SlideShare ist ein Scribd-Unternehmen logo

HYDSPIN-ProMinds CERT-RMM Presentation (25Aug2011)

P
promindsbalaji

HYDSPIN-ProMinds "CERT-RMM , A Curtain Raiser" Presentation at Hyderabad, India

Business
1 von 39
Downloaden Sie, um offline zu lesen
Overview to ProMinds® Engineering Business Transformations www.promindsglobal.com
CERT®-RMM : A Curtain Raiser For HYDSPIN, Hyderabad, India 25th August 2011 By P M Shareef Certified Lead Appraiser & Lead Auditor www.promindsglobal.com
Notice and Disclaimer NO WARRANTY THIS MATERIAL OF PROMINDS CONSULTING IS FURNISHED ON AN ―AS-IS" BASIS FROM THE REFERENCE MATERIALS AS STATED IN THE LAST WITHOUT ANY ALTERATIONS. PROMINDS CONSULTING MAKES NO WARRANTIES OF ANY KIND, EITHER EXPRESSED OR IMPLIED, AS TO ANY MATTER INCLUDING, BUT NOT LIMITED TO, WARRANTY OF FITNESS FOR PURPOSE OR MERCHANTABILITY, EXCLUSIVITY, OR RESULTS OBTAINED FROM USE OF THE MATERIAL. PROMINDS CONSULTING DOES NOT MAKE ANY WARRANTY OF ANY KIND WITH RESPECT TO FREEDOM FROM PATENT, TRADEMARK, OR COPYRIGHT INFRINGEMENT. Use of any trademarks in this presentation is not intended in any way to infringe on the rights of the trademark holder. DISCLAIMER This message and any attachments are solely intended for the addressee(s). It may also be ProMinds’ confidential, privileged and / or subject to copyright. Access to this presentation by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited that may be unlawful. If you have received this in error, please notify the sender immediately by return and delete it from your computer. While all care has been taken, ProMinds' management disclaims all liabilities for loss or damages to person(s) or properties arising from misuse of any information provided or the message being infected by computer virus or other contamination. 3 www.promindsglobal.com
Take Away’s • What is Resilience Management? • Why Resilience Management? • Preamble to CERT® Resilience Management Model • Features and Benefits of the CERT® - RMM • CERT-RMM Appraisals • Roles You Could Play • Summary 4 www.promindsglobal.com
What is Resilience? Resilience is a function of an organisation’s: situation awareness, management of keystone vulnerabilities and adaptive capacity in a complex, dynamic and interconnected environment. Mostly it refers to the operational part of the business wherein challenges are many as against many of the current standards and practices, which focuses on the strategic part of business. 5 www.promindsglobal.com
Defining “RESILIENCE” • A Resilient Organisation is one that is: – able to achieve its business objectives and – realise opportunities, even in the face of adversity. • Resilience Management is the ability of an Organisation to survive an unscheduled disruption or major crisis from its ability to adapt using proven and integrated Risk Management, Crisis Management and Business Continuity Management processes using a single line of sight. 6 www.promindsglobal.com
Resilience Management Framework Increasing situational awareness will provide greater understanding of vulnerabilities that can critically undermine performance. Emergency Management Testing of plans and Planning Testing Business Continuity Management people response is Risk Management essential to ensure Adaptive Capability realism Decision makers learn about underlying values systems and key individuals - relying on the culture 7 www.promindsglobal.com
Resilience Indicators Situation Awareness Manage Key Threats Adaptive Capacity Roles & Planning Strategies Silo Mentality Responsibilities Understanding Hazards Participation in Communications and & Consequences Exercises Relationships Connectivity Capability & capacity Strategic Vision and Awareness Of Internal Resources Outcome Expectancy Insurance Capability & capacity Information & Awareness Of External Resources Knowledge Organizational Leadership, Management Recovery Priorities Connectivity & Governance Structures Aware of total Those components of an The culture of the operating system, organization that have organization allowing it including threats, the potential to cause the to make decisions in a opportunities, greatest negative impact timely and appropriate connectivity and manner in a crisis. internal and external stakeholders 8 www.promindsglobal.com
Why Resilience Management (RM)? • It brings together all the planning that an organisation may have done under one umbrella; • Increases its situation awareness; • Have a greater understanding of the vulnerabilities that can critically undermine its performance; • Improve its adaptive capacity as decision makers; • Make you learn more about the underlying value systems of the organisation and of key individuals in the organisation; • Highlights the expectations that decision makers have of their enterprise and key stakeholders; • Offers a way to test existing plans and create new ones. Risk Management, Business Continuity and Emergency Management are commonly viewed as closely related, but a practical means of linking them is often not achieved. 9 www.promindsglobal.com
Towards Resilience – Emerging Risks GEN Y NEW CARBON CONSTRAINED STANDARDS WORLD & COMPLIANCE GREEN IT SUSTAINABILITY SYSTEMATIC CULTURE CYCLICAL & ETHICS RISK AVAILABILTY CHANGING OF RESILIENCE WORKFORCE CREDIT/ LIQUIDITY 10 www.promindsglobal.com
What is CERT® RMM? 11 www.promindsglobal.com
CERT® RMM Background 12 www.promindsglobal.com
CERT® RMM – Imperatives 13 www.promindsglobal.com
