Resilience

Enterprise-Wide Resilience Planning Imperatives for an Uncertain Business Environment

Matthew WatsonDugan Krwawicz
October 18, 2022
5 min read

When it comes to resilience planning, enterprise leaders have their hands full. Maintaining continuity of critical operations in the face of an uncertain economic environment, the lingering effects of pandemic-related supply chain disruptions, an uptick in climate-driven catastrophic events and more has created a situation in which conventional strategies are simply not as effective as they once were.

Those strategies tended to put cybersecurity, business continuity, disaster recovery and a range of other risk-management initiatives into separate, often disconnected siloes. But now, many organizations have recognized that an impactful resilience strategy will require enterprise-wide planning and sustained integration to optimize the effectiveness of how their organizations will nimbly respond to business disruptions.

Factors to consider and who’s in charge?

Technology leaders we’ve spoken with over the last year are nearly unanimous in detailing the numerous factors they now need to consider when taking a holistic look at resilience planning. Here’s a quick synopsis:

  • Automated resilience testing – are the right architectures being utilized to optimize technology resilience?
  • Cloud migration — leveraging both on-premise and cloud resources while reconciling continuity of operations in both environments; is there a path to alignment?
  • Security – requires a significant time investment and having the right skillsets onboard; what level of risk is the organization willing to take?
  • Third-party resilience – do vendors’ resilience capabilities match or exceed the organization’s needs to bounce back quickly?
  • Regulatory environment – will regulatory requirements impact the resilience planning and response process?
  • Innovation includes people and processes – it can’t be said enough: people and processes drive successful resilience innovation; does the enterprise have a high-performing team that is confident in how resilience should work?

With so much to consider in establishing a dynamic resilience strategy, it’s clear there are bound to be competing interests. Priorities are in the eye of the beholder. Who calls the balls and strikes? And how are priorities rationalized? What we’ve discovered is likely no surprise to any leader as leaders tend to be myopic depending on where they sit in the organization. But it’s imperative that all leaders involved in resilience planning are marching toward the same objective. This is a shift in thinking and requires the voice of one strong leader who can monitor and maintain collaboration across the enterprise. We’ve found it’s best for that individual to be someone who understands technology and how the business utilizes that technology. That leader should direct where the resilience plans reside and how they will satisfy organizational objectives. He or she should also have clearly defined roles, with measurable objectives and responsibilities, to keep people engaged, involved and understanding their role in the success of the program. Finally, leaders influencing resiliency should be conversant in the formal strategy and how the people, processes and technology dependencies (and other types of dependencies, i.e., third parties) work together in one cohesive and flexible solution.

Balancing competing priorities

This strong leader is ready to develop and deliver an ironclad resilience program for the enterprise but must carefully dance through competing priorities in order to accomplish that feat. Perhaps the most intimidating hurdle could be finding the right balance between innovation and legacy processes. There is likely to be resistance from the “we’ve always done it this way” crowd, who are likely to hang on to the old ways unless they can be gently convinced to change. There will be bridges to be crossed to bring both top-level executives and mid-level managers into agreement on what a resilience strategy means and why it is important. Then, the implementation gaps between strategy and execution will need to be closed, as the resilience leader synchronizes both strategic priorities and tactical issues that need to be considered. To do this, a successful resilience leader will engage with business partners across the organization and understand their needs, involving them as appropriate. A good resilience plan will continuously evolve as the organization adapts to its changing priorities.

The ”ilities” and the “ations” – chaos engineering

During a recent roundtable conversation with technology leaders from a variety of organizations, one of the attendees brought up the “ilities” and the “ations” that need to be considered when putting a resilience plan in place. The “ilities” include things like scalability – will the plan adapt with the organization’s needs? Or capabilities – can third-party vendors deliver when needed? Then there are the “ations,” including innovation, applications, synchronization, operations, orchestration and more.

We often suggest our clients address the “ilities” and “ations” by harnessing the power of chaos engineering, or breaking things on purpose — and we found that many leaders in our roundtable group already do this. Chaos engineering provides the enterprise a common understanding of how to apply resilience principles, skillsets and architectures to manage in a hybrid environment. Testing an organization’s resilience before actual chaos happens helps identify where tactical teams need to enhance response capabilities and whether communication is cohesive. It forces silos to be knocked down. Seeing what can happen from different perspectives ultimately paves the way for a resilience plan that ensures the synchronization we mentioned above.

This topic is worth spending more time on, so we are planning a follow-up blog in which we will discuss how we progress through complicated situations – and every resilience plan is complicated, no matter the size and scope of the organization.

The resilience challenges we see today are only going to grow more complex. Take the necessary steps now to get a resilience program underway that addresses both the hearts and minds of the organization. We can help.

To learn more about our business continuity and resilience planning solutions, contact us or download our Guide to Business Continuity and Resilience.

Matthew Watson

Managing Director
Technology Strategy and Operations

View all posts

Dugan Krwawicz

Director
Technology Risk and Resilience

View all posts

You may also like

Subscribe to Topics

Protiviti Technology Follow

Protiviti leverages emerging technologies to innovate, while helping organizations transform and succeed by focusing on business value.

ProtivitiTech
protivititech Protiviti Technology @protivititech ·
25 Jul

Protiviti’s @KonstantHacker chats with guest @RichardBlech of @XsocCorp about a high-performance symmetric encryption solution that will provide in-depth defense against the threat of fault-tolerant #QuantumComputing. Listen now: https://ow.ly/9oVU50SJklj #ProtivitiTech

Reply on Twitter 1816504643360358712 Retweet on Twitter 1816504643360358712 1 Like on Twitter 1816504643360358712 1 Twitter 1816504643360358712
protivititech Protiviti Technology @protivititech ·
25 Jul

Protiviti’s Joe Corrado will join a #Nintex panel for a July 30 webinar to discuss how document automation boosts #RevOps efficiency and sales. Register today to get access to expert tips and real-world success stories. https://ow.ly/LSsf50SJnaY #ProtivitiTech

Reply on Twitter 1816443898970898615 Retweet on Twitter 1816443898970898615 Like on Twitter 1816443898970898615 Twitter 1816443898970898615
protivititech Protiviti Technology @protivititech ·
24 Jul

The world was dealt a massive wakeup call after a #CrowdStrike software update caused global IT outages. In the aftermath, business leaders should take the opportunity to reboot tech resiliency. Learn more from the latest #VISIONbyProtiviti: In Focus: https://ow.ly/R2vU50SJrAT

Reply on Twitter 1816169832544432319 Retweet on Twitter 1816169832544432319 Like on Twitter 1816169832544432319 Twitter 1816169832544432319
protivititech Protiviti Technology @protivititech ·
24 Jul

#VISIONbyProtiviti: In Focus discusses a U.S. judge’s recent ruling that rejected #SEC oversight of #cybersecurity controls in the case against SolarWinds, the impact of the decision, and why it matters. https://ow.ly/Ph7j50SIbLH #ProtivitiTech

Reply on Twitter 1816111993767547294 Retweet on Twitter 1816111993767547294 Like on Twitter 1816111993767547294 Twitter 1816111993767547294
protivititech Protiviti Technology @protivititech ·
17 Jul

How can organizations tackle internal tech tickets when a team is remote? Protiviti’s Kim Bozzella recommends fully leveraging the features of their #IT service management software. Learn more: https://ow.ly/Yf3J50SEy7u #ProtivitiTech #Forbes

Reply on Twitter 1813635582964183412 Retweet on Twitter 1813635582964183412 Like on Twitter 1813635582964183412 Twitter 1813635582964183412
Load More