30 years of business continuity

May 2019 Editor's Choice, Security Services & Risk Management

Hi-Tech Security Solutions spoke to ContinuitySA’s CEO Michael Davies in light of the company’s 30th anniversary celebrations.

Michael Davies
Michael Davies

ContinuitySA has been through a few permutations over the years, from being part of the MGX group, to a management buyout in 2003 and finally being acquired by Dimension Data in 2014. Throughout all the changes, however, the company remained focused on providing the skills, technology and space to ensure customers would be able to keep their businesses running, no matter what type of emergency may happen.

In the early days of ContinuitySA, Davies says the company was primarily focused on IT DR (disaster recovery) as that was the main problem companies faced 30 years ago. Since then, customers’ requirements have changed along with compliance regulations and the expectations society places on companies.

As an example, he says that financial organisations were ContinuitySA’s primary customers in the early days. Since then, regulations have forced other industries to also incorporate business continuity into their business plans – these industries include pharmaceutical, medical, mining and more. (We use the term business continuity to refer to both business continuity and disaster recovery in this article.) Business continuity has expanded to include more modern threats, like ransomware and cyber-attacks.

Additionally, these plans must incorporate far more than only operational concerns. A critical aspect of an effective business continuity plan today is dealing with the media, for example. When an emergency is happening, companies can’t simply focus on getting the business up and running, they need to have a plan to talk to the media and keep everyone informed during and after the recovery process.

All about resilience

It’s all about resilience these days, says Davies. You can’t plan for every possible crisis, which means each company needs to have set processes and policies (and people) to deal with any type of disruption in our V.U.C.A. (volatile, uncertain, complex, ambiguous) world. Furthermore, it’s also not necessarily something that only happens to your company or environment directly.

We live and work in a global village that is only becoming more connected and inter-dependent. What happens on the other side of the world can have an impact on your business. With just-in-time manufacturing, for example, an earthquake in Japan could see an automotive company in South Africa not having spare parts for clients. Resilience is therefore crucial, for operations as well as for reputational continuity.

And reputation is critical these days. With social media and Internet news channels, bad news travels fast and personal and company reputations can be ruined in hours or even minutes – whether justifiable or not. Your ability to handle everything in a concise and clear manner is a vital aspect of corporate longevity.

Resilience is therefore becoming an integral part of every company’s business plan. Large multi-national banks may only be able to afford minutes of downtime, while a smaller company can handle a day or three of downtime, but all of them need to have a plan to get themselves operational and to handle any reputational fallout caused by a crisis of any nature, whether they caused it or not.

Enhancing resilience

Looking at how technology has advanced over the past three decades, it’s natural that the continuity solutions available have also advanced, both in terms of securing the latest technology and making use of it for continuity purposes. Davies highlights two technology elements that have made an impact in the business continuity space.

In South Africa we have seen dramatic advances in connectivity over the past few years. One business continuity result of this has been that data is no longer backed up to independent media and collected and stored by a service provider. Near real-time backups are now a reality, allowing ContinuitySA to keep one or more copies of customers’ data in completely separate locations. (Keeping backups on independent media has not fallen away, of course, but now primarily supports online backups that can reduce the loss window dramatically.)

Connected to this is the growth of cloud solutions. The cloud is finding increased acceptance in organisations as a means to store data, applications and even have data centres in remote locations, making failover and continued operations a little easier, but also more complex in a dispersed world. In addition, in a crisis, certain staff can even log in and work from home if the office is inaccessible.

This does not apply to every job, however, as call centre operators, for example, can’t be sent home. Staff in this category will still need a separate offsite location they can go to in case of a crisis. This has led to the growth in the number of seats ContinuitySA keeps available for clients in key locations across South Africa, Botswana, Mozambique, Mauritius and Kenya (seats refers to the number of workstations the company has available for clients – with about 11 000 m2 for work area recovery in Midrand alone – should they experience a crisis and have to move their staff to a different location).

