SC530: BSI™ BCM Practitioner

Agenda:

• Introduction to BCM
  • Definition
  • Differentiation disruption, incident, crisis
  • Process of management

• BCM Process and stage model
  • Differentiation and presentation of the stages reactive, build-up and standard BCMS
  • Presentation of the entire BCM process
  • Explanation of the simplifications of the reactive and build-up BCMS

• Standards and regulatory foundations
  • Norms and standards
  • Regulatory requirements
  • Adjacent subject areas and synergy potentials

• Initiation, planning and build-up
  • Assignment for build-up of the BCMS
  • BCM roles
  • Examine environment of the BCM
  • Stakeholder analysis
  • Documentation and guideline

• Build-up and enablement of the BAO
  • Build-up of the BAO
  • Detection, alerting and escalation
  • Rules of procedure of the staff
  • Establishment of the capability for staff work
  • Crisis communication
  • Post-processing, de-escalation and analysis

• BIA Pre-filter and BIA
  • Explanation of the interaction of the BIA pre-filter and the BIA
  • Explanation of the different pre-selection options of the BIA pre-filter
  • Preparation and execution of the BIA
  • Brief explanation of the target-actual comparison

• Risk analysis
  • Requirements for the risk analysis method
  • Overview of possible risk analysis methods
  • Brief presentation of the BCM risk analysis according to BSI™ Standard 200-3

• Emergency planning
  • BC strategies
  • Business continuity plans (BCP)
  • Recovery plans (RP)

• Exercising and testing
• Preparation of framework conditions for exercising and testing
• Staff exercises and staff framework exercises
• Plan discussions
• Alerting exercises
• Function tests

• Performance review and metrics
  • Monitoring, analysis and evaluation based on metrics
  • Internal and external reviews based on self-assessments, revisions and audits
  • Management review
  • Summary and preparation for the examination

Objectives:

Target audience:

The course SC530 BSI™ BCM Practitioner is specifically designed for participants who already possess knowledge and practice in the field of Cyber Security. Job titles include:

• Prospective Information Security Officers
• Data Security Officers
• Data Protection Officers
• IT Managers / IT Administrators
• Responsible for Information Security
• Responsible for Risk Management
• Responsible for Business Continuity Management
• Responsible for Audit and IT Audit
• Security Managers
• Executives / Project Managers

Prerequisites:

Description:

The Federal Office for Information Security (BSI™) is responsible for IT security matters. The BSI™ BCM Practitioner represents an independent extension of the existing programs for IT Baseline Protection Practitioners and Consultants.

The training focuses on the fundamental conveyance of the entire BCMS process according to the BSI™ Standard 200-4, supplemented by practical examples and explanations. Therefore, the BCM Practitioner is primarily aimed at BC consultants and individuals interested in BC.

The workshop SC530 BSI™ BCM Practitioner is an entry into the official certification program of the BSI™, represents an independent supplement to the SC550 BSI™ IT-Grundschutz Practitioner and SC560 BSI™ IT-Grundschutz Consultant, and has a comparable training level.

The workshop SC530 BSI™ BCM Practitioner meets the curriculum and qualification requirements of the Federal Office for Information Security (BSI™) and enables you to build and establish a Business Continuity Management System (BCMS) according to the BSI™ Standard 200-4 in your own institution.

The focus of the workshop is on imparting the necessary expertise in the field of Business Continuity Management and the development of a management system for Business Continuity Management (BCMS). This is rounded off with practical examples and explanations.

The optional examination for the BCM Practitioner takes place directly on the third day of training at qSkills™ on-site.