Business Continuity Management
We'll help you plan for, and respond to, your worst day in the office.
Are you a DISP member looking to uplift to E8 Maturity Level 2?
We'll help you plan for, and respond to, your worst day in the office.
How we can assist:
Your organisation’s capacity to respond to a business impacting event is critical to ensuring the continuity of operations of the business throughout, and post, that event. Tesserent’s Business Continuity Services in New Zealand are focused on the loss of resources and the impact of the event, as opposed to the causation of the event. We work with you to critically assess the impact of the loss, and identify the recovery and management actions required to respond.
Cybersecurity services can include the following:
Our assessments and testing programs are conducted in alignment to the principles of BCM such as ISO22301, AS/NZS 5050 and CPS232.
IT Disaster Recovery focusses on the recovery of Information Technology systems following an event.
Your organisation’s capacity to recover the Information Technology operations, systems and data within defined timeframes, is critical to ensuring the continuity of operations of the business throughout, and post, any business impacting event. We’ll help you critically assess the impact of the loss and determine the recovery and management actions required to respond. IT Disaster Recovery services in New Zealand include:
Business Continuity Management (BCM) is a proactive approach to ensure that an organisation can continue its critical business functions during and after a disruptive event, such as a cyberattack.
BCM is important in cybersecurity because cyberattacks can disrupt critical business functions, leading to significant financial losses and reputational damage. BCM helps organisations to mitigate the impact of cyberattacks and minimise the downtime of critical business functions
The key components of a BCM plan in cybersecurity include risk assessment, business impact analysis, incident response plan, crisis management plan, communication plan, and testing and training.
Risk assessment is a crucial component of BCM because it helps organisations to identify potential threats and vulnerabilities to their critical business functions. This information can be used to prioritise risk mitigation efforts and develop a comprehensive BCM plan.
The purpose of a business impact analysis (BIA) in BCM is to identify the critical business functions and their dependencies, and to quantify the potential impact of a disruption. This information is used to prioritise recovery efforts and develop contingency plans.
The incident response plan (IRP) is a set of procedures that guides an organisation's response to a cybersecurity incident. The IRP helps to minimise the impact of the incident and restore critical business functions as quickly as possible.
The crisis management plan (CMP) is a set of procedures that guides an organisation's response to a major disruptive event that threatens its operations, reputation, or stakeholders. The CMP helps to minimise the impact of the event and restore normal operations as quickly as possible.
The communication plan is important in BCM because effective communication is essential during a disruptive event. The communication plan outlines how information will be disseminated to internal and external stakeholders, including employees, customers, and partners.
The purpose of testing and training in BCM is to ensure that the BCM plan is effective and up-to-date. Testing and training help to identify weaknesses in the plan, improve the response capabilities of personnel, and build resilience to future disruptions.
A BCM plan should be reviewed and updated regularly, at least annually or whenever significant changes occur in the organisation or its environment. This ensures that the plan remains relevant and effective in mitigating the impact of cyberattacks and other disruptive events.
Tesserent is a full-service cybersecurity and secure cloud services provider, partnering with clients from all industries and all levels of government. Let’s talk.