Embed Size (px)
Citation preview
1
GridResilience:BusinessContinuity,thestepafterdevelopinganEmergency
ResponsePlan
DennisV.Rose,MBA,CBCPDirector‐BusinessContinuity/DisasterRecovery
NRECATechAdvantageOrlandoFebruary26,2015
MOSS ADAMS LLP
“What we learn from history is that people don’t learn from
history”Warren Buffet
3
Today’sAgenda
• CrisisManagement
• IncidentCommandSystem(ICS)
• ChangeManagement
• BusinessContinuity=StrategicPlanning
• QuestionsandAnswers
4
Itallstartswithyou!
http://www.ready.gov/
5
CrisisManagement
MOSS ADAMS LLP
What is Resilience?
• Theabilitytobecomestrong,healthy,orsuccessfulagainaftersomethingbadhappens
Merriam‐Webster
• Resilienceisthecapacityofanyentity‐‐anindividual,acommunity,anorganization,oranaturalsystem‐‐topreparefordisruptions,torecoverfromshocksandstresses,andtoadaptandgrowfromthedisruptiveexperience.
JudithRodin,authorof“TheResilienceDividend”
7
CrisisManagement
• FacilitateeffectiveCrisisManagementutilizingthe‐ IncidentCommandSystem(ICS)‐ Crisismanagementprotocolsandprocedures‐ CrisisCommunications‐ Allocationofassets‐ Incidenttracking‐ Internal/externalstakeholders
8
‐ IncidentCommandSystem(ICS)‐ Crisismanagementprotocolsandprocedures‐ CrisisCommunications‐ Allocationofassets‐ Incidenttracking‐ Internal/externalstakeholders
CrisisManagement(Continued)
9
CrisisManagement(Continued)
• Acrisisrarelyoccurswithoutwarning…anumberofpreconditionsusuallyexistthatbreedacrisis.
• Criseshavelifecycles,andunderstandingwhatoccursbeforeacrisiscommencesisimportanttohelpingpreventingit.
• DisasterRecoveryistheprocessofreturningabusinessfunctiontoastateofnormaloperationseitherataninterimminimalsurvivalleveland/orre‐establishingfull‐scaleoperations.
10
THELIFECYCLEOFACRISIS
Myers• NormalOperations
o Preventionpractices
• EmergencyResponseo Activitiesduringthefirsthours
• InterimProcessingo Temporaryproceduresaresetup
• Restorationo Transitionbacktonormal
PearsonandMitroff(1993)• Signaldetection
o Beginswithsomeformofwarnings
• Preparation/preventiono Formingthecrisismanagement
teamandplanofaction• Containment/Damage
limitationo Managingthecrisis
• Recoveryo Attemptstoresumeactivities
• Learningo Reflectingonwhatcanbelearned
11
LandscapeSurvey
StrategicPlanning
CrisisManagement
OperationalLearning
TheInternalLandscape
InternalCrisisThreats
Planforpotential crisisevents
Managinginternalstakeholdersduringacrisis
Whatcan welearn
TheexternalLandscape
ExternalCrisisThreats
Externalplanningthatcouldhelp
Managingexternalstakeholdersduringacrisis
Whatlearningistakingplaceoutside ourorganization
Crandall, Parnell and Spillan (2014)
THEFRAMEWORKFORCRISISMANAGEMENT
12
CRISISPHASESCRISISPHASES
End of the Crisis
Landscape Survey
&Strategic Planning
CommunicatingMonitoringDelegatingPrioritizing
Planning Organizational Learning
Situation AssessmentDecision Making
Team Coordination
13
CHANGINGROLES
Day‐to‐DayOperations
• Normalcompanyorganization
• Businessasusual
• SteeringCommittee
• BusinessManagers
DuringaCrisis
• BusinessContinuityOrganization
• Survivaloftimesensitiveoperations
• EmergencyManagementCommittee
• TeamLeadersreporttoEMT
(DRI International 2006)
14
IncidentCommandSystem(ICS)
15
IncidentCommandSystem(ICS)
• FederalEmergencyManagementAgency(FEMA)definestheIncidentCommandSystem(ICS)asastandardized,on‐scene,all‐hazardsincidentmanagementapproachthat:
‐ Allowsfortheintegrationoffacilities,equipment,personnel,procedures,andcommunications.
‐ Enablesacoordinatedresponseamongvariousgroups,bothpublicandprivate.
‐ Establishescommonprocessesforplanningandmanagingresources.
16
ICS(Continued)
• Canbeusedtomanageanemergencyincidentornon‐emergencyevent
• Canbeusedforbothsmallandlargeeventsorsituations
• Systemhasconsiderableinternalflexibility
• Systemcangroworshrinktomeetdifferingneeds
• Costeffective&efficientmanagementsystem
17
• ICSisflexibleandcanbeusedforincidentsofanytype,scope,andcomplexity.
• ICSisusedbyalllevelsofgovernment,nongovernmentalorganizationsandtheprivatesector.
• Asasystem,ICSisextremelyuseful;notonlydoesitprovideanorganizationalstructureforincidentmanagement,butitalsoguidestheprocessforplanning,building,andadaptingthatstructure.
