A Great Place to Start: The ISO 31000 Risk Management Guidelines
Every organization that is determined to get serious about risk management should know about ISO 31000. This set of risk management guidelines from the International Standards Organization sets out a smart, easy-to-implement […]
Be Ransomware Resilient: Know How to Operate Manually
A ransomware attack has the potential to leave your organization without its computer systems for days or weeks. Make your business ransomware resilient by figuring out how to perform your most mission-critical […]
What Service Providers Need to Know About Supply Chain Risk Management
Many service providers tune out talk about supply chain risk management since they think the issue only affects manufacturers and retailers. In fact, service providers are also vulnerable to vendor disruptions and […]
How to Help Your Organization Get Through a Ransomware Attack
Ransomware attacks are increasing in frequency and severity. As a business continuity professional, there are steps you can take before and during such an attack to help your organization get through with […]
The Big Three of Residual Risk
At most organizations, residual risk typically lurks in one or more of three areas. By bringing risk in these areas under control, you can go a long way toward making your organization […]
Think Defense: Learning from the Defense Dept. About Operational Risk
Business continuity professionals can learn a lot from the U.S. Dept. of Defense’s approach to operational risk management. In today’s post, I’ll summarize the DOD’s five-step approach to ORM and explain how […]
Checking It Twice: The Corporate Risk Mitigation Checklist
In recent posts, we’ve been talking about how important it is for organizations to reassess their risks as the economy opens up. Today, we provide a tool to help in doing that: […]
Driving Blind: The Problem with Skipping the Threat and Risk Assessment
Too many companies go straight from conducting a Business Impact Analysis to devising recovery strategies and building plans, skipping the step of conducting a Threat and Risk Assessment (TRA). In today’s post, […]
So You Want to Be a Risk Mitigator: 5 Tips to Help You Master the Craft
One of the most important roles business continuity professionals have is that of risk mitigator: a person who understands, manages, and educates others at the organization about risk. In today’s post, we’ll […]
The Risk Management Process: Manage Uncertainty, Then Repeat
This post outlines the risk management process —the steps every organization should go through regularly to protect themselves against the hazards of doing business. Every organization needs to do some type of […]
Don’t Just Hope: Choosing Strategies to Mitigate Risk
Once you’ve identified the risks facing your organization, you need to consciously select a risk mitigation strategy for each one. In today’s post, we’ll explain the four possible strategies and share some […]
Let’s Get Critical: Identifying the Vendors You Truly Depend On
Do you know how, in your non-business life, there is a difference between “friends” and “Facebook friends”? There is something similar in business continuity when it comes to third-party vendors. Your organization […]