Description

Learn about changes to the FFIEC BSA/AML Examination Manual and the areas where banks should review their policies and procedures for compliance.

Course Description

Successful business continuity planning involves the entire organization. It requires clear and consistent communication and encompasses how employees will communicate, where they will go and how they will keep doing their jobs. An effective BCP prepares the organization for disruptive events.

Why is a BCP Important? Data suggests that 61% of companies surveyed had to invoke their BCP out of which 43% had to invoke it more than once. The key causes were natural disaster, power outage, IT failure, flood, fire, telecom failure, utility outage, and pandemic.

The critical lessons learned from invoking a BCP were:

• There had not been enough training and awareness efforts across the company:
• Plans didn’t adequately address emergency communications
• Key staff had not been included in testing; as a result they did not know their roles and responsibilities in the plans
• Cyber attacks

This training will cover the best practices for implementing and auditing a Business Continuity Plan, doing risk assessment and how to design live BCP, test and maintain it to overcome any internal or external disruptions and threat. The speaker will also discuss various standards from FFIEC to ISO.

Why should you attend?

This training will cover the best practices for implementing and auditing a Business Continuity Plan. The speaker will discuss the lifecycle of a BCP program with specific emphasis on Risk Assessment and Business Impact Analysis, Designing a living BCP & Testing & Maintenance.

The program will also detail the various standards from FFIEC to ISO. Participants will understand what’s involved in a full BCP program and have insights based upon field experience that can be applied to Internal Audit work and BCP. The session will provide you with tools that you can bring back to your company to improve upon BCP programs & ability to audit them to provide targeted recommendations.

Areas covered

• What should be included in a business continuity audit?
• Setting controls
• Which regulations and standards apply to business continuity audits?
• Examining evidence about the performance of activities
• Verifying measures to ensure continuity
• Evaluating quality vs. a general template

Who Will Benefit

• Auditors
• Internal Auditors
• Risk Managers
• Compliance Managers
• Planners
• Board of directors
• VP
• CFO

About the Instructor

Dr. Michael C. Redmond, PhD, is a certified project manager, PMP, has two master certifications in business continuity/disaster recovery MBCP and FBCI and is certified in emergency management. She is active in cyber security and holds multiple ISO certifications (ISO/IEC 27001 Information Security Management, ISO/IEC 27032 Lead Cyber Security Manger, ISO/IEC 27035 Security Incident Response, ISO/IEC 22301 Business Continuity Management Systems, ISO/IEC 21500 Project Management, and ISO/IEC 41001 Environmental Management). She is an international consultant, speaker and published author.

Her past experience includes 13 years as a senior manager with Deloitte, KPMG and Chubb in the areas of: compliance, crisis management, business continuity, disaster recovery, emergency management, internal audit/ gap analysis. She was a business continuity/disaster recovery manager with the Bank of New York. She consults for clients in diverse industries such as banking, manufacturing, pharmaceutical, hospitals, government agencies, colleges and universities, law firms, and media.

Dr. Redmond spent 4 years on active duty with the army and 18 1/2 years as National Guard and Reserve before retiring as a major. She is a graduate of Command & General Staff College (Fort Leavenworth), attended civil affairs courses at the US Army JFK School of Special Warfare and is Hazmat trained and DOD certified. The White House honored Dr. Redmond at a luncheon as one of the Top Women in Her Field of Business Continuity.