Business continuity of business models: Evaluating the resilience of business models for contingencies

Abstract Company business models are vulnerable to various contingencies in the business environment that may unexpectedly render their business logic ineffective. In particular, technological advancements, such as the Internet of things, big data, sharing economy and crowdsourcing, have enabled new forms of business models that can effectively and abruptly make traditional business models obsolete. By disrupting or even diminishing companies’ revenue streams, environmental contingencies may present a significant threat to business continuity (BC). Evaluating the resilience of business models against these contingencies should therefore be a core area of BC. However, existing BC approaches tend to focus on the continuity of the resources and processes through which a particular business model is accomplished in practice but omit the business model itself. We argue that in order for BC approaches to become holistic and strategic, business models need to become a part of the BC considerations, entailing an expansion of the scope of BC from value preservation to value creation. We propose an approach of Strategic Business Continuity Management, which consists of two parts: (1) sustaining the continuity of the company business model (value preservation) and (2) evaluating and modifying the business model (value creation). We illustrate conceptually the value creation part with an example drawn from the sharing economy.

[1]  Rossouw von Solms,et al.  From information security to cyber security , 2013, Comput. Secur..

[2]  Wei Ning Zechariah Wong,et al.  The strategic skills of business continuity managers: putting business continuity management into corporate long-term planning. , 2009, Journal of business continuity & emergency planning.

[3]  S. Mäkinen,et al.  Assessing Business Model Concepts with Taxonomical Research Criteria - A Preliminary Study , 2007 .

[4]  Mark de Reuver,et al.  Delft University of Technology Business model stress testing A practical approach to test the robustness of a business model , 2018 .

[5]  Gerald Quirchmayr,et al.  Survivability and Business Continuity Management , 2004, ACSW.

[6]  Yves Pigneur,et al.  Business Model Generation: A handbook for visionaries, game changers and challengers , 2010 .

[7]  Ray Stanton Beyond disaster recovery: the benefits of business continuity , 2005 .

[8]  A. Gustafsson,et al.  Defining service innovation: A review and synthesis , 2016 .

[9]  Denis Trèek,et al.  An integral framework for information systems security management , 2003, Comput. Secur..

[10]  Renée Mauborgne,et al.  Blue ocean strategy. , 2004, Harvard business review.

[11]  Shoshana Zuboff,et al.  Big other: surveillance capitalism and the prospects of an information civilization , 2015, J. Inf. Technol..

[12]  Gerald V. Post,et al.  A Stochastic Dominance Approach to Risk Analysis of Computer Systems , 1986, MIS Q..

[13]  R. Amit,et al.  Value creation in E‐business , 2001 .

[14]  C. Castillo Disaster preparedness and Business Continuity Planning at Boeing: An integrated model , 2005 .

[15]  Brahim Herbane,et al.  Business Continuity Management: Time for a strategic role? , 2004 .

[16]  Edward Lewis,et al.  Mapping the Enterprise Architecture Principles in TOGAF to the Cybernetic Concepts--An Exploratory Study , 2012, 2012 45th Hawaii International Conference on System Sciences.

[17]  Nijaz Bajgoric,et al.  Information technologies for business continuity: an implementation framework , 2006, Inf. Manag. Comput. Secur..

[18]  Brian S. Butler,et al.  Reliability, Mindfulness, and Information Systems , 2006, MIS Q..

[19]  D. Teece Business Models, Business Strategy and Innovation , 2010 .

[20]  Marko Niemimaa Extending 'Toolbox' of Business Continuity Approaches: Towards Practicing Continuity , 2015, AMCIS.

[21]  Xavier Lecocq,et al.  Business Model Evolution: In Search of Dynamic Consistency , 2010 .

[22]  E. Faber,et al.  Conceptualizing the STOF Model , 2008 .

[23]  H. Bouwman,et al.  From strategic goals to business model innovation paths: an exploratory study , 2017 .

[24]  John Lindström,et al.  A MODEL FOR EXPLAINING STRATEGIC IT- AND INFORMATION SECURITY TO SENIOR MANAGEMENT , 2009 .

[25]  Mandy Freestone,et al.  Planning for and surviving a BCM audit. , 2008, Journal of business continuity & emergency planning.

[26]  Marko Niemimaa,et al.  Information systems continuity process: Conceptual foundations for the study of the "social" , 2017, Comput. Secur..

[27]  N. Foss,et al.  Fifteen Years of Research on Business Model Innovation , 2017 .

[28]  Stephen Hinde Nimbyism, dominoes and creaking infrastructure , 2003, Comput. Secur..

[29]  Rama Lingeswara Tammineedi Business Continuity Management: A Standards-Based Approach , 2010, Inf. Secur. J. A Glob. Perspect..

[30]  A. Kirschenbaum,et al.  Business continuity as an adaptive social process , 2008 .

