Author: Mark Allen Durivage
Publisher: ASQ Quality Press
Release Date: 2016-05-26
Genre: Business & Economics
The purpose of this handbook is to assist individuals for the Certified Pharmaceutical Good Manufacturing Practices Professional (CPGP) examination and provide a reference for the practitioner. The second edition reflects the Body of Knowledge which was updated in 2015. This edition has also incorporated additional information including updated references. The updates reflect the current trends and expectations of the evolving pharmaceutical industry driven by consumer expectations and regulatory oversight. This handbook covers compliance with good manufacturing practices (GMPs), as regulated and guided by national and international agencies for the pharmaceutical industry. It covers finished human and veterinary drugs and biologics, and combination devices, as well as their component raw materials (including active pharmaceutical ingredients (APIs) and excipients), and packaging and labeling operations.
Author: Dr Goh Moh Heng
Publisher: GMH Continuity Architects
Release Date: 2013
Genre: Business planning
This book is written for those who are new to Business Continuity Management (BCM) and also as a reference for practitioners, who are assigned to initiate the BC planning (BCP) project in their organization using the ISO 22301 Standard for Business Continuity Management System (BCMS). It applies the author's experiences in getting several clients' organizations to successfully achieve the ISO22301 BCMS certification. This books is also for seasoned BCM professional to guide you through the BCM implementation process.
Author: Wei Ning Zechariah Wong
Publisher: Kogan Page Publishers
Release Date: 2014-11-03
Genre: Business & Economics
A business continuity management system (BCMS) is a management framework that prepares the organization by developing business continuity strategies to meet its business and statutory obligations during an incident. It is about optimizing service availability and preserving business performance to secure future growth in the market. Business Continuity Management System offers a complete guide to establishing a fit-for-purpose business continuity capability in your organization. Structured in line with the principles of ISO22301 (the International Standard for business continuity management) and with current best practice, this user-friendly book covers the whole life cycle of developing, establishing, operating and evaluating a BCMS initiative. It is aimed at new and seasoned business continuity practitioners involved in business continuity activities in their organizations, whatever the size and sector. It includes proven techniques and easy-to-use methodologies that specifically support the implementation of those requirements specified in ISO 22301. Pragmatic approaches supported by in-depth explanations guide you to assess and improve your organization's BCMS performance. This is the first book to offer an end-to-end solution that addresses all aspects of implementing an effective BCMS. Business Continuity Management System is intended to act as a catalyst to accelerate progress on the journey from business continuity management and risk management to the creation and implementation of a business continuity management system, both by enhancing the BCM and risk competence of individual readers and by contributing to shared knowledge in implementing ISO 22301 in organizations.
As a manager, you can usually handle disruptive employees. But sometimes, their emotional states foster workplace tension, even making them a danger to others. Your own confidence is at risk. In The Manager’s Guide to Bullies in the Workplace: Coping with Emotional Terrorists, noted counselor Dr. Vali Hawkins Mitchell gives you sensible advice for keeping the bully from dominating the workgroup and destroying productivity – and maintaining your own healthy emotional balance at the same time. Sometimes the difficult person is an overt physical bully, which makes it easy to simply fire the person. Much of the time, however, the problems are more subtle and build up over periods of time. They undermine your ability to manage your team – and they can spread to the rest of the team, destroying teamwork and productivity. In this short book, Dr. Vali helps you to: Recognize the types of upsetting work situations that bullies exploit to their own advantage, such as change, grief, and violence. Understand why emotional terrorists make it so difficult for you, as a manager, to deal with their behavior. . See the symptomatic tools and techniques of the emotional terrorist, such as harassment, lying to supervisors, tampering with documents, etc. . Conduct training to help other managers and team members recognize and handle the signs of impending emotional conflict – you will love the “Snakes in the Schoolyard” exercise. . Know exactly what to say and not say when you must have a one-on-one interview with someone you consider to be a bully. . Be an effective manager in a world of challenges – protecting and preserving the mental health of your employees and yourself. . Dr. Vali uses realistic examples and humor to help you handle the challenges you face – and to show the degree to which she really understands your situation. With her guidance, you will be more comfortable with knowing when you can handle the situation through simply being the good manager, when you need to call in an outside mental health professional, and when you need to call 911.
