Banco Nossa

Reviews
Shared by: CodyJohnston
Categories
Tags
Stats
views:
21
rating:
not rated
reviews:
0
posted:
9/16/2009
language:
English
pages:
0
Case Study: Banco Nossa Caixa While the threat of a disruption is universal, there are at least two variables that differ among every organization in the world: first, the methodology and scope of their continuity program; and second, the consequences should an outage occur for whatever reason. Banco Nossa Caixa, located in Brasil with a workforce of over 15,000 employees, faces both these variables head-on. Considering they have 559 branches, 386 banking outlets and another 2,400 service points (including ATMs) and are the only government-owned bank in São Paulo (the largest city in the country) for entirely managing the State’s funds and handling transfers to municipalities, that’s a very good thing. “We have a lot depending on our ability to avoid any type of disruption,” said Alvaro Leis, Process Specialist Coordinator who is responsible for the continuity program at Banco Nossa Caixa. “And over the years, just like any other organization, we’ve realized that maintaining a continuity program has become a double-edged sword,” he explained. “On one hand we must keep on top of the more traditional types of disruptions such as weather events, technological breakdowns or even social events such as work stoppages or strikes. And now with standards like BS 25999, planners must become and remain compliant in accordance with these guidelines.” To lead the fight in handling both these aspects for an organization as large and vital as Banco Nossa Caixa, careful consideration in choosing a business continuity tool is imperative. Strohl Systems business continuity software from SunGard Availability Services, delivers the expertise and resources to help you build plans, practice for disruptions and prevail over disasters. The formula is simple -- Plan. Practice. Prevail. The pioneering expertise of SunGard now supports the full life cycle of business continuity software from Strohl Systems. Combined with our managed hosting and information availability services, SunGard Strohl Systems provides organizations with a single source for end-to-end disaster recovery and business continuity planning and support. Products include plan building software packages LDRPS and Paragon, BIA Professional business impact analysis software, Incident Manager Powered by WebEOC command center automation software, and NotiFind, an emergency notification system. For more information about LDRPS or any other solution or service provided by SunGard Strohl Systems, contact us at 1-800-634-2016, +1-610-768-4120 or at info@strohlsystems.com. You can also visit us online at www.strohlsystems.com. Solution of Choice “When we were in the market for a planning tool, we had many specifications and requirements that needed to be fulfilled in order to establish the continuity program we had in mind, said Jose Waldir Pacheco de Carvalho, Banco Nossa Caixa’s Information Security Manager. “Bottom line, LDRPS (Living Disaster Recovery Planning System) from SunGard Strohl Systems was the only option that hit every target we had – and it continues to do so today.” Banco Nossa Caixa currently has ten LDRPS administrators and 250 end users building and maintaining plans in the product. Banco Nossa Caixa is bringing their program forward even further by migrating to LDRPS 10 and have recently purchased BIA Professional and Incident Manager powered by WebEOC. “The efficiency of LDRPS has greatly increased our productivity and given us a great deal of security against any crisis,” said Leis. “It’s currently installed in our Intranet and has had very good acceptance by our end users, which makes all the difference in any planning environment.” Pacheco de Carvalho also explained that using LDRPS has greatly helped them in standardizing their internal procedures in the BCM process and has been inserted into their value chain. “LDRPS has also helped with the analyses done by 800-634-2016 +1 610-768-4120 www.availability.sungard.com info@strohlsystems.com {con’t} Case Study: Banco Nossa Caixa internal and external audits, assuring we comply with the corporate information security best practices, following the recommendations and resolutions made by the Brasilian Central Bank and other regulating and standardizing entities,” he said. Banco Nossa Caixa’s connection with SunGard Strohl Systems is made through its Authorized Representative in Brasil, Strohl Systems do Brasil. “They have supported us on every level imaginable,” explained Leis. “Strohl Systems do Brasil is a big reason why our program is such a success. And seeing that SunGard Strohl Systems is the largest BCM software vendor in the world with its solutions used in both large and small