Profile cover photo
Profile photo
ISQuality1433
2 followers -
Security, Business Continuity, IT Service Management, Project & Program Management, IS Governance, Consulting, Auditing, Training
Security, Business Continuity, IT Service Management, Project & Program Management, IS Governance, Consulting, Auditing, Training

2 followers
About
Posts

Post has attachment
Find differences game

This is an usual practice when you are learning many standards, sources and guides in the same area. For me, business continuity, information security/cyber-criminality have lot of common points:

As reported by the BCI: cyber-criminality is the main source of disruption

Information security is more proactive than corrective to prevent these types of attacks

Business continuity is to be resilient in case of disruption

I made study about differences between the GPG (Good Practice Guidelines:2013) of the BCI (Business Continuity Institute), PECB ISO 27001:2013 and PECB ISO 22301:2012.

PECB courses are based on ISO and are system management oriented but GPG is programme management based on a Business Continuity lifecycle.

Obviously, ISO 27001 is different than the 2 others because we treat only continuity of an ISMS and not the continuity of the hole activities.

We have more similarities than differences (Business Impact Analysis, Risk Assessment, Audit, Dashboards, etc…), although GPG is more detailed in BC aspects, they have defined 3 explicitly stages: strategic, tactical and operational.

The framework of PECB and BCI’s Lifecycle are not identical but they are both inspired from the PDCA approach despite of some small order differences.

Vocabulary is almost the same.

The strongest point is the methods, tools and techniques part because each of them propose +/- different ways to implement their processes / professional practices and this are good news for implementers.

Note that if you are GPG compliant you are ISO 22301 compliant too because GPG’s scope is bigger but you are not ISO 27001 yet.

If you want the detailed comparison, please send me your e-mail….i will send you the matrix (.xlsx file)

I wish you good information security and business continuity implementations.

More topics will come, just join us on our LinkedIn group BCIRC (Business Continuity Insurance and Risk Club)

RAMY MOHAMMED / CEO ISQuality and BCIRC Group Admin
Photo
Add a comment...

Post has attachment
Nos formations en fin de semaine : ITIL Practionner, CobiT5 Foundation, Prince 2 Foundation & PMP

http://eepurl.com/cHkppP
Add a comment...

Post has attachment
Our business continuity platform present this friday at AITEX, International Fair of Casablanca, Morocco

You're welcome to discover the 1st African and Arabic platform for business continuity assurance and risk assessment : RisKontrol

https://www.youtube.com/watch?v=v9j3yS2NH2w
Photo
Add a comment...

Post has attachment
Save the date : La semaine de la continuité d'activité au Maroc / Business Continuity's week in Morocco
Photo
Add a comment...

Post has attachment
I would like to invite you to my community on Google+. -Mohammed Ramy 

or my group on Linkedin: https://www.linkedin.com/groups/Business-Continuity-Insurance-Risk-Club-8132819/about 

This community/group intends to share all about Business Continuity, Disaster Recovery, Crisis Management and Risk Assessment in our region. 

Many thanks. 

Ramy Mohammed 
Add a comment...

Post has attachment

Post has attachment
Strong ease of use "Platform" for business continuity insurance and risk assessment
Add a comment...

Post has attachment
MAY 28th Tangier 2015 - Tangier Security Event
PhotoPhotoPhotoPhotoPhoto
2015-06-07
11 Photos - View album
Add a comment...

Post has attachment
Formation Internationale de haute qualité en "Business Continuity"
Votre avis nous intéresse : http://goo.gl/forms/5P2UUzx64m
Merci !
Add a comment...

Formation Internationale de haute qualité en "Business Continuity"
Votre avis nous intéresse : http://goo.gl/forms/5P2UUzx64m
Merci !
Add a comment...
Wait while more posts are being loaded