CERT® - RMM in the Life Cycle Operational resilience management focuses on the deploy, operate, and decommission phases, but reaches back to development phase of lifecycle to ensure consideration of security and continuity issues prior to placing assets in production 14 www.promindsglobal.com
For Comparison: CERT® - RMM & CMMI 15 www.promindsglobal.com
Features of CERT® - RMM CERT-RMM brings several innovative and advantageous concepts to the management of operational resilience. • The convergence advantage: Merging the disciplines of security, BC/DR, and IT operations into a single model • The process advantage: Elevating these disciplines to a process view, useful as an integration and measurement framework • The maturity advantage: Provides a foundation for practical institutionalization of practices— critical for retaining these practices under times of stress 16 www.promindsglobal.com
CERT® - RMM at a glance 17 www.promindsglobal.com
CERT® - RMM by numbers 18 www.promindsglobal.com
Process Area Structure 19 www.promindsglobal.com
Benefits of CERT® - RMM CERT-RMM can be used as a • Starting point for leveraging convergence across security, business continuity, and IT operations activities • Reference model for understanding the scope of managing operational resiliency • Taxonomy to enable internal and external communication • Organizing construct for codes of practice, standards, and regulations and a framework for compliance • Process improvement model to catalyze improvement efforts • Baseline for appraising an organization’s capability • Guide for improvement in areas where an organization’s capability does not equal its desired state 20 www.promindsglobal.com
As an Organizing Principle 21 www.promindsglobal.com
The Promise of Process Institutionalization 22 www.promindsglobal.com
Process Institutionalization 23 www.promindsglobal.com
Process Institutionalization in CERT® - RMM 24 www.promindsglobal.com
Example: Asset Definition and Management 25 www.promindsglobal.com
Institutionalizing Asset Definition and Management 26 www.promindsglobal.com
Practice Example: ADM.SG1.SP1 – Inventory Assets 27 www.promindsglobal.com
The Resilient Organization 28 www.promindsglobal.com
Classes of Formal CERT® - RMM Appraisal Methods 29 www.promindsglobal.com
CERT-RMM Check Points • Capability Survey • CERT-RMM Compass 30 www.promindsglobal.com
CERT-RMM Professional Roles • CERT-RMM Appraiser • CERT-RMM Navigator • CERT-RMM Coach • CERT-RMM Appraisal Team Member 31 www.promindsglobal.com
Summary • Times have significantly changed and we are facing increasing risks, uncertainty and unprecedented disasters in peoples’ lives and businesses • Now more about survival requiring simpler, practical, faster and tested solutions towards the focus on resilience • New challenges driving new ways of thinking • An embedded top down / bottom up Resilience Management Program and culture is about “doing business better” in managing opportunities, mitigating risks and becoming more resilient in a rapidly changing operating environment Statistically 1 in 5 organisations will suffer a major incident every 5 years 32 www.promindsglobal.com
References 1. Presentation on CERT® Resilience Management Model – A Maturity Model Approach to Managing Operational Resilience by Rich Caralli of CERT® RMM Team 2. Presentation on CERT® Resilience Management Model – Improving and Sustaining Processes for Managing Operational Resiliency by Rich Caralli of CERT® RMM Team 3. CERT® Resilience Management Model – A Maturity Model for Managing Operational Resilience (CERT® RMM Ver 1.1) by Rich Caralli, Julia H. Allen and David W. White of Addison Wesley Publications 4. Presentation on “Towards Resilience Management” by David Martin ProMinds® do hereby acknowledge the copyright and trademarks of the above referenced materials and assure that, no modifications / alterations are made on their 33 www.promindsglobal.com
CERT-RMM-Book & Contacts 34 www.promindsglobal.com
Click to editOverview ProMinds Master title style Who We Are What Are We • Founded in June 2005 • Empanelled with CERT-In, • HQ in Hyderabad, India Ministry of ICT, as an Info. Security Auditing Org. • Served 250+ Clients • Worldwide partner SEI-CMU, • Across 15+ Industries for CMMI® & People CMM • In Over 10 Countries • An ISO 27001:2005 certified • 250+ Man-years of Experience • An ISO 9001:2008 certified • 25+ Professionals • A member of NASSCOM • A member of DSCI 35 www.promindsglobal.com
What Do We Do IT Governance Technology, Capability & Industrial Risk and Performance & Maturity Advisory Compliance Transformation 36 www.promindsglobal.com
Whom We Serve Industries and Sectors Software & IT Services Business Process Outsourcing Banking & Financial Services Healthcare & Insurance Telecom Manufacturing Governments & Public Sector Mining & Metals Defense Oil & Gas Pharmaceuticals Energy For more details, visit us at www.promindsglobal.com or 37 www.promindsglobal.com
38 www.promindsglobal.com
Contact Us We would be happy to provide any further information that you may require to assist in your corporate transformation initiatives Please contact us: Corporate Office: Regional Offices: ProMinds® Consulting Pvt. Ltd. Bangalore | Chennai | Mumbai | New Delhi 402, ABK Olbee Plaza, Road No. 1, Banjara Hills, Hyderabad - 500034 India Tel: +91-40-40207383, 23113996 Mob: +91-9866673663 info@promindsglobal.com US Office ProMinds Global Inc 614 Broadmoor Dr., APT C, Saint Louis, Missouri 63017 USA Phone: +1-314-4713604, +1-314-8495264 E-Mail: info@promindsglobal.com 39 www.promindsglobal.com

