Contact us today to receive your complimentary discovery session 

YOUR COMPLIMENTARY DISCOVERY SESSION INCLUDES:

Dedicated time with a PCG Business Continuity Management Expert

A review of your BRM current-state and desired future-state

A roadmap outlining your goals and strategies

OR

Call Now: 800-731-7153

The framework defining the organizational vision to ensure continued business function, in case of a disruptive event, through resilience, recovery, and contingency measures.  This includes management of policies, roadmaps, risk tolerance, awareness, legal considerations and regulatory requirements.

Business Resilience Management

Compliance and Oversight

The structure and oversight that continually confirms compliance through monitoring, exception tracking, risk reporting, threat assessment, and response. This is typically managed through a governance committee with key business and information technology stakeholders.

Business Continuity Plan (BCP)

The plan that guides the response, resumption, recovery and contingency to restore operations, to a predefined service level, following a disruptive event.  The plan includes items such as the scope, reference artifacts, responsibilities, contacts, triggers, activities, and communication channels.

Business Impact Analysis (BIA)

The identification of how operational activities are impacted by a potential uncontrolled and non-specific disruptive event.  This includes defining service levels for Maximum Acceptable Outage (MAO), Recovery Time Objective (RTO), Recovery Point Objective (RPO), and Maximum Data Loss (MDL).

Risk Assessment (RA)

The process to identify the inherent risks that may cause a disruptive event. The assessment includes evaluating the likelihood and impact of the inherent risks as well as the controls and effectiveness to mitigate and address any residual risk.

Incident Management

The management and process for handling alerts and events that can lead to the loss of operations, services, or functions.  Incidents can escalate into a crisis or emergency, although incident management is typically broader in scope than only business continuity related activities.

Business Recovery

The planning and execution of proactive and reactive measures to maintain or resume business functions in the case of a disruptive event.  This is primarily focused around personnel, equipment, suppliers, facilities and supporting operations and will incorporate disaster recovery strategies.

Disaster Recovery

The planning and execution of proactive and reactive measures to maintain or recover information technology infrastructure, applications, and data following a disruptive event.  These practices coincide with a defined level of service identified during the business impact analysis and risk assessment.

Crisis Management

The management of an event with the goal of avoiding or minimizing damage to the organization's profitability, reputation, or capability to operate.  This covers the actual event but also plans to anticipate a crisis before it happens as well as managing the fallout once the dust has settled.

Emergency Response

The procedures for an unexpected event requiring immediate action due to the potential threat to human life or health, environments, or property.  This includes preparing to handle an emergency, responding safely to an emergency, and preventing residual effects.

Vendor Management

The management of your vendors to ensure they meet business recovery requirements by conducting due diligence reviews and performing strategic and tactical partnering during exercises.  In a nutshell, an organization cannot outsource their business continuity risk.

Monitoring and Reporting

A set of established controls, a checks and balances, to ensure risks are being identified and addressed according to the risk tolerance thresholds.  A proper set of controls will help ensure the program is working as planned, accountability has been established, and provides overall confidence.

Test and Exercise

When a crisis occurs, organizations need confidence the planning and preparation activities work, and they can effectively manage the situation. This is achieved through proper exercising to help validate everyone understands their role and drives value to fully optimize the investment.

Training and Awareness

Awareness and training are used to maximize your business continuity management value and to minimize cost. Best-in-class programs create awareness and training for executive response, role-specific training, and general employee awareness and education.

Provide Top Talent

PCG employs subject matter experts and leaders across all areas of Business Resilience Management.

Deliver Tailored Approaches

Every organization has unique challenges and demands that require flexible service offerings.

PCG solutions balance people, processes and tools to help drive change and stakeholder alignment.

Drive Organizational Change

RISK ASSESSMENT (RA)

A series of assessments to identify disruptive threats, inherent risk, effectiveness of mitigating controls, and any residual risk. This type of assessment allows an organization to strategically structure its recovery program, as well as the annual activities, to achieve its best return on investment.

BUSINESS IMPACT ASSESSMENT (BIA)

A series of assessments defining the impacts associated to your organization and business function(s) while establishing tipping points aligned to executive risk tolerance.  This process conducts a detailed study against impact criteria and articulates priorities - the cornerstone of a mature program. 

