GLOBAL BUSINESS & FINANCE REVIEW, Volume. 22 Issue. 1 (SPRING 2017), 38-50 pISSN 1088-6931 / eISSN 2384-1648∣Http://dx.doi.org/10.17549/gbfr.2017.22.1.38 ⓒ 2017 People and Global Business Association GLOBAL BUSINESS & FINANCE REVIEW www.gbfrjournal.org 3) Building Business Resilience through Incident Management Body o f Knowledge (IMBOK TM ): The Amalgamated Framework for Total Resilien t Capability Ivan Siang-Meng, SIN a , Noor Azlan MUSA b and Keith Yong-Ngee, NG c a Adjunct Associate Professor, National University of Singapore, Singapore b Managing Director, ERCM Consultancy, Singapore c Adjunct Lecturer, Southern Cross University, Australia A B S T R A C T In today’s volatile, uncertain, complex and ambiguous environment, organizational resilience is a strategic capability to stay afloat “stormy waters” when faced with business disruptions that have grave impacts on the organization’s business operations, supply chain, and reputation. A true resilient organization needs to be constantly scanning for potential threats, identify the probable risks, plan and be prepared to deal with the consequences and impacts when the risks materialize. However, many organizations approached this capability in varied methodologies with some focusing on business continuity while others are emphasizing on crisis management. This paper uncovers the converging domains-interplays between the concepts and the building blocks of enterprise risk and resource management, emergency and crisis management, business continuity and disaster recovery management to act as the bedrock to achieve business resilience through the Incident Management Body of Knowledge as the amalga- mated framework for total resilient capability; using the Adaptive Incident Management Methodology, to enable organizations to build an “Adaptive System: Integrated Approach, Dynamic Response” to the management of all-risks and all-hazards incidents. Key words: Resilience; Incident Management; Risk Management; Crisis Intervention; Emergency Management; Business Continuity; Disaster Recovery Ⅰ. Introduction Organizational Resilience can be viewed as an enterprise’s strategic capability to maintain positive causatum under challenging conditions in today’s uncertain and complex business environment. This Received :Sep. 12, 2016; Revised : Dec. 1, 2016; Accepted : Jan. 19, 2017 † Ivan Siang-Meng, SIN Adjunct Associate Professor, National University of Singapore, Singapore Tel.: +65-9299-2532 E-mail: [email protected]is closely linked to the organization’s ability to manage the elements that contribute to business disruptions that impact future business in the supply chain, operations, products, services, customer relations, and even public confidence. A truly resilient organization need to have the foresight to recognize potential risks with ongoing size-up of operating environment to prevent unwanted disruption or possible creeping crisis from emerging, and in the event of an unwanted incident, the ability to detect, respond, intervene, adjust, and recover from the
13
Embed
GLOBAL BUSINESS & FINANCE REVIEW...when the risks materialize. However, many organizations approached this capability in varied methodologies with some focusing on business continuity
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
GLOBAL BUSINESS & FINANCE REVIEW, Volume. 22 Issue. 1 (SPRING 2017), 38-50pISSN 1088-6931 / eISSN 2384-1648∣Http://dx.doi.org/10.17549/gbfr.2017.22.1.38ⓒ 2017 People and Global Business Association
GLOBAL BUSINESS & FINANCE REVIEWwww.gbfrjournal.org3)
Building Business Resilience through Incident Management Body of Knowledge (IMBOKTM): The Amalgamated Framework for Total ResilientCapability
Ivan Siang-Meng, SINa, Noor Azlan MUSAb and Keith Yong-Ngee, NGc a Adjunct Associate Professor, National University of Singapore, Singaporeb Managing Director, ERCM Consultancy, Singaporec Adjunct Lecturer, Southern Cross University, Australia
A B S T R A C T
In today’s volatile, uncertain, complex and ambiguous environment, organizational resilience is a strategic capability to stay afloat “stormy waters” when faced with business disruptions that have grave impacts on the organization’s business operations, supply chain, and reputation. A true resilient organization needs to be constantly scanning for potential threats, identify the probable risks, plan and be prepared to deal with the consequences and impacts when the risks materialize. However, many organizations approached this capability in varied methodologies with some focusing on business continuity while others are emphasizing on crisis management. This paper uncovers the converging domains-interplays between the concepts and the building blocks of enterprise risk and resource management, emergency and crisis management, business continuity and disaster recovery management to act as the bedrock to achieve business resilience through the Incident Management Body of Knowledge as the amalga-mated framework for total resilient capability; using the Adaptive Incident Management Methodology, to enable organizations to build an “Adaptive System: Integrated Approach, Dynamic Response” to the management of all-risks and all-hazards incidents.
plans; and checklists for each functional representative.
These plans should dovetail into specific scenario
“readiness-dashboard” covering varying incident
levels (demand levels) and its associated incident
response from on-scene actions to on-site support,
to the off-site corporate management of the incident
using the AIMM. These “Specific Incident Readiness-
Ivan Siang-Meng, SIN Noor Azlan MUSA and Keith Yong-Ngee, NG
49
Source: Authors
Figure 7. AIMM-Dashboards Approach
Dashboard” with relevant metrics pertaining to the
specific incident outcome cases are measured and
monitored during planning and preparedness stage
to gear the organization towards the desired state
of readiness and used as performance indicators to
manage the impact of the incident when the risk
event happens. Most importantly, these plans must
be seamlessly tested and integrated to ensure
efficiency and effectiveness within the AIMM using
the “Library of Readiness-Dashboards” established
during preparedness phase as shown in Figure 7.