Empfohlen

C4SEM Cert Publication2011
C4SEM Cert Publication2011C4SEM Cert Publication2011
C4SEM Cert Publication2011mrastakhiz
 
The safety leadership challenge building soft skills for exemplary safety p...
The safety leadership challenge building soft skills for exemplary safety p...The safety leadership challenge building soft skills for exemplary safety p...
The safety leadership challenge building soft skills for exemplary safety p...OHS Leaders Summit
 
Exploring the link between Organsiational Resilience and Crisis Management
Exploring the link between Organsiational Resilience and Crisis ManagementExploring the link between Organsiational Resilience and Crisis Management
Exploring the link between Organsiational Resilience and Crisis ManagementAlex Serrano
 
A brief overview of operational risk
A brief overview of operational riskA brief overview of operational risk
A brief overview of operational riskDiane Christina
 
Revista PM Network
Revista PM NetworkRevista PM Network
Revista PM NetworkDC-DinsmoreCompass
 
Dod IA Pen Testing Brief
Dod IA Pen Testing BriefDod IA Pen Testing Brief
Dod IA Pen Testing BriefDavid McGuire
 
Security Maturity Model
Security Maturity ModelSecurity Maturity Model
Security Maturity ModelConferencias FIST
 
Supply Chain Recovery is a Competitive Capability
Supply Chain Recovery is a Competitive CapabilitySupply Chain Recovery is a Competitive Capability
Supply Chain Recovery is a Competitive CapabilityMissionMode
 

Empfohlen

C4SEM Cert Publication2011
C4SEM Cert Publication2011C4SEM Cert Publication2011
C4SEM Cert Publication2011mrastakhiz
 
The safety leadership challenge building soft skills for exemplary safety p...
The safety leadership challenge building soft skills for exemplary safety p...The safety leadership challenge building soft skills for exemplary safety p...
The safety leadership challenge building soft skills for exemplary safety p...OHS Leaders Summit
 
Exploring the link between Organsiational Resilience and Crisis Management
Exploring the link between Organsiational Resilience and Crisis ManagementExploring the link between Organsiational Resilience and Crisis Management
Exploring the link between Organsiational Resilience and Crisis ManagementAlex Serrano
 
A brief overview of operational risk
A brief overview of operational riskA brief overview of operational risk
A brief overview of operational riskDiane Christina
 
Revista PM Network
Revista PM NetworkRevista PM Network
Revista PM NetworkDC-DinsmoreCompass
 
Dod IA Pen Testing Brief
Dod IA Pen Testing BriefDod IA Pen Testing Brief
Dod IA Pen Testing BriefDavid McGuire
 
Security Maturity Model
Security Maturity ModelSecurity Maturity Model
Security Maturity ModelConferencias FIST
 
Supply Chain Recovery is a Competitive Capability
Supply Chain Recovery is a Competitive CapabilitySupply Chain Recovery is a Competitive Capability
Supply Chain Recovery is a Competitive CapabilityMissionMode
 
Common Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAECommon Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAEWheelhouse Advisors LLC
 
Thomas DeLaine’s Resume
Thomas DeLaine’s ResumeThomas DeLaine’s Resume
Thomas DeLaine’s Resumetjdelaine
 
Internal audit requirement
Internal audit requirementInternal audit requirement
Internal audit requirementabhijitsingh007
 
Malcolm Reid Resilience Article
Malcolm Reid Resilience ArticleMalcolm Reid Resilience Article
Malcolm Reid Resilience ArticleMalcolm Reid
 
Risk 2012 Walenta 120926 sanitized
Risk 2012 Walenta 120926 sanitizedRisk 2012 Walenta 120926 sanitized
Risk 2012 Walenta 120926 sanitizedThomas Walenta, PMI Fellow
 
CROs must be part of the cybersecurity solution by david x martin
CROs must be part of the cybersecurity solution by david x martinCROs must be part of the cybersecurity solution by david x martin
CROs must be part of the cybersecurity solution by david x martinDavid X Martin
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management MetricStream Inc
 
Information Security Maturity Model
Information Security Maturity ModelInformation Security Maturity Model
Information Security Maturity ModelCSCJournals
 
The Risk Earnings Ratio
The Risk Earnings RatioThe Risk Earnings Ratio
The Risk Earnings RatioSimon Baker-Chambers
 
New Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsNew Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsDavid X Martin
 
Sms Guidance Pamphlet
Sms Guidance PamphletSms Guidance Pamphlet
Sms Guidance PamphletGarnerbarro PL
 
Risk Analysis In Business Continuity Management - Jeremy Wong
Risk Analysis In Business Continuity Management - Jeremy WongRisk Analysis In Business Continuity Management - Jeremy Wong
Risk Analysis In Business Continuity Management - Jeremy WongBCM Institute
 
HML Risk Transformation
HML Risk TransformationHML Risk Transformation
HML Risk TransformationAndrew Smart
 
Risk management benchmarking 2013
Risk management benchmarking 2013Risk management benchmarking 2013
Risk management benchmarking 2013Rahul Bhan (CA, CIA, MBA)
 
Duty of Care and Travel
Duty of Care and TravelDuty of Care and Travel
Duty of Care and TravelEnterprise Security Risk Management
 
Risk eng
Risk engRisk eng
Risk engartipradhan
 
Reputation resiliency drj 3.28.2012 final
Reputation resiliency drj 3.28.2012 finalReputation resiliency drj 3.28.2012 final
Reputation resiliency drj 3.28.2012 finalLinda Locke Reputation Strategist
 
3 Steps for Reducing Complexity
3 Steps for Reducing Complexity3 Steps for Reducing Complexity
3 Steps for Reducing Complexitysixsigmaintegration23
 
Comprehensive integrated reporting fei article by david phillips mike willis ...
Comprehensive integrated reporting fei article by david phillips mike willis ...Comprehensive integrated reporting fei article by david phillips mike willis ...
Comprehensive integrated reporting fei article by david phillips mike willis ...Workiva
 
Introducción a los sistemas de información empresariales
Introducción a los sistemas de información empresarialesIntroducción a los sistemas de información empresariales
Introducción a los sistemas de información empresarialesConstanza Ruiz Aguilar
 
Apresentação de resultados financeiros e operacionais 2 t08
Apresentação de resultados financeiros e operacionais 2 t08Apresentação de resultados financeiros e operacionais 2 t08
Apresentação de resultados financeiros e operacionais 2 t08Equatorial
 
MOMENTS HOTEL ROHTAK
MOMENTS HOTEL ROHTAKMOMENTS HOTEL ROHTAK
MOMENTS HOTEL ROHTAKRohtak HOTEL MOMENTS
 

Weitere ähnliche Inhalte

Was ist angesagt?

