Products and services

Business Continuity Management - BCM

Business Continuity Management is a management process designed to identify potential impacts of incidents jeopardizing the organization’s operation and to define the basic framework for improving the organization’s abilities to react to such incidents correctly and successfully. Such management process also gives the organization no small competitive advantage.
We provide complex BCM services as well as partial solutions in individual stages of the BCM life cycle. We seek to “start up” – establish an internal BCM process for our customers by means of an initialization project, and to develop it throughout its life cycle.

Activities and works in this sphere are developed as part of:

Business Continuity Planning (BCP)
Disaster Recovery Planning (DRP)

Within the BCM Implementation Project we provide the following:

1. BCM Program Management Initialization

Policy development – preparation of BCM guideline
BCM management preparation
Definition of roles and responsibilities for BCM
- BCM guarantor
- BCM manager
- BCM / DRP coordinator

2. Analytical work involved in the process of gathering information about the organization:
- Business Impact Analysis (BIA) having the following objectives:

identification of critical processes / business activities
determination of criticality of processes and subsequently of applications/system inevitable for such processes
identification of potential impacts in the case of disruption of such processes
identification of requirements for recovery of processes at the minimum required level.

- Risk Identification and Risk Assessment (RA), having the objective of determining the risk level for individual assets and services

3. Definition of Emergency

4. Recovery Strategy Specification – at the organizational, process and technology levels. The recovery strategy clearly defines prerequisites stipulating a disaster as well as recovery principles and policies. It forms a basis for the development of plans.

5. Plan Structure Determination based on:

geographical structure
process map
organizational structure

6. Plan Development and Implementation – standardized recovery plan format includes:

number, version, name and date of the plan
name of the procedure in question
definition of sources necessary for the performance of the procedure:
- recovery teams and recovery team members’ contact data
- time frame for procedure performance
- technical support for the procedure
Logical and temporal order and description of individual activities
- number and description of the activity
- time frame for the performance of the activity
- person in charge of the performance of the activity

7. Plan Testing and Updating, having the following objectives:

verification completeness, feasibility and suitability of plans
evaluation of the performance of employees involved in the recovery process
evaluation of awareness level and adequacy of trainings
evaluation of coordination level between the internal and external teams, on the one hand, and product
and service providers, on the other hand
evaluation of backup locations and their fitness for backup operation

8. Training and Education at all levels:

increasing of the internal planning process awareness
education in the entire BCM field
constant rising of the involved persons’ knowledgeability
enhancing of BCM awareness in employees

9. Methodological Help focused on:

processing of internal legislative acts in the BCM field
help in allocating requested human resources for BCM – appointment of recovery teams (head of team, team member)

All work is carried out in line with the following regulations:
BS 25999:2006 Business Continuity Management – Part 1: Code of Practice
BS 25999:2007 Business Continuity Management – Part 2: Specification
ISO/IEC TR 17799:2005 Ch. 14: Business Continuity Management
Professional Practices for Business Continuity Planners NIST Special Publication 800-34 Contingency Planning Guide for Information Technology Systems