Operational Resilience Audit

Overview of ORA-5000 Blended [BL] or Hybrid Learning [HL] Course [ORA-5]

The Operational Resilience (OR) Audit blended learning is the most advanced level of OR audit training for certification, financial, IT internal and external auditors.

This comprehensive course is equivalent to the international certification of an  Operational Resilience (OR) Auditor. Its combination of online interaction allows busy and interested auditors to study with minimal schedule disruption.

This course is NOT a four-day, hour-by-hour direct conversion course from its brick-and-mortar version but revamped with several guiding principles.

• Complete the course by developing the relevant toolkits for the entire auditing process.
• Built with OR knowledge, followed by the integration of OR auditing concepts.
• Provide participants with downloadable handbooks and the latest OR audit program based on the latest global regulatory update.
• Access to additional audit readings for those who are already experienced
• Facilitated by experienced IT/Financial and also OR implementer/auditors
• Able to conduct the audit via an electronic platform without travelling to another country or state.

Here is a quick overview of the course, divided into modules 1 to 4. Module 1 to 4 and their relationship to the ORA-300-400-5000 level courses are explained.

The conduct of each module is described with the corresponding on-site learning outcome.

Below is a snapshot of what you can expect from the program. Each module's syllabus has been carefully crafted to ensure that the outcome matches each day of the ORA-5000 OR Auditor competency level.  

Click the "Course Content" icon to learn more about each module's content (syllabus).  Click the "Course Requirement" icon to determine what you can expect as participants for each module.

Module (Day)	Course Content	Course Requirement

Breakdown of the Time Spent

Module	Mode of Study	Flexible (Hours)	Mandatory & Fixed Timing (Hours)
	E-learning/ Self Study	8	-
	Facilitated Online Workshop (3 Hours Self Study = Assignment + 6 Hours Schedule Online Classes)	3	6 (3-hour x 2 separate sessions)
Total Hours Blended Learning [BL]	Module 1 and 2 Note that participants attending Hybrid Learning [HL] will attend the same BL Module 1 and Module 2	11	6

Breakdown of the Time Spent Blended Learning (BL) Module 3 & 4
	Online Web Training and Discussion Workshop (2 Hours Self Study + 3-Hour Schedule Online Classes)	Two sessions	6 (3-hour x 2 separate sessions)
	Online Web Training and Discussion Workshop (2 Hours Self Study + 2 Hours Schedule Online Classes)	Two sessions	6 (3-hour x 2 separate sessions)
Total  Hours	Blended Learning [BL] Online Modules 3 and 4	Four 3-hour sessions	18
Breakdown of the Time Spent Hybrid Learning (HL) Module 3 & 4
	Hybrid Learning [HL] Onsite Face-to-face Workshop	1-day onsite	8
	Hybrid Learning [HL] Onsite Face-to-face Workshop	1-day onsite	8
Total Hours Hybrid Learning [HL]	Onsite Day 3 and Day 4	2-day onsite	16
Qualifying Examination for OR Audit Specialist/ Expert
	ORAE Qualifying Examination for OR Audit Expert  (after BL-HL-ORA-5 course)	100 Multiple-choice Questions	2 and 1/2 hour
	ORAS Qualifying Examination for OR Audit Specialist (after BL-HL-ORA-3 course)	100 Multiple-choice Questions	2 and 1/2 hour

What are the Differences and Concerns?

The primary concern with blended learning is that it will be another E-Learning training over a video channel.

The entire process is designed such that the content will provide the same outcome with pre-readings provided before the class, preparation of assignments supported by detailed guidance notes, eLearning for learning of fundamentals, and the online "face-to-face" is for sharing and elaboration by experienced facilitators.

Instructors: Note that instructors delivering the modules remain the same as the onsite training.  They have at least 5 to 30 years of OR and audit-related experience.

International Participation: Another significant change will be the participation of more international delegates compared to the traditional majority of Asian participants.  Be expected to discuss and work as teams from around the world.

Readings: Be expected to have more pre-readings as the objective is to ensure that knowledge that could be acquired via reading should be done outside the training session.  More time is allocated to sharing experiences with the participants and facilitators.

Live Audit: Despite being virtual, there is a balance between knowledge-based acquisition activities, presentations, discussions, exercises and case studies. About two-thirds of the time is spent on activity-based learning. A live audit will be conducted. 

This is the course schedule.  Click the "ORA-5000 Course Schedule" icon to learn more about the "RUNs" for the year. 

Blended Learning is entirely online, Hybrid Learning is Module 1 and 2 online, and Module 3 and 4 onsite.