Common Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAECommon Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAEWheelhouse Advisors LLC
 
Thomas DeLaine’s Resume
Thomas DeLaine’s ResumeThomas DeLaine’s Resume
Thomas DeLaine’s Resumetjdelaine
 
Internal audit requirement
Internal audit requirementInternal audit requirement
Internal audit requirementabhijitsingh007
 
Malcolm Reid Resilience Article
Malcolm Reid Resilience ArticleMalcolm Reid Resilience Article
Malcolm Reid Resilience ArticleMalcolm Reid
 
CROs must be part of the cybersecurity solution by david x martin
CROs must be part of the cybersecurity solution by david x martinCROs must be part of the cybersecurity solution by david x martin
CROs must be part of the cybersecurity solution by david x martinDavid X Martin
 
Information Security Maturity Model
Information Security Maturity ModelInformation Security Maturity Model
Information Security Maturity ModelCSCJournals
 
New Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsNew Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsDavid X Martin
 
Risk Analysis In Business Continuity Management - Jeremy Wong
Risk Analysis In Business Continuity Management - Jeremy WongRisk Analysis In Business Continuity Management - Jeremy Wong
Risk Analysis In Business Continuity Management - Jeremy WongBCM Institute
 
HML Risk Transformation
HML Risk TransformationHML Risk Transformation
HML Risk TransformationAndrew Smart
 
Comprehensive integrated reporting fei article by david phillips mike willis ...
Comprehensive integrated reporting fei article by david phillips mike willis ...Comprehensive integrated reporting fei article by david phillips mike willis ...
Comprehensive integrated reporting fei article by david phillips mike willis ...Workiva
 

Was ist angesagt? (19)

Common Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAECommon Objectives of the CRO and the CAE
Common Objectives of the CRO and the CAE
 
Thomas DeLaine’s Resume
Thomas DeLaine’s ResumeThomas DeLaine’s Resume
Thomas DeLaine’s Resume
 
Internal audit requirement
Internal audit requirementInternal audit requirement
Internal audit requirement
 
Malcolm Reid Resilience Article
Malcolm Reid Resilience ArticleMalcolm Reid Resilience Article
Malcolm Reid Resilience Article
 
Risk 2012 Walenta 120926 sanitized
Risk 2012 Walenta 120926 sanitizedRisk 2012 Walenta 120926 sanitized
Risk 2012 Walenta 120926 sanitized
 
CROs must be part of the cybersecurity solution by david x martin
CROs must be part of the cybersecurity solution by david x martinCROs must be part of the cybersecurity solution by david x martin
CROs must be part of the cybersecurity solution by david x martin
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management
 
Information Security Maturity Model
Information Security Maturity ModelInformation Security Maturity Model
Information Security Maturity Model
 
The Risk Earnings Ratio
The Risk Earnings RatioThe Risk Earnings Ratio
The Risk Earnings Ratio
 
New Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsNew Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-Profits
 
Sms Guidance Pamphlet
Sms Guidance PamphletSms Guidance Pamphlet
Sms Guidance Pamphlet
 
Risk Analysis In Business Continuity Management - Jeremy Wong
Risk Analysis In Business Continuity Management - Jeremy WongRisk Analysis In Business Continuity Management - Jeremy Wong
Risk Analysis In Business Continuity Management - Jeremy Wong
 
HML Risk Transformation
HML Risk TransformationHML Risk Transformation
HML Risk Transformation
 
Risk management benchmarking 2013
Risk management benchmarking 2013Risk management benchmarking 2013
Risk management benchmarking 2013
 
Duty of Care and Travel
Duty of Care and TravelDuty of Care and Travel
Duty of Care and Travel
 
Risk eng
Risk engRisk eng
Risk eng
 
Reputation resiliency drj 3.28.2012 final
Reputation resiliency drj 3.28.2012 finalReputation resiliency drj 3.28.2012 final
Reputation resiliency drj 3.28.2012 final
 
3 Steps for Reducing Complexity
3 Steps for Reducing Complexity3 Steps for Reducing Complexity
3 Steps for Reducing Complexity
 
Comprehensive integrated reporting fei article by david phillips mike willis ...
Comprehensive integrated reporting fei article by david phillips mike willis ...Comprehensive integrated reporting fei article by david phillips mike willis ...
Comprehensive integrated reporting fei article by david phillips mike willis ...
 

Andere mochten auch

Introducción a los sistemas de información empresariales
Introducción a los sistemas de información empresarialesIntroducción a los sistemas de información empresariales
Introducción a los sistemas de información empresarialesConstanza Ruiz Aguilar
 
Apresentação de resultados financeiros e operacionais 2 t08
Apresentação de resultados financeiros e operacionais 2 t08Apresentação de resultados financeiros e operacionais 2 t08
Apresentação de resultados financeiros e operacionais 2 t08Equatorial
 
Rafael Herrera - Innovación es más
Rafael Herrera - Innovación es másRafael Herrera - Innovación es más
Rafael Herrera - Innovación es másinnovaec
 
Los video juegos una herramienta para la educación
Los video juegos una herramienta para la educaciónLos video juegos una herramienta para la educación
Los video juegos una herramienta para la educaciónPhilippe Boland
 
Huggies pull ups-presentation_final2
Huggies pull ups-presentation_final2Huggies pull ups-presentation_final2
Huggies pull ups-presentation_final2jenasilverman5
 
