Reporting to the Head of Assurance, the Business Continuity Manager (BCM) is responsible for designing, implementing, and maintaining the organisation’s business continuity and resilience framework across internal operations and client-managed infrastructure. The role ensures that systems, services, and processes remain resilient against disruption, meet regulatory expectations, and align with evolving risks including cybersecurity and AI usage.

1. Business Continuity Strategy & Governance

• Develop, implement, and continuously improve the Business Continuity Management System (BCMS) aligned with ISO 22301 and industry best practices, ensuring it aligns with Bell’s risk and resilience goals.
• Maintain BC policies, standards, and procedures across internal operations and client environments
• Ensure clear governance, roles, and accountability for BC across the organisation
• Act as a primary point of contact for all continuity-related incidents, facilitating effective communication and resolution.

2. Business Impact Analysis (BIA) & Risk Assessment

• Lead and maintain up-to-date Business Impact Analyses (BIA) for critical IT systems and business services
• Assess recovery priorities, RTOs, RPOs, and dependencies across applications and infrastructure, ensuring these align with organisational risk appetite and continuity goals.
• Identify emerging risks including AI-enabled systems and third-party dependencies

3. System Audits & Assurance

• Conduct periodic system-level BC audits to evaluate:
  • Accuracy and currency of BIA data
  • Availability and effectiveness of recovery strategies
  • Access control reviews (alignment with least privilege and identity governance)
  • Presence and governance of AI usage within systems
  • Verification that Data Protection Impact Assessments (DPIAs) are conducted where applicable
• Document findings, track remediation actions, and report on compliance status

4. Continuity Exercises & Testing

• Establish a structured testing framework to conduct regular continuity tests and simulations. Ensure each test includes detailed documentation, tracking of progress, and evaluation against set acceptance criteria to assess effectiveness and readiness.
• Develop and conduct regular crisis simulation exercises, workshops and training to prepare employees and stakeholders for potential disruptions.
• Design and deliver Exercise-in-a-Box (EiaB) testing programmes for IT teams and business units to evaluate the effectiveness of continuity strategies
• Conduct and coordinate scenario-based BC exercises, including:
  • Cyber incidents
  • System outages
  • Data breaches
  • Lead physical incident simulations, including:
  • Fire evacuation drills
  • Flood response scenarios
• Conduct de-briefing sessions with involved teams following continuity tests and incident response exercises. Document and track identified improvements, ensuring that feedback is systematically incorporated into the continuity plan.
• Evaluate exercise outcomes, identify gaps, and drive improvements

5. Client Infrastructure Resilience

• Oversee business continuity and disaster recovery readiness for client-managed environments
• Collaborate with service delivery teams to ensure:
  • Client BC requirements are defined, documented, and tested
  • Recovery solutions meet contractual obligations and SLAs
  • Support client audits, due diligence, and assurance requests

6. Monitoring, Reporting & Executive Communication

• Provide monthly BC preparedness reports to executive leadership covering:
  • BC maturity and readiness status
  • Audit findings and remediation progress
  • Exercise outcomes
  • Emerging risks (including AI and regulatory changes)
• Define and track KPIs and KRIs for business continuity
• Consolidate data required for management review meetings.

7. Regulatory & Compliance Alignment

• Ensure compliance with relevant standards and regulations (e.g., ISO 22301, ISO 27001, GDPR)
• Verify appropriate handling of personal data risks through DPIA oversight
• Embed BC considerations into broader risk and compliance frameworks

8. Continuous Improvement & Awareness

• Promote awareness and training on business continuity across the organisation
• Maintain documentation, playbooks, and recovery plans
• Stay current on evolving threats, including cyber resilience and AI-related risks

9. Stakeholder Engagement and Training:

• Collaborate with external suppliers to ensure their service continuity plans align with Bell’s continuity requirements, particularly for critical services, fostering resilience across the supply chain.
• Foster engagement with Practice Heads and other key stakeholders to ensure continuity objectives are understood and supported.
• Provide training and guidance on business continuity protocols to embed resilience within the organisational culture.
• Develop relationships with external stakeholders to stay informed on industry best practices and emerging risks.

EXPERIENCE

• Minimum of five years’ experience in continuity management within a service delivery or operations capacity, with a focus on continuity testing and governance ideally in a professional services or regulated environment.
• Expertise in ISO 22301 standards
• Background in conducting business impact analyses and maturity assessments.
• Proficiency with continuity planning tools and methodologies.
• Relevant qualification in business continuity management, risk management, or a related field.

SKILLS

• Continuity and Crisis Management: Strong ability to plan, execute, and oversee business continuity measures and crisis response.
• Stakeholder Engagement: Proven skills in engaging and aligning stakeholders across departments.
• Analytical and Critical Thinking: Strong analytical skills for assessing risk impacts and developing mitigation strategies.
• Organisational and Project Management: Effective time management and organisational skills to balance multiple priorities.

BEHAVIOURS

• Proactive and Detail-Oriented: Driven to anticipate risks and identify areas for improvement.
• Collaborative and Communicative: Able to work well with teams across the organisation to strengthen continuity practices.
• Strategic and Solution-Oriented: Skilled in aligning continuity strategies with organisational goals and addressing challenges pragmatically.

What we care about:

At Bell, we believe that we are stronger together, and promote an open, collaborative culture where everyone is encouraged to be involved in the shaping of our business.

We value diversity!

We seek to employ a workforce representative of the markets that we serve and work hard to ensure that all of our staff have the opportunity to thrive within a friendly and inclusive environment.

Why join bell:

• We prioritise internal development opportunities and offer access to our Udemy training platform with over 5000 training courses
• Competitive Salary
• Flexible remote working
• A generous company pension
• 25 days annual leave entitlement plus bank holidays and the option to purchase 5 extra days!
• Healthcare and dental insurance
• Life assurance
• Cycle to work scheme
• A diverse and inclusive work culture
• Modern vibrant workplaces
• Exclusive discounts with major retailers, discount gym memberships and access to our wellness centre