Risk has always been a part of Business, whether it is associated with investment in new technologies or taking on board a new seller. There’s a risk factor in most everyday decisions. Standards have been employed for a long time as a tool to decrease risk and help better decision making. ISO 14001 helps companies cope with environmental threat, ISO 27001 offers companies a way to handle information security risk and ISO 9001 is all about quality. London was the victim of Terrorist attacks three decades ago, hurricane Wilma and Katarina shook USA and tsunami devastated Indonesia. It appears that each and every month a new sort of threat shows up. Today, companies will need to begin considering the swine flu as a threat to business continuity. Most recent information states that the influenza virus may mutate into a drug resistant dangerous illness. So we must hope for the best but be prepared for the worst.
The H1N1 virus began a chain of events that greatly affected the world market. Based on those facts it is not odd that risk management and business continuity are problems often seen in the media. Despite an increased awareness of those things, companies continue to expose themselves to unnecessary danger by not coordinating protection for their data systems and preventing disruptions in their supply chain. Surveys reveal a direct Correlation between the degree of implementation of data security standards within a company and the way ready that organization is for managing security incidents. A poll conducted by British Standards Institution (BSI) found that 78 percent of businesses which have implemented safety standards feel they are prepared for security attacks compared to 28 percent of e companies that have not implemented information security standards.
Additionally 71 percent of companies that have implemented information security standards feel that they are prepared to take care of incidents in their supply chain compared to 43% that have not implemented information security bizsafe star standards. The same survey also revealed that many businesses realize the advantages of implementing standards yet they do not do anything about it. 87 percent of senior management acknowledged that with increased outsourcing, the value of implementing data security standards increase as well. Such criteria provide greater assurance that an outsourcing supplier is operating at a specific level of quality. Knowing this, it is hard to know the relaxed approach of businesses that are not applying Information Security Standards. It is important to see that business continuity plans are not restricted to systems and information technology within the business.