IR and BC Advisory

The document outlines a service offering for developing and maintaining an Incident Response Plan (IRP) and Business Continuity Management System (BCMS) in accordance with relevant ISO and NIST standards. It includes activities such as risk assessments, incident handling procedures, training, and ongoing support to ensure organizational resilience against cyber threats. The service is led by an experienced professional with a strong background in cybersecurity and compliance auditing.

Uploaded by

d.baudone

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

12 views4 pages

IR and BC Advisory

Uploaded by

d.baudone

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 4

IR and BC Advisory Building and maintaining a robust Incident

Response Plan (IRP) and Business Continuity

Management System (BCMS)

The service includes:

● Assistance in designing and maintaining an Business

Continuity Program and in accordance with ISO 22301
and NIST SP 800-34
● Assistance in evaluating and managing risks and
business impacts
● Assistance in designing and maintaining an IRP in
accordance with NIST SP-800-61, ISO 27001 - 27035
● Remote support and on demand advice and guidance
on management of the BCP and IRP as needed
The expertise as-a-service will help you prepare ● Gap analysis reports
a prompt response to cyber incidents, ensure ● Review of the gap analysis reports
● Tabletop exercise and simulation
your business continuity, strengthen resilience
and responsiveness to cyber threats and meet
NIS2 regulatory requirements
Activities included in the service - Incident Response
● RP Development & Implementation
○ Design and implement a customized Incident Response Plan (IRP) aligned with NIST SP
800-61, ISO 27001, and ISO 27035.
○ Establish roles and responsibilities for your Incident Response Team (IRT).
○ Develop clear incident handling procedures and communication protocols.
○ Integrate IRP with your existing BCMS and other cybersecurity frameworks

● IRP Maintenance & Optimization

○ Reviews and updates of existing IRP to ensure ongoing effectiveness Information gathering
○ Gap analysis and remediation for evolving risks and business changes and analysis
○ Post-incident reviews and lessons-learned sessions for continuous Plan development and
improvement design
I
○ Updates and enhancements based on emerging threats and evolving Implementation
regulatory requirements R
Testing P
● IRP Testing & Ongoing Support/Advisory
○ Remote support and on-demand guidance for managing incidents. Maintenance and
○ Reviews and gap analysis reports to ensure IRP effectiveness. updating
○ Tabletop and incident simulation exercises to validate the robustness of the
IRP and evaluate response readiness.
Activities included in the service - Business Continuity
● BCMS Implementation
○ Design and develop a customized BCMS aligned with ISO 22301 and NIST SP 800-34.
○ Business impact analysis (BIA) and risk assessments.
○ Create and document business continuity plans (BCPs).
○ Develop communication strategies and crisis management protocols.
○ Training and awareness programs for staff

● BCMS Maintenance & Audit Support

○ Reviews and updates of existing BCP to ensure ongoing effectiveness Information gathering
○ Gap analysis and remediation for evolving risks and business changes and analysis
○ Preparation and support for certification body audits (ISO 22301) Plan development and
○ Continuous improvement initiatives and compliance monitoring design
B
Implementation
C
● Targeted activities and specialized support for key BCMS activities M
○ Business impact analysis (BIA) and risk assessments Testing S
○ Testing and Validation: Plan and execute business continuity tests,
including tabletop exercises and full-scale simulations Maintenance and
updating
○ Crisis Management Drills: Develop and conduct crisis management
exercises tailored to your organization’s risk profile
○ Simulation of specific disruption scenarios to enhance preparedness.
Daniele Baudone ❏ M.S. in Computer Science from Pisa
University, I have participated in business
start-ups and collaborated with consulting
firms and companies, as Business Unit
Director, Cyber Security Consultant, Chief
Information Security Officer, GRC Director

❏ I have started and managed ICT security

teams in multinational cloud SaaS
companies, ensuring effective information
security management that has successfully
supported their objectives and growth

❏ Consolidated experience in consulting and

providing solutions for cyber security and in
the ICT field

I support organizations in enhancing their ❏ Auditor / Lead Auditor ISO 27001:2022,

operational reliability and information security ISO 22301:2019, ISO 42001:2023
posture to align security strategies with
business demands, empowering enterprise
growth and innovation

