Risk Management Consulting
 
 
Xcina Case Study

Business Continuity and Crisis Management Assessment and Testing

Business Continuity and Crisis Management Assessment and Testing

The Challenge

To identify any areas for improvement that require remediation and to conduct a business continuity and crisis management testing exercise

 

Methodology and Approach

Xcina’s methodology and approach involved the following:

  • Assessing controls against the standard’s requirements
  • Structured interviews with each of the relevant stakeholders.
  • Review documentation, including policies, procedures, templates and other documents to further validate and complement the information obtained via structured interviews.
  • Prepare a tracker of findings for remediation and follow-up
  • Conduct a review meeting with key stakeholders to go through the findings and receive any comments.
  • Supporting the client on the remediation of the gaps
  • Assisting the client during the independent external audit
  • Plan and facilitate business continuity and crisis management tabletop exercise involving information security, data protection, IT, customer service, and one of the locations.
  • Prepare lessons learned report.

 

Results and Outcome

Thanks to the remediation plan provided by Xcina, and the support we provided during the external audit, the Client obtained a clean audit report when independently audited for certification purposes.  Our assistance also provided the Client with an increased level of assurance over its readiness and capability to respond to a major incident.

 

What This Means for You

Whether you are in the early stages of your resilience initiative or looking for continuous improvement, Xcina delivers:

  • Independent assessments and assurance against leading frameworks such as ISO 22301, DORA and NIS2, identifying areas for improvement
  • Expert advice on complex security, resilience and certification issues and best practices
  • Pragmatic implementation assistance, including playbook development and testing to help strengthen your security and resilience posture
  • A long-term partnership and ongoing assistance throughout your journey, not just a point-in-time assessment

To find out more about how we can assist you, please refer to our Business Continuity Consulting and Crisis Management at https://xcinaconsulting.com/services/business-continuity-management/

 

Industry and sector:

Telecommunications

Solutions and service area:

Xcina’s objective:

The Client engaged Xcina to conduct a gap assessment against the ISO 22301:2019 Standard in order to identify any areas for improvement that required remediation, and to conduct a Business Continuity and Crisis Management Testing Exercise.

We’d love to hear from you

We have a strong track record in providing risk advisory services with a focus on governance, regulatory compliance, conduct and culture, data protection, and third-party assurance. We help organisations successfully address governance, risk management and compliance challenges.

To discuss how the areas highlighted in this case study, or any other aspect of risk management, information governance or compliance impact your business, speak with our team, tell us what matters to you and find out how we can help you navigate complex issues to help you deliver long term value.

If you have any questions or comments, or if there’s anything you would like to see covered, please get in touch by emailing Xcina Consulting at info@xcinaconsulting.com. We’d love to hear from you.

Lindsey Domingo

Senior Director

Speak to me directly by Email, or
Telephone: +44 (0)203 745 7826

Lindsey Domingo

Subscribe to Updates

Receive regular updates from our expert consultants as they provide clarification and guidance on issues impacting your organisation.

Subscribe >>