Professional Documents
Culture Documents
Document Number
Document Number
DOCUMENT NUMBER:
DOCUMENT TITLE:
DOCUMENT NOTES:
Document Information
Revision: Vault:
Date Information
Control Information
Review: CSOP-0000003 AA Business Continuity Management Policy and Plan For Hayco Group
Review
Review: CSOP-0000003 AA Business Continuity Management Policy and Plan For Hayco Group
Review
Review: CSOP-0000003 AA Business Continuity Management Policy and Plan For Hayco Group
Review
审核: CSOP-0000003 AA Business Continuity Management Policy and Plan For Hayco Group
Review
Review: CSOP-0000003 AA Business Continuity Management Policy and Plan For Hayco Group
Review
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 1 of 37
Hayco Group
- -
Dan Panzica / VP - QA - -
- -
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 2 of 37
Hayco Group
Contents
Section Page
Policy 3
I General 4
II Management Responsibilities 6
III Program Management 8
IV Communication 10
V Business Continue Strategy 12
VI Immediate Actions and Escalation 14
VII BCP Teams 21
VIII Recovery Procedures 25
IX Performance and Monitoring 28
X Failures, Non-conformances and Corrective Action 31
XI Training 32
XII Testing and Exercise 34
XIII Record 37
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 3 of 37
Hayco Group
Policy
The Business Continuity Management (“BCM”) policy provides the foundation for all business
continuity-related issues and activities within the organization. To achieve this, we will ensure
that this business continuity management plan is in compliance with:
a. Hayco policies;
b. Current applicable legislation, regulatory and statutory requirements and other
requirements to which Hayco subscribes to.
We recognize the importance of business continuity and require the company to have a
series of business-driven processes that establish a comprehensive strategic and
operational BCM framework which:
a. Proactively improves the company’s resilience against the disruption of its ability to
achieve its key objectives;
b. Provides a regularly rehearsed method (e.g. test & exercise) of restoring the
company’s critical business functions to an appropriate level within an agreed time
after a disruption;
c. Delivers a proven capability to manage disruptions to various business processes
and protect the company’s associates, reputation and financial position including
assets belonging to the company and its customers.
In this regard, every associate has a role in making sure that Hayco can continue to serve
our customers regardless of any disruption. This Policy illustrates our commitment to
ensure continuity of service delivery and operations through the continual improvement of
our BCM management system.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 4 of 37
Hayco Group
2.0 SCOPE
Applies to all operation locations in the Hayco Group
3.0 DEFINITIONS
BCM Plan Business Continuity Management Plan
BCP Leader Business Continuity Plan Leader
Disaster Any event that renders a business facility inoperable or unusable so
that it interferes with the organization’s ability to deliver essential
business services for or over five (5) working days.
MIS Management Information System. The IT department of Hayco
SAP System Application Program. An Enterprise Resources Program
adopted by Hayco
4.0 RESPONSIBILITIES
4.1 BCP Coordinator, BCP Leader, BCP Teams responsible to execute this Business
Continuity Management Plan (BCM Plan)
Crisis Management Advise the BCP Team Leader and provide support
Team (CMT) in strategic decision-making during an incident
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 5 of 37
Hayco Group
Objectives
The objective of the Business Continuity Management Plan (BCM Plan) is to coordinate recovery
of critical business functions in managing and supporting the business recovery in the event of a
facilities disruption or disaster. This can include short or long-term disasters or other disruptions,
such as fires, epidemic decease, floods, earthquakes, explosions, terrorism, tornadoes, data loss
and corruption, cyber-attack, extended power interruptions, hazardous chemical spills, strikes
and other natural or man-made disasters.
2. Mitigate threats or limit the damage that threats can cause disastrous business
interruption.
3. Have advanced preparations to ensure that critical business functions can continue.
4. Have documented plans and procedures to ensure the quick, effective execution of
recovery strategies for critical business functions.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 6 of 37
Hayco Group
Submits final disaster assessment reports and actions plan to the management
team.