ICS(Continued)
18
ICSSTRUCTURE
LogisticsSection
Finance/Administration
Section
OperationsSection
PlanningSection
IncidentCommand
PublicInformationOfficer
SafetyOfficer
LiaisonOfficer
CommandStaff:TheCommandStaffprovideInformation,Safety,andLiaisonservicesfortheentireorganization.
GeneralStaff:TheGeneralStaffareassignedfunctionalauthorityforOperations,Planning,Logistics,andFinance/Administration.
19
CommandStaff
• IncidentCommando Inchargeoftherecoveryprocess
o Setstheincidentobjectives,strategies,andpriorities
o Overallresponsibilityfortheincident
o Whattypeofmanagementstyleisbestduringacrisis? TheListener TheDelegator TheGeneral
20
• TheInformationOfficer:‐ ObtainsinformationfromEMCandprovides
informationtoallstakeholders(incidentpersonnel,newsmedia,otherappropriateagenciesandorganizations)• Developsandreleasesinformationabouttheincident• CommunicateswithRegulatoryentities(ifnecessary)
CommandStaff(Continued)
21
CommandStaff(Continued)
• TheSafetyOfficer:‐ TodevelopandrecommendmeasurestotheIncidentCommanderassuringpersonnelhealthandsafetyandtoassessand/oranticipatehazardousandunsafesituations.
• DevelopstheSiteSafetyPlan• ReviewstheIncidentActionPlanforsafetyimplications• Providestimely,complete,specific,andaccurateassessmentofhazardsandrequiredcontrols
• Developsandreleasesinformationabouttheincident
22
CommandStaff(Continued)
• LiaisonOfficer‐ Coordinateswithoutsideagencies;suchaspolice,fire,EMS
‐ Ensuresthattheneedsofassistingandcooperatingagenciesaremet
23
GeneralStaff
• Operations
• Planning
• Logistics
• Finance&Administration
• Conductsoperationstoreachtheincidentobjectives.Establishesthetacticsanddirectsalloperationalresources.
• Supportstheincidentactionplanningprocessbytrackingresources,collecting/analyzinginformation,andmaintainingdocumentation.
• Providesresourcesandneededservicestosupporttheachievementoftheincidentobjectives.
• Monitorscostsrelatedtotheincident.Providesaccounting,procurement,timerecording,andcostanalyses.
24
ICSAPPFORSMARTPHONES
25
ChangeManagement
• Evolvingbusinessenvironment‐ Competition,adecliningeconomy,technologicalchange,andpressuretopreservethenaturalenvironment
• Managingchangehasbecomeacriticalmanagerialfunction‐ Someorganizationshavebeensetuptofacilitatemanagementthantopleasecustomers
‐ Developingrulesandregulationstogivemanagerscontroloveremployees
• ChangeAgentapproach‐ CEO/GeneralManagersmustcreateanenvironmentofcontinualreinvention
• Shorttermdisturbances:anxiety,confusion,andpoorerfinancialresults
26
ChangeManagement(Continued)
• Plan,Do,Act,Check• Developanewstrategyandimplement
‐ UnderstandPorter’sFiveForces‐ IdentifyaChangeManager
• Communicate,Communicate,Communicate• Continuallyshowthevisionofthefuture• Meetregularlywithstakeholdersandbeatthedrumofchange
• Rewardtheemployeeswhoembracechange
27
BusinessContinuity
Crandall, Parnell and Spillan (2014)
• DisasterRecoveryInstituteInternational(DRII)definesaBusinessContinuityProgramas:Aholisticprogramdrivenbybusinessrequirements‐ Ledbyamanagementteamempoweredtorespondtointerruptions
‐ Modifiestheconsequencesofaninterruptiontoalevelacceptablebymanagement
‐ Providesatestedmethodologyforfacingcrises• Ensurescontinuityandsurvivaloftheorganization• Providesprotectionofpeople,information,operationsandorganization
• Mitigatesrisksandexposures• TakescontrolofanyDisaster
28
BusinessContinuity=StrategicPlanning
• Strategy– asetofrelatedactionsthatmanagerstaketoincreasetheircompany’sperformance.
• BusinessContinuity‐ Ensurescontinuityandsurvivaloftheorganizationo StrategicLeadershipo CompetitiveAdvantageo SuperiorPerformance
MOSS ADAMS LLP
BC/DR Program and Plan
30
LessonsLearned
• Understandtherisksandbusinessimpactfacingyourorganization
• EstablishCommandandControlthroughICS• StayaheadofCrisisCommunications• Establishbeforehandcommunicationwiththedepartmentheads…opencommunication
• ProvideAfterActionreports• ProvideAwarenessandTraining• Exercise,Exercise,Exercise
31
Summary
• Prepareyourselfandyourfamily…visitready.gov
• Criseshavelifecycles,andunderstandingwhatoccursbeforeacrisiscommencesisimportanttohelpingpreventingit.
• ThisinformationyouhavebeenpresentedhasprovidedyouwithageneralbackgroundonICS.
• Bethechangeyouwanttohappenintheorganization
• BusinessContinuityisStrategicPlanning
