Our 2019-01-17 show focuses on The BIA and its Relevance to Disaster Recovery. Our guest will be industry expert Dennis Lenard.
https://www.voiceamerica.com/episode/108770/the-bia-and-its-relevance-to-disaster-recovery
Enjoy!
The StoneRoad Team
Our 2019-01-17 show focuses on The BIA and its Relevance to Disaster Recovery. Our guest will be industry expert Dennis Lenard.
https://www.voiceamerica.com/episode/108770/the-bia-and-its-relevance-to-disaster-recovery
Enjoy!
The StoneRoad Team
We are happy to announce that ebook / Kindle versions of all books by StoneRoad founder A.Alex Fullick, are now available from Amazon.com (and other Global Amazon sites).
We hope these information sources help you with your Business Continuity / Disaster Recovery Program efforts. Keep your eyes open for more BCM / DR information sources coming from A.Alex Fullick and StoneRoad.
Happy planning!
Regards,
The StoneRoad Team.
PS: Congrats boss! 😉
© StoneRoad 2015
A.Alex Fullick has over 18 years’ experience working in Business Continuity and is the author of numerous books, including “Heads in the Sand” and “BIA: Building the Foundation for a Strong Business Continuity Program.”
We’re so happy to announce the new book release by StoneRoad founder, A.Alex Fullick. Checkout the press release below. For purchase details go to http://www.stone-road.com of http://www.amazon.com.
Congrats boss!!
***************************
Alex Fullick wants you – and your business – to succeed. Better yet, he wants you to flourish beyond your wildest dreams. But what Alex Fullick knows (and what you may not yet know) is that business success doesn’t come out of the blue, or on a whim or stroke of luck. You have to plan for business success, not only for the anticipated good times of strong sales, revenues and profits, but also for the difficult days when a sudden disaster strikes. It can – and does – happen.
Welcome, then, to the world of Business Continuity Management (BCM), the world where BCM expert Alex Fullick resides. Over the years, he has seen it all – and the one key conclusion he’s reached is that businesses with a plan to deal with significant disruptions and disasters are generally the ones that emerge from the situation stronger and with their operations intact. The reverse is just as true: an organization without a continuity plan is taking an enormous risk, one that has the potential to destroy the company and lay waste to years of hard work.
Fullick acknowledges that, to most eyes and ears, the very notion of “Business Continuity Management” is a term that might cause the ears to shut down and the eyes to glaze over. It may be a dry topic, rather lacking in sex appeal, but it is also a very important cog in your business-planning machine. Simply put, if you are a business owner or key manager, you need to know exactly what you will do when disaster strikes.
Fullick’s most recent planning guidebook is entitled Business Impact Analysis: Building the Foundations for a Strong Business Continuity Program, takes a detailed look at the steps a business owner needs to take to gather the information required to create and manage a strong business continuity program. The BIA, in Fullick’s view, is the foundation upon which a business continuity program is built; it follows, then, that a proper Business Impact Analysis requires strength and depth and that its content must fully reflect the operational and cultural needs of your organization. There is no single cookie-cutter approach that can be applied to each and every business operation.
This book should be required reading for business owners and senior corporate officials, not only because the subject is itself of vital importance, but also because Fullick lays out his BIA foundation in a straightforward contextual manner that is both appealing and highly informative. Business Impact Analysis is a critical building process – and Fullick provides the tools required in an easy to follow systematic approach so that organizational leaders can use the BIA process to its very best advantage.
*****************
Alex Fullick is the founder and managing director of StoneRoad, a business consultancy based in Southern Ontario that specializes in a process known as Business Continuity Management (BCM). Fullick published his first work in 2009 entitled Heads in the Sand; he followed that up with Volumes 1 and 2 of Made Again. Business Impact Analysis is his fourth publication with two further publications in the works. In his free time, Fullick is an avid curler and hiker.
Business Impact Analysis: Building the Foundation for a Strong Business Continuity Program
by A. Alex Fullick
ISBN: 9780981365749
$19.99
For more information visit: http://www.stone-road.com
While in China I had an interesting conversation with a gentleman from China (he spoke English). Our main topic was Emergency Management but as we conversed, he kept making note of a few things related to Crisis Management and each one seemed to begin with the letter “C”. I don’t know if it was something that was intentional or if it was something that was just coming across due to the language difficulties between us, which I didn’t find that difficult by the way. Anyway, I thought I’d make note of them and provide a description of what he was getting across.