Aula 01 primeiro encontro - finanças - profº.miguel
Aula 01 primeiro encontro - finanças - profº.miguelAula 01 primeiro encontro - finanças - profº.miguel
Aula 01 primeiro encontro - finanças - profº.miguelcrrrs
 
Analisis de sistemas
Analisis de sistemasAnalisis de sistemas
Analisis de sistemasgabrycifu
 
Transdermal(matrix system) validation ppt
Transdermal(matrix system) validation pptTransdermal(matrix system) validation ppt
Transdermal(matrix system) validation pptsarvesh022
 
Online Performance Evaluation System
Online Performance Evaluation SystemOnline Performance Evaluation System
Online Performance Evaluation SystemPratham Vision
 
Metodologia de kendall y kendall
Metodologia de kendall y kendallMetodologia de kendall y kendall
Metodologia de kendall y kendallAlexia Liss
 
Análisis y diseño de sistemas
Análisis y diseño de sistemasAnálisis y diseño de sistemas
Análisis y diseño de sistemasUNEFA
 
Modelos de desarrollo de aplicaciones web
Modelos de desarrollo de aplicaciones webModelos de desarrollo de aplicaciones web
Modelos de desarrollo de aplicaciones webYaskelly Yedra
 
SLAC 2008 RPMs selber bauen
SLAC 2008 RPMs selber bauenSLAC 2008 RPMs selber bauen
SLAC 2008 RPMs selber bauenSchlomo Schapiro
 
Metodología rmm resumido
Metodología rmm resumidoMetodología rmm resumido
Metodología rmm resumidoAngel Morinigo
 

Andere mochten auch (20)

Introducción a los sistemas de información empresariales
Introducción a los sistemas de información empresarialesIntroducción a los sistemas de información empresariales
Introducción a los sistemas de información empresariales
 
Apresentação de resultados financeiros e operacionais 2 t08
Apresentação de resultados financeiros e operacionais 2 t08Apresentação de resultados financeiros e operacionais 2 t08
Apresentação de resultados financeiros e operacionais 2 t08
 
MOMENTS HOTEL ROHTAK
MOMENTS HOTEL ROHTAKMOMENTS HOTEL ROHTAK
MOMENTS HOTEL ROHTAK
 
Rafael Herrera - Innovación es más
Rafael Herrera - Innovación es másRafael Herrera - Innovación es más
Rafael Herrera - Innovación es más
 
The HANA Cloud Platform
The HANA Cloud PlatformThe HANA Cloud Platform
The HANA Cloud Platform
 
Formació d'una Bassa
Formació d'una BassaFormació d'una Bassa
Formació d'una Bassa
 
Los video juegos una herramienta para la educación
Los video juegos una herramienta para la educaciónLos video juegos una herramienta para la educación
Los video juegos una herramienta para la educación
 
Huggies pull ups-presentation_final2
Huggies pull ups-presentation_final2Huggies pull ups-presentation_final2
Huggies pull ups-presentation_final2
 
Orthodontics chapter
Orthodontics chapterOrthodontics chapter
Orthodontics chapter
 
La casa del tesoro
La casa del tesoroLa casa del tesoro
La casa del tesoro
 
Aula 01 primeiro encontro - finanças - profº.miguel
Aula 01 primeiro encontro - finanças - profº.miguelAula 01 primeiro encontro - finanças - profº.miguel
Aula 01 primeiro encontro - finanças - profº.miguel
 
Analisis de sistemas
Analisis de sistemasAnalisis de sistemas
Analisis de sistemas
 
Transdermal(matrix system) validation ppt
Transdermal(matrix system) validation pptTransdermal(matrix system) validation ppt
Transdermal(matrix system) validation ppt
 
Online Performance Evaluation System
Online Performance Evaluation SystemOnline Performance Evaluation System
Online Performance Evaluation System
 
Metodologia de kendall y kendall
Metodologia de kendall y kendallMetodologia de kendall y kendall
Metodologia de kendall y kendall
 
Análisis y diseño de sistemas
Análisis y diseño de sistemasAnálisis y diseño de sistemas
Análisis y diseño de sistemas
 
Analisis y diseño de sistemas
Analisis y diseño de sistemasAnalisis y diseño de sistemas
Analisis y diseño de sistemas
 
Modelos de desarrollo de aplicaciones web
Modelos de desarrollo de aplicaciones webModelos de desarrollo de aplicaciones web
Modelos de desarrollo de aplicaciones web
 
SLAC 2008 RPMs selber bauen
SLAC 2008 RPMs selber bauenSLAC 2008 RPMs selber bauen
SLAC 2008 RPMs selber bauen
 
Metodología rmm resumido
Metodología rmm resumidoMetodología rmm resumido
Metodología rmm resumido
 

Ähnlich wie HYDSPIN-ProMinds CERT-RMM Presentation (25Aug2011)

Common failures of risk management
Common failures of risk management Common failures of risk management
Common failures of risk management Surajit Datta
 
Integrated Risk Management Whitepaper - CAMMS
Integrated Risk Management Whitepaper - CAMMSIntegrated Risk Management Whitepaper - CAMMS
Integrated Risk Management Whitepaper - CAMMSCAMMS
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk ManagementAnu Damodaran
 
From technology risk_to_enterprise_risk_the_new_frontier
From technology risk_to_enterprise_risk_the_new_frontierFrom technology risk_to_enterprise_risk_the_new_frontier
From technology risk_to_enterprise_risk_the_new_frontierRamsés Gallego
 
Understanding and Managing Supply Chain Risk
Understanding and Managing Supply Chain RiskUnderstanding and Managing Supply Chain Risk
Understanding and Managing Supply Chain RiskFindWhitePapers
 
