Policy

From BCMpedia. A Wiki Glossary for Business Continuity Management (BCM) and Disaster Recovery (DR).
Jump to navigation Jump to search
1. BCM Policy sets out an organization’s aims, principles and approach for business continuity management. It specifies what must be achieved or delivered without prescribing how it will be carried out. A policy can be fulfilled by one or several processes working in unison. Policy requirements are typically expressed in simple single-statement format or limited to short paragraphs comprising a few statements.

Related Terms: BCM Policy; BCM Framework; Crisis Management Policy


Notes (1): The BCM policy sets directives and guides the Executive Management and BCM Steering Committee when making key decisions in the BCM program and BCP projects.

Notes (2): The policy will, typically, specify the critical phases in the BCP project (or BC planning methodology), the main activities and deliverables for each phase.

Notes (3): The policy should not specify detailed activities and tasks for each BCP project.

Sample Policy Reserve Bank of India

BCMBoK Competency Level
BCMBoK 1: Project Management CL 1B: Foundation (BC)



BCMBoK Competency Level
BCMBoK 1: Project Management CL 1C: Foundation (CM)



BCMBoK Competency Level
BCMBoK 1: Project Management CL 1CC: Foundation (CC)



BCMBoK Competency Level
BCMBoK 1: Project Management CL 1D: Foundation (DR)







(Source: Business Continuity Management Institute - BCM Institute)

2. Intentions and direction of an organization as formally expressed by its top management.

(Source: ISO 22301:2012 – Societal Security – Business Continuity Management Systems - Requirements) - clause 3.38