In every crisis, disaster or emergency situation, which he was defining as a larger community based disaster such as an earthquake (hey, he was part of the Great Sichuan Earthquake of 2008, China). Listening to him was fascinating, as he was actually there and a part of the recovery and coordination efforts related to the massive Chinese earthquake that killed 10’s of thousands – if not more. So here are the 6 C’s of Crisis Management – and I haven’t put them in any specific order in case you’re wondering…
I liked what he had to say overall and was busy in the back of my mind comparing his thoughts and comments to BCM and how he was also describing the crisis management component of BCM. I know his perspective was large grander but the principles were all the same. I could go on and on into more detail but I have a 2nd and 3rd book to complete first – maybe this topic will make it on the list of other items to write about (I’ve a list of 11 books so far…).
I think I should add that after our discussion he was presenting at the conference I was attending in Beijing (The International Emergency Management Society – TIEMS) and he only seemed to make note of 4 C’s. But then again I was listening to his speech through a translator and he may have said all 6 from our discussion but the translator may have missed it. May be the 2 C’s were ‘Lost in Translation’ ha ha
**NOW AVAILABLE**
The new book by StoneRoad founder, A.Alex Fullick, MBCI, CBCP, CBRA, ITILv3, “Heads in the Sand: What Stops Corporations From Seeing Business Continuity as a Social Responsibility.” Available at www.stone-road.com **
Recently I attended a great conference on a subject connected to the Emergency Management and Preparedness industry. It was quite informative and as I always try to do, left with greater knowledge than when I arrived; always taking with me information that can help boost any potential gaps in Business Continuity Management, Disaster Planning & Management, Crisis Communications and Emergency Management. It certainly did provide some great insights.
However, I found that due to many of the attendees and presenters – many of which were scientists and researchers – the message they were trying to convey sometimes got lost during their presentations. It was because they were incredibly intelligent and brilliant in their thinking, they could not speak to the audience; they were speaking at the audience. Often, many of them had the same end-message, where governments and organizations need to step up and take their topics seriously but it got me thinking; if I can’t understand some of what is being said – and I’m in the industry – how are governments and organizations going to take the message(s) seriously? They won’t be able to because they aren’t able to understand the message.
So I started writing some notes that would inevitably help presenters when speaking or presenting in front of others. If you can manage a few of these your message will be better received – and understood.
1. No Gaps: Don’t leave anything out of the message you’re trying to convey. Make sure you state the past experiences and state of the organization as well as your desired end state. An author doesn’t tell half the story or leave anything out; at some point the entire story is there for the reader. This must be true to BCM/DR/ERM; tell the entire message you’re conveying.
2. Verbiage to a Minimum (Slides): If you’re going to use PowerPoint slides, don’t overload them with tons of verbiage. Simply keep this in mind; do you want the audience to listen to you or read the slides, ignoring you? Choose wisely.
3. Not Just Data / Facts and Real Examples: Providing a ton of numbers won’t help get your message across – unless you’re an accountant. Since that’s not always the case, data – too much of it – will only get people to think of something else while they wait for you to finish your talk. Provide real example – even some from you own corporation – that illustrates your comments and position. Even provide good (and bad) examples from your competitors because if they’ve had a bad experience, which you can learn from – that’s the best example you can use.
4. Know the Value of BCM: If you’re going to present the good points of BCM to Senior Executives, really think through the value that BCM will bring to the organization. Too often it’s thought of as an expense but if you’ve thought through how it adds value to the organization, then you’re offering something that executives will listen to and buy into to.
5. Know the Stakeholders: When presenting in from on Senior Management, many believe that they are the stakeholders. Well, as with other internal resources (i.e. employees) that’s correct though they aren’t the only stakeholders. Remember to think of external partners, vendors and suppliers; they are stakeholders too and if they have a disaster your organization is impacted. If you have a disaster, they have an impact upon you and these dependencies must be understood by executives.
6. Acronyms: Simply put, people aren’t automatons or robots so don’t speak like one. Not everyone knows what they mean and with so many acronyms around these days, you could use one that has a completely different meaning than what you intend. If that happens, you’ve lost your audience because they simply don’t understand you. So if you’re speaking your language make sure you translate your words so they understand you.
7. Use of Assumptions: Many people forget that assumptions are those things you believe to be true; either in a disaster, during planning or in some other area. If you start quoting assumptions – especially in front of executives – make sure you investigate your assumptions first. And those you can’t clarify, make sure that during your planning efforts you either prove they are correct or prove them wrong. In the end, if you don’t clarify your assumptions, you could cause major headaches when a disaster occurs.