BCM Continuous Improvement v1.0
No ratings yet
BCM Continuous Improvement v1.0
22 pages
2015 - Business Continuity Management System - A Complete Guide To Implementing ISO 22301-2012 (Shi, Jianping, Wei Ning Zechariah Wong)
No ratings yet
2015 - Business Continuity Management System - A Complete Guide To Implementing ISO 22301-2012 (Shi, Jianping, Wei Ning Zechariah Wong)
297 pages
SAMA BCM Framework - Continuity and Resilience
No ratings yet
SAMA BCM Framework - Continuity and Resilience
36 pages
Iso 22301 - BC PPT V2
100% (2)
Iso 22301 - BC PPT V2
53 pages
BCMS and BIA - Merged
No ratings yet
BCMS and BIA - Merged
249 pages
BCP
No ratings yet
BCP
60 pages
Place of Suing
100% (4)
Place of Suing
9 pages
Awareness ISO 22301 Danang Suryo W
100% (2)
Awareness ISO 22301 Danang Suryo W
36 pages
Guidelines For Business Continuity in Government Entities - 0
No ratings yet
Guidelines For Business Continuity in Government Entities - 0
29 pages
ISO 22301 - Business Continuity BCMS Overview Orlando (2459)
No ratings yet
ISO 22301 - Business Continuity BCMS Overview Orlando (2459)
50 pages
KL - Business Continuity Management Audit Work Program (3 Samples)
0% (1)
KL - Business Continuity Management Audit Work Program (3 Samples)
41 pages
Week 5 Session 2
No ratings yet
Week 5 Session 2
41 pages
Implementing ISO-27001 and How ISO-27032 Can Help
No ratings yet
Implementing ISO-27001 and How ISO-27032 Can Help
69 pages
How To Plan and Manage A BCM and IT DR Project
100% (3)
How To Plan and Manage A BCM and IT DR Project
29 pages
EMC - A373605 - RSA Business Continuity Management Operations Webcast 1-24
No ratings yet
EMC - A373605 - RSA Business Continuity Management Operations Webcast 1-24
43 pages
Business Continuity and Information Security - An Excellent Fit - Ramesh Ramani - LRQA
100% (1)
Business Continuity and Information Security - An Excellent Fit - Ramesh Ramani - LRQA
22 pages
Practice Guide - Business Continuity Management
75% (4)
Practice Guide - Business Continuity Management
30 pages
Mathematical Methods PDF
No ratings yet
Mathematical Methods PDF
27 pages
T10 - Government Accounting
44% (9)
T10 - Government Accounting
9 pages
Business Continuity Management PDF
No ratings yet
Business Continuity Management PDF
30 pages
Draft
No ratings yet
Draft
2 pages
Business Continuity Management System A Complete G... - (7 Operation)
100% (1)
Business Continuity Management System A Complete G... - (7 Operation)
78 pages
BCMS Awareness 1.0
100% (1)
BCMS Awareness 1.0
21 pages
English New Theory Notes
No ratings yet
English New Theory Notes
53 pages
Lecture 6 (2)
No ratings yet
Lecture 6 (2)
25 pages
BCM_Policy_and_Framework
No ratings yet
BCM_Policy_and_Framework
9 pages
BCMS-FORM-00-2 ISO22301 2012 Assessment Evidence
No ratings yet
BCMS-FORM-00-2 ISO22301 2012 Assessment Evidence
6 pages
BCP Guide
100% (2)
BCP Guide
36 pages
Institute (BCI), UK, Which Is The Leading Membership and Certifying Organization For Business
No ratings yet
Institute (BCI), UK, Which Is The Leading Membership and Certifying Organization For Business
3 pages
How To Make Walkie Talkies Rayer
No ratings yet
How To Make Walkie Talkies Rayer
58 pages
BCM
No ratings yet
BCM
117 pages
ISO 27001-2022 Mind Map
No ratings yet
ISO 27001-2022 Mind Map
1 page
8 Business Continuity Management Dragutin Bosnjakovic
No ratings yet
8 Business Continuity Management Dragutin Bosnjakovic
