BS 25999 Business Continuity Management
Nowadays, the concept of securing our business and business continuity despite threats becomes very important. The starting point of this standard BS 25999 seems like terrorist attack such as 11 September. But business continuity is not including just national disaster such as earthquake and flood. BS 25999 business continuity is a system which includes the solutions of negative reputation, production cut and similar unexpected situations.
BS 25999 is suitable for any organization, large or small, from any sector. It is particularly relevant for organizations which operate in high risk environments such as finance, telecommunications, transport and the public sector, where the ability to continue operating is paramount for the organization itself and its customers and stakeholders.
 BS 25999 comprises two parts:
  • Part 1, the Code of Practice, provides BCM best practice recommendations. Please note that this is a guidance document only.
  • Part 2, the Specification, provides the requirements for a Business Continuity Management System (BCMS) based on BCM best practice. This is the part of the standard that you can use to demonstrate compliance via an auditing and certification process.
Due to our business continuity audit, you could learn your continuity system’s currency and you could reach a road map which you are in need.
BS 25999 Business continuity management Standard
BS 25999 has been developed by a broad based group of world class experts representing a cross-section of industry sectors and the government to establish the process, principles and terminology of Business Continuity Management.
It provides a basis for understanding, developing and implementing business continuity within your organization and gives you confidence in business-to-business and business-to customer dealings. It also contains a comprehensive set of requirements based on BCM best practice and covers the whole BCM lifecycle.

Keeping up the customers are going to be difficult with increasing competition. This complication directs organizations about working speed, innovation, continuous service but ingrained information systems, technology, and telecommunication links even special manufacturing equipment at the organization’s tissues of critical business processes. Any more, e-commerce companies need non-stop systems. 1-2 hour problem in the systems can cause serious loss depending on the size of the company. According to the research of the Fiber Channel Industry Association; losses in disaster 28.000 $ at the shipping company and 6 million $ at the securities companies. Making effective business continuity plan is the only way to be prepared for surprises.In an article in Info Security magazine, effective business continuity plans at a rate of 90 percent, reduce damage.At Gartner's research, approximately %40 of organizations paused activity; approximately %33 of continuing organizations paused activity after 2 years.
Internet security risks and disruptions in line connections, earthquake, fire, flood, bombing, sabotage, human errors, and telecommunications outage factors are risk. These risks must be considered by all organization. So, be prepared for disaster and to plan the way that organized for solve are really important.
All organization must have a plan according to own characteristic. For continuity this system, before the planning and set up system risk trial and ready for emergency situation should be provided by senior management. The senior management should be appropriate and indoctrinate to employees the importance of planning and organized. The senior management should make training for employees in order to appropriating. The point of this system; senior management and employees should work together when set upping this system. In addition to this, the senior management should support Business Continuity Management System. At organization's business process,unexpected negative events are possible. For provide continuity of customer service, to fulfill at time responsibilities at desired time against legal persons and third parties, not to cause confusion at work time, to minimize financial impact of disasters, to minimize loss of life of disaster, the best way to protect assets at unexpected situations, organization must prepare and manage functional business continuity plan. So, must be five steps;
1. Understanding business
2. Business Continuity Management (BCM) Strategy
3. Business Continuity Management (BCM) Response / Reaction Development
4. Business Continuity Management (BCM) Culture Development
5. Testing, Maintenance and Inspection
If there has been a disaster insurance is an important choice but generally alternative is far from being a complete ; to be for physical asset like building and equipment, at the pay be misbehaviors and not to know the real cost of business process interruption.
Organizations analyze own current situation with Business Continuity Planning and Management. Because, possible disasters can prevent, quickly and accurately respond to the disaster, assets and cash flow protection, while minimizing interruptions to ensure return to normal operations.
Logic is very simple; “we must shorten leisure and we must minimize losses.”
All Rights Reserved (KAS International Certification)