Request a Demo

The Noggin Platform

The world’s leading platform for integrated safety & security management.

Learn More
Find Your Solution
  • Crisis management Crisis Management
  • Emergency Management Emergency Management

Apply best practices to plan for, respond to, and manage critical events and exercises. Built on ISO standards, you can respond faster with better collaboration using plans and playbooks, smart workflows, and real-time dashboards and insights, to ensure better incident response, decision-making, and continuous improvement.

Learn More
Request a Demo

All the information and tools needed to manage any incident effectively through the entire lifecycle of mitigation, preparedness, response, and recovery, following ISO, ICS and other national standards. Keep your whole team following the same plans, communicating on the same platform, and viewing the same operating picture - from any place or device.

Learn More
Request a Demo
  • Safety Management Safety Management
  • Employee Health & Wellbeing Employee Health & Wellbeing
  • Governance Risk & Compliance Governance, Risk & Compliance (GRC)
  • Asset Management Asset Management
  • Contractor Management Contractor Management
  • Visitor Management Visitor Management
  • Emergency Management Emergency Management

All the tools needed to automate your safety management system in one easy-to-use platform, following ISO standards. Increase efficiency with powerful automation capabilities and provide real time insights to all levels of your business. Configurable notifications, workflows, analytics, and mapping empower your safety personnel to make better decisions wherever they are.

Learn More
Request a Demo

Maintain a comprehensive view of the wellbeing of your workers, their needs, and the wellbeing initiatives conducted in your organization. Through various assessments, checks, analytics, and resources you can easily manage both the physical and mental wellbeing of personnel across various locations and programs.

Learn More
Request a Demo

A suite of tools to collect risk data from across your organziation from a range of stakeholders, in real time, and based on ISO standards. Fully customisable, with everything from a simple pre-task assessment though to an organisational risk register, we make it easy to capture risk data and provide the analytics to derive rich insights, to keep your organisation safe and compliant.

Learn More
Request a Demo

Track all your assets from your vehicle fleet, fixed or mobile plant and equipment though to your critical infrastructure using our range of tools. Plan maintenance ahead of time and by collecting lead indicator data from checklists and assessments on any mobile device, then enable users to update the status of your assets to track utilisation, share documentation and report issues.

Learn More
Request a Demo

Save time and money by enabling contractors to self-register and progress through a customizable workflow, to check documentation before becoming an approved contractor. Contractors can then be automatically followed up using workflows and notifications to keep their organziation compliant.

Learn More
Request a Demo

Streamline visitor sign-in using a QR code on a form tailored for your organisation. Visitors can complete inductions, answer questions and acknowledge content then have notifications triggered to their host based on their responses. Once on site, manage visitor cards, broadcast notifications and understand visitor trends to optimise your processes.

Learn More
Request a Demo

All the information and tools needed to manage any incident effectively through the entire lifecycle of mitigation, preparedness, response, and recovery, following ISO, ICS and other national standards. Keep your whole team following the same plans, communicating on the same platform, and viewing the same operating picture - from any place or device.

Learn More
Request a Demo
  • Physical Security Physical Security
  • Cyber Security Cyber Security
  • Visitor Management Visitor Management
  • Critical Infrastructure Protection Critical Infrastructure Protection
  • Emergency Management Emergency Management
  • Governance Risk & Compliance Governance, Risk & Compliance
  • Asset Management Asset Management
  • Contractor Management Contractor Management

Proactively manage all aspects of physical security operations from anywhere, on any device. Based on ISO standards, streamline your operations using workflow automations to guide information capture, enrichment, follow up tasks, and notifications. Validate threats and risks to drive better investment of your resources.

Learn More
Request a Demo

Manage cyber threats, risks, and treatments based on industry best-practice guidelines and ISO standards. Plan objectives and set targets, manage all elements of standards-compliance, and schedule and record audits and inspections. Manage non-compliances and corrective actions, and drive continual improvement review cycles.

Learn More
Request a Demo

Streamline visitor sign-in using a QR code on a form tailored for your organisation. Visitors can complete inductions, answer questions and acknowledge content then have notifications triggered to their host based on their responses. Once on site, manage visitor cards, broadcast notifications and understand visitor trends to optimise your processes.