CONTROL EVALUATION

This service evaluates the current-state of business continuity management control effectiveness with the goal of measuring or improving upon the desired result. We offer two forms of this evaluation; an "assessment of controls" through qualitative evaluation or an "audit of controls" through quantitative and statistically relevant sampling.

REGULATORY OR CERTIFICATION

This service provides an assessment focused on specific regulatory requirements such as CMS, FEMA, FFIEC, FINRA, HIPPA, OCC, SEC or certification mechanisms such as ISO 22301. This assessment helps identify non-conformities and is designed for companies needing to undergo an audit or certification process.

GAP ANALYSIS

This service analyzes the current-state of business continuity management components, alongside required or best practices, to identify gaps and actionable recommendations. We offer two versions of the gap analysis; an accelerated approach for scoping or reporting purposes, and a deep-dive approach for detailed planning on larger initiatives.

MATURITY ASSESSMENT

This service assesses the current-state of the business continuity management components and processes to determine the degree of maturity. The results of the assessment are mapped to a capability maturity model that also includes the findings, level designation, and road map to deliver upon stakeholder expectations.

PLANNING AND RESPONSE PLAYBOOKS

This service includes the activities to capture recovery requirements and document recovery strategies. Successful programs maintain a series of artifacts from strategic response strategies (such as executive response guides) to tactical response procedures (business processing and technology recovery teams).

CRISIS MANAGEMENT

Immediate notification, awareness, assessment, and response are the primary elements that can dictate the actual severity and impact of an event. This service offering helps create, enhance, or manage those practices while engaging all potential impact areas of the organization.

TESTING AND EXERCISE

This service offering helps ensure your business continuity management practices and capabilities are viable through testing and independent review. This may include several approaches such as orientation, walk-throughs, tabletops, mini-drills, functional testing, and end-to-end testing.

AWARENESS AND TRAINING

A service to perform effective awareness and training to maximize your value and minimize cost. The best-in-class programs create awareness and training for executive response, role-specific training, and general employee awareness and education.

COMMUNICATION CHANNEL MANAGEMENT

This service offering addresses the communication aspect of the business continuity program. This addresses the capabilities and processes to communicate with applicable emergency personnel, employees, leadership, regulators, vendors, suppliers, partners, customers, and media.

RECOVERY SOLUTIONS

Certain event types require established solutions to ensure effective and efficient continuity.  This service identifies the suitable options while balancing risk, cost, and benefit.  Examples include remote work capabilities, on demand call centers, alternate work sites, redundant technology, and emergency response systems.

RESPONSE SOLUTIONS

Effective programs leverage tools to help capture, analyze, and activate responses. This service identifies and implements the right tools to maximize value.  We are technology agnostic, meaning we are unbiased towards the use of different tools and solutions to solve different problems and believe there is no ‘one size fits all'.

AUDIT PREPARATION AND RESPONSE

A service to help prepare or respond to a regulatory or third-party audit.  This is not an evaluation of your business continuity management maturity but rather the coaching of your team for audit preparation or response. This includes general Q&A sessions, role playing sessions, and subject matter advisory.

IMPLEMENTATION OUTSOURCING

This service provides an opportunity to outsource the implementation or remediation of business continuity management.  The team includes the required resources such as strategic advisers (senior practitioners), project oversight resources (program/project management), supporting team members (analysts, subject matter experts) and applicable third-party vendors.

OPERATIONAL OUTSOURCING

This service provides companies the ability to outsource operational components of business continuity management with the goal of attaining higher or equal value at a lower overall support cost.   Ancillary benefits include improving the core business focus, freeing up internal resources, and gaining access to world-class resources and capabilities.     

MANAGEMENT CONSULTANTS

PCG employs program and project managers that will help drive your business continuity management project to completion.  Our consultants bring a deep understanding of project management and years of experience leading projects. Their strategic and tactical knowledge allows them to seamlessly oversee the scope, schedule, budget, risk and quality.

CORE TEAM MEMBERS

PCG employs a staff of business continuity management architects, analysts, and subject matter experts that play a key role in overall project success.  This service provides organizations an avenue to tap into these resources to help deliver the project.  Our team members will facilitate the collaboration leading to solutions for your most complex challenges.

Click below to see our offerings:

This component directs the planning, strategies, exercises, and management of a pandemic disease outbreak . The objective is to address the reality that pandemic events create personnel (see digital workplace) and technology issues outside the scope of traditional business continuity and disaster recovery.  

Pandemic Management/Recovery