More Information About Blended Learning Operational Resilience Audit (ORA) Courses

BCM Institute offers two levels of OR auditing courses: ORA-3 Blended Learning ORA-300 Operational Resilience Audit Specialist and the ORA-5 Blended Learning ORA-5000 Operational Resilience Audit Expert.

	Please feel free to send us a note if you have any questions.

ORA-5000 Operational Resilience Audit Expert (ORAE) Training Roadmap

Module 1 

You can attend Module 1, which leads to the Operational Resilience (OR) Certified Planner course, which has the course code BL-OR-2. This course provides you with the knowledge or KNOW competency. 

If you are assigned to audit or review your organisation's OR program, it is highly recommended that you attend both Module 1 and 2, the OR Audit Specialist course, or ORA-3.  Module 2 allows you to have practicums on operationalising the OR framework. 

It gives you an in-depth understanding of the critical OR deliverables required. This course provides you with KNOW-DO competency. 

Description of Module [Day] 1 Course 

You will be introduced to Operational Resilience (OR) Audit Requirements. 

Note that this course is also Module 1 of the Operational Resilience Implementer OR-300 course.

Module 1 defines operational resilience (OR) and provides the participants with a contextual overview of its scope in different operating environments. Key concepts are explained with examples to illustrate. The value of OR in today’s organizations and critical success factors for building resilient organizations are highlighted.

Session Breakdown: What Lies Ahead

As we progress through this course, it's essential to understand the structure and content of each session. Let's break it down to sessions one and 2 of the ORA-300/5000 Module 1.

Module 1 Session 1: We will provide a foundational understanding of operational resilience. You will learn about its nuances and the critical role of regulators in shaping your approach. We'll clarify the distinction between key concepts such as operational risk management, organisational resilience, business continuity management and crisis management.

Module 1 Session 2: Building upon the first session, we'll explore regulatory requirements and how to align your organization with a planning methodology. We'll also explore practical tools and strategies to assist you in this operational resilience endeavour.

Detailed Course Content

Deliverables

• Be competent with the knowledge of operational resilience
• Have a strong understanding of the respective building blocks and methodology to implement your OR program

Course Content for BL-ORA-5

More Information About Blended Learning Operational Resilience Audit (ORA) Courses

BCM Institute offers two levels of OR auditing courses: ORA-3 Blended Learning ORA-300 Operational Resilience Audit Specialist and the ORA-5 Blended Learning ORA-5000 Operational Resilience Audit Expert.

Please feel free to send us a note if you have any questions.

ORA-5000 Operational Resilience Audit Expert  2024 Course Schedule

Click any of the "Run #" icons in each table below to learn more about the course schedule you are interested in.  The breakdown of each run by Modules 1 to 4 is also illustrated.

The schedule is appended below. 

 

Year & Run	[BL-ORA-5] 2024 Run 2
Quarter	Two (May to Jun 24)
Start Date	8 May 24	24 May 24	7 Jun 24	21 Jun 24
End Date	15 May 24	31 May 24	14 Jun 24	28 Jun 24

NOTE: Run 2 class starting at 2 PM GMT+8

 

Year & Run	[BL-ORA-5] 2024 Run 2A
Quarter	Two (Jun to Jul 24)
Start Date	4 Jun 24	18 Jun 24	4 Jul 24	18 Jul 24
End Date	11 Jun 24	25 Jun 24	11 Jul 24	25 Jul 24

NOTE: Run 2A class starting at 9 PM GMT+8 Click FAQ icon to check the timing for your region.  Read, "I noticed that the course is held at Asian time. Is there any time for me as I reside outside the Asia Pacific Region?"

 

Year & Run	[BL-ORA-5] 2024 Run 3
Quarter	Three (Jul to Sep 24)
Start Date	31 Jul 24	14 Aug 24	26 Aug 24	9 Sep 24
End Date	13 Aug 24	21 Aug 24	2 Sep 24	17 Sep 24

NOTE: Run 3 class starting at 2 PM GMT+8

Note that 16 Sep 24 is a Public Holiday in Malaysia (Prophet Muhammad's birthday). The class will resume on the following day, i.e. 17 Sep 24

 

Year & Run	[BL-ORA-5] 2024 Run 3A
Quarter	Three (Sep to Oct 24)
Start Date	6 Sep 24	27 Sep 24	10 Oct 24	24 Oct 24
End Date	19 Sep 24	4 Oct 24	17 Oct 24	30 Oct 24

NOTE: Run 3A class starting at 9 PM GMT+8

 

