[CM] [SIT] [E1] [C9] Pre-Crisis - Risk Identification and Crisis Preparedness

Chapter 9

Singapore Institute of Technology 

In alignment with ISO 22361, the pre-crisis stage represents the most critical phase in building a resilient organisation. It focuses on anticipation, assessment, prevention, and preparedness, enabling institutions to proactively identify threats and establish the capabilities required to manage crises effectively.

For the Singapore Institute of Technology (SIT), a university operating within a highly digital, interconnected, and student-centric environment, pre-crisis preparedness must integrate academic continuity, campus safety, digital resilience, and stakeholder communication.

1. Identifying Potential Crises Affecting the Singapore Institute of Technology

ISO 22361 emphasises the need for organisations to anticipate and identify potential crisis triggers through structured horizon scanning and environmental analysis.

Key Crisis Domains for SIT

SIT must consider a broad spectrum of crisis categories relevant to a modern applied university:

a. Operational and Academic Disruptions

• Campus access denial (e.g., Punggol Digital District disruptions)
• Faculty shortages or industrial attachment disruptions
• Examination or academic integrity breaches

b. Technological and Cyber Crises

• Learning Management System (LMS) failure
• Cyberattacks on student or research data
• Smart campus infrastructure breakdown

c. Health and Safety Incidents

• Pandemic resurgence or infectious disease outbreaks
• Laboratory accidents in applied learning environments
• Mental health crises among students

d. Reputational and Governance Crises

• Academic misconduct scandals
• Data privacy breaches under PDPA
• Public criticism or misinformation affecting SIT

e. External and Environmental Threats

• Supply chain disruption impacting industry projects
• National-level crises affecting higher education operations

SIT-Specific Requirement

SIT must establish a Crisis Risk Register that integrates:

• Academic operations risks
• Digital campus dependencies
• Industry partnership exposures

This aligns with ISO 22361’s requirement for systematic identification of risks across internal and external contexts.

2. Crisis Risk Assessment and Categorisation

Following identification, ISO 22361 requires organisations to assess risks based on likelihood and impact, enabling prioritisation and informed decision-making.

Risk Assessment Framework for SIT

Risk Categorisation Dimensions

SIT should categorise risks into:

• Strategic Risks (affecting long-term institutional goals)
• Operational Risks (affecting daily academic delivery)
• Reputational Risks (affecting public trust)
• Compliance Risks (regulatory breaches in the Singapore context)

SIT-Specific Requirement

Develop a Crisis Risk Matrix aligned with ISO 22361 and ISO 31000 principles, ensuring:

• Clear escalation thresholds
• Defined ownership for each risk category
• Integration with enterprise risk management (ERM)

3. Scenario Planning and Contingency Planning

ISO 22361 highlights the importance of scenario-based planning and preparedness activities, including simulations and exercises to test organisational readiness.

Scenario Planning Approach for SIT

a. Development of Crisis Scenarios

SIT should develop “severe but plausible” scenarios, such as:

• Cyberattack disrupting all digital learning platforms
• Fire or safety incident affecting a key campus facility
• Mass absenteeism due to a health outbreak
• Failure of third-party service providers (e.g., cloud systems)

b. Contingency Planning Components

Each scenario must include:

• Response strategies and decision triggers
• Resource mobilisation plans
• Communication protocols
• Recovery priorities (aligned with academic continuity)

c. Integration with Business Continuity

• Alignment with ISO 22301 Business Continuity Plans
• Continuity of teaching, research, and student services
• Hybrid learning fallback mechanisms

SIT-Specific Requirement

SIT should implement scenario playbooks for each critical function, including:

• Academic continuity (online transition within defined RTO)
• Student welfare support mechanisms
• Crisis communication templates for stakeholders

4. Early Warning Systems and Crisis Indicators

A core principle of ISO 22361 is anticipation through early detection, enabling organisations to act before a crisis escalates.

Key Early Warning Mechanisms for SIT

a. Digital and Cyber Monitoring

• Real-time cybersecurity alerts
• System performance monitoring for LMS and IT infrastructure

b. Operational Indicators

• Attendance anomalies (students or staff)
• Sudden disruptions in academic scheduling
• Vendor or partner service degradation

c. Health and Safety Indicators

• Increased clinic visits or reported illnesses
• Incident reports from laboratories or facilities

d. Reputational Monitoring

• Social media sentiment analysis
• Media monitoring for emerging issues

Crisis Indicators Framework

SIT should define:

• Leading Indicators (early signs of disruption)
• Lagging Indicators (post-incident metrics)
• Trigger Points (thresholds for escalation to Crisis Management Team)

SIT-Specific Requirement

Establish an Integrated Crisis Monitoring Dashboard that:

• Consolidates data from IT, campus operations, and student services
• Provides real-time alerts to the Crisis Management Team
• Supports rapid, evidence-based decision-making

The pre-crisis stage, as defined by ISO 22361, is fundamentally about building foresight, structured awareness, and organisational readiness.

By systematically identifying potential crises, assessing risks, developing scenarios, and implementing early-warning systems, the Singapore Institute of Technology can transition from a reactive posture to a proactive, resilient, crisis-ready institution.

In the context of SIT’s applied learning model and digital ecosystem, pre-crisis preparedness must be deeply integrated across academic, technological, and operational domains.

This ensures that when a crisis emerges, SIT is able not only to respond effectively but also to safeguard its students, staff, reputation, and mission continuity.