Figure 7 illustrates conceptually how the dashboard
approach depicting different scenarios akin to driving
a car, piloting a boat, or flying a plane; each with
a panel of readiness metrics to show the organization’s
state of preparedness and performance metrics to
help organizations manage the incident key
performance indicators (KPIs) associated with the
IMBOK knowledge areas. This approach provides
the IMT a wide-angle view of the incident at hand,
with a back of mind rear-mirror check on ERRM,
side-mirrors check on CEM and BCRM issues and
consequences.
This AIMM-Dashboard approach will provide each
unique organization to establish and build an
adaptive-IMS with an integrated approach, providing
dynamic response in managing all-type incidents;
with the similar principles as IMS-ICS model, the
AIMM-Dashboard would be equally scalable,
adaptable and practical in nature such that it can
provide assurance to the Board of Directors that when
any undesired incident happens, it will be managed
professionally by their own internal resources -
backbone of the IMBOK building blocks and
processes.
As data is being theme-coded and analyzed, it
is premature at this stage to formulate any application
model, but with so many questions been raised about
the management of issues and consequences during
a crisis through ERRM, CEM, BCRM, and the much
desired “simple yet effective” way of managing their
associated impacts make the convergence of a
common body of knowledge in managing incident
and notable desire from amongst the interview
participants citing the need for an “adaptive yet
catch-all” incident management methodology for the
organization; that this one methodology may well
become the central driving force to achieving business
resilience with the IMBOK knowledge areas as the
amalgamated framework for total resilient capability
in the pursuit of business resilience.
Ⅴ. Conclusions
In summary, the study showed the evolving need
for an integrated incident management methodology
that is both adaptive to scenario-specific incidents
GLOBAL BUSINESS & FINANCE REVIEW, Volume. 22 Issue. 1(SPRING 2017), 38-50
50
and responsive to the dynamic nature of the situation
at hand. This will require the application of IMBOK
knowledge areas to resolve incident-related
consequences, impacts, and issues during business
disruptions. The ability for CICM needs to be
embedded within the AIMM approach and established
within the multidisciplinary IMT. The AIMM Specific
Incident Readiness-Dashboard Approach would
enable the organization to establish an Adaptive
System: Integrated Approach, Dynamic Response to
all-risks or all-hazards incident management.
Acknowledgements
We would like to acknowledge and thanks the
Association of Company Emergency Response
Teams, Singapore (A-CERTS), Institution of Fire
Engineers, Singapore (IFES), and the Society of Loss
Prevention for Process Industries, Singapore (SLP)
for the support and encouragement in this research
study; allowing the researchers to reach out to their
individual members and corporate member
companies for the data collection with consent.
References
Brunacini, A.V. (2002). Fire Command: The Essentials of Local Incident Management System, Massachusetts: National Fire Protection Association.
BS 11200 (2014). BS 11200 (2011): Crisis Management – Guidance and Good Practice. London: BSI Press.
Dillon, B., Dickinson, I., & Williamson, J. (2009). Emergency Planning Officers’ Handbook. London: Oxford University Press.
Enright, C. (2012). How Effective Incident Management Retain Market Share, Journal of Business Continuity & Emergency Planning, 6(1), 13-24.
Gallant, B. (2008). Essentials in Emergency Management: Including the All-hazards Approach, Plymouth: Government
Institutes.
Gaunt, P. & Ollenburger, J. (1995). Issue management revisited: A tool that deserve another look. Public Relations Review, 21(3), 199-210.
Heath, R. J. (1994). Integrating crisis management: some principles and practices. Abstracts from the First International Congress of Local Authorities Confronting Disasters and Emergencies. Tel Aviv: IULA.
Hopkin, P. (2012). Fundamentals of risk management (2nd ed). London: Kogan Page.
Lussier, R. N. (2011). Research Methods and Statistics for Business. Waveland Press.
Mason, J. (1996). Qualitative Researching. North Yorkshire: Sage Publications.
Neuman, W. L. (2011). Social Research Methods: Qualitative and Quantitative Approaches, 7th Edition. Pearson Publications.
NFPA 1026 (2014). NFPA 1026: Standard for Incident Management Personnel Professional Qualifications. Massachusetts: National Fire Protection Association.
NFPA 1561 (2014). NFPA 1026: Standard on Emergency Services Incident Management System and Command Safety. Massachusetts: National Fire Protection Association.
NFPA 1600 (2013). NFPA 1600: Standard on Disaster/ Emergency Management and Business Continuity Programs. Massachusetts: National Fire Protection Association.
Renfro, W. L. (1987). Issue management: The evolving corporate role. Futures, 19(5), 545-554.
Sekaran, U. & Bougie, R. (2013). Research Methods for Business: A Skill-Building Approach, 6th Edition. Wiley.
Sheffi Y. (2005). The Resilient Enterprise: Overcoming Vulnerability for Competitive Advantage. Cambridge, MA: MIT Press.
Smith, D. (2003). Business Continuity and Crisis Management. Management Quarterly, 27-33.
Sin, I. & Ng, K. (2013). The Evolving Building Blocks of Enterprise resilience: Ensnaring the Interplays to Take the Helm. Journal of Applied Business and Management Studies, 4(2), 1-12.
SS ISO 22301 (2012). SS ISO 22301: International Standard for Societal Security – Business Continuity Management Systems – Requirements. Singapore: SNP Press.
SS ISO 31000 (2011). SS ISO 31000: Risk Management – Principles and Guidelines. Singapore: SNP Press.
Sutcliffe, K. M. & Vogus, T. J. (2003). Organizing for Resilience. In K. S. Cameron, J. E. Dutton & R. E. Quinn (Eds.), Positive Organizational Scholarship: Foundations of a New Discipline (pp. 94-110). San Francisco: Berett-Koehler Publishers.