10 Things you should know about Operational Resilience
- Operational Resilience is the ability of an organisation to continue to deliver critical operations throughout a disruption.
- Operational Resilience does not replace Risk Management nor Business Continuity, it enhances them.
- Operational Resilience is an outcome of Risk Management, Information Security (including Cyber), Incident Management, Business Continuity, and IT Disaster Recovery.
- To succeed, a Resilience Plan needs appropriate Governance (i.e. a Policy, an agreed Scope, Responsibilities, Resources, and Reporting).
- Sources of disruption include failures of People, Processes, Technology, Facilities, and Information.
- You need to identify all critical functions / activities and their dependencies (aka Business Impact Analysis).
- Consider setting two ‘Impact Tolerance’ levels: one in which the consumer / customer is adversely affected; and another in which the organisation is affected in an intolerable way.
- Resilience requires four abilities:
- Anticipation – of longer-term changes,
- Monitoring – leading indicators (KRIs),
- Responding – to a disruption, and
- Learning – from events and scenario testing.
- Scenario Testing is a great technique for validating response plans and identifying gaps.
- Resilience is a journey from ordinary to excellence and the milestones are levels on a maturity model.
Recent News
The Golden Thread – Governance, Risk & Compliance
A joined-up approach to governance, risk and compliance (GRC) is something all GRC practitioners aspire to – but, ...
Read More Dark Patterns, Hidden in Plain Sight
If you’ve spent any time on the internet, chances are you will have experienced ‘Dark Patterns’ and may ...
Read More Over 100 Credit Unions Now Using CalQRisk
CalQRisk now has over 100 credit unions actively using their Governance, Risk Management and Compliance solution across the ...
Read More Governance, Risk and Compliance – An Integrated Process
Three-letter acronyms. Love them or hate them, we can appreciate that they are convenient shortcuts. Many of us ...
Read More Paralympics Ireland choose CalQRisk to streamline their Governance, Risk & Compliance efforts
Paralympics Ireland has recently implemented the CalQRisk solution to streamline their Governance, Risk Management and Compliance efforts. Paralympics ...
Read More Changes to ISO 27001
ISO 27001 is an international standard that outlines the requirements for an information security management system (ISMS). It ...
Read More DORA – What you need to know
The purpose of the EU’s new Digital Operational Resilience Act (DORA) is to ensure the safety and security ...
Read More ILCU and CalQRisk form Alliance
The Irish League of Credit Unions (ILCU) has collaborated with CalQRisk to offer a best-in-class governance, risk management ...
Read More Top Cyber Risks in 2023
In 2023, there are several cyber risks of which organisations and individuals should be aware. These risks can ...
Read More 10 Things to Ask When Outsourcing / Choosing a Supplier
Many organisations choose to outsource critical functions or services to third parties/contractors. However, outsourcing the work does not ...
Read More