NFPA, Standard on Disaster/Emergency Management and Business Continuity Programs (2010 Edition) resource Standards and Guidelines OCEG Reviewed
This edition of NFPA 1600, Standard on Disaster/Emergency Management and Business Continuity
Why is GRC important? blog
I have been blogging about what GRC is, advocating the definition developed by the Open Compliance and Ethics Group, OCEG (see this and subsequent posts). But, I haven’t really talked about why the concept of GRC has value.
Business Continuity Maturity Model® (BCMM®) resource OCEG Reviewed
The Business Continuity Maturity Model® (BCMM®) is a free open access tool created to assist businesses in building and maintaining a sustainable BC program. New standards for business continuity are continuously emerging, pressuring BC managers to find a business continuity program diagnostic tool that is objective, consistent and repeatable.
Read more
FFIEC, Business Continuity Planning (2008) resource Agency Guidances OCEG Reviewed
The overall goal of this booklet is to provide guidance to the financial services industry about the importance of business continuity planning, which establishes the basis for financial institutions to recover and resume business processes when operations have been disrupted unexpectedly.
Read more
NIST, Computer Security Incident Handling Guide (2008) resource Agency Guidances OCEG Reviewed
Computer security incident response has become an important component of information technology (IT) programs. Security-related threats have become not only more numerous and diverse but also more damaging and disruptive. New types of security-related incidents emerge frequently.
Read more
Auditor Answers: Performing Post Mortems on Problem Events (2008) resource Articles OCEG Reviewed
The best-laid plans of mice and men go under the microscope when unexpected events put business continuity management to the test. Our expert auditor offers inside advice on what comprises a successful incident post mortem: when it should happen, who should participate, and what it should produce in the end.
By Dan Swanson, at IT Compliance Institute
Read more
SBA, Expect the unexpected: Prepare your business for disaster (2007) resource Agency Guidances OCEG Reviewed
This guide will help you prepare for a disaster and put your business in a position to survive a disruption. Though each situation is unique, any business can be better prepared if it plans carefully, puts emergency procedures in place, and practices for emergencies of all kinds.
Prepared by the SBA and Nationwide Insurance.
Read more
Practical Disaster Recovery Planning: A Step-by-Step Guide resource White Papers OCEG Reviewed
Good disaster recovery planning is about identifying those processes and resources that are truly critical, developing realistic recovery objectives for them, and then developing a plan that can achieve those objectives as simply and cost-effectively as possible.
Read more
