Whether it be student protests, heavy snowfalls, IT breaches or the August riots of last year, businesses in the UK have had to come to terms with the importance of having business continuity plans in place.
In truth, the interruption caused by such incidents can have damaging effects on businesses. Financial losses as well as the loss of reputation can occur if companies are unable to deal with the effects of disruption both quickly and effectively.
However, what organisations often fail to realise is that such business continuity plans should not sit alone. Rather, they must form part of an integrated strategy.
“Business continuity cannot exist as an independent function,” explained Chris Lawrence, chairman of the British Security Industry Association’s Security Consultancy Section. “We always advocate thinking about security, information management and business continuity as interdependent and requiring a fully integrated solution.”
Lawrence continued: “Certainly, there are elements in all three that are unique to a single function but the majority of policies and plans in one functional area will have an impact in another if not in all three. In particular, said plans should focus primarily on preventing incidents from occurring and diminishing their impact on business activity once they occur. In both cases, security measures can play a crucial part.”
Providing expert advice on how security ought to be incorporated in business continuity plans, Lawrence then pinpointed how effective business continuity plans require a number of key security considerations.
(1) Checking your security measures
“The robustness of the measures employed should be given attention,” urged Lawrence, “as should the fact that these security systems – which will include CCTV, access control systems, intruder alarms, physical security and IT security – must work within your specified requirements, obviously depending upon your business and the types of threats you’re likely to encounter. Doors and windows, for example, should be to a proper security rating. This can prevent unwanted entry or the spread of fire.”
(2) Employee and client vetting
“It’s important to ensure that all employees are security vetted – or at least reference checked – and that clients are credit checked so as to flag up any issues early on. This is an important preventative measure against fraud and/or theft from a disreputable company or person.”
(3) Training your staff
“Staff training and making the most of the skills of your security workforce should also be included,” stated Lawrence. “Well-trained security staff can act as marshals and wardens during an incident and help evacuate staff, liaise with the ‘blue light’ services and assist in co-ordinating an overall response. Also, they can prevent unwanted visitors from gaining access to the premises and can inspect and report suspicious packages.”
(4) Planning for civil disorder
“The August riots, which cost UK retailers an estimated GB pound 18.3 million1 – have served as a harsh reminder to businesses that civil disorder and rioting policy and procedures should now be included in all business continuity plans. This must include having lockdown procedures in place, and defining roles and responsibilities for when the events occur.”
(5) Testing the plan
“A timetable to allow for these procedures to be exercised on a regular basis will make sure everyone knows what they are supposed to be doing, and increase the effectiveness of a business continuity plan.”
Reliable security consultants will have a wealth of experience in providing advice on producing and implementing security considerations as part of business continuity plans tailored to the requirements of each individual client.
In particular, members of the BSIA’s Security Consultancy Section provide independent professional support to ensure that measures required by clients correspond to both existing and emerging threats while complimenting the client’s business environment and operation.
To find out more about the work of the BSIA’s Security Consultancy Section visit the website
Reference
1British Retail Crime Survey 2011 (British Retail Consortium)
