What is Business Continuity?

The Fundamentals of BCP

Business COntinuity Plan Illustration

Before completely rewriting your Business Continuity Plan, it helps to understand the fundamentals of business continuity. I put together the following FAQ to give you a better understanding of the underlying information and provide a little more context, and hopefully answer some of your lingering questions.

Business Continuity FAQ

A “Business Continuity Plan” (BCP) is a documented plan that outlines the potential impact of a crisis and sets in place policies designed to help the organization recover. While disaster almost never gives us enough forewarning, a Business Continuity Plan is best created before a crisis and should always include the company’s key stakeholders. The primary goal of a BCP is to shield workers and assets for the duration of an emergency.

According to sites like Wikipedia this often involved analytical actives like assessing the likelihood of a particular crisis occurring - and its possible frequency determining its possible impact on your operations This kind of analysis should help you to identify which business functions are essential to day-to-day business operations.

Minimize the potential impact of crises Once you've identified the key risks your business faces, you need to protect your business functions against them.

An emergency is any scenario where a business can no longer operate as usual. This may include a natural disaster like a fire, flood, or tornado, but may also include events like a power outage, bomb threat, compliance breach, active shooter, cyberattack, employee injury, or an interruption within the chain of command or supply chain. Every business needs to review their ability to respond to threats proactively, and prepare a BCP to ensure minimal disruption, and remain competitive following a threat.

During a crisis, customers and employees expect your organization to have a plan and be able to execute in a way that protects people and property. During a disaster, your organization will turn to the business continuity plan to maintain operations. Either way, the decision-making process for the management of the crisis or disaster is generally shouldered by the senior management team. What can be confusing is the overlapping activities for the crisis response and continuity of operations. It is good to begin any dialogue from the definition of a crisis and disaster. Therefore the first question to ask when the incident occurs, "Is this a crisis or a disaster?"

Business Continuity Plans are complicated and vary from company to company. You must tailor your efforts to best fit your organization’s requirements. When creating your plan it is always advisable to seek outside counsel, and input from various subject matter experts outside the organization. At Chesley Brown, we help guide clients through this process to ensure they make the best decisions based on objective information. Here are some of the most common things companies look for when building their BCP:

A Business Continuity Plan may include:

  • Protocols for coordinating with local emergency personnel
  • Detailed instructions of where to go during an emergency
  • Goals and objectives
  • Information on data backups and site backups
  • Key roles and responsibilities
  • List of tasks required to keep operations moving
  • Detailed list of your most critical assets
  • Plan maintenance protocols
  • Policy, purpose, and scope of plans
  • Risk mitigation plans

Business Continuity Plans are an essential part of any business. Threats, disruptions, and failures will cause a loss in revenue and higher prices to eventually have an effect on growth. Businesses can not rely on insurance alone, as insurance frequently only covers a fraction of the cost associated with a disaster, not to mention reputational damage. It's essential to plan thoroughly to shield yourself from the impact of potential crises - from fire, flood or theft to IT system failure, restricted access to premises or illness of key staff.

During a crisis, your organization is expected to execute the crisis management plan and during a disaster, the business continuity plan. If, however, you've got a large quantity of consumers/personnel and a public facing set of services A Crisis Management Plan (CMP) is a fundamental part of your BCP.

A proactive plan benefits businesses in 3 ways:

  1. The company is better prepared to handle a crisis.
  2. The business can continue providing service following a disaster.
  3. The business can maintain a better reputation, image and revenue stream.

Emergency Preparedness and Business Continuity Emergency preparedness, business continuity, crisis response, emergency management: These and other related terms are often discussed as if they are synonyms that all refer to responding to and mitigating a crisis event.

It's important for organizations to understand the difference between emergency preparedness and business continuity to ensure that they are correctly accounting for each. Businesses that have both emergency preparedness and business continuity departments are already a step ahead, since these are distinct functions that can both make or break the success of a company. Be sure to give additional consideration to a Disaster Recovery Plan.

A Disaster Recovery Plan deals with the recovery procedures put in place for when a disaster strikes. A Disaster Recovery Plan documents the procedures, policies and actions that limit the disruption and the steps to be taken for recovery.

COVID-19: How a business continuity expert helps in a crisis

What would happen to your most vital infrastructure and information systems if a disaster were to hit this very second? Are you fully prepared? The novel coronavirus outbreak has revealed in stark detail how unprepared many organizations are to handle a crisis. Luckily, our experts are here to help. By applying over thirty years managing risk for organization of all sizes in both the public and private sectors; our team has the global expertise and resources needed to safeguard your business's key operations regardless of complexity, geography, and budget.

Many business owners struggle to fully grasp the myriad risks they face. That’s why we’ve built a framework that teaches businesses how to anticipate and navigate risk before it becomes a crisis. Be sure to download your FREE copy of “The 7 Step Guide for Building Business Continuity Plans that Actually Work” for our complete list of strategies for preparing for and navigating a crisis effectively.

 

Contact us today to discuss how Chesley Brown can help your organization anticipate and navigate risk before it becomes a crisis.

risk management

Risk Takers #7 Jack Barsky – Former KGB Spy – Now Available

By Chesley Brown | August 25, 2020

As part of our on going conversation around corporate espionage, we decided to sit down with a real KGB spy for some insider knowledge. In this week’s episode, Brent sits down with author and former…

Read More

How to Prepare for Economic Risk: Best Strategies for Building Resiliancy

By Chesley Brown | July 21, 2020

Preparing for Economic Risk How to position your business for economic risk If there is one aspect of business that is certain, it’s uncertainty. It might also be the understatement of the year to say…

Read More

The Risk Takers Podcast Series Launches Today!

By Chesley Brown | July 9, 2020

Chesley Brown Launches the Risk Takers Podcast Series Security Risk Management experts Chesley Brown Companies today announced the launch of “The Risk Takers Podcast Series” — a highly bingeable podcast hosted by veteran risk management…

Read More
The 7-step Guide for Building Business Continuity Plans
(That Actually Work)