Business Continuity Research Articles

الاستراتيجيات الفعالة لإدارة المخاطر والتخفيف منها في مجال أمن الشركات في المملكة العربية السعودية

This study addresses risk management and the enhancement of cybersecurity in Saudi companies, a critical issue in the face of rapid digital transformation. The research aims to analyze the risk management strategies employed by Saudi companies and how these strategies enhance cybersecurity to protect vital data and assets. A multi-faceted research methodology was utilized, incorporating descriptive analysis to evaluate the current risk management situation, quantitative methods through surveys and questionnaires, and qualitative interviews with cybersecurity experts. The study focused on identifying the major risks faced by Saudi companies, whether technological, financial, or organizational, and the tools and technologies used to mitigate these risks. The results highlighted the effectiveness of preventive measures such as the use of security monitoring systems, encryption, and continuous employee training. The study also explored the challenges companies face in implementing cybersecurity strategies, particularly given the evolving nature of cyber threats. The study concluded that Saudi companies need to adopt integrated risk management strategies, which include raising employee awareness, collaborating with governmental and private entities, and utilizing artificial intelligence technologies to address future threats. The study also recommended continuous improvement and updating of cybersecurity policies to ensure the protection of digital assets and maintain business continuity in the face of cyber crises.

Utilization Ecdysterone Hormone of Krokot (Portulaca oleracea) Extract on Molting Activity in Mud Crabs (Scylla serrate)

The Scylla serrate mangrove crab is one of the leading fisheries commodities in terms of exports, only behind shrimp, tuna and shellfish. Crabs have a fairly high price in foreign markets and most of the mud crabs obtained from wild catches are soft shell crabs. In terms of price, cultivating soft shell crabs is quite profitable, but most cultivators have several problems such as long maintenance periods and inconsistent molting times so that they do not experience business continuity. Applying herbal extracts via injection is an effective method because all the substances that trigger molting directly enter the body. Physiological engineering is needed to speed up the molting phase and get the same molting time. This research aims to identify the ecdysterone content in purslane leaves and determine the optimum dose of purslane leaf extract which can encourage skin molting in mud crabs. This research used a Randomized Block Design (RBD). The in silicons test results show that the compound that has the smallest binding affinity is ecdysone, namely -6.80 kcal/mol. Based on analysis of variance, the best molting percentage occurred in treatment B at 55.50%. The fastest molting period occurred in treatment C, namely on days 4 to 29 after injection. Treatments B and C had the highest survival rate, namely 100%, while in terms of increasing body weight and carapace width, the effect of all treatments was not significantly different. The water quality results for all groups were still within the optimum value, temperature 26.40 – 33.80ºC; pH 6.83 – 7.20; salinity 20.70 – 26.70 ppt and dissolved oxygen 4 – 4.52 ppm

An Analysis of Policy Frameworks on Business Formulization and Disaster Management to Mitigate Flood Loss and Damage Among Informal Businesses in Sri Lanka

The 27th Conference of the Parties to the United Nations Framework Convention on Climate Change in Egypt made a historical decision on disaster loss and damage for vulnerable countries. Even though parties agreed to salvage vulnerable nations with generous support, a fundamental question remains as to the extent to which these vulnerable countries can accurately identify the most vulnerable communities/areas. In Sri Lanka, informal businesses are particularly vulnerable to floods, but their informal status has limited the extent to which they could receive flood protection, including disaster-resilient infrastructure developments. The main objective of this paper, therefore, is to identify challenges that informal businesses have experienced in dealing with flood disaster risks. In doing so, we analyzed government policies and laws that are related to business formalization and disaster management. We also conducted interviews with key informants to verify our data. Our analysis found that the Sri Lankan government requires informal business owners to follow complicated rules to register their businesses. For these owners, who are not highly educated, these processes and fear of high tax rates discouraged registering their businesses. The central government tends to prioritize flood mitigation actions for formalized business areas. Informal businesses are not usually covered by flood insurance and compensation. In conclusion, we emphasize the need to establish widely available legal and administrative support for informal businesses to register. Adopting business continuity plans (BCPs) and keeping standardized business records also help businesses minimize flood loss and damage.