23 pages
BCM Awareness - 1
No ratings yet
BCM Awareness - 1
11 pages
V-CISO service
No ratings yet
V-CISO service
2 pages
Business Continuity Whitepaper-CAPGEMINI
No ratings yet
Business Continuity Whitepaper-CAPGEMINI
9 pages
Integrating ISO-27035 and ISO-42001 A Holistic Approach to AI Governance
No ratings yet
Integrating ISO-27035 and ISO-42001 A Holistic Approach to AI Governance
20 pages
Business Continuity and ISO 22301 Greenpaper
100% (2)
Business Continuity and ISO 22301 Greenpaper
8 pages
Anish Joy Resume - BCM
No ratings yet
Anish Joy Resume - BCM
3 pages
Scope - Understand Needs and Assessment Parameters: Business Continuity Management - Implementation Roadmap
100% (1)
Scope - Understand Needs and Assessment Parameters: Business Continuity Management - Implementation Roadmap
2 pages
Business Continuity Management Plan SQUIZ Release Date 01032018 PDF
No ratings yet
Business Continuity Management Plan SQUIZ Release Date 01032018 PDF
39 pages
Business-continuity-and-resilience
No ratings yet
Business-continuity-and-resilience
10 pages
business_continuity_and_ISO22301_preparing_for_disruption_EU_Sep_22
No ratings yet
business_continuity_and_ISO22301_preparing_for_disruption_EU_Sep_22
10 pages
Business Continuity Planning (BCP) : How To Preserve Critical Business Functions in The Face of A Disaster
No ratings yet
Business Continuity Planning (BCP) : How To Preserve Critical Business Functions in The Face of A Disaster
6 pages
On BCM - ISO 22301-2012
No ratings yet
On BCM - ISO 22301-2012
15 pages
Kadioglu Paradox of Turkish Nationalism
100% (2)
Kadioglu Paradox of Turkish Nationalism
18 pages
BCM Awareness - 3
No ratings yet
BCM Awareness - 3
1 page
DRP BCP ImteyazAhmad (AutoRecovered)
No ratings yet
DRP BCP ImteyazAhmad (AutoRecovered)
7 pages
G4 Unlocking Difficult words Quarter 2 Lesson 2
No ratings yet
G4 Unlocking Difficult words Quarter 2 Lesson 2
17 pages
BCP Planner Professional Practices PDF
No ratings yet
BCP Planner Professional Practices PDF
45 pages
jamapsychiatry_dudeck_2025_oi_240099_1740168778.00947
No ratings yet
jamapsychiatry_dudeck_2025_oi_240099_1740168778.00947
13 pages
289 Courseoutline
No ratings yet
289 Courseoutline
4 pages
Chapter 9 - Business Continuity Management
No ratings yet
Chapter 9 - Business Continuity Management
15 pages
Security Program Advisory & Coaching
No ratings yet
Security Program Advisory & Coaching
4 pages
APPLIED ECONOMICS GAS 11 Week 1&2
No ratings yet
APPLIED ECONOMICS GAS 11 Week 1&2
12 pages
Business Continuity Management
No ratings yet
Business Continuity Management
5 pages
March 2013 DRI Presentation
No ratings yet
March 2013 DRI Presentation
21 pages
ENT104 Module 01
No ratings yet
ENT104 Module 01
4 pages
Arab Academy For Science, Technology and Maritime Transport
No ratings yet
Arab Academy For Science, Technology and Maritime Transport
25 pages
Gonadal Hormones, Their Inhibitors and Fertility and Antifertility Agents
No ratings yet
Gonadal Hormones, Their Inhibitors and Fertility and Antifertility Agents
29 pages
dey2011
No ratings yet
dey2011
4 pages
Business Continuity Management
No ratings yet
Business Continuity Management
3 pages
Bcms Approach Isaca
No ratings yet
Bcms Approach Isaca
15 pages
Business Continuity Management
No ratings yet
Business Continuity Management
3 pages
Business Continuity and IS Training Template
