Course Outline
The certification promotes a hands-on approach to Business Continuity Management, making use of current standards, enabling candidates to make immediate use of the module on their return to their organisations.
1. Introduction to Business Continuity Management
- The need for Business Continuity Management
- The context of Business Continuity Management in the business
- Leadership and senior management commitment to Business Continuity
- Review of risk management fundamentals
2. Business Continuity Policy and Programme Management
- Business Continuity policy and programme (objectives and scope)
- Supply Chain Continuity
- Documentation
- An agreed Business Continuity Management policy
- Terms of reference for the Business Continuity Management programme
- Business impact analysis 2.4.4 Risk assessments
- Business Continuity strategies
- A Business Continuity training and awareness programme
- Incident management, Business Continuity, disaster recovery and business resumption plans
- A Business Continuity testing and exercise schedule
- Business Continuity service level agreements and contracts
- Secure off-site/dual site storage of vital information and materials
3. Understanding the Organisation (Analysis)
This section of the module describes how the Business Continuity manager sets about understanding the organisation and initiates the overall Business Continuity Management programme.
- Identification of Business-Critical Areas
- Terminology
- Maximum Tolerable Period of Disruption (MTPD), also known as Maximum Acceptable Outage (MAO)
- Recovery Time Objective (RTO)
- Maximum Tolerable Data Loss (MTDL)
- Recovery Point Objective (RPO)
- Minimum Business Continuity Objective (MBCO)
- Business Impact Analysis
- Continuity Requirements Analysis
- Threat and Vulnerability Assessments
- Horizon Scanning
- Risk Assessment
- Evaluation of Options
- Business Cases and Programme Sign-Off
4. Determining the Business Continuity Strategy (Design)
- Strategic Options - people, premises, processes and procedures, technology, information, supply chain, stakeholders, civil emergencies
5. Business Continuity Response (Implementation)
- Overall Incident Response Structure
- Types of Plan
- Incident Management Plans
- Business Continuity Plans
- Disaster Recovery Plans
- Business Resumption Plans
6. Exercising, maintenance and review (Validation)
- Exercising and Testing of Plans
- Maintenance of Plans
- Review of Plans
7. Embedding Business Continuity Awareness in the Organisation
- Overall Awareness
- Skills Training
NobleProg is a BCS Accredited Training Provider.
This course will be delivered by an expert NobleProg trainer approved by BCS.
The price includes delivery of the full course syllabus by an approved BCS trainer and the BCS CBCM exam (which can be taken remotely in your own time and is invigilated centrally by BCS). Subject to successfully passing the exam (multiple choice, requiring a score of at least 65% to pass) participants will hold the accredited BCS Practitioner Certificate in Business Continuity Management (CBCM).
Requirements
There are no formal entry requirements however, the candidate will require an understanding of information assurance.
Testimonials (5)
The trainer was very knowledgable and took time to give a very good insight into cyber security issues. A lot of these examples could be used or modified for our learners and create some very engaging lesson activities.
Jenna - Merthyr College
Course - Fundamentals of Corporate Cyber Warfare
Pentester skills what demonstrate teacher
Oleksii Adamovych - EY GLOBAL SERVICES (POLAND) SP Z O O
Course - Ethical Hacker
Emin was really engaging and enthusiastic, his knowledge succeeded expectations and allowed for questions at each portion.
Becky
Course - OSINT Practitioner Course (Advanced OSINT)
Questions, that helps me a lot to understand the characteristics of CRISC examination.
Masakazu Yoshijima - Bank of Yokohama, Ltd.
Course - CRISC - Certified in Risk and Information Systems Control
The instructor has a very wide range of knowledge and is committed to what he does. He is able to interest the listener with his course. The scope of the training fully met my expectations.