Enablers of Successful Business Continuity Management Process

Business Continuity Management (BCM) is a management process to ensure the resilience of an organization in the face of a range of business disruptions. It considers the mitigation of risk in the business functions, put in place the process and procedure to recover the IT systems and business functions during any interruptions. BCM evolved from Disaster Recovery Planning (DRP) that commenced in the 1970s to recover electronic data processing capability during the mainframe era. In addition to technology recovery, BCM covers the recovery of people and business as a whole. It includes the full suite of recovery plans from reducing risks of business disruptions, response to disruptions and mobilise people to the secondary site to continue business. Service disruption is intolerable in the business environment especially in the financial industry, the lifeline industry in most countries if not all. The respective regulators have stringent guidelines to ensure the smooth operations in order to minimize systemic disruptions in the banking environment that ultimately impact the economy of the nation. Though with many strict regulations, coupled with availability of advance technology to recover business and technology services, there were still many banking interruptions that shocked the nation and caused severe inconveniences to the banking customers. The aim of this study is to identify the enablers of a successful BCM process. The first phase of this study involves the understanding of factors impacting the BCM process and develops a conceptual model for a successful BCM process. The methodological instruments employed include data collection through emailed questionnaires to the staff working in the BCM, IT, Operations, Risk departments of financial institutions. The data collected will be used to test the conceptual model and analysis will be drawn. The findings of this study provide useful information and could help bank managers implementing and maintaining BCM process in an effective manner. The main findings of this study is that technology components (IT availability and reliability, complexity and technology competence), perceived BC benefits, top management support, external pressure to adopt BC and business environment have positive effects on BCM implementation in the financial industry in Malaysia; but organizational compatibility and infrastructure readiness did not.

[1]  Yu Min Wang,et al.  Understanding the determinants of RFID adoption in the manufacturing industry , 2010 .

[2]  Mark Dodgson,et al.  The Management Of Technological Innovation , 2000 .

[3]  Mohsen Attaran,et al.  Information technology and business-process redesign , 2003, Bus. Process. Manag. J..

[4]  Izak Benbasat,et al.  Electronic Data Interchange and Small Organizations: Adoption and Impact of Technology , 1995, MIS Q..

[5]  Jeffrey M. Voas,et al.  Information and Quality Assurance: An Unsolved, Perpetual Problem for Past and Future Generations , 2008, IT Prof..

[6]  Rafal Cegiela,et al.  Selecting Technology for Disaster Recovery , 2006, 2006 International Conference on Dependability of Computer Systems.

[7]  Forbes Gibb,et al.  A framework for business continuity management , 2006, Int. J. Inf. Manag..

[8]  M. Schappert,et al.  Methods and techniques for measuring and improving data center best practices , 2008, 2008 11th Intersociety Conference on Thermal and Thermomechanical Phenomena in Electronic Systems.

[9]  Kristen Bell DeTienne,et al.  An empirical examination of service recovery design , 2008 .

[10]  Yi Deng,et al.  Towards a business continuity information network for rapid disaster recovery , 2008, DG.O.

[11]  David A. Patterson,et al.  Technical perspective: the data center is the computer , 2008, CACM.

[12]  Kenneth L. Kraemer,et al.  Electronic business adoption by European firms: a cross-country assessment of the facilitators and inhibitors , 2003, Eur. J. Inf. Syst..

[13]  Jon Toigo Disaster recovery planning: for computers and communication resources , 1996 .

[14]  E. Zambon,et al.  A Model Supporting Business Continuity Auditing and Planning in Information Systems , 2007, Second International Conference on Internet Monitoring and Protection (ICIMP 2007).

[15]  Michael Brenner,et al.  A Criteria Catalog Based Methodology for Analyzing Service Management Processes , 2002, DSOM.

[16]  Shin-Jyh Frank Chang,et al.  An Optimization Model to Determine Data Center Locations for the Army Enterprise , 2007, MILCOM 2007 - IEEE Military Communications Conference.

[17]  F. Udwadia,et al.  Effective Crisis Management , 1987 .

[18]  Adel Said Elmaghraby,et al.  Evaluation of resilience for Data Center systems , 2008, 2008 IEEE Symposium on Computers and Communications.

[19]  Gerald Quirchmayr,et al.  Enhancing Business Impact Analysis and Risk Assessment Applying a Risk-Aware Business Process Modeling and Simulation Methodology , 2008, 2008 Third International Conference on Availability, Reliability and Security.

[20]  Wolfgang Boehmer,et al.  Survivability and Business Continuity Management System According to BS 25999 , 2009, 2009 Third International Conference on Emerging Security Information, Systems and Technologies.