Author: Brian Allen, Esq., CISSP, CISM, CPP, CFE
Publisher: Rothstein Publishing
Release Date: 2017-11-29
Genre: Business & Economics
As a security professional, have you found that you and others in your company do not always define “security” the same way? Perhaps security interests and business interests have become misaligned. Brian Allen and Rachelle Loyear offer a new approach: Enterprise Security Risk Management (ESRM). By viewing security through a risk management lens, ESRM can help make you and your security program successful. In their long-awaited book, based on years of practical experience and research, Brian Allen and Rachelle Loyear show you step-by-step how Enterprise Security Risk Management (ESRM) applies fundamental risk principles to manage all security risks. Whether the risks are informational, cyber, physical security, asset management, or business continuity, all are included in the holistic, all-encompassing ESRM approach which will move you from task-based to risk-based security. How is ESRM familiar? As a security professional, you may already practice some of the components of ESRM. Many of the concepts – such as risk identification, risk transfer and acceptance, crisis management, and incident response – will be well known to you. How is ESRM new? While many of the principles are familiar, the authors have identified few organizations that apply them in the comprehensive, holistic way that ESRM represents – and even fewer that communicate these principles effectively to key decision-makers. How is ESRM practical? ESRM offers you a straightforward, realistic, actionable approach to deal effectively with all the distinct types of security risks facing you as a security practitioner. ESRM is performed in a life cycle of risk management including: Asset assessment and prioritization. Risk assessment and prioritization. Risk treatment (mitigation). Continuous improvement. Throughout Enterprise Security Risk Management: Concepts and Applications, the authors give you the tools and materials that will help you advance you in the security field, no matter if you are a student, a newcomer, or a seasoned professional. Included are realistic case studies, questions to help you assess your own security program, thought-provoking discussion questions, useful figures and tables, and references for your further reading. By redefining how everyone thinks about the role of security in the enterprise, your security organization can focus on working in partnership with business leaders and other key stakeholders to identify and mitigate security risks. As you begin to use ESRM, following the instructions in this book, you will experience greater personal and professional satisfaction as a security professional – and you’ll become a recognized and trusted partner in the business-critical effort of protecting your enterprise and all its assets.
You have the knowledge and skill to create a workable Business Continuity Management (BCM) program – but too often, your projects are stalled while you attempt to get the right information from the right person. Rachelle Loyear experienced these struggles for years before she successfully revamped and reinvented her company’s BCM program. In The Manager’s Guide to Simple, Strategic, Service-Oriented Business Continuity, she takes you through the practical steps to get your program back on track. Rachelle Loyear understands your situation well. Her challenge was to manage BCM in a large enterprise that required hundreds of BC plans to be created and updated. The frustrating reality she faced was that subject matter experts in various departments held the critical information she needed, but few were willing to write their parts of the plan. She tried and failed using all the usual methods to educate and motivate – and even threaten – departments to meet her deadlines. Finally, she decided there had to be a better way. The result was an incredibly successful BCM program that was adopted by BCM managers in other companies. She calls it “The Three S’s of BCM Success,” which can be summarized as: Simple – Strategic – Service-Oriented. Loyear’s approach is easy and intuitive, considering the BCM discipline from the point of view of the people in your organization who are tasked to work with you on building the plans and program. She found that most people prefer: Simple solutions when they are faced with something new and different. Strategic use of their time, making their efforts pay off. Service to be provided, lightening their part of the load while still meeting all the basic requirements. These tactics explain why the 3S program works. It helps you, it helps your program, and it helps your program partners. Loyear says, “If you follow the ‘Three S’ philosophy, the number of plans you need to document will be fewer, and the plans will be simpler and easier to produce. I’ve seen this method succeed repeatedly when the traditional method of handing a business leader a form to fill out or a piece of software to use has failed to produce quality plans in a timely manner.” In The Manager’s Guide to Simple, Strategic, Sevice-Oriented Business Continuity, Loyear shows you how to: Completely change your approach to the problems of “BCM buy-in.” Find new ways to engage and support your BCM program partners and subject matter experts. Develop easier-to-use policies, procedures, and plans. Improve your overall relationships with everyone involved in your BCM program. Craft a program that works around the roadblocks rather than running headlong into them.
