[CM] [SIT] [E1] [C8] Implementing the CM Planning Methodology

Chapter 8

Singapore Institute of Technology 

Introduction

In today’s complex and interconnected environment, higher education institutions such as the Singapore Institute of Technology (SIT) must be equipped to respond effectively to a wide range of crisis scenarios—ranging from technological disruptions and public health incidents to reputational and operational crises.

As a university with strong industry integration, distributed campuses, and a growing digital footprint, SIT requires a structured, comprehensive Crisis Management (CM) framework aligned with international standards, such as ISO 22361.

This chapter outlines the implementation of a seven-phase Crisis Management Planning Methodology, tailored specifically for SIT. The methodology ensures that SIT can anticipate, respond to, and recover from crises while safeguarding students, staff, academic continuity, and institutional reputation.

Purpose of Chapter

• Establish a repeatable and auditable CM lifecycle
• Align crisis preparedness with Singapore's national policies and ISO standards
• Ensure integration with academic continuity, student services, and digital infrastructure
• Provide clarity on roles, responsibilities, and deliverables across all CM phases

Overview of the Seven-Phase CM Planning Methodology

The Crisis Management Planning Methodology consists of the following seven phases:

• CM Project Management (PM)
• Crisis Scenario Risk Analysis and Review (CAR)
• Business Impact Analysis (BIA)
• CM Strategy (BCS)
• CM Plan Development (PD)
• CM Testing and Exercising (TE)
• CM Program Management (PgM)

Each phase is described below with specific requirements tailored to SIT.

1. CM Project Management (PM)

Objective

To establish governance, scope, and structure for the CM programme.

SIT-Specific Requirements

• Establish a Crisis Management Steering Committee chaired by the President or Provost
• Define the CM scope covering:
• All SIT campuses (including Punggol Digital District)
• Academic programmes and applied learning environments
• Digital learning platforms and IT infrastructure
• Appoint a Crisis Management Office (CMO) within the Risk/BCM function
• Develop a CM project charter and roadmap aligned with Whole-of-Government (WOG) policies

Key Deliverables

• CM policy and governance framework
• Project plan and milestones
• Defined roles and responsibilities

2. Crisis Scenario Risk Analysis and Review (CRAR)

Objective

To identify and assess potential crisis scenarios that may impact SIT.

SIT-Specific Requirements

• Identify crisis scenarios relevant to SIT, including:
• Campus lockdown or facility denial (e.g., shared campus risks at PDD)
• Cyberattacks on learning management systems
• Public health outbreaks affecting students and faculty
• Reputational crises involving academic integrity or partnerships
• Conduct risk assessments using likelihood and impact criteria
• Align with Singapore national threat advisories (e.g., security, health)

Key Deliverables

• Crisis scenario register
• Risk heatmaps and prioritisation
• Scenario descriptions and triggers

3. Business Impact Analysis (BIA)

Objective

To assess the impact of disruptions on SIT’s critical functions.

SIT-Specific Requirements

• Identify critical academic and operational services, such as:
• Teaching delivery (physical and online)
• Student services (admissions, counselling)
• Industry project collaborations
• Define:
• Maximum Tolerable Downtime (MTD)
• Recovery Time Objectives (RTO)
• Evaluate impact on students, accreditation, and regulatory compliance

Key Deliverables

• BIA reports by faculty and department
• Prioritised critical services
• Impact tolerance thresholds

4. CM Strategy (BCS)

Objective

To develop strategies for responding to and managing crises.

SIT-Specific Requirements

• Define crisis response strategies, including:
• Transition to fully online learning
• Alternate campus arrangements
• Crisis communication protocols for students and stakeholders
• Establish decision-making frameworks for escalation and activation
• Integrate IT disaster recovery and cyber resilience strategies

Key Deliverables

• Crisis response strategies
• Escalation and activation criteria
• Resource and capability requirements

5. CM Plan Development (PD)

Objective

To document actionable crisis management plans.

SIT-Specific Requirements

• Develop a Crisis Management Plan (CMP) including:
• Crisis management team structure
• Incident response procedures
• Communication templates (internal and external)
• Ensure alignment with:
• Academic continuity plans
• IT incident response plans
• Student safety protocols

Key Deliverables

• Approved CMP
• Departmental crisis response procedures
• Communication and escalation workflows

6. CM Testing and Exercising (TE)

Objective

To validate the effectiveness of crisis management plans.

SIT-Specific Requirements

• Conduct regular exercises, such as:
• Cyberattack simulations on e-learning platforms
• Campus evacuation and lockdown drills
• Tabletop exercises involving senior leadership
• Include multi-agency coordination where relevant (e.g., SCDF, MOH)
• Evaluate performance and identify improvement areas

Key Deliverables

• Exercise plans and reports
• Lessons learned and corrective actions
• Updated CM plans

7. CM Program Management (PgM)

Objective

To sustain and continuously improve the CM programme.

SIT-Specific Requirements

• Establish a continuous improvement cycle:
• Annual review of crisis scenarios
• Periodic updates to CM plans
• Integrate CM into:
• Staff training and onboarding
• Student awareness programmes
• Conduct internal audits and management reviews

Key Deliverables

• CM performance metrics and dashboards
• Training and awareness programmes
• Audit and review reports

Integration with Singapore Context and ISO Standards

For SIT, the CM methodology must align with:

• ISO 22361 (Crisis Management Guidelines)
• Singapore Whole-of-Government (WOG) crisis management framework
• National regulations related to:
• Public safety
• Cybersecurity (e.g., PDPC requirements)
• Public health

This ensures that SIT’s crisis response is not only effective internally but also coordinated with national agencies.

For Woodlands Hospital, crisis management planning is not just a compliance requirement—it is an operational necessity to protect life, maintain service delivery, and uphold public confidence.

By systematically applying the seven-phase CM planning methodology, WH can strengthen its readiness for a broad spectrum of healthcare and non-healthcare crises, ensuring resilience in the face of uncertainty.