Role of Professional Accountants in Business in Sustainable Growth of Organiz...
Role of Professional Accountants in Business in Sustainable Growth of Organiz...Role of Professional Accountants in Business in Sustainable Growth of Organiz...
Role of Professional Accountants in Business in Sustainable Growth of Organiz...International Federation of Accountants
 
Risk Offering Summary
Risk Offering SummaryRisk Offering Summary
Risk Offering Summarydgeoghegan
 
Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Andrew Smart
 
Amper ERM Presentation to FEI
Amper ERM Presentation to FEIAmper ERM Presentation to FEI
Amper ERM Presentation to FEIjravi
 

Ähnlich wie HYDSPIN-ProMinds CERT-RMM Presentation (25Aug2011) (20)

Common failures of risk management
Common failures of risk management Common failures of risk management
Common failures of risk management
 
Integrated Risk Management Whitepaper - CAMMS
Integrated Risk Management Whitepaper - CAMMSIntegrated Risk Management Whitepaper - CAMMS
Integrated Risk Management Whitepaper - CAMMS
 
People Risk Collateral
People Risk CollateralPeople Risk Collateral
People Risk Collateral
 
People Risk Collateral
People Risk CollateralPeople Risk Collateral
People Risk Collateral
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
 
Organizational Resilience Forum 2012
Organizational Resilience Forum 2012Organizational Resilience Forum 2012
Organizational Resilience Forum 2012
 
From technology risk_to_enterprise_risk_the_new_frontier
From technology risk_to_enterprise_risk_the_new_frontierFrom technology risk_to_enterprise_risk_the_new_frontier
From technology risk_to_enterprise_risk_the_new_frontier
 
Building organisational resilience
Building organisational resilienceBuilding organisational resilience
Building organisational resilience
 
People risk collateral 2013
People risk collateral 2013People risk collateral 2013
People risk collateral 2013
 
People risk collateral 2013
People risk collateral 2013People risk collateral 2013
People risk collateral 2013
 
Understanding and Managing Supply Chain Risk
Understanding and Managing Supply Chain RiskUnderstanding and Managing Supply Chain Risk
Understanding and Managing Supply Chain Risk
 
Role of Professional Accountants in Business in Sustainable Growth of Organiz...
Role of Professional Accountants in Business in Sustainable Growth of Organiz...Role of Professional Accountants in Business in Sustainable Growth of Organiz...
Role of Professional Accountants in Business in Sustainable Growth of Organiz...
 
Risk Offering Summary
Risk Offering SummaryRisk Offering Summary
Risk Offering Summary
 
Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite Shaping Your Culture via Risk Appetite
Shaping Your Culture via Risk Appetite
 
Amper ERM Presentation to FEI
Amper ERM Presentation to FEIAmper ERM Presentation to FEI
Amper ERM Presentation to FEI
 
People risk collateral 2013
People risk collateral 2013People risk collateral 2013
People risk collateral 2013
 
People risk collateral 2013
People risk collateral 2013People risk collateral 2013
People risk collateral 2013
 
3 Steps for Reducing Complexity
3 Steps for Reducing Complexity3 Steps for Reducing Complexity
3 Steps for Reducing Complexity
 
3 Steps For Reducing Complexity
3 Steps For Reducing Complexity3 Steps For Reducing Complexity
3 Steps For Reducing Complexity
 
Irm Risk Appetite
Irm Risk AppetiteIrm Risk Appetite
Irm Risk Appetite
 

Kürzlich hochgeladen

Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchirictsugar
 
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!Doge Mining Website
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCRashishs7044
 
Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...Americas Got Grants
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607dollysharma2066
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesKeppelCorporation
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfKhaled Al Awadi
 
Market Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMarket Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMintel Group
 
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCRashishs7044
 
The-Ethical-issues-ghhhhhhhhjof-Byjus.pptx
The-Ethical-issues-ghhhhhhhhjof-Byjus.pptxThe-Ethical-issues-ghhhhhhhhjof-Byjus.pptx
The-Ethical-issues-ghhhhhhhhjof-Byjus.pptxmbikashkanyari
 
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckPitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckHajeJanKamps
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Kirill Klimov
 
Financial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptxFinancial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptxsaniyaimamuddin
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfRbc Rbcua
 
Investment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy CheruiyotInvestment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy Cheruiyotictsugar
 
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City GurgaonCall Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaoncallgirls2057
 
Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737Riya Pathan
 
Digital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdfDigital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdfJos Voskuil
 

Kürzlich hochgeladen (20)

Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchir
 
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
Unlocking the Future: Explore Web 3.0 Workshop to Start Earning Today!
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
 
Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...Church Building Grants To Assist With New Construction, Additions, And Restor...
Church Building Grants To Assist With New Construction, Additions, And Restor...
 
Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
 
Annual General Meeting Presentation Slides
Annual General Meeting Presentation SlidesAnnual General Meeting Presentation Slides
Annual General Meeting Presentation Slides
 
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdfNewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
NewBase 19 April 2024 Energy News issue - 1717 by Khaled Al Awadi.pdf
 
Market Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMarket Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 Edition
 
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
8447779800, Low rate Call girls in Shivaji Enclave Delhi NCR
 
The-Ethical-issues-ghhhhhhhhjof-Byjus.pptx
The-Ethical-issues-ghhhhhhhhjof-Byjus.pptxThe-Ethical-issues-ghhhhhhhhjof-Byjus.pptx
The-Ethical-issues-ghhhhhhhhjof-Byjus.pptx
 
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckPitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024
 
Financial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptxFinancial-Statement-Analysis-of-Coca-cola-Company.pptx
Financial-Statement-Analysis-of-Coca-cola-Company.pptx
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdf
 