Learn More
Request a Demo

Consolidate the threat and risk picture across all your assets, easily demonstrate compliance with security obligations, and gain an ‘all threats’ perspective encompassing physical, cyber, personnel and supply chain. Address and manage cyber threats without having to implement costly new ICT systems and drive continuous improvement and review cycles.

Learn More
Request a Demo

All the information and tools needed to manage any incident effectively through the entire lifecycle of mitigation, preparedness, response, and recovery, following ISO, ICS and other national standards. Keep your whole team following the same plans, communicating on the same platform, and viewing the same operating picture - from any place or device.

Learn More
Request a Demo

Manage cyber, emergency and security threats, risks, and treatments based on industry best-practice guidelines and ISO standards. Plan objectives and set targets, manage all elements of standards-compliance, and schedule and record audits and inspections. Manage non-compliances and corrective actions and drive continual improvement review cycles.

Learn More
Request a Demo

Track all your assets from your vehicle fleet, fixed or mobile plant and equipment though to your critical infrastructure using our range of tools. Plan maintenance ahead of time and by collecting lead indicator data from checklists and assessments on any mobile device, then enable users to update the status of your assets to track utilization, share documentation and report issues.

Learn More
Request a Demo

Save time and money by enabling contractors to self-register and progress through a customizable workflow, to check documentation before becoming an approved contractor. Contractors can then be automatically followed up using workflows and notifications to keep their organziation compliant.

Learn More
Request a Demo
  • Business Continuity Planning Business Continuity Planning
  • Crisis Management Crisis Management
  • Governance Risk & Compliance Governance, Risk & Compliance (GRC)
  • Continuity of Operations Continuity of Operations (COOP)

Follow ISO standard approaches to determine disruption impacts and develop plans & recovery strategies to address risks. Track gaps, dependencies and tests, capture exercises, and manage insurance details. Scale up to any incident and back down to business as usual as quickly as possible and drive continuous improvement.

Learn More
Request a Demo

Apply best practices to plan for, respond to, and manage critical events and exercises. Built on ISO standards, you can respond faster with better collaboration using plans and playbooks, smart workflows, and real-time dashboards and insights, to ensure better incident response, decision-making, and continuous improvement.

Learn More
Request a Demo

Manage cyber, emergency and security threats, risks, and treatments based on industry best-practice guidelines and ISO standards. Plan objectives and set targets, manage all elements of standards-compliance, and schedule and record audits and inspections. Manage non-compliances and corrective actions and drive continual improvement review cycles.

Learn More
Request a Demo

Ensure preparedness across your organisation. Conduct business impact assessments and quickly identify essential functions. Assess hazard and threat risks. Identify technology, assets, facilities, and critical personnel. Gather and assemble essential information and documents. Develop, test and maintain your COOP plans. From readiness and preparedness to reconstitution, manage all four phases of the Continuity of Operations Plan to minimize business loss and disruption.

Learn More
Request a Demo
Guide

10 Steps to an Effective Crisis Management Plan

Read the Guide
Noggin - 10 Steps to an Effective Crisis Management Plan THUMBNAIL - 2022
Article

The Stages of Crisis: Understanding the Crisis Management Lifecycle

Read the Guide
crisis_decisionmaking_400x236
eBook

Understanding ISO 22361 for Crisis Management

Read the Guide
Guide to ISO 22361_Thumbnail
eBook

Best Practice Strategies to Maintain Resilience

Read the Guide
Noggin - Best-Practice Strategies to Maintain Resilience amidst Complex Disruptions - 2022
NEWS

Technology expert's tips for safety management platforms

Read the Article
Male factory worker and supervisor are analyzing plans
NEWS

A Comprehensive Guide to Understanding ISO45001

Read the Article
Incident Commander image_Noggin AFR feature

Who We Are

The world’s leading platform for integrated safety & security management.

Learn More

What Is Operational Resilience?

And why does Operational Resilience matter?

You may have heard the terms 'operational resilience' and 'business continuity' used fairly interchangeably, but there are distinct differences between the two practice areas, check out this article for a breakdown. You can also read a quick overview of Organizational Resilience, here

Operational resilience, in the wake of COVID and related crises, has emerged as a key corporate objective. Despite its rapid uptick in popularity, though, operational resilience isn’t well understood, sometimes even to those responsible for managing their organization’s operational resilience programs.

