Any BCP standard should be viewed as the minimum required to keep a business running in the event of a catastrophic event, said Jeff Stern, principal consultant at Eagle Business Solutions, based in metro New York.

Continue reading Using BCP standards pays off for many organizations

Tags: Business Continuity, Standards

Work on the 2013 edition of NFPA 1600 “Standard on Disaster/Emergency Management and Business Continuity Programs” is well underway.

The technical committee met in Orlando in late March, 2011 to continue the research and development of what will become the sixth edition of the standard. The technical committee is also asking for public input for new content or revisions to existing text.

Complete details on the current edition and next edition status can be found at http://www.nfpa.org/aboutthecodes/AboutTheCodes.asp?DocNum=1600&cookie_test=1.

See Update on NFPA 1600 2013 Edition, by Donald L. Schmidt, ARM, CBCP, CBCLA, CEM for Disaster Resource Guide.

Tags: NFPA, NFPA 1600, Standards

The Australian Prudential Regulation Authority has recently released the draft of their proposed Business Continuity Management Standard.

Continue reading New Business Continuity Standard for Australia’s financial sector

Tags: APRA, Australia, CPS 232, emergency operations center, eoc, Prudential Standard CPS 232, Standards

Tags: ASIS, bsi, Business continuity standards, Standards

If your organization has a risk management function, you are aware of ISO 31000, Risk Management – Principles and Guidelines on Implementation, a standard released by the International Organization for Standardization (ISO) in 2009. But the question is: Are you sure your risk management initiatives adhere to this standard?

Continue reading Are you in compliance with the ISO 31000 risk management standard?

Tags: ISO 31000, ISO31000, Risk Management, Standards

This is a sample policy from Information Security Policies Made Easy, by Charles Cresson Wood.

Continue reading Sample InfoSec Policy – Computer And Communications Facility Location

Tags: charles cresson wood, information security policies, information security policies made easy, InfoSecurity, ISPME

The Business Continuity Institute (BCI)  has made available the latest version of a detailed, international survey of current legislation, regulation and standards that exist nationally and internationally for Business Continuity Management.

Continue reading Business Continuity Legislations, Regulations, Standards and Guidelines

Tags: bci, Business Continuity Institute, guidelines, international, legislation, Standards

Disaster Recovery Institute International’s Professional Practices for Business Continuity Planners should be required reading for every business continuity practitioner.

Continue reading Professional Practices for Business Continuity Planners

Tags: best practices, Disaster Recovery Institute International, DRII, professional practices, Standards

It seems that BCM standards, by themselves, are not necessary and may not even be useful. But demonstrated compliance with a standard is extremely useful, and a globally recognized standard used for consistent measurement is necessary to that end.

Continue reading A business continuity management standard would offer consistency

Tags: Business Continuity, Standards

The U.S. Commodity Futures Trading Commission (CFTC) proposed a regulation that would establish a recovery standard for designated contract markets (DCMs) and derivatives clearing organizations (DCOs) that the Commission determines to be critical financial markets in the event of a wide-scale disruption that affects such entities’ trading or clearing operations.

Continue reading CFTC Issues Proposed Business Continuity and Disaster Recovery Regulation

Tags: CFTC, Commodity Futures Trading Commission, DCMs, DCOs, regulations, regulatory

Interruptions to information technology (IT) system services can have a severe impact on an organization and its ability to carry out its basic functions. IT resources are essential to most business processes, and organizations depend upon information systems that operate effectively without serious interruptions. When organizations develop and maintain contingency plans for their IT systems, they can create a coordinated strategy to identify technical procedures and methods that will prevent most service disruptions and enable quick recovery should any disruptions occur.

Continue reading Contingency Planning for Information Systems: Updated Guide for Federal Organizations

Tags: exercise, federal, guidelines, I.T. DIsaster Recovery, National Institute of Standards and Technology, NIST, Standards, Testing, Training, TT&E