B1：风险整合 – 基于控制的弹性计划的基石.pdf

1、Risk IntegrationRisk IntegrationMay 6-8,2024|Charlotte,NCScott Baldwin,Unified Resilience,BCI USA Board MemberThe Cornerstone of a Control-Based Resilience ProgramThe Cornerstone of a Control-Based Resilience ProgramDisclaimer:This is meant to be a discussion based session,not a lecture.However,we n

2、eed to get through the entire presentationIntroduction 20 Years in the Resilience Industry Developed and led global programs for AWS,Netflix,Symantec,eBay Creator of the Unified Resilience Framework Scott Baldwin,CBCP,MBCIAbout You Area of Expertise Resilience Risk Other?Resilience Professionals:Big

3、gest Challenges Risk Professionals:What is your reaction to“Resilience Risk”?What is Control-Based Resilience?What is Control-Based Resilience?Control-Based Resilience(CBR)Uses Controls to Measure Resilience CapabilityA Control is:A Mechanism which enforces(or controls)a state or behavior in a way t

4、o mitigate a specific risk.Controls Less than 1 hour 30 Control Questions Availability Response Recoverability No training or hand-holding requiredCapability AssessmentResilience ControlsControl-Based Resilience(CBR)Uses Controls to Measure Resilience Capability Uses Standardized ScoringScoring Syst

5、emIntuitive way to communicate resilience to executive leadership,partners and stakeholdersCriticality Score,Capability Score,Resilience Risk ScoreEnables apples-to-apples comparisonInternal(asset to asset,or organizationally)External(regulators,customers,vendors)Control-Based Resilience(CBR)Uses Co

6、ntrols to Measure Resilience Capability Uses Standardized Scoring Emphasizes Proactive and Preventative Resilience”Operational Resilience is the organizations health care system”Maximizing ROI with Control-Based ResilienceReturnInvestment Holistic Operational View Intuitive&Detailed Insight Built-in