Policy

1. BCM Policy sets out an organization’s aims, principles and approach for business continuity management. It specifies what must be achieved or delivered without prescribing how it will be carried out. A policy can be fulfilled by one or several processes working in unison. Policy requirements are typically expressed in simple single-statement format or limited to short paragraphs comprising a few statements.

Related Terms: BCM Policy; BCM Framework; Crisis Management Policy

Notes (1): The BCM policy sets directives and guides the Executive Management and BCM Steering Committee when making key decisions in the BCM program and BCP projects.

Notes (2): The policy will, typically, specify the critical phases in the BCP project (or BC planning methodology), the main activities and deliverables for each phase.

Notes (3): The policy should not specify detailed activities and tasks for each BCP project.

Sample Policy Reserve Bank of India

	BCMBoK	Competency Level
	BCMBoK 1: Project Management	CL 1B: Foundation (BC)

	BCMBoK	Competency Level
	BCMBoK 1: Project Management	CL 1C: Foundation (CM)

	BCMBoK	Competency Level
	BCMBoK 1: Project Management	CL 1CC: Foundation (CC)

	BCMBoK	Competency Level
	BCMBoK 1: Project Management	CL 1D: Foundation (DR)

(Source: Business Continuity Management Institute - BCM Institute)

2. Intentions and direction of an organization as formally expressed by its top management.

(Source: ISO 22301:2012 – Societal Security – Business Continuity Management Systems - Requirements) - clause 3.38

Policy

Navigation menu

Search