So, what is operational resilience, anyway?

Central bank and key financial services regulator, the Bank of England (BoE) answers the question what is operational resilience as follows: the ability of firms, and the financial sector as a whole, to absorb and adapt to shocks and disruptions, rather than contribute to them.

Albeit a specific definition, this characterization of what operational resilience is extends the purview of the field beyond that of business continuity and disaster recovery.  

This latter point is taken up in the Gartner definition of operational resilience.

Gartner defines operational resilience as initiatives that expand business continuity management programs to focus on the impacts, connected risk appetite, and tolerance levels for disruption of product or service delivery to internal and external stakeholders, e.g., employees, customers, citizens, and partners.

The resilience-related initiatives in question coordinate the management of risk assessments, risk monitoring, and execution of controls that impact workforce, processes, facilities, technology, and third parties across the following risk domains used in the business delivery and value realization process:

  • Security (cyber and physical)
  • Safety
  • Privacy
  • Continuity of operations
  • Reliability

Why is operational resilience important to your business?

The definitions to the question what is operational resilience also hint at the importance of operational resilience for businesses. Indeed, there are many benefits to running an operational resilience program.

These are the specific reasons why operational resilience is important to your business:

Operational resilience programs cut down risks to service-delivery dependencies

As noted, the number of service-delivery dependencies a given company has keeps increasing. By providing visibility into those dependencies, operational resilience serves to cut down risk.

Operational resilience programs highlight the number of outsourced service providers

Similarly, outsourced services are on the rise, particularly cloud-related services. Operational resilience brings visibility to these providers in the context of service delivery, which serves to mitigate risk.

Operational resilience programs mitigate cyber and ransomware risks

What kind of risk? Outsourced service providers, most likely being digital, incur cyber and ransomware risk. By highlighting these vulnerabilities, operational resilience forces companies to act to ensure cyber risk has been mitigated. The same applies to digital services that have not been outsourced.

Operational resilience programs help companies address the risk that’s arisen from operating in different environments

As noted, the pandemic has precipitated stark changes in the way businesses interact with technology, customers, and their own employees. These changes can invite new risks. Operational resilience, by uncovering these risks, can help companies address new threats.


The rise in operational resilience regulations

Another major factor in the rising salience of operational resilience is the sharp uptick in operational resilience-related regulations. Again, the BoE stands out as one of the first major regulators to mandate operational resilience standards.

What’s more, the regulatory path paved by the BoE has been taken up by other national and supranational regulators, as well.

Which ones?

The Australian Prudential Regulation Authority (APRA) released draft Prudential Standard CPS 230, focusing on operational risk management. The U.S. Federal Reserve released a joint regulatory paper on Sound Practices to Strengthen Operational Resilience. And in the EU, the Digital Operational Resilience Act (DORA) seeks to align the approach to managing ICT and cyber risk in the financial sector across all EU member states.

By in large, these policies, regulations, and proposals seek to uplevel the capacity for operational resilience of individual firms, so that no firm can pose a systemic risk to the wider business sector.

However, there’s no reason to believe that these regulations will remain cloistered in financial services. Organizations, irrespective of their industry, are likely to see some form of operational resilience regulation come their way.

And if they don’t? Well, businesses should strive to uplevel their own operational resilience capabilities to protect the bottom line against manifold disruption threats.

How to do so? For starters, resilience management software that integrates both business continuity and crisis management, can help implement best practices in the field.

What’s the difference between operational resilience and organizational resilience?

But it’s important to note, here, that operational resilience and organizational resilience are distinct fields.

Organizational resilience deals more broadly with the ability of an enterprise to absorb change and adapt to a new environment. For more information on organizational resilience, check out this article

On the other hand, operational resilience, as we’ve laid out, relates to initiatives that expand business continuity management programs to focus on the impacts, connected risk appetite, and tolerance levels for disruption of product or service delivery to internal and external stakeholders.

Organizations ought to know what best practices are for each field. What are they for operational resilience? Download our Introductory Guide to Operational Resilience to find out. 

Download The State of Play in Operational Resilience