Technical Execution

Resilience Advisory delivers solutions based upon client needs. Resilience Advisory applies international standards, common problem-solving tools, and subject matter expertise and does not take a “one-size-fits-all” approach.

Resilience Advisory uses elements of six international standards to provide the basis for the creation of the Aggregated Risk Preparedness Process, which serves as its primary client engagement model. The Aggregated Risk Preparedness Process (ARPP) divides these six standards into two categories – operational standards and risk-based standards. The standards each contribute to a comprehensive model and establishes the groundwork for defining, implementing, and sustaining client processes.

While Resilience Advisory focuses on work related to risk identification and mitigation, Resilience Advisory does not ignore certain risk-related elements of the three most common implemented operational management system standards which include ISO 9001:2015 (Quality), ISO 14001:2015 (Environment), and ISO 45001:2018 (Safety). For example, each of these three standards contain risk-related elements requiring organizations to address “risk and opportunities.”

The second of these two standards categories – risk-based – includes management system standards ISO 22301:2019 (Business Continuity), ISO 31000:2018 (Risk Management), and ISO 22320 (Emergency Management) and provides the basis for Resilience Advisory’s consultative approach.

Resilience Advisory understands organizations typically implement operational or risk-based standards to satisfy customer demands, provide as a marketing resource, or to drive internal discipline. While Resilience Advisory does not downplay customer or marketing demands, we encourage organizations to prioritize the discipline aspects that come with full implementation or application of certain elements of any of these operational and risk-based standards. Resilience Advisory views the three risk-based standards as complementary of one another and together provide the basis for Business Resiliency. Defining Business Resiliency varies organization-to-organization. That stated, Resilience Advisory defines Business Resiliency as an organization’s ability to respond to and to recover from known and unknown circumstances. Building business resiliency requires organizations to identify and mitigate risks, define business continuity plans, and establish an incident response process.