A major healthcare technology company partnered with Bryghtpath to build, improve, and manage its business continuity program on a day-to-day basis.
A major healthcare technology company realized it needed to strengthen its business continuity and disaster recovery plans. The company’s business model required compliance with a wide variety of standards, including HITRUST, HIPAA, and Payment Card Industry Data Security Standards (PCI, PCIDSS, PCI/DSS).
Rather than keeping business continuity in-house, the company contracted with Bryghtpath to deliver business continuity as a service. For over four years, the Bryghtpath team has built, improved, and managed the day-to-day operation of the company’s business continuity, crisis management, and disaster recovery plans.
Approach and Results
We began our engagement with a comprehensive review of the company’s existing business continuity, crisis management, and disaster recovery processes. We reviewed all documentation and artifacts related to business continuity, and we interviewed over 20 key staff and stakeholders.
We met with their senior leadership to present our findings and our recommendations, and they contracted with us to begin oversight and operation of their program.
We began by improving business continuity and disaster recovery capabilities for revenue-generating systems and teams, training staff, leading crisis management exercises, and assisting in real-time when disruptions happened. We also worked closely with the Information Technology (IT) team to improve their understanding of business needs and the company’s high availability, change management, and incident management capabilities. We then improved business continuity and disaster recovery plans for their internally-facing IT applications and infrastructure. Our activities spanned the full business continuity lifecycle, including the business impact analysis, business continuity planning, disaster recovery planning, training, and exercises.
Today, the Bryghtpath team works as integrated members of the company’s day-to-day management team, continually improving business continuity, responding to disruptions, and helping maintain compliance with all regulatory standards. We regularly provide strategic advice across the full spectrum of our capabilities.
Day-to-day management of business continuity, crisis management, and disaster recovery programs
Regular updates to key stakeholders and team members
Quarterly crisis management and business continuity exercises
Ongoing communications and awareness campaign
Immediate assistance in the event of a business disruption or an emergency
Annual maturity evaluation of the program using the ISO 22301 Standard for Organizational Resilience
Fully-managed business continuity as a service, including crisis management and disaster recovery
Improved IT coordination for high availability and disaster recovery efforts
Consistent maturity growth for the program
Improved performance against regulatory frameworks (PCI, HIPAA, HITRUST, NIST CSF)
Real-time support for crisis incidents and other disruptions
Download a PDF copy of this case study
We can help.
Let the experts at Bryghtpath manage your business continuity program while reducing your overall costs
Our team brings decades of experience designing, implementing, and leading business continuity programs, including crisis management and disaster recovery efforts, for a variety of organizations globally. Let us help you mature your organization’s resilience!