Information Technology

<p style="text-align: justify;">A New Normal should be more like continuity enablement to all BAU processes, a big model like Operational Resilience, where resilience is embedded in each process and activities which aren't just critical or however also that help in running the BAU operations.</p><h2 style="text-align: justify;"><span style="font-size: 14pt;">Business Continuity Management (BCM)</span></h2><p style="text-align: justify;">Why do we need BCM?&nbsp;<br />Business continuity is an organization's ability to ensure continuity of their critical operations and core business functions should be completely operational or minimal impacted by a disaster or unplanned incident that takes critical systems offline at the same time.</p><p><img style="display: block; margin-left: auto; margin-right: auto;" src="https://kradminasset.s3.ap-south-1.amazonaws.com/ExpertViews/Mohitpic1.png" alt="Operational Continuity Management" width="685" height="207" /></p><p style="text-align: justify;">However, post-pandemic or what we call the New Ways of Working model, are we still thinking and running with Only critical operations and core business functions with 30% or 40% of continuity in this "New Normal," which was initially planned, identified, and assessed during our BCM lifecycle during crisis or remote working enablement?&nbsp;<br />The answer is "NO"!</p><h2 style="text-align: justify;"><span style="font-size: 14pt;">Operational Continuity Management</span></h2><p style="text-align: justify;">Every activity in an organization, driven by any business line, can be treated as a transaction. Whether the organization's core is an IT delivery service or financial institutes like Bank, Payment gateways, or supply chain management, every operational activity, process, movement, and agreement is a transaction.</p><p style="text-align: justify;">Hence, we should focus on operational continuity management with all functions, activities, operations, and actions with 100% capabilities in these new ways of working model, bringing all processes under the operational resilience umbrella.</p><p style="text-align: justify;">In a simple term, transaction or operational continuity-based continuity management is like BAU 2.0, where every single employee and team should embed business continuity standards and matrices into its day-to-day operations, and business continuity professionals should try to embed and put more focus on BAU operation's continuity with 100% remote working and work from anywhere including the Infra setup to achieve 99.99999% uptime of business/operations in "NEW BCP - BAU World."</p><p style="text-align: justify;"><span style="font-size: 10pt;"><em>This article was contributed by our expert <a href="https://www.linkedin.com/in/mohit-kharbanda/">Mohit Kharbanda</a></em></span></p><p style="text-align: justify;">&nbsp;</p><h3 style="text-align: justify;"><span style="font-size: 18pt;">Frequently Asked Questions Answered by Mohit Kharbanda</span></h3><h2 style="text-align: justify;"><span style="font-size: 12pt;">1. What does a good BCP look like?</span></h2><p style="text-align: justify;">Business Continuity Planning defines your organization&rsquo;s ability to keep running or recover during any crisis or unprecedented situation, e.g., pandemic, storm, or electricity failure. Any BCP process that gets reviewed, tested, and audit-ready regularly and has a consistent idea of critical activities/processes to be recovered by priorities under agreed RTO/ RPOs should be marked as a good BCP.</p><h2 style="text-align: justify;"><span style="font-size: 12pt;">2. What is the highest risk to business continuity?</span></h2><p style="text-align: justify;">The highest business continuity risk is not regularly testing or reviewing the defined process and document. It should be improved and enhanced regularly. One should look at and review current risks and situations, including the environmental or operational threats model.</p><h2 style="text-align: justify;"><span style="font-size: 12pt;">3. What are the steps in creating a business continuity plan?&nbsp;</span></h2><p style="text-align: justify;">The whole Business Continuity Planning goes through a specific step, beautifully marked under Preowned Standards: ISO 22301. Initiate the planning by defining the scope of BCP and what is the contest of the organization.&nbsp;</p><p style="text-align: justify;">This can be how the Leadership will act or report, define the planning, list down the complete support setup, define Operation which includes BIA, RA, Strategy planning, Recovery strategy, testing, afterward, how do you monitor and review the Performance Evaluation, how do you complete the whole activity which enhancement and improvement. These are just basic ideas on how BCP gets created. However, there are many challenges, including External / Internal audits.</p><p style="text-align: justify;">&nbsp;</p>