8. Be Relevant: Speak to your industry and your organization. Yes, some examples may represent others but stick with what you’re really after; getting BCM/DR/ERM buy in from your own organization. If you speak too much about others – especially other industries other than your own – you’re not being relevant at all. You’re wasting time – yours and theirs.
9. The Right Presenter: If you don’t know how to present or don’t know how to present, then get someone who is. You can still be there to answer questions and coach them ahead of time but if you’re not the right person to get the message across, get someone who is. It will make a huge difference if the message comes across with confidence rather than coming from someone who shows insecurity and stutters/stammers through the presentation. Feel free to join a Toastmasters group to help build your presentation skills.
We all want our presentations to be understood and welcomed and we have to know how to present our ideas effectively. If we don’t learn how to do that, we might end up with BCM being pushed to the backburner so make sure you get their attention right from the start; it could end up being the only opportunity you get.
© StoneRoad Inc
**NOW AVAILABLE**
“Heads in the Sand: What Stops Corporations From Seeing Business Continuity as a Social Responsibility” and “Made Again Volume 1 – Practical Advice for Business Continuity Programs”
by StoneRoad founder, A.Alex Fullick, MBCI, CBCP, CBRA, ITILv3
Available at http://www.stone-road.com, http://www.amazon.com & http://www.volumesdirect.com
StoneRoad is happy to announce that we now have more BCM / DR document templates available for purchase from our shop at www.stone-road.com. We’ve said it before and we’ll say it again; everything we do is to help you and your corporation move forward with your Business Continuity / Disaster Planning programs. To help with that, we’ve now got the following document templates available:
a) Business Impact Analysis (BIA)
b) BCM/DR Test-Exercise Scope Template
c) BCM/DR Test-Exercise Project Change Template
d) Operating Unit Business Continuity Plan (BCP) Template
Each comes with built in ‘how-to’ notes so that you can work your way through the documents and help build your program. Each is build in a modular format so you can either copy/paste components when you need more room or delete components when you don’t.
We’re working on more templates for 2013…so we’ve only just begun to give you tools you need.
Check things out at www.stone-road.com.
Happy planning!
The StoneRoad Team
We’re happy to announce that StoneRoad founder A.Alex Fullick will be presenting at the 2013 Australia & New Zealand Disaster and Emergency Management Conference in Brisbane, Australia (May 29-31, 2013). The topic of discussion will be based on Business Continuity Management (BCM) and Social Responsibility.
The conference is sure to be a great experience, full of intesting presentations by knowledgeable professionals from many diverse industries and backgrounds.
For details on the conference, checkout the website at http://anzdmc.com.au/.
We hope to see you there!!
Regards,
The StoneRoad Team
WIN A FREE BCM/DR PROGRAM EVALUATION!! Find out where you really stand.
We have decided to run a great contest here at StoneRoad: Purchase a book from our founder, A. Fullick, directly from the StoneRoad website (www.stone-road.com) , your name (and company) will be entered into a draw for a FREE Business Continuity Management (BCM) program evaluation. The more copies you purchase – of any book or combination of books – the more entries your get and the greater your chances.
Oh, and did we say it’s open to EVERYONE AROUND THE WORLD !! How’s that for confidence in what we do!
So, head over to the StoneRoad website for details and good luck!! www.stone-road.com
This is only valid for books sold through the StoneRoad bookstore (https://stone-road.netfirms.com/cart/); purchases from any other retail outlets (online or otherwise) are not eligible. If you have any questions, email inquiries@stone-road.com.
GOOD LUCK!!
Regards,
The StoneRoad Team
“Failure isn’t about falling down, failure is staying down” – Marillion
“Procrastination is the art of keeping up with yesterday” – Buddha
You could win a FREE BCM Program Evaluation.
For details go to www.stone-road.com. Good Luck!!
*********************************************************************************************************************
In simple terms, the Recovery Point Objective (RPO) is the maximum tolerable period in which data may be lost from an IT service/system outage or disruption, as caused by a disaster or other incident. For example, if you take overnight backups, the recovery point objective will often be the end of the previous day’s activity. This means that when a disaster occurs, business units can either agree to have some level of data loss, which is what will happen, or choose to have no data loss what so ever. If the latter is the case and no data loss is acceptable, then Technology Restoration & Recovery Plans and related strategies must be developed to meet that need.
