Operational Risk and Resilience

Operational Risk and Resilience

Author: Chris Frost

Publisher: Elsevier

Published: 2000-11-14

Total Pages: 319

ISBN-13: 008051314X

DOWNLOAD EBOOK

Well publicised failures in risk management have appeared with shocking frequency over the past few years. Affected firms can suffer significant commercial damage or even bankruptcy as a result. Only now is there a growing realisation that risk management is a key management responsibility. This book will help turn your firm into a 'risk aware' organization which will be able to avoid catastrophic loss. It will also enable senior management to make better strategic and operational decisions, thanks to an informed understanding of business hazards. Case studies from a wide cross section of different firms and markets are used to explain how to define, analyse and control operational risk. - An insightful guide to one of the key topics of modern strategic and operational management, written by a team of expert risk management professionals - Learn about the application of operational risk management to a wide range of market sectors, including commercial, retail and investment banking, investment management, insurance, the energy industry, telecommunications, manufacturing and logistics - Case studies and worked examples from around the world, including North America, Western Europe, South East Asia and Latin America


Operational Risk Management

Operational Risk Management

Author: Ariane Chapelle

Publisher: John Wiley & Sons

Published: 2019-02-04

Total Pages: 272

ISBN-13: 1119549043

DOWNLOAD EBOOK

OpRisk Awards 2020 Book of the Year Winner! The Authoritative Guide to the Best Practices in Operational Risk Management Operational Risk Management offers a comprehensive guide that contains a review of the most up-to-date and effective operational risk management practices in the financial services industry. The book provides an essential overview of the current methods and best practices applied in financial companies and also contains advanced tools and techniques developed by the most mature firms in the field. The author explores the range of operational risks such as information security, fraud or reputation damage and details how to put in place an effective program based on the four main risk management activities: risk identification, risk assessment, risk mitigation and risk monitoring. The book also examines some specific types of operational risks that rank high on many firms' risk registers. Drawing on the author's extensive experience working with and advising financial companies, Operational Risk Management is written both for those new to the discipline and for experienced operational risk managers who want to strengthen and consolidate their knowledge.


CERT Resilience Management Model (CERT-RMM)

CERT Resilience Management Model (CERT-RMM)

Author: Richard A. Caralli

Publisher: Addison-Wesley Professional

Published: 2010-11-24

Total Pages: 1059

ISBN-13: 0132565889

DOWNLOAD EBOOK

CERT® Resilience Management Model (CERT-RMM) is an innovative and transformative way to manage operational resilience in complex, risk-evolving environments. CERT-RMM distills years of research into best practices for managing the security and survivability of people, information, technology, and facilities. It integrates these best practices into a unified, capability-focused maturity model that encompasses security, business continuity, and IT operations. By using CERT-RMM, organizations can escape silo-driven approaches to managing operational risk and align to achieve strategic resilience management goals. This book both introduces CERT-RMM and presents the model in its entirety. It begins with essential background for all professionals, whether they have previously used process improvement models or not. Next, it explains CERT-RMM’s Generic Goals and Practices and discusses various approaches for using the model. Short essays by a number of contributors illustrate how CERT-RMM can be applied for different purposes or can be used to improve an existing program. Finally, the book provides a complete baseline understanding of all 26 process areas included in CERT-RMM. Part One summarizes the value of a process improvement approach to managing resilience, explains CERT-RMM’s conventions and core principles, describes the model architecturally, and shows how itsupports relationships tightly linked to your objectives. Part Two focuses on using CERT-RMM to establish a foundation for sustaining operational resilience management processes in complex environments where risks rapidly emerge and change. Part Three details all 26 CERT-RMM process areas, from asset definition through vulnerability resolution. For each, complete descriptions of goals and practices are presented, with realistic examples. Part Four contains appendices, including Targeted Improvement Roadmaps, a glossary, and other reference materials. This book will be valuable to anyone seeking to improve the mission assurance of high-value services, including leaders of large enterprise or organizational units, security or business continuity specialists, managers of large IT operations, and those using methodologies such as ISO 27000, COBIT, ITIL, or CMMI.


The Resilience Operations Center

The Resilience Operations Center

Author:

Publisher:

Published: 2021-06

Total Pages:

ISBN-13: 9781737161806

DOWNLOAD EBOOK

This book describes why a Resilience Operations Center is vital to any organization that relies on partners to deliver products and services, and it provides the tactics and procedures necessary to achieve Operational Resilience.


