12.7 Controlling major loss events

Question 1

List three potential impacts of a major loss event.

Answer 1

Financial impacts
Asset damage
Injury or death
Negative media attention
Fines and sanctions
Reputational impact

Question 2

What is crisis management?

Answer 2

The process by which an organisation deals with a disruptive and potentially unexpected event that threatens to harm the organisation, its stakeholders, or the public.

Question 3

Give three examples of crisis events.

Answer 3

Fires
Chemical spills
Death
Terrorist attack
Technology systems failure
Data breaches

Question 4

Why is crisis planning difficult?

Answer 4

Most organisations will not have experienced a crisis and so have no experience.

Question 5

What is scenario analysis?

Answer 5

A process where relevant experts (managers, specialists etc.) meet to imagine the casues that could create a crisis event and the resultant impacts.

Question 6

Ashby identifies 5 areas around which the control of crisis events is managed.

1 S_____ d______ - looking for early warning signs
2 Preparation and p_________ - steps taken to prepare for an event.
3 Containment and d______ c______ - steps taken to limit adverse effects
4 Business r_________ - reducing duration of issues with effective recovery arrangements
5 L________ from the crisis - e.g. post-reviews

Answer 6

Signal detection
prevention
damage control
recovery
Learning

Question 7

What is the purpose of a business continuity plan?

Answer 7

To help with damage control and to support business recovery.

Question 8

How frequently are business continuity plans typically tested?

Answer 8

Annually