Business Continuity Management (BCM)
Business Continuity Management (BCM) ensures the continuity of IRBM’s service delivery system as the government’s frontline service provider to customers, so that operations can continue even during disruptions, disasters, or pandemics.
BCM also assists IRBM in managing service continuity holistically in relation to risks affecting organization’s critical functions, based on the Surat Pekeliling Am Bilangan 1 Tahun 2025 Garis Panduan Pengurusan Kesinambungan Perkhidmatan Dalam Perkhidmatan Awam [Business Continuity Management (BCM)] dan ISO 22301:2019 BCMS.
- Project Management Of Business Continuity Management (BCM)
Reviews and reassessments are conducted on BCM policies, BCM manuals, emergency action plans, crisis communication plans, IT disaster recovery plans, and others to ensure they are updated in line with the requirements of Surat Pekeliling Am Bilangan 1 Tahun 2025 Garis Panduan Pengurusan Kesinambungan Perkhidmatan Dalam Perkhidmatan Awam [Business Continuity Management (BCM)] dan ISO 22301:2019 BCMS, and international best practices. - Business Impact Analysis (BIA) And Risk Assessment (RA)
BIA is a critical process for identifying, assessing, and measuring the impact of disruptions on an organization's operations. This process separates critical services from those that can be deferred during a crisis. Meanwhile, RA is the process of identifying, analyzing, and evaluating threats that could trigger disruptions or disasters to an organization's operations.
- Conducting BIA studies on Sectors, Departments, States, and Special Branches for critical service functions.
- Identifying the impact of threats on services, premises, personnel, and systems.
- Performing analysis and classification of key risks and identifying risk controls.
- Business Continuity Management (BCM) Strategies And Plans
BCM Strategies are tactical approaches an organization adopts to ensure its most critical functions can survive and recover from a major disruption.
Business continuity plan is a comprehensive reference document containing step-by-step procedures to guide an organization in responding to, recovering, and resuming critical operations immediately after a disruption or disaster occurs. This business continuity plan is built based on inputs from the Business Impact Analysis (BIA), Risk Assessment (RA), and Recovery Strategies that have been approved by management." - Business Continuity Management (BCM) Programmes
It is an initiative that must be carried out to build a responsive culture and test the effectiveness of the drafted plan.- Strengthening the competency of Business Continuity Coordinator regarding BCM implementation at IRBM;
- BCM awareness through posters/articles/infographics.
- BCM training and workshops for IRBM.
- Collaboration programmes with Malaysian Meteorological Department (METMalaysia), CyberSecurity Malaysia, National Security Council (NSC), National Disaster Management Agency (NADMA), and others.
- Business Continutiy Management (BCM) Simulation
A simulation is a practical exercise to test an organization's readiness in facing disruptions, crises, or disasters. This exercise ensures that the organization's core functions can be recovered quickly in accordance with the international standard, which is ISO 22301:2019. The exercises conducted are as follows:- Plan testing and identifying gaps for improvement, as well as measuring the capability to achieve the established Recovery Time Objective (RTO).
- Emergency response simulations and information technology disaster recovery simulations.
- Business Continuity Management (BCM) Reporting
The Business Continuity Management Report is an official document that proves the effectiveness of the business continuity management system to top management, auditors, and regulatory bodies.- BCM reporting and notifications to Management of the Risk Management Committee Meeting (MJKPR),
- Incident reporting
- BCM studies as directed by top management.