Guest
BCMS performance indicators
Am currently working on an implementation project for BCMS. More specifically, am looking at Clause 9.1.1 and 9.1.2 from ISO 22031. Wondering if there's any performance metrics example that I can refer to, to meet these requirements?
Assign topic to the user
Expert
Rhand Leal
Dec 15, 2017
Answer: At this moment we do not have specific examples of performance metrics for a BCMS, but I suggest you to take a look at this article so you can have ideas from an ISMS perspective that can be adapted to a BCMS:
- Key performance indicators for an ISO 27001 ISMS https://advisera.com/27001academy/blog/2016/02/01/key-performance-indicators-for-an-iso-27001-isms/
For example:
- Percent of business initiatives supported by the ISMS may be changed to Percent of business initiatives supported by the BCMS
- Percent of information security initiatives containing cost/benefit estimates may be changed to Percent of business continuity initiatives containing cost/benefit estimates
- Percent of agreements with information security clauses may be changed to Percent of agreements with business continuity clauses
- Numb er of security-related service downtimes may be changed to Number of service disruptions
- Duration of service interruptions can be maintained
- Incident resolution time may be changed to Achieved recovery time
- Percent of controls assessment performed may be changed to Percent of BCP tests performed
- Number of improvement initiatives can be maintained
This material will also help you regarding BCMS metrics:
- Book Becoming Resilient: The Definitive Guide to ISO 22301 Implementation https://advisera.com/books/becoming-resilient-the-definitive-guide-to-iso-22301-implementation/
Comment as guest or Sign in
Dec 14, 2017
Dec 14, 2017
Dec 14, 2017