Oracle Risk Management Resiliency Policy

Oracle’s Risk Management Resiliency Policy defines requirements for all Oracle Lines of Business (LOBs) to plan for and respond to potential business disruption events. It also specifies the functional roles and responsibilities required to create, maintain, test, and evaluate business continuity capability across LOBs and geographies. It authorizes a centralized Program Management Office (PMO) to manage a global Risk Management Resiliency Program (RMRP) which oversees LOB plans and preparedness, in alignment with ISO 22301 international standard for business continuity management.

Risk Management Resiliency Program

The Risk Management Resiliency Program (RMRP) objective is to establish a business resiliency framework to help facilitate efficient responses to business interruption events affecting operations.

The RMRP approach is comprised of several sub-programs: emergency response to unplanned and emergent events, crisis management, technology disaster recovery and business continuity management. Each of these sub-programs is a uniquely diverse discipline. The goal of the program is to minimize negative impacts to Oracle and maintain critical business processes until regular operating conditions are restored.

Oracle’s RMRP is designed to engage multiple aspects of emergency management and business continuity from the onset of an event and to leverage various teams, technology and personnel based on the needs of the situation.

The RMRP is implemented and managed locally, regionally, and globally. The RMRP program management office provides executive reporting on program activities and status across the Lines of Business.