COVID-19 and Health-care Business Continuity in Africa: Perceptions of Risks and Vulnerabilities by Mid-level Management Staff in a Tertiary Care Hospital.

The novel SARS-CoV-2 outbreak disrupted businesses globally and created fears in the general public and among health-care professionals. Almost universally, considerations about the coronavirus pandemic and its effects became priority in the daily operations of businesses, leaving hitherto pressing concerns in the back stage. Early in the pandemic, the management of University of Benin Teaching Hospital set up a Business Continuity Team which undertook an evaluation of the perceptions of mid-level hospital managers about their departments' and units' risks and vulnerabilities in the face of the ongoing pandemic. A modified International Labour Organization (ILO) risk profile self-assessment tool which focused on "people," "processes," "profits," and "partnerships" was used to assess mid-level managers' perceptions of their respective departments' and units' risks and vulnerabilities, consequent on the COVID-19 pandemic. Responses were obtained from heads of departments and units using an online survey. Final scores were divided into terciles (three equal groups) in respect of perceived risks and adverse outcomes of the COVID-19 pandemic. Scores in the lower tercile were grouped as low risk/vulnerability, the middle group of scores as medium risk/vulnerability, and scores in the upper tercile as high risk/vulnerability. Responses were obtained from 35 (49.3%) of the 71 clinical and nonclinical departments and units in the hospital. Fifteen of these (42.9%) were clinical. Nineteen (54.2%) departments were assessed to be at high risk/vulnerability, 9 (47.4%) of which were clinical. Twelve (34.3%) departments were assessed to be at medium risk/vulnerability - 4 (33.3%) of them, clinical. No department was assessed to be at low risk. The highest risk ratings were in the domains of "profits" and "partnerships:" 54 (84.4%) mid-level managers assessed their departments and units to be at high risk of the negative impacts of the coronavirus pandemic with respect to "profits" and 51 (79.7%) with respect to "partnerships." Mid-level managers in clinical and nonclinical departments and units assessed their departments and units to be at medium and high risk of the negative impacts of the COVID-19 pandemic, using the ILO's modified tool. Our findings enabled the management of the hospital and the Business Continuity Team to address the specific areas of concerns that were highlighted, develop contingency plans, and frame risk communication during the pandemic, with a view to fostering increased sense of safety in the workforce. This approach to risk assessment is repeatable, and we recommended it to other hospitals in Africa.

Building cybersecurity resilience: integrating defense and recovery investment strategies in an expected resilience framework

PurposeTo remain competitive in an unpredictable environment where the complexity and frequency of cybercrime are rapidly increasing, a cyber resiliency strategy is vital for business continuity. However, one of the barriers to improving cyber resilience is that security defense and accident recovery do not combine efficaciously, as embodied by emphasizing cyber security defense strategies, leaving firms ill-prepared to respond to attacks. The present study thus develops an expected resilience framework to assess cyber resilience, analyze cyber security defense and recovery investment strategies and balance security investment allocation strategies.Design/methodology/approachBased on the expected utility theory, this paper presents an expected resilience framework, including an expected investment resilience model and an expected profit resilience model that directly addresses the optimal joint investment decisions between defense and recovery. The effects of linear and nonlinear recovery functions, risk interdependence and cyber insurance on defense and recovery investment are also analyzed.FindingsAccording to the findings, increasing the defense investment coefficient reduces defense and recovery investment while increasing the expected resilience. The nonlinear recovery function requires a smaller defense investment and overall security investment than the linear one, reflecting the former’s advantages in lowering cybersecurity costs. Moreover, risk interdependence has positive externalities for boosting defense and recovery investment, meaning that the expected profit resilience model can reduce free-riding behavior in security investments. Insurance creates moral hazard for firms by lowering defensive investment, yet after purchasing insurance, expanded coverage and cost-effectiveness incentivize firms to increase defense and recovery spending, respectively.Originality/valueThe paper is innovative in its methodology as it offers an expected cyber resilience framework for integrating defense and recovery investment and their effects on security investment allocation, which is crucial for building cybersecurity resilience but receives little attention in cybersecurity economics. It also provides theoretical advances for cyber resilience assessment and optimum investment allocation in other fields, such as cyber-physical systems, power and water infrastructure – moving from a resilience triangle metric to an expected utility theory-based method.