Author: Andrew Hiles
Publisher: Rothstein Publishing
Release Date: 2014-09-30
Genre: Business & Economics
Discover new ideas and inspiration to build world-class Business Continuity Management from this masterwork that distills Hiles' wisdom about what works and why from 30+ years' experience in 60+ countries. First published in 1999, the new 4th Edition of Hiles' classic is the most international, comprehensive, readable exposition on the subject. It now includes: New or revised sections: New, extensive chapter on supply chain risk – including valuable advice on contract aspects. Horizon scanning of new risks. Fresh perspectives. Multilateral continuity planning. Impact of new technologies, including mobile computing, cloud computing, bring your own device, and the Internet of things. Extensive, up-to-the-minute coverage of global/country-specific standards, with detailed appendices on ISO 22301/22313 and NFPA 1600. BCP exercising and testing. Helpful discussion on issues relating to certification professional certification. New revealing case studies and vivid examples of crises and disruptions – and effective response to them. Updated action plans and roadmaps. Proven techniques to win consensus on BC strategy and planning. Hint of the future – what's next for BCM? Demonstrates step-by-step how to build and maintain a world-class BC management system and plan. Shares field-tested tools and hard-won insights about what works and why. Chapter learning objectives, case studies and real-life examples, self-examination and discussion questions, forms, checklists, charts and graphs, glossary, index. 520-page book + hundreds of pages of Downloadable Resources, including project plans, risk analysis forms, BIA spreadsheets, BC plan formats, exercise/test material, checklists, and a variety of editable models, templates, and spreadsheets. Instructional Materials coming soon including valuable educational tools, such as syllabi, test bank, slides – for use by approved adopters in college courses and professional development training.
Author: Hilary Estall
Publisher: BCS, The Chartered Institute
Release Date: 2012
Genre: Business planning
Written for organizations that are implementing a business continuity management system and certification in line with ISO 22301, this guide will prove invaluable for those new to business continuity management or to management systems. Enriched with self-assessment checklists, worksheets, and top tips.
This book is intended to be a step-by-step guide to implementation of business continuity managementwithin an enterprise. It may be used as a step-by-step guide by those new to Business ContinuityManagement or dipped into by the more seasoned professional for ideas and updates on specifictopics. In many cases, the corporate BC Manager acts as an internal consultant, and we have treatedhim or her as such in this book: the book is therefore equally appropriate for practicing consultants. This book is the second edition of the first book to be based on the ten Core Units of Competence for Business Continuity established jointly by BCI and DRII, and to create a practical, step-by-step framework to guide an enterprise through the implementation of a business continuity program based on these ten units.This book has been endorsed by both The Business Continuity Institute International (BCI) and TheDisaster Recovery Institute International (DRII). Both organizations have included forewords to this book.
In Secure & Simple Dejan Kosutic, an author and experienced information security consultant, is giving away all his practical know-how on successful ISO 27001 implementation. Whether you’re new or experienced in the field, this book gives you everything you will ever need to implement ISO 27001 on your own. Dejan provides examples of implementing the standard in small and medium-sized organizations (i.e. companies with up to 500 employees). It is written primarily for beginners in the field and for people with moderate knowledge of ISO 27001. Even if you do have experience with the standard, but feel that there are gaps in your knowledge, you’ll find this book very helpful. Secure & Simple is the definitive guide for implementing and maintaining the most popular information security standard in the world. The author leads you, step-by-step, from an introduction to ISO 27001 to the moment your company passes the certification audit. During that journey you will learn: • The most common ISO 27001 myths, like “The standard requires xyz;” “We’ll let the IT department handle it;” “We’ll implement it in a couple of months;” and others. • How to convince your top management to implement ISO 27001. “If you think that your management loves to listen to your great idea about a new firewall, or the perfect tool you’ve discovered for handling incidents, you’re wrong – they just don’t care.” This book will help you speak the language they want to hear. • How to write the Risk Assessment Methodology plus other policies and procedures. • How to identify potential risks. “Employees (and the organization as a whole) are usually aware of only 25 to 40% of risks – therefore, a thorough and systematic process needs to be carried out…” Learn how to identify all potential risks that could endanger the confidentiality, integrity, and availability of organization’s information. • What are the most important steps in order to prepare a company for the certification, and much more. Written in plain English with a lot of practical examples, charts and diagrams, it is the only book you’ll need on the subject of ISO 27001 implementation.
