Escolar Documentos
Profissional Documentos
Cultura Documentos
April 7, 2011
The updated copies of the document will be sent to the distribution list. The holder of a copy is responsible for discarding the previous copy and using the latest one.
Date: ________
(________________________________)
Reviewed By:
BCM Leader
Date: ________
(________________________________)
Managing Director
Date: ________
(________________________________)
Page 2
Distribution List
Sr. # 1 2 3 4 5 6 7 8 9 10 Name Purpose
Page 3
STATEMENT OF CONFIDENTIALITY
This documentation is the property of Pakistan Petroleum Limited (PPL). This document contains ideas and information that is intellectual proprietary and confidential to PPL, which shall not be disclosed outside PPL, transmitted, duplicated, used in whole or part other than for its intended purpose. Any use or disclosure in whole or part of this information without written permission of PPL is prohibited.
Page 4
Overview The purpose of this document is to provide an effective, predefined framework and process to enable Pakistan Petroleum Limited to response to emergency incidents. Managements ultimate goal should be to minimize damage to the organization through containment of the incident and proper restoration of all business processes. It should be noted that safety of Human life should always remain the number one priority. Incident response involves assigning responsibility for evaluating, responding, and managing the incidents and developing guidelines for employees to follow regarding escalation and reporting procedures.
Page 5
ACRONYMS
Acronym PPL IMP DRP BCM IRT Description Pakistan Petroleum Limited Incident Management Plan Disaster Recovery Plan Business Continuity Management Incidence Response Team
Page 6
Table of Contents
1. Defining Incident ............................................................................................................................................ 8 2. Incident Levels ................................................................................................................................................ 9 3. Incident Response Teams ............................................................................................................................. 10 3.1 Composition of IRT ................................................................................................................................. 10 3.2 Scope of IRTs .......................................................................................................................................... 10 3.3 Distribution of IRTs ................................................................................................................................. 11 4. Responsibilities of Incident Response Teams............................................................................................... 12 4.1 Action Plan of IRT Coordinator ............................................................................................................... 13 4.1.1 4.1.2 For Office Locations ........................................................................................................................ 13 For Field Locations .......................................................................................................................... 13
4.2 Action Plan of First Aid Team ................................................................................................................. 13 4.3 Action Plan of Fire Fighting Team ........................................................................................................... 13 4.4 Action Plan of IT Support Team .............................................................................................................. 13 4.5 Action Plan of Administration Team ...................................................................................................... 13 4.6 Action Plan of Security Team.................................................................................................................. 13 5. Notification and Activation of BCP ............................................................................................................... 15
Page 7
1. Defining Incident
Incident is defined as any event that has already impacted or has the potential to negatively affect the business operations of the PPL. Incident situation that can affect the business operations, subject to certain pre-defined criterion, may lead to the activation of the Incident Management Plan. The incident or disruption can be any of the following: Country Wide A disaster affecting the entire country. e.g. pandemic across Pakistan Location Wide A disaster affecting a geographical location. e.g. terrorism / sabotage, earthquake, flood, sandstorm in any of the cities where PPL has offices and / or fields. Site Specific A disaster affecting only a specific site e.g. physical damage to the Head Office at PIDC, Karachi caused by terrorism, fire, smoke, water, or structural damage.
Page 8
2. Incident Levels
Incident Levels are based on the amount of damage to the infrastructure of PPL and the estimated amount of time required for restoring normal operations. Damage Assessment team will perform this assessment and the incident level will be declared by the Crisis Management Team Leader in consultation with the BCM Steering Committee. The levels also indicate the type and length of time the alternate processing facilities will be needed. Incident declaration at PPL shall conform to one of the Incident Levels described in the following table: Sr. No. Incident Level
Criteria Level-I incidents occur more frequently in day to day operations. The severity level is considered low because the effects are often isolated to small set of critical business processes. The cause of the disruption is often failure of a single component, system or service. Level-I incidents can be handled within the departmental/sectional resources. Level-II incidents occur less frequently, but have a higher impact compared to the Level-I incident. This kind of event disrupts normal operations of some but not all critical business units. The operational disruptions result from major failure of multiple systems and equipment. Level-II incidents require the assistance of other sections/departments at the site. Resolution of such incidents should require involvement of Departmental Heads and few of Functional Heads only. The possibility of occurrence of Level-III incident is very small but the extent of the impact is significantly larger as compared to the other levels. Such incidents disrupt normal operations of most or all of the critical business processes. The operational disruptions are the result of inaccessibility or failure of most or all of the systems and equipments at a site. Level-III incidents require the notification and assistance from the highest level of the management including all the Functional Heads. Table 1: Incident Level Criteria
II
III
As level I and level II incidents are more of department level instead of organization level, resumption plans of relevant departments will be used for the recovery of departments operations. These plans should be available in the Standard Operating Manuals of the departments at offices and fields. For level III incident, the BCP will be invoked, and business resumption will be carried out using the Business Recovery Plans for each of the PPLs departments respectively. In case of a disaster, in which critical components like building, equipment and human resource are totally unavailable at the same time, BCP cannot be invoked. For such disasters, the decision lies with the Board of Directors or the Government to decide the course of action.
Page 9
IRT Coordinator
Admin Team
Security Team
IT Support Team
Human Injury (to be handled by First Aid Team) o Slight-severe Injuries to staff or visitors due to a terrorist activity or an incident o Health problem to staff or visitors o Injuries due to a natural disaster
Page 10
Fire (to be handled by Fire Fighting Team) o Localized Fire which can be handled by hand-held fire extinguishers Administrative issues (to be handled by Admin Team) o Lift not working o Communication systems not working o Advisory for Earthquake, Storm, Flood o Air-conditioning not working in part of the building o Electricity failure o Natural disaster affecting the building Security Issues (to be handled by Security Team) o Theft o Terrorism o Sabotage o Civil disorder / riots IT Incident (to be handled by IT Support Team) o Network Connectivity Failure o Virus Attack o Peripherals not working o Security breach o Cyber attack making the network insecure or unavailable to the PPL users Building Accessibility & Security Issues (to be handled by Admin and Security Teams) o Terrorist activity affecting the building or making it inaccessible o Sabotage activity making the building inaccessible
The above list just gives an idea of the various types of incidents to be handled by the Incident Response Teams, and is not all inclusive.
Page 11
Attend the incident immediately after reporting of incident. Evaluate the severity of incident. In case the building is affected, select an incident command post near the building. This site selection shall be on the basis of wind directions and probability of secondary hazards etc. Deploy appropriate team to cater incident and resolve it. Take a decision on requirement and priorities of evacuation and organize the resources to execute the same. Inform BCM Coordinator, or any member of the BCM Team in case of unavailability of BCM Coordinator, about the incident.
IT Support Team
Admin Team
Security Team
Page 12
Page 13
Please refer to Annexure D HSE Documents Emergency Response Plans and Security plans for Head Office, West Wharf office, Islamabad office and PPL fields: Adhi, Chachar, Hala, Kandhkot, Mazarani, and Sui.
Page 14
Page 15