Food retailer actions toward the National Strategy on Hunger, Nutrition, and Health to promote nutrition security: Applicability of the Business Impact Assessment-Obesity as a monitoring tool.

The White House National Strategy on Hunger, Nutrition, and Health (National Strategy) encourages actions across government and society to promote nutrition security. Nutrition security includes adequate food, diet quality, and equity, and food retail settings can promote these major concepts. Of all National Strategy whole-of-society calls to action, food retailers can contribute to 15 calls as key actors. However, there is currently no standardized monitoring tool to track food retailers' commitments and actions toward the National Strategy to promote nutrition security. The Business Impact Assessment-Obesity and population-level nutrition (BIA-Obesity), a tool originally developed for corporate accountability monitoring, can be tailored for the National Strategy and nutrition security, given its standardized indicators and process to assess food company policies and commitments across six domains. We discuss the fit of the BIA-Obesity indicators for tracking food retailers' commitments and actions across four pillars of the National Strategy. Existing indicators are appropriate to monitor components of Pillar 1: Improve Food Access and Affordability; Pillar 2: Integrate Nutrition and Health; Pillar 3: Empower All Consumers to Make and Have Access to Healthy Choices; and Pillar 5: Enhance Nutrition and Food Security Research. We suggest expanding current indicators to include equity, local foods, the digital food environment, and food waste reduction to improve alignment of the BIA-Obesity with the National Strategy. Application of the BIA-Obesity as an existing tool can facilitate data cohesion and more rapid assessment of the food retailer landscape to mutually meet nutrition security goals by 2030.

Business continuity, bureaucratic resilience and the limitations of neoliberal survival logics in international organisations

Abstract This article contends that investigating relationalities between business continuity management (BCM), staff behaviours, and bureaucratic resilience advances understandings of the survival of international organisations (IOs). Drawing on in-depth interviews, a global staff survey, and a discourse analysis of United Nations (UN) reports and applying a post-colonial feminist theoretical approach foregrounding care ethics to the study of IOs, the article examines how the UN Secretary-General’s Alternative Working Arrangements directive to close physical offices and open ‘virtual offices’ was implemented in the first 18 months of the Covid-19 pandemic. It is contended that BCM is necessary for IO survival, since if the IO bureaucracy is unable to be productive and maintain its spheres of influence during a crisis, it risks losing power and authority. Between March 2020 and August 2021, staff facilitated IO survival organically, from the bottom up, in four ways: demonstrating good performance and productivity; being adaptable and resilient; maintaining personal spheres of influence; and building communities of care within the UN. However, the UN’s neoliberal, technocratic approach to business continuity and bureaucratic resilience-building neglected staff care needs. Consequently, IO survival is predicated on staff performing as exploited gendered and racialised ‘neoliberal subjects’, revealing a chronic structural crisis rooted in the UN bureaucracy’s hierarchical composition and unequal employment regime.

Cloud Disaster Recovery: Best Practices for Business Continuity in the Cloud

Cloud Disaster Recovery: Best Practices for Business Continuity in the Cloud

Business continuity management deployment, community resilience, and organisational resilience in private industry response to 2011 Ayutthaya flooding

AbstractThis research aims to investigate the role of community resilience in the relationship between business continuity management and organisational resilience, the focus on a real‐world event (flooding) and its impact on a community provides a concrete context that adds relevance to the study. To complete this research, a quantitative research design was used. A firm‐level survey of private industrial firms in Ayutthaya Province (n = 211) was conducted. Variables included three clusters of business continuity management practices, community resilience, and organisational resilience. The data were then analysed using descriptive statistics and structural equation modelling. The results showed that business continuity management practices contributed to organisational resilience. There were also interaction effects between community resilience and business continuity management practices, indicating that community resilience moderated the effect of business continuity management practices on organisational resilience following the floods. The study is the first to test the role of community resilience in the effectiveness of business continuity management practices on organisational resilience. This contributes to the research by providing a better explanation of how communities and organisations interact in organisational disaster response. The study only investigated a single context of disaster response (firms previously affected by the 2011 Ayutthaya flooding). The research focuses on industrial manufacturing and service firms and does not include retail firms. The research was conducted in historic perspective. Development of organisational resilience is affected by community resilience. Therefore, supporting community resilience through infrastructure, institutions, and other mechanisms is key for post‐disaster economic recovery. This provides a further reason for developing community resilience.

