Development of a BCMS with action plan for group-wide implementation

Background

Due to the increased legal requirements in the KRITIS sector and the historically strongly grown structures in the company, the customer saw the need to establish a standardised BCMS. The aim was to ensure business continuity and proactively identify and manage potential threats and hazards. A catalogue of measures was to be developed, considering the draft of the KRITIS umbrella law.

Solution

 Our analysis process began with a thorough review of the existing documentation to identify the existing BCM principles.

Based on the analysis, we developed a comprehensive BCM foundation process that considers the company’s specific requirements and risks. The implementation of this process resulted in a customised BCM manual based on the requirements of BSI Standard 200-4, which meets the company’s specific requirements.

In the next step, we carried out detailed process analyses with the process descriptions of the division’s main activities. The aim was to understand the processes in their entirety to identify critical resources and process steps.

The information gathered served as the basis for us to create a comprehensive risk analysis with a resource cluster, considering a worst-case scenario for each resource.

Next, we created a standardised catalogue of measures, considering the draft of the KRITIS umbrella law, to enable target/actual comparisons. We developed a flexible portfolio of measures based on the specific requirements and created a phase plan that provided a clear roadmap for the implementation of the BCMS throughout the company.

Our services

CREATION OF A BCM MANUAL

PREPARATION OF A RISK ANALYSIS WITH RESOURCE CLUSTER

CARRYING OUT PROCESS ANALYSES AND PROCESS DESCRIPTIONS FOR TIME-CRITICAL PROCESSES IN THE BCM CONTEXT

DEVELOPMENT OF A STANDARDISED CATALOGUE OF MEASURES, TAKING INTO ACCOUNT THE DRAFT OF THE KRITIS UMBRELLA LAW

MORE PROJECT