Business Continuity Manager in Slough

Reporting to the Head of Assurance, the Business Continuity Manager (BCM) is responsible for designing, implementing, and maintaining the organisation’s business continuity and resilience framework across internal operations and client-managed infrastructure. The role ensures that systems, services, and processes remain resilient against disruption, meet regulatory expectations, and align with evolving risks including cybersecurity and AI usage.

Responsibilities:

• Business Continuity Strategy & Governance
  • Develop, implement, and continuously improve the Business Continuity Management System (BCMS) aligned with ISO 22301 and industry best practices, ensuring it aligns with Bell’s risk and resilience goals.
  • Maintain BC policies, standards, and procedures across internal operations and client environments.
  • Ensure clear governance, roles, and accountability for BC across the organisation.
  • Act as a primary point of contact for all continuity-related incidents, facilitating effective communication and resolution.
• Business Impact Analysis (BIA) & Risk Assessment
  • Lead and maintain up-to-date Business Impact Analyses (BIA) for critical IT systems and business services.
  • Assess recovery priorities, RTOs, RPOs, and dependencies across applications and infrastructure, ensuring these align with organisational risk appetite and continuity goals.
  • Identify emerging risks including AI-enabled systems and third-party dependencies.
• System Audits & Assurance
  • Conduct periodic system-level BC audits to evaluate:
  • Accuracy and currency of BIA data.
  • Availability and effectiveness of recovery strategies.
  • Access control reviews (alignment with least privilege and identity governance).
  • Presence and governance of AI usage within systems.
  • Verification that Data Protection Impact Assessments (DPIAs) are conducted where applicable.
  • Document findings, track remediation actions, and report on compliance status.
• Continuity Exercises & Testing
  • Establish a structured testing framework to conduct regular continuity tests and simulations.
  • Ensure each test includes detailed documentation, tracking of progress, and evaluation against set acceptance criteria to assess effectiveness and readiness.
  • Develop and conduct regular crisis simulation exercises, workshops and training to prepare employees and stakeholders for potential disruptions.
  • Design and deliver Exercise-in-a-Box (EiaB) testing programmes for IT teams and business units to evaluate the effectiveness of continuity strategies.
  • Conduct and coordinate scenario-based BC exercises.
  • Conduct de-briefing sessions with involved teams following continuity tests and incident response exercises.
  • Document and track identified improvements, ensuring that feedback is systematically incorporated into the continuity plan.
  • Evaluate exercise outcomes, identify gaps, and drive improvements.
• Client Infrastructure Resilience
  • Oversee business continuity and disaster recovery readiness for client-managed environments.
  • Collaborate with service delivery teams to ensure:
  • Client BC requirements are defined, documented, and tested.
  • Recovery solutions meet contractual obligations and SLAs.
  • Support client audits, due diligence, and assurance requests.
• Monitoring, Reporting & Executive Communication
  • Provide monthly BC preparedness reports to executive leadership covering:
  • BC maturity and readiness status.
  • Audit findings and remediation progress.
  • Exercise outcomes.
  • Emerging risks (including AI and regulatory changes).
  • Define and track KPIs and KRIs for business continuity.
  • Consolidate data required for management review meetings.
• Regulatory & Compliance Alignment
  • Ensure compliance with relevant standards and regulations (e.g., ISO 22301, ISO 27001, GDPR).
  • Verify appropriate handling of personal data risks through DPIA oversight.
  • Embed BC considerations into broader risk and compliance frameworks.
• Continuous Improvement & Awareness
  • Promote awareness and training on business continuity across the organisation.
  • Maintain documentation, playbooks, and recovery plans.
  • Stay current on evolving threats, including cyber resilience and AI-related risks.
• Stakeholder Engagement and Training
  • Collaborate with external suppliers to ensure their service continuity plans align with Bell’s continuity requirements, particularly for critical services, fostering resilience across the supply chain.
  • Foster engagement with Practice Heads and other key stakeholders to ensure continuity objectives are understood and supported.
  • Provide training and guidance on business continuity protocols to embed resilience within the organisational culture.
  • Develop relationships with external stakeholders to stay informed on industry best practices and emerging risks.

Experience:

• Solid experience in continuity management within a service delivery or operations capacity, with a focus on continuity testing and governance ideally in a professional services or regulated environment.
• Expertise in ISO 22301 standards.
• Background in conducting business impact analyses and maturity assessments.
• Proficiency with continuity planning tools and methodologies.
• Relevant qualification in business continuity management, risk management, or a related field.

Skills:

• Continuity and Crisis Management: Strong ability to plan, execute, and oversee business continuity measures and crisis response.
• Stakeholder Engagement: Proven skills in engaging and aligning stakeholders across departments.
• Analytical and Critical Thinking: Strong analytical skills for assessing risk impacts and developing mitigation strategies.
• Organisational and Project Management: Effective time management and organisational skills to balance multiple priorities.