ISO 22301:2019 and business continuity management – Understand how to plan, implement and enhance a business continuity management system (BCMS) walks you through the requirements of ISO 22301, explaining what they mean and how your organisation can achieve compliance. It is an essential companion guide for those working in business continuity.

Understand the basics of business continuity and ISO 22301:2019 with this concise pocket guide, which will help you ensure your organisation can continue to operate in the event of a disruption.

Understand the basics of business continuity and ISO 22301:2019 with this concise pocket guide, which will help you ensure your organisation can continue to operate in the event of a disruption.

Since the publication of the first edition in 2002, interest in crisis management has been fuelled by a number of events, including 9/11. The first edition of this text was praised for its rigorous yet logical approach, and this is continued in the second edition, which provides a well-researched, theoretically robust approach to the topic combined with empirical research in continuity management. New chapters are included on digital resilience and principles of risk management for business continuity. All chapters are revised and updated with particular attention being paid to the impact on smaller companies. New cases include: South Africa Bank, Lego, Morgan Stanley Dean Witter; small companies impacted by 9/11; and the New York City power outage of August 2003.

Powerful Earthquake Triggers Tsunami in Pacific. Hurricane Katrina Makes Landfall in the Gulf Coast. Avalanche Buries Highway in Denver. Tornado Touches Down in Georgia. These headlines not only have caught the attention of people around the world, they have had a significant effect on IT professionals as well. As technology continues to become more integral to corporate operations at every level of the organization, the job of IT has expanded to become almost all-encompassing. These days, it's difficult to find corners of a company that technology does not touch. As a result, the need to plan for potential disruptions to technology services has increased exponentially. That is what Business Continuity Planning (BCP) is: a methodology used to create a plan for how an organization will recover after a disaster of various types. It takes into account both security and corporate risk management tatics.There is a lot of movement around this initiative in the industry: the British Standards Institute is releasing a new standard for BCP this year. Trade shows are popping up covering the topic.* Complete coverage of the 3 categories of disaster: natural hazards, human-caused hazards, and accidental and technical hazards.* Only published source of information on the new BCI standards and government requirements.* Up dated information on recovery from cyber attacks, rioting, protests, product tampering, bombs, explosions, and terrorism.

Are you satisfied with the way your company responds to IT incidents? How prepared is your response team to handle critical, time-sensitive events such as service disruptions and security breaches? IT professionals looking for effective response models have successfully adopted the Incident Management System (IMS) used by firefighters throughout the US. This practical book shows you how to apply the same response methodology to your own IT operation. You’ll learn how IMS best practices for leading people and managing time apply directly to IT incidents where the stakes are high and outcomes are uncertain. This book provides use cases of some of the largest (and smallest) IT operations teams in the world. There is a better way to respond. You just found it. Assess your IT incident response with the PROCESS programmatic evaluation tool Get an overview of the IMS all-hazard, all-risk framework Understand the responsibilities of the Incident Commander Form a unified command structure for events that affect multiple business units Systematically evaluate what broke and how the incident team responded

The Practical, Comprehensive Guide to Applying Cybersecurity Best Practices and Standards in Real Environments In Effective Cybersecurity, William Stallings introduces the technology, operational procedures, and management practices needed for successful cybersecurity. Stallings makes extensive use of standards and best practices documents that are often used to guide or mandate cybersecurity implementation. Going beyond these, he offers in-depth tutorials on the “how” of implementation, integrated into a unified framework and realistic plan of action. Each chapter contains a clear technical overview, as well as a detailed discussion of action items and appropriate policies. Stallings offers many pedagogical features designed to help readers master the material: clear learning objectives, keyword lists, review questions, and QR codes linking to relevant standards documents and web resources. Effective Cybersecurity aligns with the comprehensive Information Security Forum document “The Standard of Good Practice for Information Security,” extending ISF’s work with extensive insights from ISO, NIST, COBIT, other official standards and guidelines, and modern professional, academic, and industry literature. • Understand the cybersecurity discipline and the role of standards and best practices • Define security governance, assess risks, and manage strategy and tactics • Safeguard information and privacy, and ensure GDPR compliance • Harden systems across the system development life cycle (SDLC) • Protect servers, virtualized systems, and storage • Secure networks and electronic communications, from email to VoIP • Apply the most appropriate methods for user authentication • Mitigate security risks in supply chains and cloud environments This knowledge is indispensable to every cybersecurity professional. Stallings presents it systematically and coherently, making it practical and actionable.

In an increasingly volatile business landscape, the ability to maintain business continuity is more crucial than ever. In "Mastering ISO 22301:2019", Kris Hermans, a renowned expert in business resilience, provides a comprehensive guide to understanding and implementing the international standard for business continuity management systems. Inside this guide, you will: Gain a deep understanding of ISO 22301:2019 and its role in business continuity management. Learn how to implement ISO 22301:2019 within your organization. Discover how to audit your business continuity management system for ISO 22301:2019 compliance. Understand how to maintain and improve your system according to the standard. Explore real-life case studies of businesses that have successfully achieved ISO 22301:2019 certification. "Mastering ISO 22301:2019" is an invaluable resource for business leaders, risk management professionals, and anyone interested in ensuring their organization's resilience.

This book guides readers through the broad field of generic and industry-specific management system standards, as well as through the arsenal of tools that are needed to effectively implement them. It covers a wide spectrum, from the classic standard ISO 9001 for quality management to standards for environmental safety, information security, energy efficiency, business continuity, laboratory management, etc. A dedicated chapter addresses international management standards for compliance, anti-bribery and social responsibility management. In turn, a major portion of the book focuses on relevant tools that students and practitioners need to be familiar with: 8D reports, acceptance sampling, failure tree analysis, FMEA, control charts, correlation analysis, designing experiments, estimating parameters and confidence intervals, event tree analysis, HAZOP, Ishikawa diagrams, Monte Carlo simulation, regression analysis, reliability theory, data sampling and surveys, testing hypotheses, and much more. An overview of the necessary mathematical concepts is also provided to help readers understand the technicalities of the tools discussed. A down-to-earth yet thorough approach is employed throughout the book to help practitioners and management students alike easily grasp the various topics.

Resilient Thinking – Protecting Organisations in the 21st Century, Second edition Since the release of the first edition in 2012, a lot has changed in the world of risk and organisational resilience. Global conflict, political realignments, environmental disruptions, pandemics and disease outbreaks and cyber attacks are a plethora of threats that have and will continue to endanger the stability of the world. Alongside these risks and issues, technological and societal change is ushering in a new age of opportunity and progress. What can organisations and individuals do to prepare for an unexpected future? To prepare for the unexpected future, organisations need to be resilient, and this requires: Understanding the current, emerging and future environments and contexts; People who are knowledgeable, confident and capable in building and maintaining resilience in the organisation and themselves; and A sensible approach to the use of guidance, frameworks and initiative. Phil Wood’s much expanded and updated second edition explores, develops and enhances the concepts discussed in his previous book in granular detail, analysing our understanding of where we have been, where we are now, and where we should be going to develop resilient organisations.