You're in charge of IT, facilities, or core operations for your organization when a hurricane or a fast-moving wildfire hits. What do you do? Simple. You follow your business continuity/disaster recovery plan. If you've prepared in advance, your operation or your company can continue to conduct business while competitors stumble and fall. Even if your building goes up in smoke, or the power is out for ten days, or cyber warriors cripple your IT systems, you know you will survive. But only if you have a plan. You don't have one? Then Disaster Recovery, Crisis Response, and Business Continuity: A Management Desk Reference, which explains the principles of business continuity and disaster recovery in plain English, might be the most important book you'll read in years. Business continuity is a necessity for all businesses as emerging regulations, best practices, and customer expectations force organizations to develop and put into place business continuity plans, resilience features, incident-management processes, and recovery strategies. In larger organizations, responsibility for business continuity falls to specialist practitioners dedicated to continuity and the related disciplines of crisis management and IT service continuity. In smaller or less mature organizations, it can fall to almost anyone to prepare contingency plans, ensure that the critical infrastructure and systems are protected, and give the organization the greatest chance to survive events that can--and do--bankrupt businesses. A practical how-to guide, this book explains exactly what you need to do to set up and run a successful business continuity program. Written by an experienced consultant with 25 years industry experience in disaster recovery and business continuity, it contains tools and techniques to make business continuity, crisis management, and IT service continuity much easier. If you need to prepare plans and test and maintain them, then this book is written for you. You will learn: How to complete a business impact assessment. How to write plans that are easy to implement in a disaster. How to test so that you know your plans will work. How to make sure that your suppliers won't fail you in a disaster. How to meet customer, audit, and regulatory expectations. Disaster Recovery, Crisis Response, and Business Continuity: A Management Desk Reference will provide the tools, techniques, and templates that will make your life easier, give you peace of mind, and turn you into a local hero when disaster strikes.
Create appropriate, security-focused business propositions that consider the balance between cost, risk, and usability, while starting your journey to become an information security manager. Covering a wealth of information that explains exactly how the industry works today, this book focuses on how you can set up an effective information security practice, hire the right people, and strike the best balance between security controls, costs, and risks. Practical Information Security Management provides a wealth of practical advice for anyone responsible for information security management in the workplace, focusing on the ‘how’ rather than the ‘what’. Together we’ll cut through the policies, regulations, and standards to expose the real inner workings of what makes a security management program effective, covering the full gamut of subject matter pertaining to security management: organizational structures, security architectures, technical controls, governance frameworks, and operational security. This book was not written to help you pass your CISSP, CISM, or CISMP or become a PCI-DSS auditor. It won’t help you build an ISO 27001 or COBIT-compliant security management system, and it won’t help you become an ethical hacker or digital forensics investigator – there are many excellent books on the market that cover these subjects in detail. Instead, this is a practical book that offers years of real-world experience in helping you focus on the getting the job done. What You Will Learn Learn the practical aspects of being an effective information security manager Strike the right balance between cost and risk Take security policies and standards and make them work in reality Leverage complex security functions, such as Digital Forensics, Incident Response and Security Architecture Who This Book Is For“/div>divAnyone who wants to make a difference in offering effective security management for their business. You might already be a security manager seeking insight into areas of the job that you’ve not looked at before, or you might be a techie or risk guy wanting to switch into this challenging new career. Whatever your career goals are, Practical Security Management has something to offer you.