If The Tech Fails, You Fail

A thought leadership event from CLDigital

  • What

Business Continuity and IT Risk Management exist as islands. Our eleventh thought leadership event will explore why this separation needs to end.

  • Where

CLDigital
Floor 24
The Shard
London Bridge Street
London SE1 9SG

With live Zoom Webinar plus encore Zoom Webinar for North American time zones.

  • When

Wednesday, October 20th, 2021

10:30am to 12 noon (UK time), with 30 minutes question-the-panel for those able to stay on

(with an encore session from 12 noon to 1:30pm US Eastern Time)

  • What

Business Continuity and IT Risk Management exist as islands. Our eleventh thought leadership event will explore why this separation needs to end.

  • Where

CLDigital
Floor 24
The Shard
London Bridge Street
London SE1 9SG

With live Zoom Webinar plus encore Zoom Webinar for North American time zones.

  • When

Wednesday, October 20th, 2021

10:30am to 12 noon (UK time), with 30 minutes question-the-panel for those able to stay on

(with an encore session from 12 noon to 1:30pm US Eastern Time)

If The Tech Fails, You Fail

Over the past 25 years the management of resilience and recovery has gone down two paths: IT disaster recovery and business continuity management. This was always going to be less than ideal, but with the rise of operational resilience is now a serious liability. Our eleventh thought leadership event will explore why this separation needs to end.

We all know that Information Technology is a cornerstone of resilience. Indeed, go back 25 years and for most organisations it was resilience. And as the broader discipline of business continuity management has grown over that same period it has always been understood that the two are linked. But in most cases that link is tenuous, and in others offers no value at all. To put it bluntly, IT DR and BCM might nod if they pass in the corridor but aren’t having lunch together any time soon (my apologies to those who work brilliantly together — but I’m sure you understand the point).

This needs to change. The increasing digitisation of business processes, the delivery of ever more services online, and the rise of operational resilience across the globe (championed in the UK by the Bank of England and its regulatory partners) mean that the resilience and recovery of the business is entirely bound with the resilience and recovery of the tech. They are one and the same.

To help us understand the nature and urgency of the challenge we have assembled three presenters, all deeply experienced subject matter experts, each with their own slightly different but complementary perspective on the topic.

Gordon Millar, Global Leader, IBM Resiliency Services Consulting will set the scene by looking at the root causes behind, and consequences of, 232 major IT outages over the past ten years. And in presenting the key elements of this major piece of IBM research he will demonstrate the interconnectedness of IT risk and operational resilience. In particular, Gordon will present a case study of how a single unexpected event produced a domino effect with catastrophic consequences.

Ali Kazmi, Partner, UK Financial Services Technology Risk, EY will then move from the unexpected to the expected — IT change management — and what can happen when it goes wrong. In reality, these entirely avoidable failures are just as serious as those caused by headline grabbing ‘black swan’ events, but present far fewer excuses for those organisations affected. Ali will present the lessons from a well-publicised change management failure of the recent past.

To conclude, Dr Gianluca Pescaroli, Lecturer in Business Continuity and Organisational Resilience, University College London will explore how resilience and IT risk are inextricably bound through a complex web of cascading risks and cross-sectoral interdependencies. Drawing on extensive research he will condense the key lessons from this, and present what this means for you and your organisation.

When & Where

The event will run from 10:30am to 12:00 noon (UK time) on Wednesday, October 20th, 2021, followed by a 30 minute question-the-panel for those able to stay on. It will be conducted at our offices on the 24th floor of The Shard, with the speakers present in person.

For those viewing by Zoom Webinar there are two options:

  • a live broadcast as the event is taking place (ie. starting at 10:30am UK time)
  • an encore broadcast at 12 noon US Eastern Time (5:00pm UK time), where the speakers will join us once again for a live Q&A

Please select your preference when registering.

For those wishing to attend at The Shard in person, the full address is shown above. For those attending remotely the Webinar details will be sent out on registration.

NB. Please note that seats in the room will be strictly limited and allocated on a first-come-first-served basis. If we are unable to offer you a seat in the room you will automatically be registered for the simultaneous Webinar.

Keily BlairGordon Millar
Global Leader
IBM Resiliency Services Consulting

Having started life in business continuity roles for Bankers Trust and then Standard Life, Gordon joined IBM in 2001, where he is now the Global Partner specialising in resiliency in the Financial sector. He has previously worked extensively in the Retail, Airline, and Oil & Gas sectors.

Gordon has delivered numerous data centre strategy engagements, and is an IBM subject matter expert in data centre migrations. He has worked as the resilience lead on large, complex data centre consolidations and migrations, and has provided resiliency consulting services to several of the world’s largest financial institutions. As such, he is a trusted advisor to many CIOs and COO’s.

Gordon has been involved in many of the largest recent IT outage post-mortems and root cause analyses. These include the RBS CA failure (2012), Delta Airlines PDU failure (2015), SGX disk failure (2016), ADIB Bank DC Flood (2016), British Airways LV switch failure (2017), and the TSB Bank migration (2018).

Bobbie Ramsden-KnowlesAli Kazmi
Partner, UK Financial Services Technology Risk
EY

Ali Kazmi is a partner in EY’s EMEIA Financial Services Advisory practice, and leads the Operational Resilience solution. He has more than 18 years’ experience in IT audit, IT risk and resilience.

Ali has extensive experience in helping clients to prevent, detect, respond to and recover from disruptions. This includes: facilitating Cyber resilience scenario rehearsals; defining key resilience risks in the financial services marketplace; undertaking post incident reviews; and reporting to boards and regulators. He has also supported Internal Audit and Operational Risk functions in undertaking reviews of resilience.

