By Leviticus Adaki
We are pleased to inform you that the Retirement Benefits Authority (RBA) has been granted the prestigious Business Continuity Management System (BCMS) Certification. This significant milestone is a testament to the pension sector regulator’s unwavering commitment to resilience and preparedness in the face of potential disruptions.
The BCMS Certification, aligned with the ISO 22301 Standard, is a clear indication that the Authority has demonstrated exceptional competency in developing, implementing, maintaining, and continuously improving its Business Continuity Plans and Systems. The Authority has been certified to provide regulatory and supervisory services to the retirement benefits industry.
This achievement is particularly significant as the Authority is the second public institution in Kenya to be certified in the BCMS ISO 22301 standard. As such, we have set a benchmark that transcends mere operational excellence. Our certification, denoted by our certificate BCMS Organization No. BCMS 002, is a symbol of our quest for resilience. It showcases our leadership in adopting best practices in business continuity management and highlights the importance of preparedness and resilience in the public sector.
Our journey does not end with certification; it marks the beginning of a continuous cycle of improvement. We are committed to regularly review and enhance our business continuity management system to adapt to evolving risks and challenges. This ongoing dedication to excellence ensures that we remain at the forefront of business continuity management and continue to inspire confidence among our stakeholders.
In an era where disruptions can arise from various sources such as natural disasters, cyber-attacks, or pandemics, our stakeholders need assurance that we are prepared to handle such events effectively. The quest for continuity amidst chaos is thus a reflection of the human condition.
Business Continuity Management (BCM) represents a metaphysical journey—a journey towards understanding and mastering the forces that seek to disrupt our equilibrium. Therefore, BCM is a comprehensive approach to ensure that an organization can continue to operate and deliver essential services during and after a disruptive incident.
The ISO 22301 Standard specifies the requirements for a management system to protect against, reduce the likelihood of, and ensure recovery from disruptive incidents. Achieving BCMS Certification under this standard means that RBA has not only met but exceeded the rigorous criteria set forth for business continuity management.
The ISO Standard covers a broad spectrum of areas including:
- Risk assessment and treatment
- Business impact analysis
- Business continuity strategy and solutions
- Incident response structure
- Communication protocols
- Awareness and training programs
- Regular testing and exercises
As aforementioned, achieving BCMS Certification is not a mere checkbox exercise; it involves a comprehensive and meticulous process that spans several stages. RBA’s journey to certification involved:
(i) Assessment and Gap Analysis: Evaluating our existing business continuity plans and identifying areas for improvement.
(ii) Implementation of Enhancements: Developing and implementing strategies to address the identified gaps and strengthen our business continuity framework.
(iv) Training and Awareness: Conducting extensive training sessions to ensure that all employees understand their roles and responsibilities in the business continuity management system.
(iv) Testing and Exercises: Regularly testing our plans through simulated exercises to ensure their effectiveness and to identify any areas for further refinement.
(v) Internal Audits: Conducting internal audits to ensure that our business continuity management system complies with the requirements of the ISO 22301 standard.
(vi) External Audit: An independent, accredited certification body conducted a thorough audit of our business continuity management system to verify compliance with the ISO 22301 standard.
The successful completion of this rigorous process culminated in the awarding of the BCMS Certification, affirming that the Authority’s business continuity plans and systems are robust, resilient, and capable of ensuring the continuity of our critical operations in the provision of regulatory and supervisory services to the retirement benefits industry
Our stakeholders can now rest easy, knowing that we are prepared to handle any disruption. We’ve shown that we can minimize the impact of disruptions and keep our operations running smoothly, no matter what curveballs are thrown our way. It reassures them that:
- We have a well-defined and tested framework in place to respond to disruptive incidents.
- We are capable of minimizing the impact of disruptions on our operations and services.
- We prioritize the continuity and reliability of our services even in the face of unforeseen challenges.
The Retirement Benefits Authority was established through an Act of Parliament No. 3 of 1997 to oversee the retirement benefits sector.