Exploring the nexus of Information Systems Management and strategic planning: a bibliometric perspective using the Web of Science database

In modern organizational studies, the incorporation of Information Systems (IS) and strategic planning has gained prominence. This hybrid literature review seeks to explore the literature on such incorporation and its implications for risk management, business continuity, and organizational development. First, keyword co-occurrence analysis was conducted on 105 SJR-ranked journal articles sampled from the Web of Science database. This study identified and analyzed the major research areas within the domain. Through content analysis, after refining our sample by applying bibliographic coupling of the most globally cited contributions, our sample was restricted to a selection of 32 articles, with all the articles matching or exceeding a threshold of at least 20 total global citations (TGCs). Our review indicated that research on the integration of IS and strategic planning focuses more on the factors affecting the adoption and continuance of these practices, while most papers contributing to risk management and organizational development focus on a discussion of the theoretical framework that underlies their implementation. Moreover, the review has signaled a constant number of challenges relative to this integration, especially concerning perceived effectiveness and the differential effects of cultural and generational variables on its practice in organizational settings.

Business continuity management in the sharing economy: Insights from Airbnb online reviews

The aim of this paper is to demonstrate how text mining of online reviews can support business continuity management in the sharing economy during market turbulence. We use topic modelling and sentiment analysis of Airbnb online reviews to identify specific areas where short-term rental hosts can harness the power of the sharing-economy business model to bounce back from market disruption. The dataset comprises 894,686 online Airbnb reviews from the pre- and post-Covid periods. We approach the pandemic as a paradigm example of a high-impact, external market shock and infer insights and recommendations from the dataset that are relevant to the general understanding of business continuity management in the short-term rental, peer-to-peer sharing economy.

Suksesi dan hubungan orang tua-anak dalam bisnis keluarga (studi kasus pada sentra batik trusmi Cirebon)

Family business is a business that is run jointly by family members. The purpose of this study is to determine the succession process and the relationship between parents and children in the family business precisely in the Trusmi Cirebon batik center. The method used is qualitative with data collection techniques through interviews, documentation and observation of four informants or sources namely Batik Ninik Ichsan, Batik EB, Batik Katura, and Batik Trusmi. The results of the research on Batik Ninik Ichsan, Batik Trusmi, Batik Katura, and Traditional Batik EB found that the succession process carried out was unplanned, but the parents provided mentoring to make batik at school age, except for Batik Trusmi who only learned it after marriage. In the aspect of parent-child relationship, it is known that Batik Ninik Ichsan, Batik Trusmi, and Batik Katura are in a good relationship because there is no pressure on their children to participate in continuing their parents' business, but business continuity is carried out naturally and there is support from the environment. This is different from Batik EB, where there was a conflict within the family due to Hisham's parents' decision to hand over EB's batik business to Hisham. However, a solution was immediately found so that it was back in good condition.

Risk Assessment of Overturning of Freestanding Non-Structural Building Contents in Buckling-Restrained Braced Frames

The increasing demand in structural engineering now extends beyond collapse prevention to encompass business continuity planning (BCP). In response, energy dissipation devices have garnered significant attention for building response control. Among these, buckling-restrained braces (BRBs) are particularly favored due to their stable hysteretic behavior and well-established design provisions. However, BCP also necessitates the prevention of furniture overturning—an area that remains quantitatively underexplored in the context of buckling-restrained braced frames (BRBFs). Addressing this gap, this research designs BRBFs using various design criteria and performs incremental dynamic analysis (IDA) with artificially generated seismic waves. The results are compared with previously developed fragility curves for furniture overturning under different BRB design conditions. The findings demonstrate that the fragility of furniture overturning can be mitigated by a natural frequency shift, which alters the threshold of critical peak floor acceleration. These results, combined with hazard curves obtained from various locations across Japan, quantify the mean annual frequency of furniture overturning. The study reveals that increased floor acceleration in stiffer BRBFs can lead to a 3.8-fold higher risk of furniture overturning compared to frames without BRBs. This heightened risk also arises from the greater hazards at shorter natural periods due to stricter response reduction demands. The probabilistic risk analysis, which integrates fragility and hazard assessments, provides deeper insights into the evaluation of BCP.

