Practical, Cost Effective and award-winning

Business Continuity, Crisis Management & Information Security Solutions

Phone:

0800 035 1231 (Mon to Fri 9am – 5pm)

36B Market Street, New Mills

Derbyshire, SK22 4AA, United Kingdom

Downloads

This section contains useful general information on Business Continuity Planning and Crisis Management; this free to access in PDF format: simply insert a valid email address to download.

ISO 27001 Implementation

A short article with some top tips for the successful implementation of ISO 27001:2013.  Based on practical experience, and an enviable track record in assisting clients through to certification, this article gives highlights some critical steps to take in the route to ISO 27001 accreditation.


 Please tick this box if you do not want us to inform you about future events of interest.

ISO 27001 READINESS FOR GDPR

A quick surf of the internet lists many articles demonstrating how ISO 27001 can help you to be ready for General Data Protection Regulation (GDPR), usually from companies only too glad to help you implement ISO 27001.  In this article, I would like to take a slightly different tack, and look at some of the things you must consider when updating your Information Security Management System (ISMS) to encompass the requirements of GDPR.


 Please tick this box if you do not want us to inform you about future events of interest.

ISO 27001 vs ISO 22301: The On-Going Debate

There has been significant debate about the overlap of ISO 22301 (Business Continuity ) and ISO 27001 (Information Security).  This article clarifies whether one standard or management system would provide reassurance for both disciplines.


 Please tick this box if you do not want us to inform you about future events of interest.

Business Continuity in the Supply Chain

Resilience of the Supply Chain continues to be a concern for businesses, as highlighted in the recent BCI/BSI Horizon Scan 2014 survey.  This article suggests some considerations to ensure resilience in your Supply Chain.


 Please tick this box if you do not want us to inform you about future events of interest.

Transition: BS25999 to ISO22301

Several organisations are currently undergoing the transition from BS25999 to ISO22301.  Based on personal experience auditing organisations to BS25999 and assisting businesses with their transition to ISO22301, this article offers some guidance for the certification change.


 Please tick this box if you do not want us to inform you about future events of interest.

Business Continuity: Getting Started for SMEs

Implementing Business Continuity for SMEs presents its own challenges.  Based on personal experience, this article highlights some of the primary steps for introducing a basic Business Continuity programme into SMEs.


 Please tick this box if you do not want us to inform you about future events of interest.

Building on the Basics

Based on personal experience, this article highlights some of the primary steps in planning and conducting an incident management desk-top exercise.  This has also been been published in the Q1 2014 edition of Continuity.


 Please tick this box if you do not want us to inform you about future events of interest.

BCM in Manufacturing Companies

Implementing BCM effectively in a manufacturing environment presents some specific challenges.  This article summarises some key lessons learned from our numerous business continuity projects with manufacturing companies.


 Please tick this box if you do not want us to inform you about future events of interest.

ISO 22301

This article compares ISO22301 with BS25999 and suggests areas where additional work will be required if organisations wish to certify to the new standard.


 Please tick this box if you do not want us to inform you about future events of interest.

Risk Assessment

Risk Assessment remains an important part of any Business Continuity programme but confusion persists about how to conduct a risk assessment and how it fits into the overall Business Continuity Lifecycle.  This article offers some practical guidance.


 Please tick this box if you do not want us to inform you about future events of interest.

The Cost of Disruptions

How much could an operational disruption cost your organisation?  This article summarises the findings of various research studies on this topic.


 Please tick this box if you do not want us to inform you about future events of interest.

Getting Your House in Order

The Business Impact Analysis is a vital part of the Business Continuity Lifecycle but is still poorly understood.  This article provides a simple, practical explanation of the process.


 Please tick this box if you do not want us to inform you about future events of interest.

Crisis Communications

A number of recent incidents have highlighted the importance of good crisis communications.  This article provides some basic guidance on how to prepare.


 Please tick this box if you do not want us to inform you about future events of interest.

Hanging on the Telephone

Despite the sophistication of their Business Continuity Planning, many organisations still overlook the practical aspects of crisis communications. This article offers some thoughts on the subject.


 Please tick this box if you do not want us to inform you about future events of interest.

The Nature of Crises: Explaining Some Persistent Myths

Effective Crisis Management requires a significant amount of preparation. This article suggests some reasons why organisations tend not to do this.


 Please tick this box if you do not want us to inform you about future events of interest.

Business Continuity Planning Self-Assessment Questionnaire

If you are new to Business Continuity Planning, this 5-minute checklist gives you some ideas about where the weaknesses are in your organisation.


 Please tick this box if you do not want us to inform you about future events of interest.

Crisis Management Exercises as a Training Tool

Some thoughts on how to plan and run Crisis Management exercises in order to maximise the training value.


 Please tick this box if you do not want us to inform you about future events of interest.

Business Continuity Planning – Which Threats Should You Consider

One of the key diffiuclties in Business Continuity Planning is working out which threats to pay attention to. This article discusses why some people get this wrong and suggests an elegant solution to the problem.


 Please tick this box if you do not want us to inform you about future events of interest.

Crisis Management Teams – Some Danger Signs

The membership of your Crisis Management Team is crucial: this article gives some hints on getting the composition right.


 Please tick this box if you do not want us to inform you about future events of interest.

Useful References

The following books provide a good introduction to various aspects of Business Continuity Planning and Crisis Management. Recently updated.


 Please tick this box if you do not want us to inform you about future events of interest.

Is Your Crisis Management Training Effective?

Expenditure on Crisis Management training is one of the major items in most Business Continuity Planning budgets: this article offers some guidance for ensuring that you get value for money from your investment.


 Please tick this box if you do not want us to inform you about future events of interest.

Exercise Mountain Lion

Practise your Crisis Management skills with this simple puzzle: we are happy to provide feedback if you send us your solutions at info@cambridge-risk.com.


 Please tick this box if you do not want us to inform you about future events of interest.

Financing Business Recovery

Few organisations give much thought in their Business Continuity Planning to how they will finance their business recovery. Whilst insurance is clearly critical, this article suggests that companies should also look at other sources of funding.


 Please tick this box if you do not want us to inform you about future events of interest.
Please ensure that you do not divulge any sensitive data as this webpage is not secure.
* indicates required field

Helen's 'can do / will do' attitude comes from a unique blend of experiences & abilities. Couple this with her hard work and supportive approach, ensured our project was a success

more testimonials

  • Business Continuity Planning

    Effective planning that takes into account risk evaluation and business impact analysis, supported by clear and concise crisis management. We work with you to develop user-friendly plans.

  • Business Impact Analysis

    The Business Impact Analysis (BIA) is one of the most important, and least well understood, stages of the Business Continuity Management Lifecycle; we can assist with your BIA.

  • Training and Exercising

    No Business Continuity Management programme is effective without a significant element of training. Moreover, ongoing Crisis Management training and exercising is key. We can provide objective training and exercising.

  • Risk Evaluation and Control

    Risk evaluation and treatment provide a process to identify, prioritise and managing your risks. Cambridge Risk Solutions can assist with risk management for business operational and information security risks.

  • Statement of Applicability

    Which controls do you need to have in place? How do you link your risk assessment process into your SoA? How do you ensure that you have effective controls in place? We can assist with your SoA.

  • Integrated Management Systems

    Management Systems assist with your on-going management, maintenance and continual improvement. We work with you to develop a fully integrated management system, enabling certification to ISO 22301 and ISO 27001.