10 Things you should know about Operational Resilience
- Operational Resilience is the ability of an organisation to continue to deliver critical operations throughout a disruption.
- Operational Resilience does not replace Risk Management nor Business Continuity, it enhances them.
- Operational Resilience is an outcome of Risk Management, Information Security (including Cyber), Incident Management, Business Continuity, and IT Disaster Recovery.
- To succeed, a Resilience Plan needs appropriate Governance (i.e. a Policy, an agreed Scope, Responsibilities, Resources, and Reporting).
- Sources of disruption include failures of People, Processes, Technology, Facilities, and Information.
- You need to identify all critical functions / activities and their dependencies (aka Business Impact Analysis).
- Consider setting two ‘Impact Tolerance’ levels: one in which the consumer / customer is adversely affected; and another in which the organisation is affected in an intolerable way.
- Resilience requires four abilities:
- Anticipation – of longer-term changes,
- Monitoring – leading indicators (KRIs),
- Responding – to a disruption, and
- Learning – from events and scenario testing.
- Scenario Testing is a great technique for validating response plans and identifying gaps.
- Resilience is a journey from ordinary to excellence and the milestones are levels on a maturity model.
The Golden Thread – Governance, Risk & Compliance
A joined-up approach to governance, risk and compliance (GRC) is something all GRC practitioners aspire to – but, ...Read More →
Dark Patterns, Hidden in Plain Sight
If you’ve spent any time on the internet, chances are you will have experienced ‘Dark Patterns’ and may ...Read More →
Over 100 Credit Unions Now Using CalQRisk
CalQRisk now has over 100 credit unions actively using their Governance, Risk Management and Compliance solution across the ...Read More →
Governance, Risk and Compliance – An Integrated Process
Three-letter acronyms. Love them or hate them, we can appreciate that they are convenient shortcuts. Many of us ...Read More →
Paralympics Ireland choose CalQRisk to streamline their Governance, Risk & Compliance efforts
Paralympics Ireland has recently implemented the CalQRisk solution to streamline their Governance, Risk Management and Compliance efforts. Paralympics ...Read More →
Changes to ISO 27001
ISO 27001 is an international standard that outlines the requirements for an information security management system (ISMS). It ...Read More →
DORA – What you need to know
The purpose of the EU’s new Digital Operational Resilience Act (DORA) is to ensure the safety and security ...Read More →
ILCU and CalQRisk form Alliance
The Irish League of Credit Unions (ILCU) has collaborated with CalQRisk to offer a best-in-class governance, risk management ...Read More →
Top Cyber Risks in 2023
In 2023, there are several cyber risks of which organisations and individuals should be aware. These risks can ...Read More →
10 Things to Ask When Outsourcing / Choosing a Supplier
Many organisations choose to outsource critical functions or services to third parties/contractors. However, outsourcing the work does not ...Read More →