[31]  Karl E. Weick,et al.  Organizing for Mindfulness , 2006 .

[32]  N. Foss,et al.  Microfoundations for Strategy: A Goal-Framing Perspective on the Drivers of Value Creation , 2013 .

[33]  J. Eggers,et al.  Incumbent Adaptation to Technological Change: The Past, Present, and Future of Research on Heterogeneous Incumbent Response , 2018 .

[34]  George Pohle,et al.  IBM's global CEO report 2006: business model innovation matters , 2006 .

[35]  Harry Bouwman,et al.  Achieving agility using business model stress testing , 2018, Electron. Mark..

[36]  Rossouw von Solms,et al.  A cyclic approach to Business Continuity Planning , 2004, ISSA.

[37]  Marko Niemimaa,et al.  Interdisciplinary Review of Business Continuity from an Information Systems Perspective: Toward an Integrative Framework , 2015, Commun. Assoc. Inf. Syst..

[38]  Jonna Järveläinen,et al.  Information security and business continuity management in interorganizational IT relationships , 2012, Inf. Manag. Comput. Secur..

[39]  Julie D. Nosworthy A Practical Risk Analysis Approach: Managing BCM Risk , 2000, Comput. Secur..

[40]  H. Chesbrough Business Model Innovation: Opportunities and Barriers , 2010 .

[41]  Rossouw von Solms,et al.  Management of risk in the information age , 2005, Comput. Secur..

[42]  P. Trkman,et al.  Business Model: What it is and What it is Not , 2014 .

[43]  Bill Richardson,et al.  Crisis Management and Management Strategy‐Time to “Loop the Loop”? , 1994 .

[44]  Uli Eisert,et al.  Towards Systematic Business Model Innovation: Lessons from Product Innovation Management , 2012 .

[45]  H. Chesbrough,et al.  The Role of the Business Model in Capturing Value from Innovation: Evidence from Xerox Corporation's Technology Spin-Off Companies , 2002 .

[46]  Julie E. Kendall,et al.  Understanding Disaster Recovery Planning through a Theatre Metaphor: Rehearsing for a Show that Might Never Open , 2005, Commun. Assoc. Inf. Syst..

[47]  Forbes Gibb,et al.  A framework for business continuity management , 2006, Int. J. Inf. Manag..

[48]  R. Amit,et al.  The Business Model: Recent Developments and Future Research , 2011 .

[49]  Ramon Casadesus-Masanell,et al.  From Strategy to Business Models and onto Tactics , 2010 .

[50]  Morad Benyoucef,et al.  Business Continuity Planning and Supply Chain Management , 2007 .

[51]  Nijaz Bajgoric,et al.  Server operating environment for business continuance: framework for selection , 2010 .

[52]  Omar A. El Sawy,et al.  VISOR: A Unified Framework for Business Modeling in the Evolving Digital Space , 2013 .

[53]  Mario Devargas,et al.  Survival is not compulsory: an introduction to business continuity planning , 1999, Comput. Secur..

[54]  Rita Gunther McGrath Business Models: A Discovery Driven Approach , 2010 .

[55]  Mick Savage Business continuity planning , 2002 .

[56]  B. Wirtz,et al.  Business Models: Origin, Development and Future Research Perspectives , 2016 .

[57]  J. Anchor,et al.  Continuity Culture: A Key Factor for Building Resilience and Sound Recovery Capabilities , 2015, International Journal of Disaster Risk Science.

[58]  Michael J. Cerullo,et al.  Business Continuity Planning: A Comprehensive Approach , 2004, Inf. Syst. Manag..

[59]  Martin Smith,et al.  Business continuity planning , 1995, Comput. Secur..

[60]  C. Baden‐Fuller,et al.  Business Models and Technological Innovation , 2013 .

[61]  Patrick Alesi,et al.  Building enterprise-wide resilience by integrating business continuity capability into day-to-day business culture and technology. , 2008, Journal of business continuity & emergency planning.

[62]  Albin Zuccato,et al.  Holistic security management framework applied in electronic commerce , 2007, Comput. Secur..

[63]  John Lindström,et al.  Business continuity planning methodology , 2010 .

[64]  Brahim Herbane The evolution of business continuity management: A historical review of practices and drivers , 2010 .

[65]  W. Wong Transforming corporate performance: A business continuity management approach , 2018, Organizational Dynamics.

[66]  Marko Niemimaa,et al.  IT Service Continuity: Achieving Embeddedness through Planning , 2013, 2013 International Conference on Availability, Reliability and Security.

[67]  Belden Menkus,et al.  The new importance of "business continuity" in data processing disaster recovery planning , 1994, Comput. Secur..

[68]  Michael Pitt,et al.  Business Continuity Planning as a Facilities Management Tool , 2004 .