Enterprise Security Risk Management

Enterprise Security Risk Management

Author: Brian Allen, Esq., CISSP, CISM, CPP, CFE

Publisher: Rothstein Publishing

Published: 2017-11-29

Total Pages: 407

ISBN-13: 1944480439

DOWNLOAD EBOOK

As a security professional, have you found that you and others in your company do not always define “security” the same way? Perhaps security interests and business interests have become misaligned. Brian Allen and Rachelle Loyear offer a new approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful. In their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security. How is ESRM familiar? As a security professional, you may already practice some of the components of ESRM. Many of the concepts – such as risk identification, risk transfer and acceptance, crisis management, and incident response – will be well known to you. How is ESRM new? While many of the principles are familiar, the authors have identified few organizations that apply them in the comprehensive, holistic way that ESRM represents – and even fewer that communicate these principles effectively to key decision-makers. How is ESRM practical? ESRM offers you a straightforward, realistic, actionable approach to deal effectively with all the distinct types of security risks facing you as a security practitioner. ESRM is performed in a life cycle of risk management including: Asset assessment and prioritization. Risk assessment and prioritization. Risk treatment (mitigation). Continuous improvement. Throughout Enterprise Security Risk Management: Concepts and Applications, the authors give you the tools and materials that will help you advance you in the security field, no matter if you are a student, a newcomer, or a seasoned professional. Included are realistic case studies, questions to help you assess your own security program, thought-provoking discussion questions, useful figures and tables, and references for your further reading. By redefining how everyone thinks about the role of security in the enterprise, your security organization can focus on working in partnership with business leaders and other key stakeholders to identify and mitigate security risks. As you begin to use ESRM, following the instructions in this book, you will experience greater personal and professional satisfaction as a security professional – and you’ll become a recognized and trusted partner in the business-critical effort of protecting your enterprise and all its assets.


Fundamentals of Operational Risk Management

Fundamentals of Operational Risk Management

Author: Simon Ashby

Publisher: Kogan Page Publishers

Published: 2022-04-03

Total Pages: 321

ISBN-13: 1398605034

DOWNLOAD EBOOK

Threats to an organization's operations, such as fraud, IT disruption or poorly designed products, could result in serious losses. Understand the key components of effective operational risk management with this essential book for risk professionals and students. Fundamentals of Operational Risk Management outlines how to implement a sound operational risk management framework which is embedded in day-to-day business activities. It covers the main operational risk tools including categorisation, risk and control self-assessment and scenario analysis, and explores the importance of risk appetite and tolerance. With case studies of major operational risk events to illustrate each concept, this book demonstrates the value of ORM and how it fits with other types of risk management. There is also guidance on the regulatory treatment of operational risk and the importance of risk culture in any organization. Master the essentials and improve the practice of operational risk management with this comprehensive guide.


Operational Risk Management

Operational Risk Management

Author: Ariel C. Pinto

Publisher: Momentum Press

Published: 2015-08-03

Total Pages: 91

ISBN-13: 1606505319

DOWNLOAD EBOOK

Businesspersons—including engineers, managers, and technoprenuers—are trained and drilled to make things happen. Part of their practice is to guide others on building monuments of success, and to make difficult decisions along the way. However, they will all realize that decisions they make eventually determine the chances they take, and become fraught with uncertainty. This book is developed to give businesspersons the opportunity to learn operational risk management from a systems perspective and be able to readily put this learning into action, whether in the classroom or the office, coupled with their experience and respective discipline.


Post-Crisis Changes in Global Bank Business Models: A New Taxonomy

Post-Crisis Changes in Global Bank Business Models: A New Taxonomy

Author: Mr.John C Caparusso

Publisher: International Monetary Fund

Published: 2019-12-27

Total Pages: 34

ISBN-13: 1513522884

DOWNLOAD EBOOK

The Global Financial Crisis unleashed changes in the operating and regulatory environments for large international banks. This paper proposes a novel taxonomy to identify and track business model evolution for the 30 Global Systemically Important Banks (G-SIBs). Drawing from banks’ reporting, it identifies strategies along four dimensions –consolidated lines of business and geographic orientation, and the funding models and legal entity structures of international operations. G-SIBs have adjusted their business models, especially by reducing market intensity. While G-SIBs have maintained international orientation, pressures on funding models and entity structures could affect the efficiency of capital flows through the bank channel.