Of course, advanced technology, while leading to amazing developments, has also led to amazing opportunities for cyber criminals. Business continuity plans today are therefore also being developed to deal with cybercrimes, such as malware, hacking and ransomware. In the case of ransomware, having a failover location for staff isn’t enough, the company needs to make sure it has a ‘clean’ backup it can get to work on – which naturally needs to be part of the business continuity plan.

Everyone is resilient

Looking ahead at how the business continuity/disaster recovery market will change in the next few years, Davies says the concept of resilience will become a common term on everyone’s to-do list. In contrast to ContinuitySA’s early days when business continuity was primarily an IT problem, today it has become a risk mitigation issue and the board and CEO must be involved in the plan as they determine the business’s appetite for risk.

In future, however, because of the ubiquitous nature of technology, resilience will be everyone’s directive and every person in the company will have their role to play in supporting the company’s resilience to crises of any nature. And a crisis today can include anything from natural phenomenon like floods or cyclones, to man-made problems like electricity failures, labour unrest, political violence and more.

Moreover, the continuity plans of the future will incorporate every touchpoint of the company, from financial results to operations, to corporate social responsibility and community relations, and we are seeing continuity planning in some corporations extending to self-provision of electricity and even water in some cases.

Fortunately, ContinuitySA has been doing this for three decades and its services are still in demand. The company continues to grow and there is little chance that business continuity services and expertise will experience a decrease in importance any time soon.

For more information contact ContinuitySA, +27 11 554 8050, cindy.bodenstein@continuitysa.co.za, www.continuitysa.co.za


Credit(s)





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

TAPA: The role of an effective treasury function in business risk management
June 2019, Technews Publishing , News
Neil Le Roux, the Founder of Diligent Advisors will speak at the TAPA SA (Transported Asset Protection Association) annual conference on 26 July 2019.

Read more...
From the Editor's desk: No really, take it seriously
July 2019, Technews Publishing , News
Cybersecurity is a topic that has been done to death in the media. The blanket coverage has been so great that people, even the few that realised the danger, have started to gloss over the issue, barely ...

Read more...
Residential Estate Security Conference 2019
July 2019, Technews Publishing , Calendar of Events
20 August 2019    Indaba Hotel, Fourways, Johannesburg    Following sold-out events in 2017 and 2018, Hi-Tech Security Solutions will once again be hosting a full-day conference covering residential estate ...

Read more...
iLegal 2019
July 2019, Technews Publishing , Calendar of Events
12 September 2019    Johannesburg, South Africa    iLegal, hosted by Dr Craig Donald and Hi-Tech Security Solutions, returns in 2019 with another full-day event covering insights and advice into a range of ...

Read more...
Social media and intelligence-led surveillance
July 2019, Leaderware , Editor's Choice, Integrated Solutions, Security Services & Risk Management
Social media has become a major feature of most people’s lives in the last few years and they can be invaluable as a source of information for companies and security organisations.

Read more...
The 4th Industrial Revolution
July 2019, Wolfpack Information Risk , Editor's Choice, Cyber Security, Security Services & Risk Management, Industrial (Industry)
Most major industries have turned to and are reliant on technology to run their operations. This is a time of great promise, but also one of frightening peril.

Read more...
Data protection more challenging
July 2019 , Editor's Choice, IT infrastructure
The number of businesses unable to recover data after an incident nearly doubled from 2016, according to the Global Data Protection Index surveying 2 200 IT decision makers from 18 countries.

Read more...
Cyber-attacks target operational technology
July 2019 , Editor's Choice, Cyber Security, Industrial (Industry)
Focus on operational technology security increasing as around 74% of OT organisations come under attack in the past year, finds a new Fortinet report.

Read more...
Fear of the unknown
July 2019, Kaspersky Lab , Cyber Security, Security Services & Risk Management
Fear of the unknown: while there’s still interest in cryptocurrencies, just 19% locally understand how they work.

Read more...
Assess business resilience in terms of value
July 2019, ContinuitySA , Security Services & Risk Management
Looking at the total value of the investment (VOI) is a far better way of assessing the worth of an in-vestment with many intangible benefits.

Read more...