Minimizing Business Disruption During Enterprise End-Point OS Upgrade while Maintaining a Robust Security Posture

The deployment of a major end-point operating system (OS) upgrade presents significant challenges for enterprise organizations, requiring a comprehensive strategy to minimize business disruption and maintain a robust security posture. Beyond the operational complexities of managing user productivity and application compatibility, organizations must also proactively address the critical security risks associated with such large-scale technology transitions. Cybercriminals often target organizations undergoing major IT changes, seeking to exploit vulnerabilities that may arise due to shifts in the OS architecture, user workflows, and security controls. This paper outlines practical strategies for executing successful OS upgrade projects that balance operational resilience and cyber risk management. Key focus areas include proactive management of end-point security, comprehensive contingency planning and rollback procedures, strategies to sustain productivity and business continuity, effective end-user training and communication, and valuable insights into the next- generation OS deployment. By focusing on these critical aspects, organizations can navigate major OS upgrade initiatives while preserving vigorous business operations, enhancing end-user experience, and safeguarding sensitive data and systems from costly security incidents.

СОЦІАЛЬНА ВІДПОВІДАЛЬНІСТЬ БІЗНЕСУ: ОСНОВНІ СКЛАДОВІ ТА ПРІОРИТЕТНІ НАПРЯМИ РЕАЛІЗАЦІЇ

The article examines the components and directions of the implementation of social responsibility of business, which are implemented under the influence of current events in Ukraine. Approaches to the definition of the concept of "social responsibility of business" according to scientists M. Friedman, G. Bowen, A. Carroll, from the position of the World Council of Entrepreneurs for Sustainable Development and the World Bank Institute are given. The relationship between social responsibility of business and sustainable development is indicated. Differences in the characteristics of social responsibility of business and philanthropy according to the criteria of involvement, purpose, participation in decision-making, strategicness and dependence on external circumstances are determined. It was established that the concept of social responsibility of business has a wider meaning than charity. Such key principles of social responsibility of business as openness, systematicity, reliability, regularity are indicated. The main components of internal and external social responsibility of business are revealed. The reasons that restrained the development of social responsibility of business in Ukraine are highlighted. The actions of the state regarding the activation of social responsibility in Ukraine are indicated. Measures have been taken by leading business structures regarding social responsibility at the beginning of hostilities in Ukraine in such areas as humanitarian aid to the population, support of medical facilities, evacuation and accommodation of the population from the areas of hostilities, organization of shelters for the population. The five-component model of social responsibility of business in war conditions is given and characterized according to the following components: business continuity, people's safety, army assistance, partnership, local communities. Referred to the results of the study of the sustainability of Ukrainian business during the war. Attention was focused on the following key directions of the SVB: systematization and coordination of corporate volunteering within the organization, the application of the practice of well-being (corporate well-being) and war/work balance (balancing work during the war) and Ukraine first, National Identity, Ukraine Culture Code.

Challenges in Securing Data and Networks from Modern Cyber Threats

In the era of digital transformation, organizations face an increasing array of cyber threats that target data and network security. This study focuses on the key challenges encountered in protecting sensitive information and network infrastructures from evolving cyberattacks, such as ransomware, phishing, and advanced persistent threats. The objective is to explore the current landscape of cyber threats and identify the major hurdles in implementing effective security measures. Through a mixed-method approach involving surveys and case studies, the research highlights the skills gap, complexity of network architectures, and the rapid advancement of threats as primary obstacles. The findings underscore the need for advanced security solutions, such as AI-driven threat detection and zero trust models, to enhance organizational resilience. Addressing these challenges is critical to safeguarding data, ensuring business continuity, and maintaining regulatory compliance.

