Internal training
Practical approach to risk management in BCM
Professionally prepared training in key areas of risk management in Business Continuity Management (BCM), which will enable participants to learn best practices for building a business continuity system within an organization.
About the training
Practical training for individuals looking to expand their knowledge and acquire skills in the available risk assessment methods used in the area of business continuity.
The training is conducted in the form of lectures and workshops, ensuring the effective translation of new knowledge and skills into practical actions. We focus not only on delivering theoretical knowledge but, more importantly, on providing effective, practical methods, techniques, valuable experiences, and best practices. The training spans two days. During the training, key topics related to risk management and business continuity will be discussed.
The aim of the training
- Identify best practices for building a business continuity management system within an organization.
- Acquire knowledge and skills on available risk assessment methods applied in the area of business continuity.
- Master the concepts and methods used in risk management processes.
- Understand the mechanisms and logic behind managing risk processes in compliance with ISO 22301 standards.
- Develop the ability to prepare documentation in line with the requirements of ISO 22301.
Training assumptions
The training is tailored to the participants based on:
- Understanding the specifics of the company and current needs related to risk management.
- Analysis of documents and information provided by the participants.
- Results of conceptual work prepared by the participants between the training days.
Training language
The training is conducted in Polish.
Upon request, it is also possible to organize the training in English.
Training methodology
Achieving the desired training outcomes is possible by selecting both the appropriate topics and training methods tailored to the specific needs of the participants and the subject matter. Below we present the methods and techniques we use:
- LECTURE
We deliver knowledge to the participants using dedicated teaching materials, such as multimedia presentations. This serves as the theoretical foundation of the training, during which we introduce the topic, discuss key concepts, describe roles, processes, procedures, etc. - PRACTICAL EXAMPLES
As practitioners, we base the training program on real-life events presented in relation to a specific problem. We help participants independently draw conclusions or find solutions. Our training is highly focused on practice and the development of participants’ skills. - DISCUSSION
Participants express their opinions and share experiences. A well-structured discussion topic, involving at least two differing perspectives, typically generates significant emotional engagement. The discussion enables the development of a common solution or prepares arguments regarding the topic. - BRAINSTORMING
In a short time, we generate numerous ideas and solutions for specific problems and situations. We engage participants, stimulate their thinking, and encourage creativity. - EXERCISES
Practical tasks related to the training topic, such as creating a process, conducting a case study, etc. These exercises effectively complement the lecture and practical examples. - TESTS
We assess participants’ knowledge and skills. We identify any competency gaps and plan the educational process to enhance the participants’ abilities. Depending on the training type, this may be done using various tools, such as knowledge tests or performance assessments. - SIMULATIONS
These provide an excellent real-world experience, where participants actively engage and experience the consequences of their actions. - SUMMARY
After completing each topic, we summarize the discussed material. This is done by the trainer and allows participants to revisit key issues related to the subject matter, giving them the opportunity to verify how well they have absorbed the content.
Trainer
Jacek Knopik
A graduate of Documentation Management at Adam Mickiewicz University in Poznań. He is an authorized representative and internal auditor for information security management systems, quality management systems, environmental management systems, and health and safety systems. He is an expert in risk management in the areas of information security, GDPR, quality management, business continuity, and internal control. Jacek is also a consultant, implementer, trainer, and software tester for risk management solutions. He has been responsible for implementing operational risk management systems compliant with ISO 31000 in business organizations, including Allegro, CCC, and Kraków Balice Airport. He has managed numerous implementation projects related to ISO 27001, ISO 22301, and the requirements of the Critical Infrastructure Protection Act. For the past three years, he has been a trainer, delivering the Risk Manager ISO 31000 training program. Additionally, Jacek has over five years of experience in local government administration, focusing on documentation management, processes, internal control, and the implementation of IT systems.
Designed exclusively for your organization – this approach ensures comfort and freedom to thoroughly discuss specific topics and situations relevant to your company. We understand that every business is different, which is why we adapt the presented examples to match your unique needs and business context, ensuring the acquired knowledge can be effectively applied within your organization.
Training program
Day 1
9:00 - 16:00
- Welcome to the training session
- Introduction to the scope of the training.
- Overview of the rules for participation and the final test.
- Agreement on the format of the training (workshops, lectures, exercises, case discussions).
- Introduction to Risk Management
- Benefits of risk management.
- Challenges in managing risks and common reasons for system implementation failures.
- Risk Management Standards and Models
- Examples of best practices.
- Requirements of ISO 22301 and practical guidance on risk assessment.
- Discussion with participants
- Review of the existing risk management methodology in their organization and its intended goals.
- Workshops on the Risk Management Process:
- Process-oriented approach to risk management.
- Identification of threats.
- Assessing resource availability.
- Risk identification.
- Risk analysis.
- Documenting the Risk Management Process
- Documentation requirements and practical tips for preparing documents.
- Presentation and analysis of selected methodologies.
- Review of the risk assessment sheet.
- Questions and Discussion
Day 2
9:00 - 16:00
- Presentation of Participants’ Conceptual Work
- Consultations on Developed Solutions:
- The importance of changes in the context of ISO 22301 requirements.
- Inclusion of other areas of risk management within the organization in relation to business continuity.
- Analysis of adopted solutions in terms of risk identification and assessment standards.
- Presentation of Principles and Methods of Risk Evaluation:
- Prioritization and handling of the most critical risks.
- Workshops:
- Optimization of existing documentation and recommendations for future improvements and actions.
- Best Practices and Recommendations within the Business Continuity Management System.
- Questions and Discussion:
- Consultations on all discussed elements.
- Proposals for further actions to improve the system
How does it work?
Step 1
REGISTRATION
As the first step, please complete the application form to let us know you’re interested in organizing dedicated training for your company.
Step 2
DATE
We will agree on the date and location of the training—tailoring it to your availability and individual expectations.
Step 3
PRICE
We will present the commercial terms for organizing the training based on the agreed parameters and number of participants.
Step 4
TRAINING
We will conduct the dedicated training in accordance with the agreed terms.