companies, this type of personal and unique support demonstrates their capacity and dynamism in attending to the needs of their target market.” • Review of the Recovery Strategy of the SPB ICT infrastructure Business continuity plans development Plan test and simulation (both existing and new ones) Plan training and awareness BS 25999 certification issued for the ICT environment of SPB • Total support and commitment at the Executive level of the bank • • • • During the actual process, Leis noted that ad hoc adjustments were often necessary. “Changes were made after the pre-audit and after the audit itself when a few major points were raised. But since these types of things were expected, they were promptly corrected and audited again within a month.” When asked if he recommends obtaining certification, he doesn’t hesitate to answer. “Absolutely. It’s in any organization’s best interest to balance their BCM processes with a guarantee of success in their overall BCM implementation.” Working with BS 25999 The advent of planning industry standards has become fast and furious, and perhaps leading the charge is BS 25999 (NBR15999 is the Brazilian translation of the English standard), a standard that establishes the process, principles and terminology of business continuity management. Choosing to be more than just compliant with the standard, Leis talked about the decision to pursue BS 25999 certification. “Becoming certified to us was important because it put actions behind our words. An organization can promise their stakeholders every day that they take continuity seriously, but are they really doing anything about it? We wanted to prove our integrity and devotion and saw this as an effective way of doing it.” A Certified Recommendation In hindsight, Leis considers the use of BCP software, in his case, LDRPS, to be vital in achieving BS 25999 certification. “By using the right supporting tools, you are given several key advantages like increased security and easy access to sensitive or privileged information for authorized users. And just as important, they help to standardize the support procedures of each business continuity process. “LDRPS provided access to businesses and ICT process owners to review their plans and view a Plan Tree containing both contingency plans and incident response plans. It also guaranteed our plan’s integrity by allowing users to review the plans that were only relevant to them. With that came security and a clear vision of what they were responsible for which took away any feelings of being confused or overwhelmed from our end users – and any person in my position knows the value of that.” For more information about LDRPS or any other solution or service provided by SunGard Strohl Systems, contact us at 1-800-634-2016, +1-610-768-4120 or at info@strohlsystems. com. You can also visit us online at www.strohlsystems.com. Steps to Certification Becoming certified took a full seven months to achieve and is valid for three years – after which Leis and his team plans to renew. With assistance from an external consulting firm to provide specialized manpower and audit experience in ISO 27002 and BCM processes and services, their certification process was obtained through accomplishing an impressive list of tasks: • Internal pre-assessment • Internal processes review and other required BCM documents • Risk assessment in ICT infrastructure of SPB (Brasilian real time settlement system) • BIA in the critical business processes related to SPB

Related docs
Banco Caixa
Views: 16  |  Downloads: 0
PATRONO OTÁVIO MEIRA
Views: 51  |  Downloads: 0
Banco Bcp
Views: 20  |  Downloads: 0
Banco Debogota
Views: 10  |  Downloads: 0
Banco Popolare
Views: 0  |  Downloads: 0
Banco do Brasil S.A. Financial Statements US GAAP
Views: 7  |  Downloads: 0
Banco Central
Views: 3  |  Downloads: 0
BANCO INVERSION
Views: 15  |  Downloads: 0
Banco Davivienda
Views: 28  |  Downloads: 0
New York Branch To Banco do Brasil Fifth Avenue Floor
Views: 42  |  Downloads: 0
Banco_Bradesco
Views: 8  |  Downloads: 0
Banco_Safra
Views: 2  |  Downloads: 0
BANCO DE ESPAÑA Banco de España claims on the
Views: 4  |  Downloads: 0
Other docs by CodyJohnston
Dr Chip
Views: 18  |  Downloads: 0
1Time Holdings
Views: 29  |  Downloads: 0
Goodway Machine
Views: 276  |  Downloads: 5
Dialog Group
Views: 115  |  Downloads: 1
Fiskars Co
Views: 151  |  Downloads: 3
Fortis Healthcare
Views: 318  |  Downloads: 9
Asia Tiger
Views: 56  |  Downloads: 0
Chow Sang
Views: 14  |  Downloads: 0
Gem Diamonds
Views: 57  |  Downloads: 0
Goldfields Limited
Views: 25  |  Downloads: 0
Greif Incorporated
Views: 25  |  Downloads: 0
Grandbanks Yachts
Views: 38  |  Downloads: 0
Golden Resorts
Views: 14  |  Downloads: 0
Gaiam Corporate
Views: 31  |  Downloads: 0
For Interia
Views: 60  |  Downloads: 0