Business continuity is defined as a methodology that ensures the continuity of the essential company’s functions in order of a disruption or disaster, regardless of its type and cause.
In fact, some events around the world and in our country have begun to be taken more seriously and action. The event of September 11th and other events in America and the earthquake in our country have seriously raised this issue on everyone’s agenda. The collapsed buildings and people who died during these incidents led to clear questions about the continuation of the work. This sometimes suggests that disasters will only be caused by natural events such as earthquakes and terrorism, and suggests that everything will normally work with the measures taken in computer systems. In fact, the concept of business continuity, which is a much larger concept, is the result of a negative perception.
However, when we look at the issues that prevent work on an ongoing basis, these disasters represent less than 1% of the events that prevent work from being continuous. Others are unplanned cases with 17% and the rest are planned.
Another point concerns the situation of companies that have lost their knowledge as a result of such a situation. In the research, it was reported that two out of five companies that experienced a situation that prevented their business continuity and in an extraordinary situation could not continue their activities, and one of the three could continue their activities after two years (institutes American research). It was announced that 43% could not be reopened and 29% had to cease operations within two years.
In such cases, it is difficult to measure losses. According to some estimates, the loss of a catastrophic business in one hour would be 28,000 USD in the carrier and this value could reach 6 million USD in a securities company.
Indeed, organizations facing disasters and disasters can face serious financial losses as well as problems of reputation, loss of customers and market. It is therefore essential to prepare for an extraordinary situation and to plan organized actions.
Institutions must be aware of their strengths. In general, assets are taxed in companies physical balance sheets. This is not available. In fact, many companies have very serious intellectual capital as well as physical assets. Business data, methodologies, customer information and all data stored in IT environments are among the values. For businesses, the importance of information goes back a long way. Nowadays, world, it is increasingly important to make businesses more dependent on information technology. This information is available. From this point of view, all companies have every intention of connecting.
Many companies consider this point as an impossible, “we do not have it” or “we will not see it anymore” as a result of simple measures taken after living. Steps are taken immediately after any situation that interferes with business continuity, but in general, the limitations of the aforementioned “impossible will not allow us to restore it.
Business continuity plans, which means that a business’s critical business processes are maintained for as long as possible, at the lowest cost, reduce business losses by 90 percent if they work properly. The goal of business continuity is to reduce losses and negativities after the situation to an acceptable level.
In the continuity of activities, companies generally take into account their internal processes and adapt all their measures accordingly. However, in the current economy, supplier relationships and the widespread use of outsourcing make external factors very important to business continuity.
It is very important that when the processes of these companies are out of service, which of these processes is essential. Companies must recognize them and pay attention to their business continuity plans.
Business continuity plans must be an optimal part of the plan and the investments to be made. You cannot convince anyone to invest 2 million USD simply because you are going to lose 200,000 USD. On the other hand, it is possible to avoid a loss of 5 million USD with an investment of 50 000 USD.
As a result of planning studies, the optimal point should be identified and business continuity plans defined accordingly.
When developing business continuity plans, business processes should be backed up rather than backed up by existing IT investments. At this point, a very serious analysis needs to be done during planning.
“What is the degree of security of your business? “, “Do you know the business faces risks?”, “How much does it cost for 1 hour of disruption? “, “Do you know the impact of a hitch on your customers, business partners and suppliers?”, “What is the amount of financial losses in your business with the interruption? “,” What about the amount of financial loss your business with the interruption? “Should I be taken into account at this stage of planning?” According to these answers, you will have to make and finance.
The figure above shows the balance between potential costs and losses in business continuity investments.
Overview of Business Continuity Management
Business Continuity Management; is to ensure the continuity of the operation by controlling the risks of a company, even in the minimum conditions.
Business continuity reduces and control risks as much as possible:
Business continuity includes not only IT systems, but also physical assets such as your employees, office environments, and other critical documents. In the continuity of the activities, all the elements necessary for the continuation of the works must be taken into account.
Some common mistakes are made when defining business continuity methods. The most common mistake is mismanagement of the person who will manage business continuity. It is assumed that a person familiar with information systems will generally create and manage the business continuity structure very well, which is the starting point for many companies. Recognizing that business continuity management is a risk management issue, responsibility for business continuity management is gradually being transferred to business risk managers.