No ratings yet
Business Continuity and IS Training Template
14 pages
T-F TAX
No ratings yet
T-F TAX
2 pages
Bs 25999
No ratings yet
Bs 25999
22 pages
BC ISO22301 Sep 20
No ratings yet
BC ISO22301 Sep 20
11 pages
Business Continuity Policy
No ratings yet
Business Continuity Policy
2 pages
Business Continuity & Disaster Recovery Planning, 30 November - 02 December 2015 Kuala Lumpur, Malaysia
No ratings yet
Business Continuity & Disaster Recovery Planning, 30 November - 02 December 2015 Kuala Lumpur, Malaysia
4 pages
Figure Series
No ratings yet
Figure Series
25 pages
Grade-12 (English For Academic and Professional Purposes) - 2
100% (1)
Grade-12 (English For Academic and Professional Purposes) - 2
8 pages
Toys Markeet
No ratings yet
Toys Markeet
3 pages
College Alumni Portal: A Project Report
No ratings yet
College Alumni Portal: A Project Report
3 pages
Iso 22301 Implementation Guide Template: Requirement
No ratings yet
Iso 22301 Implementation Guide Template: Requirement
4 pages
Perceived Injustice PDF
No ratings yet
Perceived Injustice PDF
5 pages
HB 221-2004 Business Continuity Management
No ratings yet
HB 221-2004 Business Continuity Management
9 pages
CCSDBE BCMS Impl Service-Ver2.0
No ratings yet
CCSDBE BCMS Impl Service-Ver2.0
5 pages
WHLP Week 4
No ratings yet
WHLP Week 4
4 pages
JAFZA Rules
No ratings yet
JAFZA Rules
48 pages
sp9 6 6
No ratings yet
sp9 6 6
6 pages
Task 2 (M5 LA2) Get The General Pictures of Discussion Texts
No ratings yet
Task 2 (M5 LA2) Get The General Pictures of Discussion Texts
5 pages
Upgrad Campus - Business Analytics Brochure
No ratings yet
Upgrad Campus - Business Analytics Brochure
12 pages
Topic 1. Combination
No ratings yet
Topic 1. Combination
12 pages
Honda
No ratings yet
Honda
1 page
Teachers Philosophical Heritage
No ratings yet
Teachers Philosophical Heritage
20 pages
As 60947.2-2005 Low-Voltage Switchgear and Controlgear Circuit-Breakers
No ratings yet
As 60947.2-2005 Low-Voltage Switchgear and Controlgear Circuit-Breakers
8 pages
W12-Module 014 Ethics and Religion - The Philosophy of Immanuel Kant
No ratings yet
W12-Module 014 Ethics and Religion - The Philosophy of Immanuel Kant
3 pages
Writing Your Own Slam Poem (Planning Page) First Step: Choosing A Topic
No ratings yet
Writing Your Own Slam Poem (Planning Page) First Step: Choosing A Topic
3 pages
Feliciano Vs COA
No ratings yet
Feliciano Vs COA
2 pages
December 12-16, 2016 (WEEK 6) : GRADES 1 To 12 Daily Lesson Log Tabunoc Central School V Maria Angeles Y. Niadas 3 Quarter
0% (1)
December 12-16, 2016 (WEEK 6) : GRADES 1 To 12 Daily Lesson Log Tabunoc Central School V Maria Angeles Y. Niadas 3 Quarter
4 pages
ISO 27001 COMPLIANCE STRATEGIES FOR RISK MANAGEMENT & CERTIFICATION
From Everand
ISO 27001 COMPLIANCE STRATEGIES FOR RISK MANAGEMENT & CERTIFICATION
DR. MOHAMED-ALI IBRAHIM
No ratings yet
Shields Up: Cybersecurity Project Management
From Everand
Shields Up: Cybersecurity Project Management
Gregory J. Skulmoski
No ratings yet
IT Audit Field Manual: Strengthen your cyber defense through proactive IT auditing
From Everand
IT Audit Field Manual: Strengthen your cyber defense through proactive IT auditing
Lewis Heuermann
No ratings yet
Nine Steps to Success: An ISO 27001:2022 Implementation Overview
From Everand
Nine Steps to Success: An ISO 27001:2022 Implementation Overview
Alan Calder
No ratings yet