Homework Responses Wk 7

profileyellancnigg
Benjamins.docx

This week we covered two main topics, knowledge management, and business continuity. Within these two topics, subcomponents exist which contribute to the overall effectiveness of business operations in the event of crisis, emergencies, or disasters. Knowledge management, in the most relatable definition to me, is a way of developing a centralized hub for organizational information and sharing said information across various departments within an organization. In order to develop credible knowledge, one must examine data, correlate data and develop information; when information is studied and interpreted, intelligence develops (through the intelligence cycle) (Smith & Brooks, 2013), and is ultimately produced as knowledge for dissemination. Smith & Brooks cite examples of push and pull strategies (2013, p. 181) for disseminating and gathering knowledge. The push strategy involves an organization providing a database where members can actively insert learned experiences, whereas a pull strategy requests knowledge from organizational experts. Knowledge management, as it relates to security can include, document control, incident reporting, threat information, critical process & assets, and risk management assessments (Smith & Brooks, 2013, p. 183).

            Knowledge management is a key component to any successful security operation, or organization in general. Knowledge management sets up an organization to better formulate business continuity management (BCM).  From personal experience, with an ecological approach (Smith & Brooks, 2013), my organization has conducted weekly conference calls since COVID-19 kicked off to report various incidents related to COVID-19. Through these conference calls, supervisors can share experiences, trends, and formulate mitigating strategies to reduce work stoppages and better protect our employees from occupational hazards. As a result, these local practices have produced Operating Instructions (O.I.) blessed off by corporate and are in effect across the entire organization.

            Business continuity management is coming up with a multi-faceted, interorganizational plan to prepare for and protects against damaging events which could impact business operations. Business continuity plans for crisis management, business resumption, and IT recovery, through design, business impact analysis (BIA), and risk assessments (Guide to Business Continuity Management, 2013). This is accomplished through analysis and evaluation of critical processes and supporting functions which may affect BIA. Through this analysis, organizations are able to identify accountable members, and assign responsibilities for pre and post-incidents.

 

References:

Guide to Business Continuity Management. (2013). Frequently asked questions. Protiviti. Retrieved from https://www.protiviti.com/sites/default/files/united_states/insights/guide-to-bcm-third-edition-protiviti.pdf

Smith, C., & Brooks, D. J. (2012). Security Science: The Theory and Practice of Security. Burlington: Butterworth-Heinemann.