Resources

The information resources contained on this page are grouped by each of the six Organizational Resilience components.  Feel free to browse the articles in each section.  You’ll find the information quite useful and informative.


Pandemic


Beyond Coronavirus: The Path to the Next Normal

This is an interesting article from McKinsey about life after COVID.

 9 Future of Work Trends Post-COVID

Gartner Group’s take on post-COVid trends in the workplace.


Service Management


The Importance of IT Service Management (article)

This article talks about the importance of service management within the organization.  Even though service management disciplines, such as ITIL, are IT-focused, one should realize that making IT more resilient will benefit the organization as a whole.  Additionally, many practices of service management can be propagated to the operations side of the business for further benefit to the organization.

 

 


Information Security


Introduction to Information Security (pdf)

An introductory article about information security and the risks of not having proper security in place.

An Introduction to Cyber Security Basics for the Beginner (article)

A basic explanation of cybersecurity for the layperson

4 Things You Need to Know About SOC 2 Compliance (article)

SOC 2 compliance is technology-focused and this article is a must-read for service providers, who are required to comply with SOC 2 if they’re storing customer data in the cloud.  It’s an excellent read on the four most important points of compliance.  The author’s company provides compliance services that they want you to retain but the article is very light on the sales pitch and heavy on insightful advice.  A link to a SOC 2 overview document is at the bottom of the article.

What is a SOC 1 Report?

SOC 1 is similar to SOC 2 in that it is looking at an organization’s internal controls, including information security.  The difference is that SOC 1 is focused on financial reporting.  The article is an informative read.

 


Risk Management


Guide to Enterprise Risk Management – FAQ (pdf)

A lengthy but detailed and informative guide to implementing Enterprise Risk Management.  The first 10 FAQs will give a good foundation of what it is and why it’s important to implement.

 


Incident Management


Crisis Management 101 (crash course)

This is a short crash course in crisis management.  It’s a fairly quick read and the reader will come away with a good basic understanding of the importance of properly responding to and managing crises.

 


Business Continuity


Saffir-Simpson Hurricane Scale

Active Shooter Preparedness (FEMA)

Good content for education from FEMA regarding active shooter preparedness.

DRI Ten Professional Practices

An overview of the ten professional practices, established by the Disaster Recovery Institute International.  This body of knowledge that are the guiding steps for the development, implementation, and maintenance of business continuity programs.  The detailed version of the professional practices is available in its entirety to DRI-certified professionals.

Business Continuity’s Role in Supply Chain Resilience (article)

An organization is taking a step in the right direction by creating their own business continuity plan.  However, there is still an exposure if the supply chain is not included in the BC plan.  This article discusses the importance of supply chain resilience. 

Importance of Having a Business Continuity Plan (article)

A good justification from Travelers Insurance for having a business continuity plan. 

 


Disaster Recovery


Disaster Recovery vs. IT Resilience (article)

Personally, I believe the term “disaster recovery” or “DR” is an antiquated term because it focuses on recovery instead of resiliency.  This article discusses that in detail and it’s a good read that can help justify a “DR” or “IT Resilience” program – whatever you want to call it.