Business continuity management implementation in the Malaysian public sector
List of Authors
  • Noorulsadiqin Azbiya Yaacob , Zahari Abu Bakar

Keyword
  • Business continuity management, Malaysian, public sector

Abstract
  • This study aims to provide an overview of Business Continuity Management (BCM) implementation in the Malaysian public sector. In addition, this paper also investigates the factors influencing the adoption of BCM best practices in the organizations. This paper highlights the initiatives by the Malaysian government in enhancing the effectiveness of BCM adoption among these organizations. The data was gathered via from BCM practitioners involving government agencies which have obtained ISO 27001 as they are deemed to possess relatively high commitment in adopting the best practices of BCM. Out of 73 questionnaires distributed, 38 responses were found to be usable, representing an effective response rate of 55 percent. The finding revealed that all participating government departments and agencies have implemented a BCM program. However, it is also noted that there are room for improvements in certain areas to be taken into consideration.

Reference
  • 1. Arend, M. (1994). Time to dust off your contingency plan. ABA Banking Journal, 86(2), 56.

    2. Babbie, E. (2004). The practice of social research (10th ed.). Belmont California: Thomson/Wadsworth Learning.

    3. Cerullo, M. J., & McDuffie, R. S. (1994). Planning for disaster. CPA Journal, 64(6), 34. Retrieved from http://eserv.uum.edu.my/login?url=http://search.ebscohost.com/login.aspx?direct=true& db=bth&AN=9410052296&site=ehost-live&scope=site.

    4. Chow, W. S. (2000). Success factors for IS disaster recovery planning in Hong Kong. Information Management & Computer Security, 8(2), 80–87. http://doi.org/10.1108/09685220010321326.

    5. Chow, W. S., & Ha, W. O. (2009). Determinants of the critical success factor of disaster recovery planning for information systems. Information Management & Computer Security, 17(3), 248–275. http://doi.org/10.1108/09685220910978103.

    6. Coakes, S. J., & Steed, G. (2003). SPSS without Anguish. Sydney: John Wiley & Sons Australia. CyberSecurity. (2015). CNII Portal. Retrieved from http://cnii.cybersecurity.my/main/about.html.

    7. Cyberview. (2009). Cyberjaya – A Haven for ICT Industry. Retrieved from http://www.smibusinessdirectory.com.my/news-archive/366-cyberjaya--a-haven-for-ictindustry.html.

    8. Fink, A., Marr, B., Siebe, A., & Kuhle, J.-P. (2005). The future scorecard: combining external and internal scenarios to create strategic foresight. Management Decision, 43(3), 360–381. http://doi.org/10.1108/00251740510589751.

    9. Gallagher, M. (2003). Business Continuity Management: How to Protect your Company from Danger (1st ed.). London: Financial Times and Prentice Hall.

    10. Hashim, S. (2010a). Business Continuity Management : Public Sector BCM Implementation.

    11. Hashim, S. (2010b). Info EG: Business Continuity Management.

    12. Heng, G. M. (2012). Business Continuity Management Specialist Series: A Manager’s Guide to ISO 22301 Standard for Business Continuity Management System (1st ed.). Singapore: GMH Pte Ltd.

    13. Herbane, B. (2010). The evolution of business continuity management: A historical review of practices and drivers. Business History, 52(6), 978–1002. http://doi.org/10.1080/00076791.2010.511185.

    14. Hoong, L. L., & Marthandan, G. (2013). Enablers of Successful Business Continuity Management Process, 7(10), 86–97.

    15. Järveläinen, J. (2013). IT incidents and business impacts: Validating a framework for continuity management in information systems. International Journal of Information Management, 33(3), 583–590. http://doi.org/10.1016/j.ijinfomgt.2013.03.001.

    16. Kirvan, P. (2009). Are mandatory business continuity management standards good business? Search Compliance. Retrieved from http://searchcompliance.techtarget.com/tip/Aremandatory-business-continuity-management-standards-good-business.

    17. Lin, O. A. (2008). Business Continuity Planning: A Global Overview & Status in Malaysia. In Pre-Conference for the 3rd Asian Ministerial Conference on Disaster Risk Reduction.

    18. Lodge, M. (2009). The public management of risk: The case for deliberating among worldviews. Review of Policy Research, 26(4), 395–408.

    19. Low, S. P., Liu, J., & Sio, S. (2010). Business continuity management in large construction companies in Singapore. Disaster Prevention and Management, 19(2), 219–232. http://doi.org/10.1108/09653561011038011.

    20. MAMPU. Pelaksanaan dan Pensijilan ISMS Dalam Sektor Awam. Surat Pekeliling Am Bil. 3 Tahun 2010 MAMPU.BPICT.700-4/3/5 Jld. 2 (6) (2010).

    21. MAMPU. Surat Pekeliling Pelaksanaan PKP sektor Awam (2010).

    22. MOSTI. (2013, October). Blueprint for the Implementation of Strategic ICT Roadmap for Malaysia. http://doi.org/10.1093/toxsci/kft059.

    23. NST. (2013). Powering Putrajaya And Cyberjaya. News Straits Times, p. 37. Retrieved from http://www.putrajaya.gov.my/community/news/powering_putrajaya_and_cyberjaya.

    24. Nunally, J. C. (1978). Psychometric Theory (2nd ed.). New York: McGraw-Hill.

    25. Payne, C. F. (1999). Contingency plan exercises. Disaster Prevention and Management Volume, 8(2), 111–117.

    26. Pearson, G., & Woodman, P. (2012). The 2012 Business Continuity Management Survey. Chartered Management Institute.

    27. Peterson, C. A. (2009). Business continuity management & guidelines. 2009 Information Security Curriculum Development Conference on - InfoSecCD ’09, 114. http://doi.org/10.1145/1940976.1940999.

    28. Pitt, M., & Goyal, S. (2004). Business continuity planning as a facilities management tool. Facilities, 22(3/4), 87–99. http://doi.org/10.1108/02632770410527824.

    29. Saxby, C. L., Parker, K. R., Nitse, P. S., & Dishman, P. L. (2002). Environmental scanning and organizational culture. Marketing Intelligence & Planning, 20(1), 28–34. http://doi.org/10.1108/02634500210414747.

    30. Sekaran, U. (2003). Research methods for business: A skill building approach (4th ed.). New York, NY: John Willey & Sons. Sekaran, U., & Bougie, R. (2010). Research methods for business: A skill building approaches. Chichester: John Wiley & Sons Ltd.

    31. Woodman, P., & Hutchings, P. (2010). Disruption & Resilience: The 2010 Business Continuity Management Survey. Chartered Management Institute.

    32. Yen, D. C., Chou, D. C., & Hawkins, S. M. (2000). Disaster recovery planning: a strategy for data security. Information Management & Computer Security. http://doi.org/10.1108/09685220010353150.

    33. Yiu, K., & Tse, Y. Y. (1995). A Model for Disaster Recovery Planning. IS Audit & Control Journal, 5, 45–51.

    34. Zikmund, W. G. (1991). Business Research Methods (3rd ed.). Orlando, FL: Dryden.