Business Continuity and Risk Management

Business Continuity and Risk Management

Author: Kurt J. Engemann

Publisher: Rothstein Publishing

Published: 2014-10-01

Total Pages: 371

ISBN-13: 1931332894

DOWNLOAD EBOOK

As an instructor, you have seen business continuity and risk management grow exponentially, offering an exciting array of career possibilities to your students. They need the tools needed to begin their careers -- and to be ready for industry changes and new career paths. You cannot afford to use limited and inflexible teaching materials that might close doors or limit their options. Written with your classroom in mind,Business Continuity and Risk Management: Essentials of Organizational Resilience is the flexible, modular textbook you have been seeking -- combining business continuity and risk management. Full educator-designed teaching materials available for download. From years of experience teaching and consulting in Business Continuity and Risk, Kurt J. Engemann and Douglas M. Henderson explain everything clearly without extra words or extraneous philosophy. Your students will grasp and apply the main ideas quickly. They will feel that the authors wrote this textbook with them specifically in mind -- as if their questions are answered even before they ask them. Covering both Business Continuity and Risk Management and how these two bodies of knowledge and practice interface, Business Continuity and Risk Management: Essentials of Organizational Resilience is a state-of-the-art textbook designed to be easy for the student to understand -- and for you, as instructor, to present. Flexible, modular design allows you to customize a study plan with chapters covering: Business Continuity and Risk principles and practices. Information Technology and Information Security. Emergency Response and Crisis Management. Risk Modeling – in-depth instructions for students needing the statistical underpinnings in Risk Management. Global Standards and Best Practices Two real-world case studies are integrated throughout the text to give future managers experience in applying chapter principles to a service company and a manufacturer. Chapter objectives, discussion topics, review questions, numerous charts and graphs. Glossary and Index. Full bibliography at the end of each chapter. Extensive, downloadable classroom-tested Instructor Resources are available for college courses and professional development training, including slides, syllabi, test bank, discussion questions, and case studies. Endorsed by The Business Continuity Institute (BCI) and The Institute of Risk Management (IRM). QUOTES "It's difficult to write a book that serves both academia and practitioners, but this text provides a firm foundation for novices and a valuable reference for experienced professionals."--Security Management Magazine "The authors...bring the subject to life with rich teaching and learning features, making it an essential read for students and practitioners alike." – Phil AUTHOR BIOS Kurt J. Engemann, PhD, CBCP, is the Director of the Center for Business Continuity and Risk Management and Professor of Information Systems in the Hagan School of Business at Iona College. He is the editor-in-chief of the International Journal of Business Continuity and Risk Management Douglas M. Henderson, FSA, CBCP, is President of Disaster Management, Inc., and has 20+ years of consulting experience in all areas of Business Continuity and Emergency Response Management. He is the author of Is Your Business Ready for the Next Disaster? and a number of templates.


Business Continuity Exercises

Business Continuity Exercises

Author: Charlie Maclean-Bristol, MA (Hons), PgD, FBCI, FEPS, CBCI

Publisher: Rothstein Publishing

Published: 2020-11-01

Total Pages: 193

ISBN-13: 1944480692

DOWNLOAD EBOOK

An Unexercised Continuity Plan Could Be More Dangerous Than No Plan At All! Is exercising your continuity program too time-consuming, costly, or difficult to justify in the face of conflicting organizational priorities or senior management buy-in? What if you could use quick, cost-effective, easy exercises to get valuable results with only a relatively modest commitment? Whether you’re a seasoned practitioner or just getting started, Charlie Maclean-Bristol provides you with expert guidance, a practical framework, and lots of proven examples, tools, tips, techniques and scenarios to get your business continuity exercise program moving! You can carry out any of the 18 simple yet effective exercises detailed in this book in less than an hour, regardless of your level of experience. Plus, you will find all the support you will need to produce successful exercises. Build your teams’ knowledge, experience, confidence and abilities while validating your business continuity program, plans and procedures with these proven resources! Business Continuity Exercises: Quick Exercises to Validate Your Plan Will Help You To: Understand the process of planning and conducting business exercises efficiently while achieving maximum results. Develop the most appropriate strategy framework for conducting and assessing your exercise. Overcome obstacles to your business continuity exercise program, whether due to budget restrictions, time constraints, or conflicting priorities. Choose the most appropriate and effective exercise scenario, purpose and objectives. Plan and conduct your exercise using a straightforward, proven methodology with extensive tools and resources. Conduct exercises suitable for responding to all types of business interruptions and emergencies, including cyber incidents and civil disasters. Conduct exercises for newcomers to business continuity as well as for experienced practitioners. Create a comprehensive post-exercise report to achieve valuable insights, keep management and participants in the loop, and to further your objectives.