This question reminds me of a joke I heard the other day. What do you call a CIO who's also the CEO? A 'Chief Everything Officer'! Haha, sorry, I couldn't resist.
Hmm, I'm torn between the CIO and the enterprise risk manager. The CIO has the technical expertise, but the enterprise risk manager has the holistic view of the organization's risks. Maybe they should work together on this?
I agree with Allene. The CEO should be the one responsible for the business continuity program. They can then delegate the day-to-day management to the CIO or enterprise risk manager, but the CEO should be the one holding everyone accountable.
The director of internal audit? Really? I don't see how that would make sense. They're more focused on compliance and controls, not operational responsibilities like business continuity.
I think the CEO should be ultimately responsible for the business continuity program. After all, they're the one who's accountable for the overall success of the organization.
This is a tricky question. I'm not sure if the enterprise risk manager or the CIO would be the best choice. The enterprise risk manager might have a broader view of the organization's risks, but the CIO would be more directly responsible for the business-critical systems.
upvoted 0 times
...
Log in to Pass4Success
Sign in:
Report Comment
Is the comment made by USERNAME spam or abusive?
Commenting
In order to participate in the comments you need to be logged-in.
You can sign-up or
login
Kerry
20 hours agoJoanna
3 days agoRasheeda
4 days agoKirk
5 days agoAllene
7 days agoVannessa
8 days ago