Investment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy CheruiyotInvestment in The Coconut Industry by Nancy Cheruiyot
Investment in The Coconut Industry by Nancy Cheruiyot
 
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City GurgaonCall Us 📲8800102216📞 Call Girls In DLF City Gurgaon
Call Us 📲8800102216📞 Call Girls In DLF City Gurgaon
 
Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737Independent Call Girls Andheri Nightlaila 9967584737
Independent Call Girls Andheri Nightlaila 9967584737
 
Digital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdfDigital Transformation in the PLM domain - distrib.pdf
Digital Transformation in the PLM domain - distrib.pdf
 

HYDSPIN-ProMinds CERT-RMM Presentation (25Aug2011)

  • 1. Overview to ProMinds® Engineering Business Transformations www.promindsglobal.com
  • 2. CERT®-RMM : A Curtain Raiser For HYDSPIN, Hyderabad, India 25th August 2011 By P M Shareef Certified Lead Appraiser & Lead Auditor www.promindsglobal.com
  • 3. Notice and Disclaimer NO WARRANTY THIS MATERIAL OF PROMINDS CONSULTING IS FURNISHED ON AN ―AS-IS" BASIS FROM THE REFERENCE MATERIALS AS STATED IN THE LAST WITHOUT ANY ALTERATIONS. PROMINDS CONSULTING MAKES NO WARRANTIES OF ANY KIND, EITHER EXPRESSED OR IMPLIED, AS TO ANY MATTER INCLUDING, BUT NOT LIMITED TO, WARRANTY OF FITNESS FOR PURPOSE OR MERCHANTABILITY, EXCLUSIVITY, OR RESULTS OBTAINED FROM USE OF THE MATERIAL. PROMINDS CONSULTING DOES NOT MAKE ANY WARRANTY OF ANY KIND WITH RESPECT TO FREEDOM FROM PATENT, TRADEMARK, OR COPYRIGHT INFRINGEMENT. Use of any trademarks in this presentation is not intended in any way to infringe on the rights of the trademark holder. DISCLAIMER This message and any attachments are solely intended for the addressee(s). It may also be ProMinds’ confidential, privileged and / or subject to copyright. Access to this presentation by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited that may be unlawful. If you have received this in error, please notify the sender immediately by return and delete it from your computer. While all care has been taken, ProMinds' management disclaims all liabilities for loss or damages to person(s) or properties arising from misuse of any information provided or the message being infected by computer virus or other contamination. 3 www.promindsglobal.com
  • 4. Take Away’s • What is Resilience Management? • Why Resilience Management? • Preamble to CERT® Resilience Management Model • Features and Benefits of the CERT® - RMM • CERT-RMM Appraisals • Roles You Could Play • Summary 4 www.promindsglobal.com
  • 5. What is Resilience? Resilience is a function of an organisation’s: situation awareness, management of keystone vulnerabilities and adaptive capacity in a complex, dynamic and interconnected environment. Mostly it refers to the operational part of the business wherein challenges are many as against many of the current standards and practices, which focuses on the strategic part of business. 5 www.promindsglobal.com
  • 6. Defining “RESILIENCE” • A Resilient Organisation is one that is: – able to achieve its business objectives and – realise opportunities, even in the face of adversity. • Resilience Management is the ability of an Organisation to survive an unscheduled disruption or major crisis from its ability to adapt using proven and integrated Risk Management, Crisis Management and Business Continuity Management processes using a single line of sight. 6 www.promindsglobal.com
  • 7. Resilience Management Framework Increasing situational awareness will provide greater understanding of vulnerabilities that can critically undermine performance. Emergency Management Testing of plans and Planning Testing Business Continuity Management people response is Risk Management essential to ensure Adaptive Capability realism Decision makers learn about underlying values systems and key individuals - relying on the culture 7 www.promindsglobal.com
  • 8. Resilience Indicators Situation Awareness Manage Key Threats Adaptive Capacity Roles & Planning Strategies Silo Mentality Responsibilities Understanding Hazards Participation in Communications and & Consequences Exercises Relationships Connectivity Capability & capacity Strategic Vision and Awareness Of Internal Resources Outcome Expectancy Insurance Capability & capacity Information & Awareness Of External Resources Knowledge Organizational Leadership, Management Recovery Priorities Connectivity & Governance Structures Aware of total Those components of an The culture of the operating system, organization that have organization allowing it including threats, the potential to cause the to make decisions in a opportunities, greatest negative impact timely and appropriate connectivity and manner in a crisis. internal and external stakeholders 8 www.promindsglobal.com
  • 9. Why Resilience Management (RM)? • It brings together all the planning that an organisation may have done under one umbrella; • Increases its situation awareness; • Have a greater understanding of the vulnerabilities that can critically undermine its performance; • Improve its adaptive capacity as decision makers; • Make you learn more about the underlying value systems of the organisation and of key individuals in the organisation; • Highlights the expectations that decision makers have of their enterprise and key stakeholders; • Offers a way to test existing plans and create new ones. Risk Management, Business Continuity and Emergency Management are commonly viewed as closely related, but a practical means of linking them is often not achieved. 9 www.promindsglobal.com
  • 10. Towards Resilience – Emerging Risks GEN Y NEW CARBON CONSTRAINED STANDARDS WORLD & COMPLIANCE GREEN IT SUSTAINABILITY SYSTEMATIC CULTURE CYCLICAL & ETHICS RISK AVAILABILTY CHANGING OF RESILIENCE WORKFORCE CREDIT/ LIQUIDITY 10 www.promindsglobal.com
