Crisis Management & Business Continuity

 

The Realities of Crisis Management & Business Continuity for 21st Century Threats

Response & Recovery

Effective and timely response, as well as post-event recovery, are vital factors in mitigating the impact of a terrorist attack on any organisation.

In addressing these critical aspects, various documents can be employed, such as crisis or emergency response plans, to ensure an immediate and coordinated reaction to the incident.

Additionally, the business continuity (BC) plan plays a pivotal role as it integrates all the necessary requirements, encompassing both response and recovery actions following the event.

The size and complexity of the organisation determine the appropriate documents to be utilised for planning the response and recovery to a terrorist or hybrid threat attack.

Small & Micro businesses may find it more practical to adopt a comprehensive catch-all document for their Counter Terrorism Plan, which consolidates all relevant measures.

On the other hand, medium to large organisations, especially those with multiple sites or high footfall locations and a substantial workforce, require a more extensive and detailed planning system.

Such complexities demand a more thorough approach to ensure the safety and security of personnel and assets during a crisis situation.

By tailoring the response and recovery plans to the organisation’s specific needs and scale, the implementation of effective mitigation measures becomes more feasible, bolstering the organisation’s overall resilience in the face of potential threats.

 

Proven Systems

The effectiveness of the protective security process in mitigating terrorist and hybrid threats depends more on the processes and types of mitigation employed rather than the specific management system used.

While various management systems, such as ISO (International Organisation for Standardisation), BS (British Standards), ASIS (American Society for Industrial Security), and others, provide frameworks and guidelines for security management, the core focus lies in implementing robust and adaptable security processes.

The key is to tailor the protective security measures to the organisation’s specific needs and risk profile, regardless of its size, complexity, or the industry it operates in.

These measures can be integrated into any management system, ensuring a cohesive and effective security approach.

By adopting proven options and best practices, organisations can create a comprehensive protective security process that addresses various vulnerabilities and risks associated with terrorism and hybrid threats.

The choice of management system is secondary to the processes and types of mitigation implemented.

Regardless of the management framework adopted, what truly matters is the organisation’s commitment to creating and maintaining a robust and responsive protective security process tailored to its specific needs and risks.

 

Emergency Services Response Gap

The initial and ongoing situation will be chaotic if an attack occurs, and there might be a significant gap in the emergency services’ response time, known as the Emergency Services Response Gap. The length of this gap can vary greatly, ranging from a few minutes to an extended period, depending on the nature and Method of the Attack.

During this critical phase, it is essential for organisations to comprehend and acknowledge that there will be a period when staff and customers must be capable of responding effectively under their own direction.

This emphasises the importance of preparedness and training to empower individuals to make informed decisions and take appropriate actions to protect themselves and others in the absence of immediate external assistance.

To address this response gap, organisations should focus on implementing robust emergency response plans, conducting regular drills and exercises, and providing comprehensive training to staff.

These measures help build a culture of preparedness, ensuring that individuals can react quickly and confidently in high-stress situations, thereby reducing potential harm and increasing overall safety during the critical moments before emergency services arrive.

 

Crisis Communications

Effective crisis communications are of paramount importance during a crisis, particularly when local and international media attention converges on the affected area.

The organisation must be prepared to respond promptly and responsibly through various communication channels, addressing concerns from senior management, staff, and customers.

A crucial element of crisis communications is the development of a well-crafted holding statement. This statement serves as an initial response to the crisis, providing essential information and reassurance while the organisation gathers more details and formulates a comprehensive response strategy.

The holding statement is pre-planned and should be carefully designed to convey a clear and consistent message to the public and stakeholders.

Having pre-determined lines or key messages is essential in crisis communications. These lines ensure that the organisation’s response remains consistent and aligned with its overall communication strategy.

Sticking to these key messages helps avoid confusion and potential miscommunication during a crisis.  Transparency and timely updates are critical during a crisis.

Providing accurate information as soon as it becomes available fosters trust with stakeholders and the public.

Crisis communications require careful planning, a well-crafted holding statement, a skilled media liaison, consistent key messages, and a centralised communication approach.

 

Post Event

The post-event period following a crisis is a pivotal time that significantly influences how well an organisation can recover and rebuild.

Effective post-event recovery hinges on thorough prior planning and preparation. Organisations that have invested time and effort in developing comprehensive crisis management and recovery plans are better equipped to handle the aftermath of a crisis successfully.

A credible recovery strategy involves clear communication with all stakeholders, including employees, customers, suppliers, and the broader community.

Transparent and consistent communication fosters trust and helps manage expectations during the recovery process.

Additionally, the post-event period is an opportunity for the organisation to learn from the crisis experience and conduct a thorough review and analysis.

The post-event period is a critical juncture that can make or break an organisation’s recovery.

Adequate preparation and planning can lead to a credible and effective recovery, reducing criticality costs and enabling the organisation to bounce back more swiftly and resiliently.

 

Whats Involved & How to Deliver

Our Premium Resources Vault offers a comprehensive bank of security knowledge, providing cutting-edge insights and a wealth of information to elevate your understanding of protective security systems for Terrorism & Hybrid Threat Risk Management solutions.

Within this vault, you’ll gain access to a wide range of specialised resources for security professionals, risk managers, and decision-makers in the private sector.

To learn more on what and how to implement all the relevant topics, follow this link.

Author:

Tony Gledhill, a seasoned protective security consultant and founder of Mildot Group. With extensive international experience, Tony has designed and executed security strategies for leading energy and construction organisations operating in high-risk and complex environments.   His private sector expertise extends to training international government protection teams responsible for VIPs and critical assets, plus thousands of armed & unarmed private security guards. Leveraging over 16 years in the private sector after a distinguished 22-year military career, he brings a wealth of real-world knowledge.

Armed with real world operational insight, he knows what can be achieved with reasonable and practicable security solutions.