Year & Run	[BL-ORA-5] 2024 Run 4
Quarter	Four (Oct to Dec 24)
Start Date	27 Oct 24	6 Nov 24	21 Nov 24	5 Dec 24
End Date	10 Nov 24	13 Nov 24	28 Nov 24	12 Dec 24

NOTE: Run 4 class starting at 2 PM GMT+8

 

Year & Run	[BL-ORA-5] 2024 Run 4A
Quarter	Four (Oct to Dec 24)
Start Date	27 Oct 24	11 Nov 24	27 Nov 24	11 Dec 24
End Date	10 Nov 24	18 Nov 24	4 Dec 24	18 Dec 24

NOTE: Run 4A class starting at 9 PM GMT+8

 

+ For ORCP/ ORAS/ ORAE Qualifying Examination:

The program manager will advise on the next step once you enrol in the course.

 

More Information About Blended Learning Operational Resilience Audit (ORA) Courses

BCM Institute offers two levels of OR auditing courses: ORA-3 Blended Learning ORA-300 Operational Resilience Audit Specialist and the ORA-5 Blended Learning ORA-5000 Operational Resilience Audit Expert.

	Please feel free to send us a note if you have any questions.

OR Audit Questionnaires

Implement Phase

Introduce Cultural Change

This section is the "Implement" phase of the Operational Resilience Planning Methodology.  It is the first stage of the Implement phase: Identify Critical Business Services.

Audit Checklist for Introducing Cultural Change

Has the organisation identified its critical business services? Are the critical business services clearly defined and documented? Has the organisation prioritised the criticality of each business service?

Are the dependencies and interconnections of critical business services identified? Has the organisation mapped the dependencies between critical business services and supporting functions, systems, and vendors? Are there contingency plans in place to address disruptions independent services?

Has a business impact analysis (BIA) been conducted for each critical business service? Are the potential financial, operational, and reputational impacts of disruptions to critical business services assessed? Are each critical business service's recovery time objectives (RTOs) and recovery point objectives (RPOs) defined?

Has a comprehensive risk assessment been conducted for each critical business service? Are the risks to each critical business service identified and assessed? Are risk mitigation measures in place for identified risks? Is there a process to regularly review and update risk assessments for critical business services?

Are regular testing and exercising of critical business services conducted? Are the testing and exercising scenarios designed to simulate realistic disruptions? Are the lessons learned from testing and exercises used to improve the operational resilience of critical business services?

Is there a training program to educate employees on the operational resilience of critical business services? Are employees aware of their roles and responsibilities in maintaining the operational resilience of critical business services? Are there regular awareness campaigns to promote a culture of operational resilience for critical business services? Are training records maintained for compliance and audit purposes?

Is there a process to capture and analyse lessons learned from disruptions to critical business services? Are there mechanisms to incorporate the lessons learned into improvements for the operational resilience of critical business services? Is there a culture of continuous improvement in managing the operational resilience of critical business services? Are regular reviews and updates to the business continuity plans and procedures for critical business services

Note that some of the steps may overlap with the other stages of the "Implement" phase stages.

Find out more about Blended Learning BCM-8530 [BL-A-5] & BCM-8030 [BL-A-3]

	Please feel free to send us a note if you have any of these questions.

Detailed Operational Resilience Audit Questionnaires

This list of OR Questionnaires is intended to guide Auditors in developing their Standardized Audit Program. Refer to OR Questionnaires.

Click the icon to access the respective “BCM Audit Questionnaires” questions.

Table of Content

C9	C10	C11
BC Roles and Responsibilities	Project Management	Risk Analysis and Review
C12	C13	C14
Business Impact Analysis	Business Continuity Strategy	Plan Development
C15	C16	C17
Testing and Exercising	Program Management: Training and Awareness	Program Management: Maintenane
C18
Crisis Management
Book Series		BCMPedia
		Audit

Do You Want to Attend a Comprehensive BCM Audit course remotely? Better still be certified?

Book	Certification Course

Reference Guide

Goh, M. H. (2010). A Manager's Guide to Auditing and Reviewing Your Business Continuity Management Program. Business Continuity Management Specialist Series (1st ed., p. 192). Singapore: GMH Pte Ltd.

Extracted from "Chapters 9 to 13"

Note: This version is the 2nd Edition being updated in 2021. The numeric in the square bracket {C##] is the cross-referencing of the actual chapters in the 2010 Edition.

Find out more about Blended Learning BCM-8530 [BL-A-5] & BCM-8030 [BL-A-3]

	Please feel free to send us a note if you have any of these questions to sales.ap@bcm-institute.org