The review meeting will ensure the following with regards the BCM system:
continuing suitability, adequacy and effectiveness of BCM policy, BCP
objectives and programs and staff assigned with BCM roles and responsibilities
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 7 of 37
Hayco Group
Extraordinary meetings may be called at any time to address specific issues relating to
the BCM. These meetings are not required to address a full review of the BCM.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 8 of 37
Hayco Group
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 9 of 37
Hayco Group
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 10 of 37
Hayco Group
Section IV - COMMUNICATION
4.1Overview
The purpose of this section is to promotion the business continuity culture to be carried to
all employees as follows:
Display of the BCM Policy to internal staff. These may also include BCM
advisories and sharing of BCM best practices
Feedback system
Feedback system
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 11 of 37
Hayco Group
recording of vital information about the incident, actions taken and decisions
made, and the following shall also be considered and implemented where
applicable:
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 12 of 37
Hayco Group
5.1 Introduction
This section describes the strategy devised to maintain business continuity in the event of
a facilities disruption.
Business functions recovery priorities are listed in Recovery Time Objectives Priority List.
Site A Site B
Site B Site C
Site C Site B
HK Site C
For all locations, if a long-term disruption occurs (i.e. major site destruction, etc.); the above
strategies will be used in the short-term (less than two weeks). The long-term strategies will be
to acquire/lease and equip new space in another site in the same metropolitan area.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 13 of 37
Hayco Group
1. Disaster Occurrence
This phase begins with the occurrence of the disaster event and continues until a
decision is made to activate the recovery plans. The major activities that take place in
this phase includes: emergency response measures, notification of management,
damage assessment activities, and declaration of the disaster.
2. Plan Activation
In this phase, the Business Continuity Plans are put into effect. This phase continues until
the alternate facility is occupied, critical business functions reestablished, and restores
computer system service. The major activities in this phase include: notification and
assembly of the recovery teams, implementation of interim procedures, and relocation to
the secondary facility/backup site, and re-establishment of data communications.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 14 of 37
Hayco Group
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 15 of 37
Hayco Group
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 16 of 37
Hayco Group
working. Employees who are able to do so will work from their homes during the
interim period.
2. Inform the BCP Team Leader of your status and how to contact you.
3. The BCP leader will attempt to communicate with employees.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 17 of 37
Hayco Group
2. Department damage assessment will only occur once the site has been cleared for
re-occupancy by the Administration Team and appropriate authorities.
3. If instructed by the BCP Leader, each department lead will perform damage assessment
activities of their department’s workspace.
4. The BCP leader will determine what resources (computers, vital records, and
equipment) can be salvaged and what resources will need to be purchased. Each
individual department will be responsible for decisions concerning the priority of
salvage within its department.
5. The department leader will provide the list of salvaged and damaged resources to the
BCP Leader. The salvage priority of Hayco as a whole will be dictated based on given
circumstances by the BCP Leader. Ultimate decision will be taken to the BCP Leader
who answers to the CMT’s decision.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 18 of 37
Hayco Group
Begin damage assessment activities only after approval of the BCP Leader.
Phone: Time:
Sequence Details
Other Describe:
Other Describe:
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 19 of 37
Hayco Group
Phone: Time:
Sequence Details
Other Describe:
Other Describe:
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 20 of 37
Hayco Group
3. Each department lead will instruct their employees regarding the incident and any actions
they should take.
BCP Teams will implement the recovery procedures outlined in the Business Continuity
Plans.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 21 of 37
Hayco Group
4) Works with the technical support team to plan and execute disaster
recovery exercises to determine whether essential business functions can be recovered
within acceptable timeframes as outlined in the business recovery plan
5) Develops test plans; reviews test results and audit reports; plans and over
sees corrective actions, as required.
6) Sets up alternate site.
7) Oversees recovery logistics, travel, meals, and communications.
The CMT will advise the BCP Team Leader and provide support in strategic
decision-making during an incident.
The responsibilities of the CMT include:
Organize and deploy corporate resources to assist with recovery efforts
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 22 of 37
Hayco Group
Present Business Continuity Plan recovery status reports to management team on a daily
basis.
Interface with appropriate work management personnel throughout the recovery process.
Provide on-going support and guidance to the Business Continuity teams and personnel.
Work with management to authorize the use of the alternate recovery site selected for
re-deploying critical Hayco resources.
Review and report critical processing schedules and backlog work progress, daily.
Providing information regarding the disaster and recovery efforts to employees and
families.
Ensuring the processing of all life, health, and accident insurance claims as required.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 23 of 37
Hayco Group
Ensuring the recovery/restoration personnel has assistance with clerical tasks, errands,
and other administrative activities.
Arranging for the availability of necessary site support services and equipment.
Co-ordinate to collect costs related information to the recovery and restoration effort.
Identifying and documenting when repairs can begin and obtaining cost estimates.
Determining where forms and supplies should be delivered, based on damage to the
normal storage areas for the materials.
Coordinating the removal, shipment, and safe storage of all furniture, documentation,
supplies, and other materials as necessary.
Assuring that arrangements are made for meals and temporary housing facilities, when
required, for all recovery personnel.
Assuring order placement for consumable materials (forms, supplies, etc.) for processing
based upon input from the other teams.
Assuring that mail, and reports are redirected to the proper location as required.
Inspecting the physical structure and identifying areas that may have sustained damage.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 24 of 37
Hayco Group
Coordinating all communications related activities, as required, with telephone & data
communications, PC, LAN support personnel, and other IT related suppliers.
Assisting, as required, in the acquisition and installation of equipment at the recovery site.
Ensuring that cellular telephones, and other special order equipment and supplies are
delivered to teams as requested.
Keeping management team and the Business Continuity Plan Leader appraised of
recovery status.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 25 of 37
Hayco Group
2 Notify the Operation Director / Manager at each recovery site to inform them of the BCP Team
relocation requirements and confirm the amount of seats available. Leader
If the dormitories are impacted by the incident, determine how much space is
available at the plant dormitories.
Arrange housing / hotels for staff who are staying in the dormitories
3 Arrange for emergency funds to pay suppliers for recovery services. Emergency HR
Team / Finance
4 Arrange transportation (e.g., buses or shuttles) to the recovery site to the recovery Administration
sites Team
5 Arrange for set up workstations with tables, chairs, and other equipment at the Administration
recovery sites Team
6 Set up workstations with computers, phones, and other technology components IT Recovery
Team
Set up standard computers and phones.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 26 of 37
Hayco Group
Identify which staff will be required immediately and which staff will be
phased in over time. Consider employee needs and family situations.
Verify that staff who will work from home have the equipment they need.
Contact the BCP Team Leader to request additional staff to be set up to work
from home
Provide information on site / security access (you will need to verify with the
BCP Team Leader the procedures to access the recovery site)
9 Check into the recovery site and find your department’s designated work area. Each
Department
Lead
11 Once all team members have been accounted for, hold a department meeting to: Each
Department
Determine status of current projects and business processes. Lead
Assess mental / physical ability to commence work (i.e., some employees may
have medical conditions or family situations that limit their schedule).
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 27 of 37
Hayco Group
14 Contact staff who will not be required to work from the Recovery site and are not Each
capable to work from home. Inform them of any actions they should take until Department
Lead
they are needed at work again.
15 Contact insurance agency or broker to report the incident Finance
17 Other tasks
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 28 of 37
Hayco Group
9.2Methodology
Elements to be monitored include determining the extent to which:
Equipment supporting recovery and emergency response is calibrated and in
working condition
Operational procedures are adhere to
BCM management system are meeting their stated objectives and KPIs/Targets
Personnel responsible for emergency and response are adequately trained and
competent
Stakeholder feedback
If determined appropriate, outsourced supplier contract reviews for new,
additions or changes to BCM requirements
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 29 of 37
Hayco Group
frequency of monitoring
HQA003AQ
CSOP
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 30 of 37
Hayco Group
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 31 of 37
Hayco Group
Inspection reports
The BCM Coordinator or other designated person will record Business Continuity failures.
Investigation into the root cause of the non-conformance is to be conducted by the BCM
Coordinator in consultation with any staff involved in the operation/area. Thereafter,
corrective actions are to be drawn up in consultation with any staff involved in the
operation/area. Where necessary this should trigger or feed into the input of the Risk
Assessment & BIA for review.
Following completion of the action, the BCM Coordinator will implement and record
any changes in the documented procedures resulting from corrective action and will
include the required training where necessary.
10.2Reporting
Management or the designated committee is to review all Business Continuity related
failures, incidents, 8D report (for non-conformances and corrective action) as part of
their agenda items.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 32 of 37
Hayco Group
Section XI – TRAINING
11.1 Introduction
The management is to identify the continuity training needs at their site in consultation
with key managers.
As a guideline this process is to incorporate the following:
A systematic identification of the BCM awareness and competencies required at
each level and function within the organization
Arrangements to identify and remedy any shortfalls between the level currently
possessed by the individual and the required continuity awareness and
competency
An assessment of individuals to ensure that they have acquired and that they
maintain, the knowledge and competency required
All BCM-related training material is to be reviewed by the management and the BCM
Coordinator. Training sessions will be arranged by the BCM Coordinator and Training
Department.
The BCM Coordinator is to determine the means and methods for providing BCM
Training. Training methods may include lectures, briefings, interactive video, computer
based training, simulations, instructional materials, signage and any other appropriate
approach.
The management, BCM Coordinator and Training Department may establish training
schedule to ensure that training is planned and provided for all related personnel.
11.2 BCM Awareness Training
The Training Department is responsible for ensuring that all related employees and
long-term contractors at the site received the BCM awareness training (e.g. at their
induction and orientation). Refresher briefings for all staff are to be conducted.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 33 of 37
Hayco Group
The company is to ensure that BCM awareness training covers the following:
BCM Policy
Members of the BCP Teams are to undertake appropriate training to ensure they
understand their roles and responsibilities within the BCM system.
11.3 Reporting
Formal records are to be maintained for all training by the Training Department.
Assessment of BC training and awareness across the organization shall be carried out at
two levels:
Programs level. The programs should meet the needs of business units supporting
the objectives of the BCM system.
People level. Participants are assessed after each program to check that training
received meets the objectives set, to fulfill their responsibilities in the BCM
system.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 34 of 37
Hayco Group
12.2 Objectives
Tests and exercises shall achieve the following objectives:-
Verify that the recovery time scale and priorities can be met(e.g. the RTO)
Verify that suppliers identified in the BC plan can support the recovery in a timely,
efficient and effective manner
Verify that the resources identified in the BC plan can be activated and accessed in a
timely, efficient, effective and adequate manner
Rehearse and train personnel who would be involved in the actual recovery
Staff from the organisation and external parties involved in the recovery effort, shall
participate in periodic and systematic tests and exercises to ensure familiarity, proficiency,
alertness and response to disaster.
12.4 Testing
The infrastructure required to support tests and exercises of the BC plan shall be available,
adequate and operational in a timely manner. Management should ensure appropriate
infrastructure is available to perform scheduled test and exercises including computing
technology and equipment required if physical aspects of the BCP are to be tested.
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 35 of 37
Hayco Group
Operation of Critical Business Functions (CBFs) during test and exercise conditions
Devise a timetable of exercise activities that ensures that, over a period, all relevant
personnel are included in the exercise activity
Timeliness - can the procedures achieve the required RTO for each activity
Personnel - are the right people involved and do they have the required skills, authority
and experience
HQA003AQ
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
CSOP
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
Acrobat.
TITLE CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 36 of 37
Hayco Group
12.7 Review
During the test / exercise, the following items will be assessed:
Task execution
A debrief sessions shall be conducted after each test/ex with appropriate groups of participants
to review the results. The agenda of each debrief session shall include the following items:-
For each recommendation or corrective action not able to be rectified due to costs or
current business operation constraints etc., a documented written request justifying
the deviation must be submitted by the respective Head of Department to seek waiver
and approval be granted by the management to review and provide such waiver from
such compliance. Decisions to waiver or not will be recorded in the management
meeting minutes.
HQA003AQ
CSOP
Published MasterControl documents frequently use JavaScript. If you are seeing this message, your viewer
either does not support JavaScript or it is disabled. If you are using Adobe Acrobat, please enable JavaScript.
If you are using another viewer, you will need to configure your browser to view PDF files externally in Adobe
TITLE Acrobat. CSOP NO. REV PAGE
Business Continuity Management Policy and Plan For CSOP-E01.03 AA 37 of 37
Hayco Group
XIII - Record
13.1 Form: HIA0001 Self- Assessment List
HQA003AQ