Find out more
MY SERVICES
I have a range of services available that can help you whether you are looking to grow your resilience, or whether you have a specific area to strengthen.
Scroll down to see more.
A RESILIENCE HEALTH CHECK
The first stage of the review will identify the gaps in your overall resilience where sensible investment in time and resources can make the biggest impact.
The second stage of the review will highlight the actions to start plugging those gaps, building resilience and then sustaining it.
A final report will provide recommendations and a plan of action to build your resilience.
A ONE DAY OR THREE DAY HEALTH CHECK IS AVAILABLE.
The second stage of the review will highlight the actions to start plugging those gaps, building resilience and then sustaining it.
A final report will provide recommendations and a plan of action to build your resilience.
A ONE DAY OR THREE DAY HEALTH CHECK IS AVAILABLE.
BUSINESS CONTINUITY PLANNING
Business Continuity is an important component of a resilient system. You need a plan in place to deal with incidents. The plan needs to be regularly tested across your business. Detailed bespoke business continuity support will include the following:
- Development of a Business Continuity Management System
- Policy and programme development
- Embedding Business continuity within an organisation
- Analysis including Business Impact Analysis
- Threat analysis
- Supply chain analysis
- Design of Business Continuity plans
- Implementation
- Validation.
CRISIS AND INCIDENT MANAGEMENT
A major disruption to your business can rapidly become a crisis. Usually a crisis will be unexpected and hard to manage. It is important to plan how you would handle a crisis before one actually occurs - planning and responding at the same time is a bad idea.
My analysis, plans and training can help support your crisis planning. In particular:
- Developing incident management plans
- Communications plans for dealing with incidents - dealing with the press, staff and suppliers
- Developing exercise plans
- Exercising and lessons learnt
PHYSICAL SECURITY
Physical security is all about keeping your staff, your assets and your building safe. This is not just the building where you work, but the safety of your staff wherever they are working, and the company assets they may be carrying or using.
I can provide advice on all aspects of physical security, including:
- Safety for you and your staff in the office;
- Safety for you and your staff whilst working or travelling out of the office;
- Restricting access to both your information and your building only to those who need it
- Keeping your assets and your building secure.
- Responding when something goes wrong
INFORMATION SECURITY AND DATA PROTECTION
Information is one of the key assets for your business, and personal information will be covered by Data Protection law. Information is what helps your business to thrive. Information must be used correctly and protected properly throughout its life, from creation through storage to disposal.
Good information security and Data Protection includes:- Knowing what information you have and what it covers
- Protecting it and keep it secure
- Understanding the importance and sensitivity of your information
- Planning and respond if something goes wrong.
RISK MANAGEMENT AND ANALYSIS
A major part of resilience is identifying risks to your business. Once the key risks are identified and addressed then you can begin to identify additional mitigation. With no mitigation of risk, not only is your business at risk but potentially the health and wellbeing of your employees. Detailed advice on risk mitigation techniques and strategies is available covering:
Contact Me
- Threat Identification - to get a better understanding of the types of threats that could impact on your business.
- Risk Analysis - including your supply chain. An analysis will work to understand your key business processes, and identify the individuals needed to make these processes work. The output from this stage will be a business impact analysis to see how threats would impact a business.
- Managing Risk - Risk management is a continuous process and if not embedded into your business any attempts to build resilience will fail. This process considers whether you hold regular reviews of risk, do you have a risk appetite, and who has ultimate responsibility for making resilience happen?
CYBER SECURITY CULTURE
Good IT security is much more than relying on technical solutions as these can only go some way to protecting you. There are a range of things you should make sure all of your employees do, whether they consider themselves “tech savvy” or not.
No matter what IT you use, or who provides a service, a good security culture within your business is vital to reduce the risks. Everyone should understand that they could be a target for example, of phishing emails, and a culture needs to be embedded in the business to enable this. Detailed advice on building a cyber-savvy culture in your business includes:
- Focusing on people as being key to build security;
- identifying simple technical solutions that can reduce the risk where you don't have detailed technical IT support;
- identifying the risk to your IT, understanding what mitigation is available
- planning and responding if something goes wrong.