In Malaysia, the regulatory expectations are reflected in the Bank Negara Malaysia (BNM) 2025 Discussion Paper on Operational Resilience, which outlines principles for identifying critical business services, setting impact tolerances, and strengthening the resilience of supporting resources.
This chapter introduces the organisation used throughout this eBook case study—Great Eastern Life Assurance (Malaysia) Berhad, part of the wider Great Eastern Holdings Limited group. As one of the leading life insurers in Malaysia, Great Eastern operates in a complex ecosystem involving customers, agents, healthcare providers, regulators, digital platforms, and technology partners. Understanding the organisation—its environment, structure, services, and strategic objectives—is a critical first step before designing and implementing an operational resilience programme.
The purpose of this section is therefore to establish organisational context. It explains how Great Eastern operates, what services it provides, who supports those services, and how resilience objectives can be aligned with its strategic priorities. These insights will provide the foundation for subsequent chapters in the eBook that focus on the implementation of operational resilience in practice.
The purpose of this chapter is to provide readers with a foundational understanding of the organisation before embarking on the implementation of operational resilience. By examining Great Eastern Life’s operating environment, organisational structure, resilience team composition, and strategic resilience objectives, readers will gain insight into how insurers should contextualise operational resilience within their business model. This chapter prepares the reader to recognise the importance of identifying critical services, mapping dependencies, and aligning resilience goals with regulatory expectations. Ultimately, the objective is to equip readers with the organisational perspective needed to support the practical implementation steps discussed in the subsequent sections of this eBook.
Great Eastern Life Assurance (Malaysia) Berhad is one of the most established life insurance providers in Malaysia, offering a broad range of protection, savings, health, and wealth management products. As part of the Great Eastern Holdings Limited group, the organisation operates across multiple markets in Asia and serves millions of policyholders through a combination of agency channels, bancassurance partnerships, and digital platforms.
Great Eastern’s operations include:
These services rely on a combination of people, technology systems, operational processes, and third-party partners, all of which must remain resilient to disruptions.
According to the 2025 BNM Discussion Paper on Operational Resilience, insurers should clearly understand their organisational structure, operating model, and service dependencies before identifying critical business services. This organisational understanding enables firms to identify where disruptions may occur and what controls are required to maintain service continuity.
Great Eastern operates within a complex regulatory and operational ecosystem that shapes its resilience priorities.
The Malaysian insurance sector is regulated by Bank Negara Malaysia, which sets expectations relating to governance, risk management, outsourcing, technology risk management, and operational resilience.
The 2025 BNM Discussion Paper on Operational Resilience emphasises that insurers must:
For Great Eastern Life, regulatory expectations directly influence the design and implementation of resilience programmes.
The insurance sector is increasingly digital. Great Eastern relies on:
While digitalisation improves efficiency and customer experience, it also introduces new risks such as:
Operational resilience ensures that critical services continue even if technology disruptions occur.
Insurance services rely on a broad ecosystem, including:
The BNM discussion paper highlights that third-party and supply-chain dependencies are a major source of operational disruption risk.
A successful operational resilience programme requires collaboration across multiple organisational functions. The BNM discussion paper emphasises the importance of strong governance and cross-functional coordination.
For Great Eastern Life, the Operational Resilience Team would typically include the following roles:
|
Role |
Key Responsibility |
|
Board and Senior Management |
Provide strategic direction and oversight of resilience objectives |
|
Risk Management |
Identify operational risks and resilience gaps |
|
Business Continuity Management (BCM) |
Develop and maintain continuity and recovery strategies |
|
Technology & IT Operations |
Ensure resilience of IT systems and infrastructure |
|
Cybersecurity |
Protect systems and data from cyber threats |
|
Operations & Business Units |
Identify critical business services and operational dependencies |
|
Compliance & Regulatory Affairs |
Ensure alignment with BNM requirements |
|
Third-Party Risk Management |
Manage outsourcing and vendor resilience |
|
Crisis Management Team |
Coordinate response during major disruptions |
This multidisciplinary structure ensures that resilience is embedded across the organisation rather than treated as a standalone risk function.
According to the BNM Operational Resilience discussion paper, organisations must identify services that could be disrupted in a way that would cause intolerable harm to customers or threaten financial stability.
For Great Eastern Life, examples of critical business services (CBS) may include:
|
CBS Code |
Critical Business Service |
Description |
|
1 |
Policy Issuance and Underwriting |
Processing new insurance applications and issuing policies |
|
2 |
Premium Collection and Payment Processing |
Collecting premiums and maintaining policy validity |
|
3 |
Claims Processing and Settlement |
Assessing and paying legitimate claims |
|
4 |
Policy Administration and Customer Servicing |
Managing policy updates, enquiries, and servicing |
|
5 |
Agency and Distribution Operations |
Supporting agent sales and customer advisory |
|
6 |
Digital Insurance Services |
Online policy access and digital transactions |
These services represent key value-delivery points for customers, and disruptions to them could lead to financial losses, reputational damage, or regulatory concerns.
Understanding an organisation's operational characteristics is essential for resilience planning.
Insurance services directly affect customers’ financial security and health protection. Any disruption to claims processing or policy servicing could have a significant impact on customers.
Insurance operations rely on integrated IT systems such as:
Technology resilience, therefore, becomes a core pillar of operational resilience.
Great Eastern operates through:
Each distribution model introduces different operational dependencies and risks.
Insurance companies must comply with strict regulatory requirements, including:
Operational disruptions could therefore result in regulatory breaches if services are not maintained.
The BNM 2025 Discussion Paper on Operational Resilience encourages financial institutions to align resilience objectives with their broader strategic goals.
For Great Eastern Life, organisational goals for operational resilience may include:
Ensure that policyholders can continue to:
even during disruptions.
Establish impact tolerances for key services such as claims processing and premium collection.
Example:
|
Service |
Example Impact Tolerance |
|
Claims Processing |
Maximum disruption of 24 hours |
|
Premium Payment Processing |
Maximum disruption of 12 hours |
|
Customer Digital Portal |
Maximum disruption of 8 hours |
Invest in resilient infrastructure, such as:
Ensure that outsourced service providers can support resilience objectives through:
Develop integrated frameworks that combine:
Understanding the organisational structure, operating environment, and service delivery model of Great Eastern Life Assurance (Malaysia) Berhad is a critical first step in building a robust operational resilience programme. As highlighted in the Bank Negara Malaysia 2025 Discussion Paper on Operational Resilience, financial institutions must clearly identify their critical business services, understand their dependencies, and ensure that these services remain available even during severe disruptions.
This chapter establishes the organisational context necessary for implementing operational resilience at Great Eastern Life. By analysing the insurer’s operating environment, governance structure, critical services, and strategic priorities, the groundwork is laid for the next section of this eBook—Implementing Operational Resilience for Great Eastern Life, which explores practical frameworks and implementation approaches in detail.
Blogs marked [x] are under construction.
|
Implementing Operational Resilience in Insurance: A Practical Guide for Great Eastern Life |
|||
| eBook 1: Understanding Your Organisation: Great Eastern Life | |||
| C1 | C2 [x] | C3 [x] | C4 [x] |
| C5 | C6 [x] | C7 [x] | C8 [x] |
For organisations looking to accelerate their journey, BCM Institute’s training and certification programs, including the OR-5000 Operational Resilience Expert Implementer course, provide in-depth insights and practical toolkits for effectively embedding this model.
To learn more about the course and schedule, click the buttons below for the OR-300 Operational Resilience Implementer course and the OR-5000 Operational Resilience Expert Implementer course.
|
If you have any questions, click to contact us. |
||
|
|