Too often, the RPO is identified in the BIA and is captured as a question asked of business unit representatives; what is your expected loss tolerance or what is your RPO? I’ve never met a single department manager that didn’t say they could tolerate any data loss. In fact, it’s almost a given that business units won’t allow for any data loss, even when systems are not available under dire situations. Business units can request a desired RPO – usually at not loss or 0 hours – but the business unit isn’t the one to drive this…at least not at first.
I’ve stated before in other posts that the Technology department should go through the BIA process, as they aren’t immune to outages due to disasters, pandemics and other crises. It’s the technology department that should be identifying the RPO, as it currently stands. Business Units may state what they want the RPO to be but it’s the IT department that states what it is. IT is responsible to take stock of the current technology restoration and recovery procedures and provide the corporation with the RPO; what it would be if a disaster occurred that day.
Misconception
Identifying the RPO can expose some misconceptions with the expectations many have and what the corporation believes to be in the TRP. If you ask most business managers, they assume that data and systems will be available when they need it. Sure, IT performs backups of systems and data and when a user accesses a system to obtain information, it will be there – and it’s always current. That may be true but that means that backups are performed in real-time, which is rarely the case. Only the multi-national corporations that have money to spend can build mirrored systems and built-in redundancy – though that’s becoming something rare these days based on the current economic climate.
If a disaster occurs and backups are only performed once every 24 hours, then during a disaster the data that is recovered is only as good as the last completed – and accessible – backup. That means an entire day can go by where data is manipulated and updated by users but if a disaster occurs, all that data will have been lost because the backup hadn’t occurred yet. So even though the business unit wants zero loss in data, they will automatically be set back by 24 hours – will have lost 24 hours of work. The RPO is 24 hours based on the current technology strategy.
If that is the case and business is unwilling to accept the RPO – and loss of data, then technology must request resources to amend the strategy. Then appropriate actions are taken. This could be to reconfigure current technology restoration and recovery strategies by acquiring new (or more) equipment; reducing the time of backups from once every 24 hours to 12 hours (or less) and other strategy implementations. All intended to meet the accepted and approved RPO.
No one wants too loss data. No one wants to experience a disaster. Still, when a disaster occurs, the RPO (and related Recovery Time Objectives (RTOs)) is what the corporation is going to use to build business continuity plans, technology recovery plans and any crisis management (especially PR and Media plans).
The point when data and systems are expected is the point upon which the corporation will be judged. If they aren’t up and running by the time they’ve stated and have data available when they expect it – and haven’t lost any of it – the public and any partnerships will consider the corporation to be untrustworthy and unable to manage negative situations. The RPO isn’t just the point at which data is last available or the point at which it is current but it’s also the point the point that a corporation must be able to do business – on some level. This is because client will want to know that their information is safe and hasn’t been compromised – or lost – because of the disaster. If it has, the negative perceptions of the corporation will begin.
The BIA helps identify the gaps here and if lucky, the IT department will get some extra funding to ensure that RPO’s and RTO’s can be met. So always remember, the RPO is more than just a point in time; it’s a time that makes a point.
**NOW AVAILABLE**
“Heads in the Sand: What Stops Corporations From Seeing Business Continuity as a Social Responsibility” and “Made Again Volume 1 – Practical Advice for Business Continuity Programs”
by StoneRoad founder, A.Alex Fullick, MBCI, CBCP, CBRA, ITILv3
Available at www.stone-road.com, www.amazon.com & www.volumesdirect.com
Well, we have decided to run a great contest here at StoneRoad:
Purchase a book from our founder, A. Fullick, directly from the StoneRoad website (www.stone-road.com) , your name (and company) will be entered into a draw for a FREE Business Continuity Management (BCM) program evaluation. The more copies you purchase – of any book or combination of books – the more entries your get and the greater your chances. Oh, and did we say it’s open to any person and corporation AROUND THE WORLD !!
How’s that for confidence in what we do?!
So, head over to the StoneRoad website for details and good luck!! www.stone-road.com
This is only valid for books sold through the StoneRoad bookstore (https://stone-road.netfirms.com/cart/); purchases from any other retail outlets (online or otherwise) are not eligible.
If you have any questions, email inquiries@stone-road.com.
GOOD LUCK!!
Regards,
The StoneRoad Team
“Failure isn’t about falling down, failure is staying down” – Marillion
“Procrastination is the art of keeping up with yesterday” – Buddha