AI-driven Predictive Analytics for Enhancing Cybersecurity in a Post-pandemic World: a Business Strategy Approach

Due to heightened technological advancement that has been ignited by the COVID-19 pandemic, the use of technology in running businesses has surged and therefore making businesses prone to cybersecurity threats. The present paper explores the potential of AI as a tool for advancing cybersecurity in the world after a pandemic, and how business organizations can organize its application for protection against new emerging forms of threats. The research draws on secondary industry data and primary case studies of the businesses with AI-based cybersecurity in place. The outcome demonstrates that emerging AI technologies, including machine learning and neural networks, have cut threat detection time by 40% and enhanced the precision of recognizing potential security threats by 30%, beyond conventional cybersecurity solutions. The new and distinct feature of this paper is to elucidate that new threats can be predicted with the help of AI, while there is a continuous need for new training for AI in relation to cyber threats. Drawing from the literature, this paper, therefore, posits that incorporation of AI-based predictive analytics into business cybersecurity models and systems is not only vital for the defense of data and infrastructure against hackers but equally important for the achievement of sustainable, long-term business continuity during the current day, age of technology and globalization.

Disaster recovery framework for ensuring SME business continuity on cloud platforms

Disaster recovery framework for ensuring SME business continuity on cloud platforms

Social Media Utilization of Microbusinesses in A Component City in Northern Philippines

Social media has become an essential marketing and communication tool for businesses of all sizes, offering opportunities to engage with customers and promote products in a cost-effective manner. This study explored the use of social media by microbusinesses in a component city in the Northern Philippines, focusing on the platforms used, reasons for adoption, benefits gained, and challenges encountered. A qualitative approach was employed, and 30 microbusiness owners from the service, merchandizing, and manufacturing sectors were selected through quota sampling. Data were collected using an interview guide and analyzed using Braun and Clarke’s Thematic Analysis. The results show that Facebook was the most widely used platform, followed by Instagram and TikTok. The primary reason for using social media was to promote products and services. Benefits include wider market reach, increased sales, and improved communication. However, challenges such as market competition and time management difficulties were identified. Despite these hurdles, social media has proved to be a vital tool for business continuity, particularly during a pandemic. The study highlighted the critical role of social media in supporting the growth and sustainability of microbusinesses and recommended further research to explore other social media platforms and business sizes.

Effective Communication Strategies for Business Analysts to Bridge the Gap between IT and Finance

As organizations depend more on technology to stay ahead of the competition, their information technology (IT) and business departments must work together closely. However, cultural differences and understanding between the specialized fields often make it hard for them to work together effectively. If these issues are fixed, they could make it easier to finish projects, stick to budgets, and agree on the company's goals. Many companies use business analysts to help people talk to each other by acting as liaisons knowledgeable in technology and finances. However, there is limited information in the literature about how analysts can connect the tasks. This study fills that gap by looking into the problems when IT and finance work together and suggesting specific steps analysts can take to improve strategic alignment. Looking at past studies shows that common differences make it hard for people to work together. IT and finance use different vocabularies for technical terms and project-based versus financial terms, leading to misunderstandings. They also set other priorities. It emphasizes speed of innovation and technical practicality, while finance emphasizes reducing risk, accuracy, and returns. There are also differences in the amount of knowledge and skill that people in IT and finance have regarding technical solution details and financial effects. They also use different ways to make decisions. IT bases judgments on technological factors, while finance assesses business impact. Besides, cultural norms diverge between the flexible and creative IT culture and the rigorous and methodical finance culture. Business analysts should utilize several focused communication strategies to close these gaps. Creating a shared vocabulary helps terms from diverse fields fit. Regular mapping and stakeholder conversations help you grasp other perspectives. Actively listening, repeating, asking questions, and summarizing shows you comprehend. Educating on decision-making variables and expertise broadens perspectives. Discussing cultural meanings and making sure individuals understand questions improves discussion. Using shared goals like increasing sales or lowering costs is another way to unite people around similar goals. By using these specific methods, business experts can help IT and finance work together despite cultural differences. Mapping and teaching regularly help keep relationships strong even as needs and staff change. By focusing on active listening, aligning vocabulary, and highlighting shared interests, you can build good working relationships necessary to get strategic benefits from technology investments.