant advantage of BS 25999 is
that it goes beyond simple formalized
Business Continuity planning to include
the establishment of a business continuity
management system (BCMS). This applies
the Plan-Do-Check-Act (PDCA) method
which includes planning, testing, training,
and the constant evaluation of the people,
processes, facilities, technologies related to
a BCMS. This approach ensures continual
improvement and allows for the alignment
and integration with other management
system standards such as
ISO 9001 and ISO/IEC 27001.
Now you understand the principles of BS 25999 you are in a much better position
to implement a robust Business Continuity Management System. Once this has
been achieved you can prepare for BS 25999 certification - the ultimate assurance
to all your stakeholders that you are compliant with best practice.
MANAGING BUSINESS
CONTINUITY
Understanding, Implementing and Certifying to BS 25999
BCM programme management
Purpose - programme management is at
the heart of the BCM process. Effective
programme management establishes the
organizations approach to business
continuity and helps achieve the objectives
which are defined in the BCM policy.
Involves three steps:
assigning responsibilities (governance);
implementing business continuity in the
organization; and
ongoing management of business continuity.
Becoming certified
Make contact
Tell us what you need and well outline a
solution detailing the best services for you,
along with a proposal for costs and timings.
Your assessment team
Well assign you a Client Manager, who will
be your main point of contact throughout
the process and beyond. Over that time,
they will develop an in-depth knowledge
of your business and support you through
each stage of assessment.
Consider relevant training and gap analyses
These are optional steps, but can really
enhance the whole process. Whether youre
looking to implement a management system
or simply increase your general awareness
of the standard, we have a range of
workshops, seminars and training courses
some of which are available as open or
e-learning courses, either off-site or on your
premises. See www.bsi-global.com/training
for the latest details. Additionally, a gap
analysis can help you with the
Why BSI?
implementation of your BCMS by identifying
any gaps in your management system.
Assessment and review
The assessment will have two stages. First, well
do a desktop review of your management
system against the requirements of BS 25999,
and identify any omissions or weaknesses that
need resolving before formal assessment. Once
these have been addressed, we can move on to
a full on-site assessment (Stage 2), after which
well make our detailed recommendations.
Certification and beyond
Once the assessment has been successfully
completed, well issue a certificate of
registration which is valid for three years
and explains the full scope of your
management system. But the relationship
doesnt end there. As long as youre
certified with BSI, you can contact your
assessor any time for advice and support
and they will visit regularly to ensure your
systems keep on improving. In this way, you
will be able to demonstrate a continual
commitment to meeting BCM best practice.
Next steps
We now offer electronic certificates and
reports through our secure client extranets.
These allow us to continue a close
relationship online, complementing our
regular member events and newsletter. We
have also introduced a range of software
solutions to help you implement and manage
your business continuity management
system. Entropy is a market-leading, webbased product that allows you to manage
data more efficiently to improve performance
management, corporate reporting,
information and document management
www.bsi-global.com/bs25999ms
DELIVERY
Provides a rehearsed method of restoring
your ability to supply critical products and
services to an agreed level and timeframe
following a disruption.
MANAGEMENT
Delivers a proven and proactive response
for managing a disruption.
The above three benefits form the key
pillars of BS 25999 and are directly related
to enhancing your organizations BCM
capability. There are numerous additional
commercial benefits:
CONTINUAL BUSINESS
IMPROVEMENT
Meeting the requirements of BS 25999
results in a clearer understanding of how your
entire organization works thereby potentially
identifying areas for improvement.
REPUTATION
Helps protect and enhance an organizations
reputation and brand while building
confidence with all stakeholders.
COMPETITIVE ADVANTAGE
COMPLIANCE
INSURANCE
COST SAVINGS
SUPPLY CHAIN
FRAMEWORK
Provides a common fit-for-purpose
framework to manage business continuity.
BSI/UK/56/MS/1207/CW
BSI Group:
Standards
Information
Training
Inspection
Testing
Assessment
Certification