[21]  E. Quarantelli Disaster Related Social Behavior: Summary of 50 Years of Research Findings , 1999 .

[22]  M. Wiboonrat An Empirical Study on Data Center System Failure Diagnosis , 2008, 2008 The Third International Conference on Internet Monitoring and Protection.

[23]  James Y. L. Thong,et al.  An Integrated Model of Information Systems Adoption in Small Businesses , 1999, J. Manag. Inf. Syst..

[24]  Tracy L. Tuten,et al.  Service recovery: its value and limitations as a retail strategy , 1996 .

[25]  Alberto Petroni Managing information systems’ contingencies in banks: a case study , 1999 .

[26]  J. Hair Multivariate data analysis , 1972 .

[27]  Michael Pitt,et al.  Business Continuity Planning as a Facilities Management Tool , 2004 .

[28]  Kuai Xu,et al.  Cooperative Monitoring for Internet Data Centers , 2008, 2008 IEEE International Performance, Computing and Communications Conference.

[29]  Brahim Herbane,et al.  Business Continuity Management , 2001 .

[30]  Mark Dodgson,et al.  The Management of Technological Innovation: An International and Strategic Approach , 2000 .

[31]  Patrick Y. K. Chau,et al.  A perception-based model for EDI adoption in small businesses using a technology-organization-environment framework , 2001, Inf. Manag..

[32]  Adam Raphael When Disaster Strikes , 1986 .

[33]  Margaret Tan,et al.  A Contingency Model of Internet Adoption in Singapore , 1997, Int. J. Electron. Commer..

[34]  Rama Lingeswara Tammineedi Business Continuity Management: A Standards-Based Approach , 2010, Inf. Secur. J. A Glob. Perspect..

[35]  John S. Camp,et al.  Current Issues Survey Report, 2007 , 2007 .

[36]  S.A. Szygenda,et al.  Components of Continuous IT Availability & Disaster Tolerant Computing: 2007 IEEE Conference on Technologies for Homeland Security: Enhancing Critical Infrastructure Dependability , 2007, 2007 IEEE Conference on Technologies for Homeland Security.

[37]  E. Bauserman,et al.  Disaster Strikes , 1955 .

[38]  Xiaoyun Zhu,et al.  1000 Islands: Integrated Capacity and Workload Management for the Next Generation Data Center , 2008, 2008 International Conference on Autonomic Computing.

[39]  Wing S. Chow,et al.  Success factors for IS disaster recovery planning in Hong Kong , 2000, Inf. Manag. Comput. Secur..

[40]  Russell Smith Business continuity planning and service level agreements , 1995, Inf. Manag. Comput. Secur..

[41]  Susan K. Lippert,et al.  Technological, Organizational, and Environmental Antecedents to Web Services Adoption , 2015, Communications of the IIMA.

[42]  Peter Kawalek,et al.  Predicting SMEs' adoption of enterprise systems , 2009, J. Enterp. Inf. Manag..

[43]  Tiago Oliveira,et al.  Firms patterns of e-business adoption: evidence for the European Union-27. , 2009 .

[44]  Shamsul Sahibuddin,et al.  Combining ITIL, COBIT and ISO/IEC 27002 in Order to Design a Comprehensive IT Framework in Organizations , 2008, 2008 Second Asia International Conference on Modelling & Simulation (AMS).

[45]  Barbara I. Dewey,et al.  Current IT Issues Survey Report, 2006 , 2006 .

[46]  Kar Yan Tam,et al.  Factors Affecting the Adoption of Open Systems: An Exploratory Study , 1997, MIS Q..

[47]  Ioan-Ovidiu Spătăcean Ensuring Business Continuity Assumption for Romanian Investment Firms – An Expression of Good Governance in Financial Reporting , 2015 .

[48]  Thompson S. H. Teo,et al.  Adopters and non-adopters of e-procurement in Singapore: An empirical study , 2009 .

[49]  Princely Ifinedo,et al.  An Empirical Analysis of Factors Influencing Internet/E-Business Technologies Adoption by SMEs in Canada , 2011, Int. J. Inf. Technol. Decis. Mak..

[50]  M. Fleischer,et al.  processes of technological innovation , 1990 .

[51]  Adrienne E. Hyle,et al.  Disaster preparedness planning: Policy and leadership issues , 1997 .

[52]  Brahim Herbane,et al.  Business Continuity Management: Time for a strategic role? , 2004 .

[53]  Nikos Alexandris,et al.  From High Availability Systems to Fault Tolerant Production Infrastructures , 2007, International Conference on Networking and Services (ICNS '07).