Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

C3 Initiative > Operational Resilience Standard - Section 2 - Role Expectations > Flashcards

Operational Resilience Standard - Section 2 - Role Expectations Flashcards

1
Q

Who holds BEAR accountability for Resilience following delegation from the Board?

A

The Group Executive T&EO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Who is accountable for the ownership and operationalisation of this Standard and the execution of activities set out under this Standard?

A

The Executive Chief Controls Officer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the Process Owner accountable for?

A

The resilience of the end-to-end NAB Critical Process.

  • Document process
  • Identify risks and threats
  • Define impact tolerance
  • Identify remediation actions
  • Maintain workaround strategies
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the Resource Owner accountable for?

A

The resilience of resources that support the end-to-end NAB Critical Process.

  • Resource mapping to process
  • Identify substitutes
  • Manage single points of failure, vulnerabilities, and concentration risks
  • Set resource resilience thresholds
  • Resilience assessments/ratings
  • Execute remediation and TPs
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the 5 key related resilience disciplines?

A
  1. Business Continuity Management
  2. Service Continuity
  3. Enterprise Security
  4. Incident Management
  5. Crisis Management
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are 3 things Enterprise Controls and Processes (EC&P) conduct for all Operational Resilience activities?

Includes Enterprise Resilience Team

A
  1. Allocate sufficient resources to support Line 1’s management of NAB’s resilience.
  2. Support development, implementation, and testing of controls and processes related to management of resilience risks.
  3. The Enterprise Resilience Team is responsible for developing, supporting, and advising the operationalisation of the business owned Operational Resilience standard and its supporting artefacts e.g., procedural documents and playbooks.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What 3 things do Second Line of Accountability (Risk) conduct for all Operational Resilience activities?

A
  1. Maintain BCM and other Risk policies, standards, and systems (e.g., GRACE).
  2. Establish risk appetite relating to resilience risks.
  3. Provide independent review and challenge of the management of resilience risks.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Under the Operational Resilience Standard, do Resilience Disciplines have any actual accountability?

A

No, but they are responsible for scenario exercises and are consulted on nearly everything else.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Under the Operational Resilience Standard, do Risk have any actual accountabilities or responsibilities?

A

No, but they are consulted on identification of risks/threats, defining impact tolerance statements, treatment plans and remediation, reporting, and playbooks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are EC&P Accountable for?

A
  • C3 Tier categorisation
  • Reporting
  • Conducting scenario exercises
  • Maintaining list of ‘severe but plausible’ scenarios
  • Responsible for more
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

C3 Initiative (10 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions