An essential part of a holistic Business Continuity programme is the analysis of the threats impacting upon the business, a corporate understanding of where it stands with regard to such threats, and how to deal with them. BC-3 Risk Assessment helps your organisation to evaluate such threats and, to then select appropriate mitigations to bring the organisation 'into compliance'.
Each BC-3 Risk Assessment questionnaire asks for the selection of the likelihood and severity of any particular threat to a specific part of the business, the combination of which determines the level of risk that the threat implies. The BC-3 user can select from a library of mitigation strategies which link to the non-conformance workflow for corrective action and continuous improvement, as well as for ISO 22301 reporting.
In addition, the Non-Conformance function enables key BCM Risks to not only be identified, but also registered and allocated to internal business contacts for actions, with workflow monitoring to ensure that all the risks are resolved or mitigated. This supports key BCM standards regarding non-conformities of process.
Requesting a Risk Assessment
Users have the ability to request a risk assessment to link a Risk Assessment to a Site, Resource or Entity.
Go to the side menu. Request > Risk Assessment. Enter either a Site or a Resource.
Alternatively, a risk assessment can be requested from within a Plan or BIA.
Where risk assessments have been created from an entity any updates to the entity will automatically generate an email to the Owner of the Risk Assessment.