Ali has helped firms proactively assess and enhance their operational resilience strategies and frameworks. Most recently he has been leading engagements to help financial services firms align themselves to the current Operational Resilience regulatory expectations.

Richard HorneDr Gianluca Pescaroli
Lecturer in Business Continuity and Organisational Resilience
Institute for Risk and Disaster Reduction
University College London

Gianluca is Assistant Professor (Lecturer) in Business Continuity and Organisational Resilience at
University College London (UCL). His research investigates how to build and improve the continuity
of operations during disruptive events, how to minimise their effects, and how to increase the
resilience of the public and private sectors. This includes managing complex challenges such as
cascading risks, critical infrastructure failures, systemic and compound dynamics.

In 2016, Gianluca co-founded the Research Group on Cascading Disasters at the UCL Institute for Risk and Disaster Reduction. Since then, he has contributed to strategic documents including the UNISDR Guidelines on National Risk Assessment and the Guidelines on Cascading Effects of Wide-Area Power Failures (compiled for London Resilience). He is also one of the lead authors of the European Commission Joint Research Centre’s Flagship Report on ‘Science for DRM 2020: Acting Today, Protecting Tomorrow.’ In 2020, Gianluca become the director of the MSc Risk Disaster and Resilience, UCL’s flagship, multi-disciplinary Masters programme.

Agenda (all UK times)

Start Time Item Description
10:00am Sign-in and Coffee
10:30am Welcome from the Chair
10:35am Gordon Millar, IBM
A study of IT failures and their business consequences. Lessons to be drawn and conclusions to be reached.
11:00am Ali Kazmi, EY
It’s not just the unexpected but the expected. A study of failed IT change management.
11:30pm Dr Gianluca Pescaroli, University College London
IT risk and operational resilience are inextricably linked. What can we conclude from that, and what can we do differently.
12:00pm Question the Panel — all speakers
12:30pm END OF EVENT

Keily BlairGordon Millar
Global Leader
IBM Resiliency Services Consulting

Having started life in business continuity roles for Bankers Trust and then Standard Life, Gordon joined IBM in 2001, where he is now the Global Partner specialising in resiliency in the Financial sector. He has previously worked extensively in the Retail, Airline, and Oil & Gas sectors.

Gordon has delivered numerous data centre strategy engagements, and is an IBM subject matter expert in data centre migrations. He has worked as the resilience lead on large, complex data centre consolidations and migrations, and has provided resiliency consulting services to several of the world’s largest financial institutions. As such, he is a trusted advisor to many CIOs and COO’s.

Gordon has been involved in many of the largest recent IT outage post-mortems and root cause analyses. These include the RBS CA failure (2012), Delta Airlines PDU failure (2015), SGX disk failure (2016), ADIB Bank DC Flood (2016), British Airways LV switch failure (2017), and the TSB Bank migration (2018).

Bobbie Ramsden-KnowlesAli Kazmi
Partner, UK Financial Services Technology Risk
EY

Ali Kazmi is a partner in EY’s EMEIA Financial Services Advisory practice, and leads the Operational Resilience solution. He has more than 18 years’ experience in IT audit, IT risk and resilience.

Ali has extensive experience in helping clients to prevent, detect, respond to and recover from disruptions. This includes: facilitating Cyber resilience scenario rehearsals; defining key resilience risks in the financial services marketplace; undertaking post incident reviews; and reporting to boards and regulators. He has also supported Internal Audit and Operational Risk functions in undertaking reviews of resilience.

Ali has helped firms proactively assess and enhance their operational resilience strategies and frameworks. Most recently he has been leading engagements to help financial services firms align themselves to the current Operational Resilience regulatory expectations.

Richard HorneDr Gianluca Pescaroli
Lecturer in Business Continuity and Organisational Resilience
Institute for Risk and Disaster Reduction
University College London

Gianluca is Assistant Professor (Lecturer) in Business Continuity and Organisational Resilience at
University College London (UCL). His research investigates how to build and improve the continuity
of operations during disruptive events, how to minimise their effects, and how to increase the
resilience of the public and private sectors. This includes managing complex challenges such as
cascading risks, critical infrastructure failures, systemic and compound dynamics.

In 2016, Gianluca co-founded the Research Group on Cascading Disasters at the UCL Institute for Risk and Disaster Reduction. Since then, he has contributed to strategic documents including the UNISDR Guidelines on National Risk Assessment and the Guidelines on Cascading Effects of Wide-Area Power Failures (compiled for London Resilience). He is also one of the lead authors of the European Commission Joint Research Centre’s Flagship Report on ‘Science for DRM 2020: Acting Today, Protecting Tomorrow.’ In 2020, Gianluca become the director of the MSc Risk Disaster and Resilience, UCL’s flagship, multi-disciplinary Masters programme.

Agenda (all UK times)

Start Time Item Description
10:00am Sign-in and Coffee
10:30am Welcome from the Chair
10:35am Gordon Millar, IBM
A study of IT failures and their business consequences. Lessons to be drawn and conclusions to be reached.
11:00am Ali Kazmi, EY
It’s not just the unexpected but the expected. A study of failed IT change management.
11:30pm Dr Gianluca Pescaroli, University College London
IT risk and operational resilience are inextricably linked. What can we conclude from that, and what can we do differently.
12:00pm Question the Panel — all speakers
12:30pm END OF EVENT