  • 11. What is CERT® RMM? 11 www.promindsglobal.com
  • 12. CERT® RMM Background 12 www.promindsglobal.com
  • 13. CERT® RMM – Imperatives 13 www.promindsglobal.com
  • 14. CERT® - RMM in the Life Cycle Operational resilience management focuses on the deploy, operate, and decommission phases, but reaches back to development phase of lifecycle to ensure consideration of security and continuity issues prior to placing assets in production 14 www.promindsglobal.com
  • 15. For Comparison: CERT® - RMM & CMMI 15 www.promindsglobal.com
  • 16. Features of CERT® - RMM CERT-RMM brings several innovative and advantageous concepts to the management of operational resilience. • The convergence advantage: Merging the disciplines of security, BC/DR, and IT operations into a single model • The process advantage: Elevating these disciplines to a process view, useful as an integration and measurement framework • The maturity advantage: Provides a foundation for practical institutionalization of practices— critical for retaining these practices under times of stress 16 www.promindsglobal.com
  • 17. CERT® - RMM at a glance 17 www.promindsglobal.com
  • 18. CERT® - RMM by numbers 18 www.promindsglobal.com
  • 19. Process Area Structure 19 www.promindsglobal.com
  • 20. Benefits of CERT® - RMM CERT-RMM can be used as a • Starting point for leveraging convergence across security, business continuity, and IT operations activities • Reference model for understanding the scope of managing operational resiliency • Taxonomy to enable internal and external communication • Organizing construct for codes of practice, standards, and regulations and a framework for compliance • Process improvement model to catalyze improvement efforts • Baseline for appraising an organization’s capability • Guide for improvement in areas where an organization’s capability does not equal its desired state 20 www.promindsglobal.com
  • 21. As an Organizing Principle 21 www.promindsglobal.com
  • 22. The Promise of Process Institutionalization 22 www.promindsglobal.com
  • 23. Process Institutionalization 23 www.promindsglobal.com
  • 24. Process Institutionalization in CERT® - RMM 24 www.promindsglobal.com
  • 25. Example: Asset Definition and Management 25 www.promindsglobal.com
  • 26. Institutionalizing Asset Definition and Management 26 www.promindsglobal.com
  • 27. Practice Example: ADM.SG1.SP1 – Inventory Assets 27 www.promindsglobal.com
  • 28. The Resilient Organization 28 www.promindsglobal.com
  • 29. Classes of Formal CERT® - RMM Appraisal Methods 29 www.promindsglobal.com
  • 30. CERT-RMM Check Points • Capability Survey • CERT-RMM Compass 30 www.promindsglobal.com
  • 31. CERT-RMM Professional Roles • CERT-RMM Appraiser • CERT-RMM Navigator • CERT-RMM Coach • CERT-RMM Appraisal Team Member 31 www.promindsglobal.com
  • 32. Summary • Times have significantly changed and we are facing increasing risks, uncertainty and unprecedented disasters in peoples’ lives and businesses • Now more about survival requiring simpler, practical, faster and tested solutions towards the focus on resilience • New challenges driving new ways of thinking • An embedded top down / bottom up Resilience Management Program and culture is about “doing business better” in managing opportunities, mitigating risks and becoming more resilient in a rapidly changing operating environment Statistically 1 in 5 organisations will suffer a major incident every 5 years 32 www.promindsglobal.com
  • 33. References 1. Presentation on CERT® Resilience Management Model – A Maturity Model Approach to Managing Operational Resilience by Rich Caralli of CERT® RMM Team 2. Presentation on CERT® Resilience Management Model – Improving and Sustaining Processes for Managing Operational Resiliency by Rich Caralli of CERT® RMM Team 3. CERT® Resilience Management Model – A Maturity Model for Managing Operational Resilience (CERT® RMM Ver 1.1) by Rich Caralli, Julia H. Allen and David W. White of Addison Wesley Publications 4. Presentation on “Towards Resilience Management” by David Martin ProMinds® do hereby acknowledge the copyright and trademarks of the above referenced materials and assure that, no modifications / alterations are made on their 33 www.promindsglobal.com
  • 34. CERT-RMM-Book & Contacts 34 www.promindsglobal.com
  • 35. Click to editOverview ProMinds Master title style Who We Are What Are We • Founded in June 2005 • Empanelled with CERT-In, • HQ in Hyderabad, India Ministry of ICT, as an Info. Security Auditing Org. • Served 250+ Clients • Worldwide partner SEI-CMU, • Across 15+ Industries for CMMI® & People CMM • In Over 10 Countries • An ISO 27001:2005 certified • 250+ Man-years of Experience • An ISO 9001:2008 certified • 25+ Professionals • A member of NASSCOM • A member of DSCI 35 www.promindsglobal.com
  • 36. What Do We Do IT Governance Technology, Capability & Industrial Risk and Performance & Maturity Advisory Compliance Transformation 36 www.promindsglobal.com
  • 37. Whom We Serve Industries and Sectors Software & IT Services Business Process Outsourcing Banking & Financial Services Healthcare & Insurance Telecom Manufacturing Governments & Public Sector Mining & Metals Defense Oil & Gas Pharmaceuticals Energy For more details, visit us at www.promindsglobal.com or 37 www.promindsglobal.com
  • 39. Contact Us We would be happy to provide any further information that you may require to assist in your corporate transformation initiatives Please contact us: Corporate Office: Regional Offices: ProMinds® Consulting Pvt. Ltd. Bangalore | Chennai | Mumbai | New Delhi 402, ABK Olbee Plaza, Road No. 1, Banjara Hills, Hyderabad - 500034 India Tel: +91-40-40207383, 23113996 Mob: +91-9866673663 info@promindsglobal.com US Office ProMinds Global Inc 614 Broadmoor Dr., APT C, Saint Louis, Missouri 63017 USA Phone: +1-314-4713604, +1-314-8495264 E-Mail: info@promindsglobal.com 39 www.promindsglobal.com